Benchmark: 2.2 Relational Database Service (RDS)
Overview
This section contains recommendations for configuring AWS Relational Database Services (RDS).
Usage
Install the mod:
mkdir dashboardscd dashboardspowerpipe mod initpowerpipe mod install github.com/turbot/steampipe-mod-aws-complianceStart the Powerpipe server:
steampipe service startpowerpipe serverOpen http://localhost:9033 in your browser and select 2.2 Relational Database Service (RDS).
Run this benchmark in your terminal:
powerpipe benchmark run aws_compliance.benchmark.cis_v400_2_2Snapshot and share results via Turbot Pipes:
powerpipe benchmark run aws_compliance.benchmark.cis_v400_2_2 --shareControls
- 2.2.1 Ensure that encryption-at-rest is enabled for RDS Instances
- 2.2.2 Ensure the Auto Minor Version Upgrade feature is enabled for RDS instances
- 2.2.3 Ensure that RDS instances are not publicly accessible
- 2.2.4 Ensure Multi-AZ deployments are used for enhanced availability in Amazon RDS