Control: AWS > PCI v3.2.1 > Redshift > 1 Amazon Redshift clusters should prohibit public access

This control checks whether Amazon Redshift clusters are publicly accessible by evaluating the publiclyAccessible field in the cluster configuration item.

Remediation

1. Open the Amazon Redshift console. 2. On the navigation pane, choose Clusters and then select your public Amazon Redshift cluster. 3. From the Cluster drop-down menu, choose Modify cluster. 4. In Publicly accessible, choose No. 5. Choose Modify.

PCI requirement(s): 1.2.1, 1.3.1, 1.3.2, 1.3.4, 1.3.6

Resource Types

This control targets the following resource types:

AWS > Redshift > Cluster

Policies

This control type relies on these other policies when running actions:

AWS > PCI v3.2.1

In Your Workspace

Developers

Control Type URI

tmod:@turbot/aws-pciv3-2-1#/control/types/redshiftClusterProhibitPublicAccess

Category URI

tmod:@turbot/turbot#/control/categories/compliancePci

GraphQL

query controlType(id: "tmod:@turbot/aws-pciv3-2-1#/control/types/redshiftClusterProhibitPublicAccess") { … }

query controls(filter: "controlTypeId:'tmod:@turbot/aws-pciv3-2-1#/control/types/redshiftClusterProhibitPublicAccess'") { … }

CLI

Get Controls

turbot graphql controls --filter "controlTypeId:tmod:@turbot/aws-pciv3-2-1#/control/types/redshiftClusterProhibitPublicAccess"