An EMR cluster is compliant if its associated security groups do not have unrestricted whitelists.
Risk level
Default risk level: Medium.
You can change the risk level as needed.
Detection logic
An EMR cluster is compliant if its associated security groups do not have unrestricted whitelists.
Rule details
Parameter | Description |
Rule name | Check for unrestricted whitelists in EMR cluster security groups |
Rule identifier | |
Tag | EMR |
Automatic remediation | Not supported |
Rule trigger | Configuration change |
Supported resource types | ACS::EMR::Cluster |
Input parameters | None |
Remediation guide
To remediate a non-compliant resource, see Create a cluster.