Ensure that your Amazon ElastiCache clusters are configured with a preferred maintenance window. The preferred maintenance window is the weekly time range, in Universal Coordinated Time (UTC), during which any system changes are applied. Before running this conformity rule, the preferred maintenance window must be configured in the rule settings, in your Trend Cloud One™ – Conformity account, based on the AWS region, using the following format: ddd:hh24:mi-ddd:hh24:mi (e.g. sat:03:00-sat:03:30).
Amazon Web Services (AWS) performs regular maintenance on ElastiCache resources. Maintenance often involves updates to the cluster's underlying Operating System (OS) or the cache engine version. These maintenance and service updates are required to apply upgrades that strengthen security, reliability, and operational performance. The default maintenance window is a 60-minute window selected at random for each AWS cloud region. The 60-minute maintenance window is chosen at random from an 8-hour block of time per region. Because your Amazon ElastiCache clusters may become unavailable during maintenance operations, you may want to configure the maintenance window to a time in which your cache cluster is under its lowest load. This time frame represents the preferred maintenance window and must be compliant with the weekly time range configured in the conformity rule settings.
Audit
To determine if there is a preferred maintenance window configured for your Amazon ElastiCache clusters, perform the following operations:
Remediation / Resolution
Your Amazon ElastiCache clusters may become unavailable during maintenance operations. Therefore, you may want to change the preferred maintenance window to a time in which your cache clusters are under their lowest load. To update the preferred maintenance window for your Amazon ElastiCache clusters, perform the following operations:
References
- AWS Documentation
- Amazon ElastiCache Managed Maintenance and Service Updates Help Page
- Managing maintenance (Memcached)
- Managing maintenance (Redis)
- AWS Command Line Interface (CLI) Documentation
- describe-cache-clusters
- describe-replication-groups
- modify-cache-cluster
- modify-replication-group