AWS EMR cluster is not configured with security configuration
Description
This policy detects if an AWS EMR cluster is not configured with a security configuration. The security configuration of an EMR cluster determines things like encryption settings and security group rules. If such a configuration is not set, the cluster may be vulnerable to attacks or data breaches.
Code Example
go
resource "aws_emr_cluster" "example" {
...
security_configuration = aws_emr_security_configuration.example.name
...
}Remediation
Terraform
- Resource: aws_emr_cluster
- Arguments: security_configuration
To fix the issue, name a valid security configuration in the `security_configuration` argument of the `aws_emr_cluster` resource.
Secure code example:
Rule Details
| Field | Value |
|---|---|
| ID | IAC-0489 |
| Severity | INFO |
| IaC Type | Terraform |
| Frameworks | Terraform, TerraformPlan |
| Checkov ID | CKV2_AWS_55 |