Elasticsearch domains should have error logging to CloudWatch Logs enabled

elasticsearch
Cette page n'est pas encore disponible en français, sa traduction est en cours.
Si vous avez des questions ou des retours sur notre projet de traduction actuel, n'hésitez pas à nous contacter.

Description

This control confirms whether Elasticsearch domains are configured to forward error logs to CloudWatch Logs.

It’s recommended to enable error logging for Elasticsearch domains and forward these logs to CloudWatch Logs for retention and analysis. Error logs from the domain can play a key role in security and access audits and can help in diagnosing availability issues.

Remediation

For details on how to activate log publishing, refer to the Enabling log publishing (console) section in the Amazon OpenSearch Service Developer Guide.