top of page
< Back

AWS Foundational Security Best Practice

ES.1

Elasticsearch domains should have encryption at-rest enabled

Severity

Cloud Platforms

Resources

MEDIUM

AWS

Amazon Elasticsearch

This AWS control checks whether Elasticsearch domains have encryption at rest configuration enabled. This check fails if the EncryptionAtRestOptions field is not enabled.

bottom of page