Back to All Checks
High EMR Regional

Amazon EMR cluster primary nodes should not have public IP addresses

PCI DSSNIST

Description

Checks whether master nodes on Amazon EMR clusters have public IP addresses.

Remediation

To remediate a failed finding, launch a new cluster in a VPC with a private subnet that has the IPv4 public addressing attribute set to false.

Steps

  1. Launch a new cluster in a VPC with a private subnet.
  2. Ensure the IPv4 public addressing attribute is set to false.

Compliance

PCI DSSNIST
Start Your Free Security Check