Plugin Title Redshift Publicly Accessible
Cloud AWS
Category Redshift
Description Ensures Redshift clusters are not launched into the public cloud
More Info Unless there is a specific business requirement, Redshift clusters should not have a public endpoint and should be accessed from within a VPC only.
AWS Link
Recommended Action Remove the public endpoint from the Redshift cluster

Detailed Remediation Steps

  1. Log into the AWS Management Console.
  2. Select the "Services" option and search for Redshift.
  3. Scroll down the left navigation panel and choose "Clusters".
  4. Select the "Cluster" that needs to be verified and click on its identifier(name) from the "Cluster" column.
  5. Scroll down the "Cluster" configuration page and check the "Publicly Accessible" option under the "Cluster Database Properties". If current status is set to "Yes" then the selected cluster is launched into the public cloud.
  6. Repeat steps number 2 - 5 to verify other clusters.
  7. Select the "Cluster" on which "Public Accessibility" needs to be disable.Click on its identifier(name)from the "Cluster" column to go into "Cluster" configuration page.
  8. Click on the "Cluster" dropdown button at the top menu and click on the "Modify Cluster" option.
  9. On the "Modify Cluster" page select the "No" option next to "Publicly accessible" under "Cluster Settings". Click on the "Modify" button to make the necessary changes.
  10. Repeat steps number 7 - 9 to disable "Public Accessibility" for other clusters.

Want to scan for this risk automatically?

Get Started Now