Aqua CSPM

ElasticSearch Logging Enabled

Quick Info

Plugin TitleElasticSearch Logging Enabled
CloudAWS
CategoryES
DescriptionEnsures ElasticSearch domains are configured to log data to CloudWatch
More InfoElasticSearch domains should be configured with logging enabled with logs sent to CloudWatch for analysis and long-term storage.
AWS Linkhttps://docs.aws.amazon.com/elasticsearch-service/latest/developerguide/es-createupdatedomains.html#es-createdomain-configure-slow-logs
Recommended ActionEnsure logging is enabled and a CloudWatch log group is specified for each ElasticSearch domain.

Detailed Remediation Steps