Checks/Aws/Test-Elbv2InsecureSslCiphers.ps1
|
function Test-Elbv2InsecureSslCiphers { <# .SYNOPSIS ELBv2 load balancer uses a secure SSL policy on HTTPS listeners .DESCRIPTION **ELBv2 HTTPS listeners** are assessed for use of **strong TLS policies**. Listeners whose `ssl_policy` is not in the approved set (TLS 1.2/1.3-focused policies) may include weak protocols or ciphers. .PARAMETER Check CIEMCheck object containing check metadata. #> [CmdletBinding()] [OutputType([PSCustomObject[]])] param( [Parameter(Mandatory)] [CIEMCheck]$Check ) $ErrorActionPreference = 'Stop' # TODO: Implement check logic based on Prowler check: elbv2_insecure_ssl_ciphers [CIEMScanResult]::Create($Check, 'MANUAL', 'This check requires manual implementation. See Prowler check elbv2_insecure_ssl_ciphers for reference.', 'N/A', 'elbv2 Resources') } |