Ensure point-in-time-recovery (PITR) is enabled for AWS DynamoDB tables

MEDIUM

Description

AWS DynamoDb tables have point-in-time-recovery (PITR) disabled. This may make disaster recovery operations challenging.

Remediation

In AWS Console -

  1. Sign in to the AWS Console go to the Amazon DynamoDB console.
  2. Select to the DynamoDB table, then select the Backups tab.
  3. Click Enable.

In Terraform -

  1. In the aws_dynamodb_table resource, set the point_in_time_recovery.enabled field to true.

References:
https://docs.aws.amazon.com/amazondynamodb/latest/developerguide/PointInTimeRecovery.html
https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/dynamodb_table#point_in_time_recovery

Policy Details

Rule Reference ID: AC_AWS_0076
CSP: AWS
Remediation Available: Yes
Domain: Resilience
Resource Category: Database
Resource Type: DynamoDB

Frameworks