turbot/aws_compliance

Query: opensearch_domain_fine_grained_access_enabled

Usage

powerpipe query aws_compliance.query.opensearch_domain_fine_grained_access_enabled

Steampipe Tables

SQL

select
arn as resource,
case
when advanced_security_options is null or not (advanced_security_options -> 'Enabled')::boolean then 'alarm'
else 'ok'
end as status,
case
when advanced_security_options is null or not (advanced_security_options -> 'Enabled')::boolean then title || ' has fine-grained access control disabled.'
else title || ' has fine-grained access control enabled.'
end as reason
, region, account_id
from
aws_opensearch_domain;

Controls

The query is being used by the following controls: