2
Resources
7
Total Findings
12
Rules Executed
18
Unique Rules
0
Exception
4.872s
Timespent
Summary
Filter
SetupSNSTopicForTrail
Operation Excellence- Description
- You can be notified when CloudTrail publishes new log files to your Amazon S3 bucket. You manage notifications using Amazon Simple Notification Service (Amazon SNS).
- Resources
- ap-southeast-1: Cloudtrail::SWOCloudTrail-Organizational
- Label
- Cost Incurred
- Recommendation
- Configure SNS for CloudTrail
CloudWatchLogsLogGroupArn
Operation Excellence- Description
- Sending CloudTrail logs to CloudWatch Logs facilitates real-time and historic activity logging based on user, API, resource, and IP address. You can use this approach to establish alarms and notifications for anomalous or sensitivity account activity.
- Resources
- ap-southeast-1: Cloudtrail::SWOCloudTrail-Organizational
- Label
- Cost Incurred
- Recommendation
- Using CloudWatch Logs with CloudTrail
RequiresKmsKey
Security- Description
- You have not enabled server side encryption (SSE) on 1 CloudTrail buckets which automatically encrypts objects uploaded to the bucket. If this bucket contains non-publically-available data, and you are not implementing client-side encryption, please enable SSE.
- Resources
- ap-southeast-1: Cloudtrail::SWOCloudTrail-Organizational
- Recommendation
- Encrypt CloudTrail using AWS KMS
- CloudTrail Security Best Practices
HasInsightSelectors
Operation Excellence- Description
- CloudTrail Insights analyzes your normal patterns of API call volume and API error rates, also called the baseline, and generates Insights events when the call volume or error rates are outside normal patterns. Insights events on API call volume are generated for write management APIs, and Insights events on API error rate are generated for both read and write management APIs.
- Resources
- ap-southeast-1: Cloudtrail::SWOCloudTrail-Organizational | Cloudtrail::aws-controltower-BaselineCloudTrail
- Label
- Cost Incurred
- Recommendation
- Insight events
TrailDeliverError
Operation Excellence- Description
- Your Amazon CloudTrail trail(s) experiencing logs delivery errors. Review the error via `aws cloudtrail get-trail-status --name
` - Resources
- ap-southeast-1: Cloudtrail::SWOCloudTrail-Organizational | Cloudtrail::aws-controltower-BaselineCloudTrail
- Recommendation
- CloudTrail Delivery Error
Detail
ap-southeast-1
1. SWOCloudTrail-Organizational
| Check | Current Value | Recommendation |
|---|---|---|
| SetupSNSTopicForTrail | Enable SNS Topic | |
| CloudWatchLogsLogGroupArn | CloudWatch for CloudTrail | |
| RequiresKmsKey | Enable SSE | |
| HasInsightSelectors | Enable Insight Selectors | |
| TrailDeliverError | None | Review latest delivery error |
2. aws-controltower-BaselineCloudTrail
| Check | Current Value | Recommendation |
|---|---|---|
| HasInsightSelectors | Enable Insight Selectors | |
| TrailDeliverError | None | Review latest delivery error |