Ensure that your Amazon Neptune database instances have the Auto Minor Version Upgrade feature enabled in order to receive automatically minor engine upgrades. The automatic upgrades are applied to Neptune instances during system maintenance window, defined by the day of the week, the time of day, and the time zone (UTC by default). Each minor version upgrade is fully available only after it is approved by Amazon Web Services.
This rule can help you with the following compliance standards:
- APRA
- MAS
- NIST4
For further details on compliance standards supported by Conformity, see here.
This rule resolution is part of the Conformity Security & Compliance tool for AWS.
Amazon Neptune is a fast, scalable and reliable graph database service that makes it easy to build and run applications that work with highly connected datasets. The Neptune service releases engine version upgrades regularly to introduce new software features, bug fixes, security patches and performance improvements.
Audit
To determine if your AWS Neptune database instances have Auto Minor Version Upgrade feature enabled, perform the following actions:
Remediation / Resolution
To update your Amazon Neptune database instances configuration in order to enable Auto Minor Version Upgrade, perform the following actions:
References
- AWS Documentation
- Amazon Neptune FAQs
- What Is Amazon Neptune?
- Working with Amazon Neptune DB Clusters
- Engine Releases for Amazon Neptune
- Modifying a Neptune DB Instance and Using the Apply Immediately Parameter
- AWS Command Line Interface (CLI) Documentation
- neptune
- describe-db-instances
- modify-db-instance