Detections
Analytics

Ensure termination protection is enabled for AWS EMR clusters

MEDIUM

Description

AWS EMR clusters have termination protection disabled which may shut down EC2 instances by accident.

Remediation

In AWS Console -

  1. Sign in to AWS Console and go to Amazon EMR console.
  2. Choose Create cluster.
  3. Choose Go to advanced options.
  4. On the General Cluster Settings step, under General Options make sure Termination protection is selected.

In Terraform -

  1. In the aws_emr_cluster resource, set the termination_protection field to true.

References:
https://docs.aws.amazon.com/emr/latest/ManagementGuide/UsingEMR_TerminationProtection.html
https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/emr_cluster#termination_protection

Policy Details

Rule Reference ID: AC_AWS_0124
CSP: AWS
Remediation Available: Yes
Domain: Resilience
Resource: aws_emr_cluster
Resource Category: Management
Resource Type: Elastic MapReduce (EMR)

Frameworks