OpenSearch Domain Does Not Have CloudWatch Logging Enabled

Overview

Check whether logging is activated for your Amazon OpenSearch Service domains. Amazon OS provides access to four types of OpenSearch logs via Amazon CloudWatch Logs: error logs, search slow logs, index slow logs, and audit logs. Ensure that OpenSearch logging is enabled and formulate practical scenarios for their application. Leverage audit logs to monitor and investigate instances of denied access events.

Vendor

AWS

Cloud Service

OpenSearch

Related Controls

Opensearch.4

References

https://docs.aws.amazon.com/opensearch-service/latest/APIReference/API_DomainStatus.html

Severity

3

Item Types

AWS::OpenSearch::Domain