Human Error Remediation – Operator disables firewall on an instance, virtual machine or server.
Description: this use case describes how the platform can identify and fix a human error which, in this case, is the action of disabling the firewall on an instance.
Scenario: during daily activities an operator disables by error the firewall configured on an instance. This error may expose services or network ports in an unwanted manner, leaving the instance open to attacks.
Solution: model an Event on the platform by creating an indicator to represent the Firewall’s status. The Event to monitor will be a semaphore file which will be created if the firewall is switched off. If the event occurs, the platform will be notified and the remediation action will be to re-enable the firewall, also notifying the admin of the occurrence.
