Plugin Title | ElasticSearch IAM Authentication |
Cloud | AWS |
Category | ES |
Description | Ensures ElasticSearch domains require IAM Authentication |
More Info | ElasticSearch domains can allow access without IAM authentication by having a policy that does not specify the principal or has a wildcard principal |
AWS Link | https://docs.aws.amazon.com/elasticsearch-service/latest/developerguide/es-ac.html |
Recommended Action | Configure the ElasticSearch domain to have an access policy without a global principal or no principal |