lacework-global-392

Amazon Elastic Map Reduce (EMR) cluster primary nodes should not have public IP addresses (Automated)

Description

You can assign public IP addresses in the PublicIp field of the NetworkInterfaces configuration for the instance. This control only checks Amazon EMR clusters that are in a RUNNING or WAITING state

Remediation

note

You can not update existing clusters to remove the public IP address, instead, to remediate, you need to launch a new cluster.

From the AWS Console:

Log in to the AWS Management Console.
Click Services.
Select Analytics > EMR.
Under EMR on EC2, click Clusters.
Click Create cluster.
Under Networking, for the Virtual Private Cloud (VPC) field, select either an existing VPC without a public IP assigned, or create a new one.
Make any additional configuration changes.
Click Create cluster.

From CLI:

aws elasticache modify-cache-cluster --cache-cluster-id <cluster_id> --snapshot-retention-limit <number_of_days> --apply-immediately

References

https://docs.aws.amazon.com/securityhub/latest/userguide/emr-controls.html#emr-1
https://docs.aws.amazon.com/emr/latest/ManagementGuide/emr-vpc-launching-job-flows.html

Amazon Elastic Map Reduce (EMR) cluster primary nodes should not have public IP addresses (Automated)​

Description​

Remediation​

References​

Amazon Elastic Map Reduce (EMR) cluster primary nodes should not have public IP addresses (Automated)

Description

Remediation

References