Ensure CloudTrail log file validation is enabled
Rating | 🐑 - Low |
---|---|
Description
Enabling log file validation will provide additional integrity checking of CloudTrail logs.
Vulnerability
Without log file validation, there is a higher liklihood of regulatory compliance findings related to audit logging.
Remediation
Follow AWS Best Practices to enable log file validation.
Links
- https://d0.awsstatic.com/whitepapers/compliance/AWS_CIS_Foundations_Benchmark.pdf#page=64
- https://docs.aws.amazon.com/awscloudtrail/latest/userguide/cloudtrail-log-file-validation-enabling.html
References
- AWS CIS v.1.4.0 - 3.2
- AWS CIS v.1.2.0 - 2.2