AWS Elasticache security groups are not defined
Description
By ensuring that AWS Elasticache security groups are defined, you can help protect your clusters from unauthorized access and ensure that only authorized traffic is allowed to reach your clusters. This can help prevent data breaches and other security incidents, and can also help ensure that your clusters are not overwhelmed by unwanted traffic.
Code Example
go
resource "aws_elasticache_security_group" "exists" {
name = "elasticache-security-group"
security_group_names = [aws_security_group.bar.name]
}
resource "aws_security_group" "bar" {
name = "security-group"
}Remediation
Terraform
Rule Details
| Field | Value |
|---|---|
| ID | IAC-0244 |
| Severity | LOW |
| IaC Type | Terraform |
| Frameworks | Terraform |
| Checkov ID | CKV_AWS_196 |