OpenSearch (Elasticsearch) domain has less than three data nodes

Workload misconfigurations

OpenSearch (Elasticsearch) domain has less than three data nodes

Risk Level

Informational (4)

Platform(s)

Compliance Frameworks

AWS Foundational Security Best Practices Controls
Brazilian General Data Protection (LGPD)
CCPA
CPRA
ISO/IEC 27001
New Zealand Information Security Manual
NIST 800-171
NIST 800-53
PDPA
UK Cyber Essentials

Description

Amazon OpenSearch Service (Amazon Elasticsearch Service successor) is a managed service that simplifies the deployment, operation, and scaling of OpenSearch clusters in AWS Cloud. It was found that the OpenSearch (Elasticsearch) domain {AwsElasticSearch} is configured with less than three data nodes or has 'ZoneAwarenessEnabled' disabled. The data nodes store and perform operations related to the query requests. An OpenSearch (Elasticsearch) domain requires at least three data nodes for high availability and fault tolerance in case a node fails.

Recommended Mitigation

For high availability and fault-tolerance it is recommended to configure at least 3 data nodes and enable ZoneAwarenessEnabled at the OpenSearch (Elasticsearch) domain {AwsElasticSearch}.

OpenSearch (Elasticsearch) domain has less than three data nodes

Description

Need help?

CLOUD SECURITY PLATFORM

TECHNOLOGY ECOSYSTEM

By Solution

By Industry

COMPARISONS