Ensure read-write capacities are reserved for AWS DynamoDB tables

MEDIUM

Description

Using billing modes other than PROVISIONED may lead to unpredictable surge in cost.

Remediation

In AWS Console -

  1. Sign in to the AWS Console and open the DynamoDB Console.
  2. Under Tables, select the table you wish to update.
  3. Select the Additional settings tab and click Edit.
  4. Set the Capacity mode to Provisioned.
  5. Select Save changes.

In Terraform -

  1. In the aws_dynamodb_table resource, set the field billing_mode to PROVISIONED.

References:
https://docs.aws.amazon.com/amazondynamodb/latest/developerguide/HowItWorks.ReadWriteCapacityMode.html
https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/dynamodb_table

Policy Details

Rule Reference ID: AC_AWS_0077
CSP: AWS
Remediation Available: Yes
Resource Category: Database
Resource Type: DynamoDB

Frameworks