turbot/aws_compliance

Query: opensearch_domain_node_to_node_encryption_enabled

Usage

powerpipe query aws_compliance.query.opensearch_domain_node_to_node_encryption_enabled

Steampipe Tables

SQL

select
arn as resource,
case
when region = any(array['af-south-1', 'eu-south-1', 'cn-north-1', 'cn-northwest-1']) then 'skip'
when node_to_node_encryption_options_enabled then 'ok'
else 'alarm'
end as status,
case
when region = any(array['af-south-1', 'eu-south-1', 'cn-north-1', 'cn-northwest-1']) then title || ' node-to-node encryption not supported in ' || region || '.'
when node_to_node_encryption_options_enabled then title || ' node-to-node encryption enabled.'
else title || ' node-to-node encryption disabled.'
end as reason
, region, account_id
from
aws_opensearch_domain;

Controls

The query is being used by the following controls: