High

Ensure stopped DocumentDB instances are removed

AWS Cost Optimization
Description

Ensuring that stopped DocumentDB instances are removed is an important step in managing your AWS resources and reducing unnecessary costs. Stopped instances continue to consume resources, such as storage and allocated IP addresses, which can result in higher costs over time.By removing stopped DocumentDB instances, you can free up resources and reduce costs, while also improving the security and manageability of your AWS environment.‍

Remediation

Here are some general remediation steps that you can follow to ensure that stopped DocumentDB instances are removed:

  1. Review stopped instances: First, review the list of stopped DocumentDB instances in your AWS account. You can do this by navigating to the DocumentDB dashboard in the AWS Management Console.
  2. Identify unused instances: Identify any stopped instances that have been unused for a significant period of time or are no longer needed for your workload.
  3. Delete unused instances: For any unused or unnecessary stopped instances, you can delete them using the AWS Management Console, AWS CLI, or AWS SDKs. Before deleting an instance, make sure that you have backed up any important data stored on the instance.
  4. Configure automated deletion: To ensure that stopped instances are removed in a timely manner, you can configure automated deletion using AWS Lambda and CloudWatch Events. This will allow you to set up a schedule for deleting stopped instances automatically.
  5. Monitor and optimize: Regularly monitor your DocumentDB instances to identify any instances that are no longer needed or have been stopped for an extended period of time. Consider optimizing your instance usage and configuration to reduce costs and improve performance.

By following these steps, you can ensure that stopped DocumentDB instances are removed promptly, reducing unnecessary costs and improving the manageability of your AWS environment.

Enforced Resources
Note: Remediation steps provided by Lightlytics are meant to be suggestions and guidelines only. It is crucial to thoroughly verify and test any remediation steps before applying them to production environments. Each organization's infrastructure and security needs may differ, and blindly applying suggested remediation steps without proper testing could potentially cause unforeseen issues or vulnerabilities. Therefore, it is strongly recommended that you validate and customize any remediation steps to meet your organization's specific requirements and ensure that they align with your security policies and best practices.