Back to All Checks
Medium Opensearch Regional

OpenSearch domain error logging to CloudWatch Logs should be enabled

NISTISO 27001

Description

This check ensures that OpenSearch domains have error logging to CloudWatch Logs enabled for better monitoring and troubleshooting.

Remediation

To enable error logging to CloudWatch Logs for an OpenSearch domain, follow these steps:

Steps

  1. Open the Amazon OpenSearch Service console at https://console.aws.amazon.com/opensearch/.
  2. Choose the domain that you want to modify.
  3. In the navigation pane, under Cluster configuration, choose Log Publishing Options.
  4. For Error logs, select Enable to CloudWatch Logs.
  5. Choose Save changes.

Compliance

NISTISO 27001
Start Your Free Security Check