Amazon Elasticsearch Service (Amazon ES) allows you to build applications without setting up and maintaining your own search celuster on Amazon EC2. Amazon ES allows you to configure your domains to require that all traffic be submitted over HTTPS. This ensures communications between your clients and your domain are encrypted.
We recommend you configure the minimum required TLS version to accept. This option is a useful additional security control to ensure your clients are not misconfigured.
To change the policy using the AWS Console, follow these steps:
- Log in to the AWS Management Console at https://console.aws.amazon.com/.
- Open the Amazon Elasticsearch console.
- Open a domain.
- Select Actions > Modify encryptions
- Select Require HTTPS for all traffic to the domain.
- Click Submit.
Resources: Resource0: Type: 'AWS::Elasticsearch::Domain' Properties: ... DomainEndpointOptions: + EnforceHTTPS: True
Updated about 1 month ago