foundational_security_opensearch_1

1 OpenSearch domains should have encryption at rest enabled

foundational_security_opensearch_2

2 OpenSearch domains should be in a VPC

foundational_security_opensearch_3

3 OpenSearch domains should encrypt data sent between nodes

foundational_security_opensearch_4

4 OpenSearch domain error logging to CloudWatch Logs should be enabled

foundational_security_opensearch_5

5 OpenSearch domains should have audit logging enabled

foundational_security_opensearch_6

6 OpenSearch domains should have at least three data nodes

foundational_security_opensearch_7

7 OpenSearch domains should have fine-grained access control enabled

foundational_security_opensearch_8

8 Connections to OpenSearch domains should be encrypted using TLS 1.2

foundational_security_opensearch

foundational_security

AWS Foundational Security Best Practices

Opensearch

aws_compliance

Run individual configuration, compliance and security controls or full compliance benchmarks for CIS, FFIEC, PCI, NIST, HIPAA, RBI CSF, GDPR, SOC 2, Audit Manager Control Tower, FedRAMP, GxP and AWS Foundational Security Best Practices controls across all your AWS accounts using Steampipe.

AWS Compliance

Apache License 2.0

steampipe-mod-aws-compliance

turbot/aws_compliance

Benchmark: Opensearch

Overview

Usage

Controls

Tags

Steampipe

Resources

Community