Back to All Checks
Medium Elasticsearch Regional

Elasticsearch domain error logging to CloudWatch Logs should be enabled

NISTISO 27001

Description

This check ensures that Elasticsearch domains have error logging to CloudWatch Logs enabled for better monitoring and troubleshooting.

Remediation

To enable error logging to CloudWatch Logs for an Elasticsearch domain, follow these steps:

Steps

  1. Open the Amazon Elasticsearch Service console at https://console.aws.amazon.com/es/.
  2. Choose the domain that you want to modify.
  3. In the navigation pane, under Domain configuration, choose Log Publishing Options.
  4. For Error logs, select the Enabled checkbox.
  5. Choose a CloudWatch Logs log group and specify the IAM role to use.
  6. Choose Save changes.

Compliance

NISTISO 27001
Start Your Free Security Check