Back to All Checks
Medium Opensearch Regional

OpenSearch domains should encrypt data sent between nodes

NISTISO 27001

Description

This check ensures that OpenSearch domains have node-to-node encryption enabled to secure data in transit between nodes within the cluster.

Remediation

To enable node-to-node encryption for an OpenSearch domain, follow these steps:

Steps

  1. Open the Amazon OpenSearch Service console at https://console.aws.amazon.com/opensearch/.
  2. Choose the domain that you want to modify.
  3. In the navigation pane, under Cluster configuration, choose Node-to-node encryption.
  4. Select Enable for Node-to-node encryption.
  5. Choose Save changes.

Compliance

NISTISO 27001
Start Your Free Security Check