Ensure public access is disabled for AWS Redshift Clusters

HIGH

Description

Allowing unrestricted, public access to cloud services could open an application up to external attack. Disallowing this access is typically considered best practice.

Remediation

In AWS Console -

Go to the Amazon Redshift console.
Select Clusters.
Select the cluster to which you are trying to connect.
Select Actions.
Select Modify publicly accessible setting to disable it.

In Terraform -

In the aws_redshift_cluster resource, set the attribute 'publicly_accessible' to 'false'.

References:
https://docs.aws.amazon.com/redshift/latest/mgmt/managing-clusters-vpc.html
https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/redshift_cluster#publicly_accessible

Policy Details

Rule Reference ID: AC_AWS_0199

CSP: AWS

Remediation Available: Yes

Domain: Infrastructure Security

Resource: aws_redshift_cluster

Resource Category: Database

Resource Type: Redshift

Frameworks

GDPR
HIPAA
ISO-27001
NIST-800-171
NIST-800-53
NIST-CSF
PCI-DSSv3.2.1
PCI-DSSv4.0
SOC2

Detections

Analytics