π‘οΈ AWS DMS Replication Instance Multi-AZ Deployment is not enabledπ’
- Contextual name: π‘οΈ Replication Instance Multi-AZ Deployment is not enabledπ’
- ID:
/ce/ca/aws/dms/replication-instance-multi-az - Tags:
- π’ Policy with categories
- π’ Policy with type
- π’ Production policy
- Policy Type:
COMPLIANCE_POLICY - Policy Categories:
RELIABILITY
Logicβ
- π§ prod.logic.yamlπ’
Similar Policiesβ
- AWS Security Hub: [DMS.13] DMS replication instances should be configured to use multiple Availability Zones
Descriptionβ
Descriptionβ
This policy identifies AWS DMS Replication Instances that are not configured for Multi-AZ deployment.
Rationaleβ
A DMS replication instance is the compute layer that runs migration and replication tasks between source and target systems. When the instance is deployed in a single Availability Zone, a zonal disruption can interrupt replication, delay cutover activities, and extend recovery time for data migration workloads.
Enabling Multi-AZ deployment allows AWS to maintain a standby replication instance in a different Availability Zone and fail over during infrastructure events. This improves service resilience and reduces the risk of prolonged migration interruptions for business-critical workloads.
Impactβ
Enabling Multi-AZ deployment increases cost because AWS provisions standby capacity in a second Availability Zone. Applying the change can also trigger a modification event for the replication instance, so it should be scheduled during an approved maintenance window or a period of low migration activity.
... see more
Remediationβ
Remediationβ
Enable Multi-AZ Deploymentβ
Enable Multi-AZ deployment for the affected DMS replication instance.
From Command Lineβ
Run the following command to enable Multi-AZ deployment:
aws dms modify-replication-instance \
--replication-instance-arn {{replication-instance-arn}} \
--multi-az \
--apply-immediatelyConfirm that the replication instance reports
MultiAZastrueafter the modification completes.
policy.yamlβ
Linked Framework Sectionsβ
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|---|---|---|---|---|
| πΌ AWS Foundational Security Best Practices v1.0.0 β πΌ [DMS.13] DMS replication instances should be configured to use multiple Availability Zones | 1 | no data | |||
| πΌ Cloudaware Framework β πΌ System Configuration | 58 | no data |