OpenSearch Domain Has Cognito Authentication for Kibana Disabled

Overview

Check whether Amazon OpenSearch Service domains have enabled Amazon Cognito authentication for Kibana. Amazon OpenSearch Service offers support for employing Amazon Cognito as a means of authenticating Kibana. If the configuration for Amazon Cognito authentication is not established, alternative methods to safeguard Kibana include implementing an IP-based access policy and proxy server, utilizing HTTP basic authentication, or employing SAML.

Vendor

AWS

Cloud Service

OpenSearch

References

https://docs.aws.amazon.com/opensearch-service/latest/APIReference/API_CognitoOptions.html, https://docs.aws.amazon.com/opensearch-service/latest/developerguide/ac.html

Severity

Item Types

AWS::OpenSearch::Domain

Overview​

Vendor​

Cloud Service​

References​

Severity​

Item Types​