AWS-DocumentDB-clusters-backup-retention-minimum-7-days

Severity: Medium

Description:This control ensures that automated backup is enabled for an DocumentDB by configuring the backup retention period more than or equal to 7. Backups are an important part in maintaining the availability of data in case of any malfunctions or issues. They provide a reliable checkpoint to which the system can be restored. It is highly recommended to enable automated backups on production DocumentDB Clusters to maintain the availability of the data and support database operations like recovery and rollbacks to a stable point if or when an issue occurs.

Remediation Steps:

Perform following to update DocumentDB master user name:

1. Login to the AWS Management Console at https://console.aws.amazon.com.

2. Navigate to DocumentDB console.

3. In the Navigation pane, choose "Clusters".

4. Click on the Database Cluster to be modified, click "Modify".

5. Under "Backup", configure "Backup retention period" to a value greater than 7.

6. Click on the "Continue" button

7. Under "Scheduling of modifications" option select "Apply Immediately".

8. Click on "Modify DB Cluster" button.

Important:

•  Storing database Cluster backups may incur an additional cost.

Reference:

• https://docs.aws.amazon.com/cli/latest/reference/docdb/modify-db-cluster.html