Usecase Universe

A collective of use cases for DevOps teams

Browse a variety of 300+ predefined templates to automate all your AWS actions

Create Template
Solutions
All Categories

Elasticsearch Service

24 Times Used
22 MAY 2019
ES Domains
None
Elasticsearch Service

ElasticSearch Domains Inventory

Elasticsearch Reserved Instance Lease Expiration In The Next 70 Days
Cost Saving
Cost Saving
Elasticsearch Service

To determine the expiration date for your AWS Elasticsearch Reserved Instances

Report total number of AWS elastic search domains.
Security
Cost Saving
Security
Cost Saving
Elasticsearch Service

Sends a report of Elastic Search domains if the total number of instances reach the threshold limit(10). Monitoring and configuring limits for the maximum number of Elasticsearch (ES) instances provisioned within your AWS account will help you to manage better your Elasticsearch compute resources.

Send report elastiSearch instances not having the desired instance and dedicated master type established by your organization
Elasticsearch Service
Security
Compliance
AWS Best Practices
Security

Setting limits for the type of AWS ElasticSearch instances will help you address internal compliance requirements and prevent unexpected charges on your AWS bill. Ensure that your existing AWS instances and dedicated master have the desired type established by your organization based on the caching workload required.

Elasticsearch Cross Account Access
Security
Security
Elasticsearch Service

Sends a report of AWS ElasticSearch domains which allows access to unauthorized cross users. Allowing untrustworthy cross account access to your AWS ES clusters can lead to unauthorized actions such as uploading, downloading and deleting documents without permission.

ElasticSearch Cluster status
Elasticsearch Service
Security
Security

Sends a report of all ElasticSearch Clusters without a healthy status

ElasticSearch Domains without CloudWatch Alarms
Elasticsearch Service
CloudWatch
Operational Excellence
Operational Excellence

Send report of all the elasticSearch domains without a cloudwatch alarm attached to them.

ELasticSearch Encryption At Rest
Elasticsearch Service
Security
Security

Sends a report if encryption at rest is not enabled for your AWS elasticSearch domains. Encryption of data at rest helps prevent unauthorized users from reading sensitive information available on your ES domains (clusters) and their storage systems.

ElasticSearch Domain Encrypted with KMS CMKs
Security
Security
Elasticsearch Service

Sends a report if your AWS elasticSearch cluster is using default AWS key instead of KMS Customer Master Keys (CMKs) for encryption. When you use your own KMS Customer Master Keys you have full control over who can use these keys to access the clusters data.

ElasticSearch Domains Without VPC.
Elasticsearch Service
Security
Security

Sends a report if your AWS elasticSearch domains are not running in VPC. AWS VPCs are for better flexibility and control over the clusters access and security. AWS Elasticsearch domains that reside within a VPC have an extra layer of security when compared to ES domains that use public endpoints.

Pending ElalsticSearch Reserved Instances
Elasticsearch Service
Cost Saving
Cost Saving

A pending AWS Elasticsearch Reserved Instance is an incomplete reservation that receives the "payment-pending" status during the purchasing process due to issues with the payment method. Using Reserved Instances is one of the best cost optimization strategies when working with AWS Elasticsearch service. To fully receive the discount benefit, make sure that all your Elasticsearch reservation purchases have been fully processed.

Elasticsearch Domains Without Node To Node Encryption
Elasticsearch Service
Security
Security

Sends a report if node to node encryption is not enabled for your AWS elasticSearch domains. ElasticSearch node-to-node encryption capability provides the additional layer of security by implementing Transport Layer Security (TLS) for all communications between the nodes provisioned within the cluster.

Elastic search Domain Missing Alarms
Elasticsearch Service
CloudWatch
Operational Excellence
Operational Excellence

Send a report having information of which cloudwatch alarms are missing in your AWS elasticSearch domains.

Elasticsearch Reserved instances Purchased Recently
Cost Saving
Cost Saving
Elasticsearch Service

By verifying your Elasticsearch Reserved Instance purchases on a regular basis you can detect and cancel any unwanted purchases placed accidentally or intentionally within your AWS account in order to avoid unexpected charges on your AWS bill.

Elasticsearch Domains Without Important Tags - 'Name', 'Environment', 'Role', 'Project'
Elasticsearch Service
Operational Excellence
Operational Excellence

Sends a report of Elasticsearch domains without important tags (‘Name’, ‘Environment’, ‘Role’, ‘Project’)