Severity: Low
Description: This control checks the port for the database cluster and ensures that the database cluster is not listening to default port. In a Multi-AZ deployment, the primary DB instance is synchronously replicated across Availability Zones to Replicas. A Neptune Database Cluster can be made Multi-AZ by adding a new DB Instance in the cluster in a separate Availability Zone.
Remediation Steps:
Perform following to enable high availability for Neptune :
Login to the AWS Management Console at https://console.aws.amazon.com.
Navigate to Neptune console.
In the navigation pane, choose Databases.
Select database Cluster to configure, Choose Modify.
In section Database Options, set Database Port to a non-default port.
Click Continue.
Click Modify DB Cluster.
Important:
Changing database port restarts the database instantly
Changing the database port will break communication between database and dependent applications. Connection strings configured will require modification.
Security Groups associated with Database instance will need an update to allow inbound traffic to the database.
Security groups/firewalls associated with applications communicating with the database may need an update to allow inbound traffic to the database.
Reference: