Get Involved
Query: OpenSearch domains node-to-node encryption should be enabled
Description
This control checks if AWS OpenSearch Service nodes are encrypted end to end. The rule is non-compliant if the node-to-node encryption is not enabled on the domain.
Query
Tables used in this query:
Controls using this query:
- 3 OpenSearch domains should encrypt data sent between nodes
- OpenSearch domains node-to-node encryption should be enabled