AWS Redshift Terraform module
Upstream version 7.1.0
2 controls from ACSC ISM March 2023 requirements
Terraform Module Source
acscism2023.compliance.tf/terraform-aws-modules/redshift/awsBehavioral Summary
This module modifies 2 variable defaults and makes 0 resource changes from the upstream module. All changes are driven by compliance controls and can be reviewed in detail below.
Your Code Impact
If you are migrating from the upstream module, the enforced default changes mean your existing configurations will automatically gain compliance controls. Variables you have explicitly set will continue to use your values. Review the diff below to understand exactly what changes.
Compared to
terraform-aws-modules/redshift/aws@7.1.02 changesVariables Changed
2| Variable | Upstream | CTF | Reason | Control |
|---|---|---|---|---|
| encrypted | - | true | To protect data at rest, ensure that encryption is enabled for your AWS Redshift clusters. You must also ensure that required configurations are deployed on AWS Redshift clusters. The audit logging should be enabled to provide information about connections and user activities in the database. | redshift_cluster_encryption_logging_enabled |
| enhanced_vpc_routing | - | true | Ensure that AWS Redshift cluster has 'enhancedVpcRouting' enabled. The rule is non-compliant if 'enhancedVpcRouting' is not enabled or if the configuration.enhancedVpcRouting field is 'false'. | redshift_cluster_enhanced_vpc_routing_enabled |