Connectivity Issues

VPC domain not accessible

Symptom: You associated a VPC domain but the UI shows connection errors.

Checklist

Authorize VPC endpoint access:

aws opensearch authorize-vpc-endpoint-access \
    --domain-name my-vpc-domain \
    --service application.opensearchservice.amazonaws.com \
    --region us-east-1

Check the domain's access policy — must allow the OpenSearch UI service principal:

{
  "Effect": "Allow",
  "Principal": {
    "Service": "application.opensearchservice.amazonaws.com"
  },
  "Action": "es:ESHttp*",
  "Resource": "arn:aws:es:us-east-1:123456789012:domain/my-vpc-domain/*"
}

Verify security group rules — allow inbound HTTPS (port 443) from the VPC CIDR.

Data source selector shows empty list

When clicking "View all available data" in Discover, the modal may show an empty list.

Cause: Index patterns haven't been created for the workspace.

Fix: Go to Manage workspace → Index patterns in the left nav and create one first.

Dashboard loads slowly

Reduce the time range — 30 days is much slower than 7 days
Reduce panel count — each panel runs a separate query
Avoid wildcard index patterns — * matches too many indices
Check domain health — slow queries may indicate the domain needs scaling

Getting help

Official AWS Documentation
AWS re:Post — OpenSearch Service
Open a support case via the AWS Support Center