Back to All Checks
Critical Opensearch Regional

OpenSearch domains should not be publicly accessible

PCI DSSNISTISO 27001

Description

This check ensures that OpenSearch domains are placed within a VPC, which provides a more secure and manageable networking environment.

Remediation

To place an OpenSearch domain within a VPC, follow these steps:

Steps

  1. Open the Amazon OpenSearch Service console at https://console.aws.amazon.com/opensearch/.
  2. Choose the domain that you want to modify.
  3. In the navigation pane, under Network configuration, choose VPC.
  4. Select the VPC and the subnets and security groups as needed.
  5. Choose Save changes.

Compliance

PCI DSSNISTISO 27001
Start Your Free Security Check