turbot/aws_compliance

Query: es_domain_node_to_node_encryption_enabled

Usage

powerpipe query aws_compliance.query.es_domain_node_to_node_encryption_enabled

Steampipe Tables

SQL

select
arn as resource,
case
when region = any(
array [ 'af-south-1',
'eu-south-1',
'cn-north-1',
'cn-northwest-1' ]
) then 'skip'
when not enabled then 'alarm'
else 'ok'
end as status,
case
when region = any(
array [ 'af-south-1',
'eu-south-1',
'cn-north-1',
'cn-northwest-1' ]
) then title || ' node-to-node encryption not supported in ' || region || '.'
when not enabled then title || ' node-to-node encryption disabled.'
else title || ' node-to-node encryption enabled.'
end as reason,
region,
account_id
from
aws_elasticsearch_domain;

Controls

The query is being used by the following controls: