Ensure that all the database instances within your Amazon Aurora clusters have the same accessibility (either public or private) in order to follow AWS best practices.
This rule can help you with the following compliance standards:
- APRA
- MAS
This rule resolution is part of the Cloud Conformity Security & Compliance tool for AWS
It is highly recommended to have all the database instances within an AWS Aurora cluster as either publicly or privately accessible as in case of a failover, an instance might go from publicly accessible to privately accessible and obstruct the connectivity to the database cluster.
Audit
To identify any AWS Aurora clusters that have both private and public database instances, perform the following:
Remediation / Resolution
To ensure that the database instances within your Aurora clusters have the same accessibility (either public or private), perform the following:
References
- AWS Documentation
- Trusted Advisor Best Practices (Checks)
- Aurora on Amazon RDS
- Viewing an Amazon Aurora DB Cluster
- Connecting to an Amazon Aurora DB Cluster
- Modifying an Amazon RDS DB Instance and Using the Apply Immediately Parameter
- AWS Command Line Interface (CLI) Documentation
- rds
- describe-db-clusters
- describe-db-instances
- modify-db-instance
Unlock the Remediation Steps
Gain free unlimited access
to our full Knowledge Base
Over 750 rules & best practices
for and
Get started for FREE
You are auditing:
Aurora Database Instance Accessibility
Risk level: Medium