OpenSearch domains should have Audit Logging enabled

opensearch
이 페이지는 아직 영어로 제공되지 않습니다. 번역 작업 중입니다.
현재 번역 프로젝트에 대한 질문이나 피드백이 있으신 경우 언제든지 연락주시기 바랍니다.

Description

This check determines if audit logging is enabled for Amazon OpenSearch Service domains, and is configured to send logs to Amazon CloudWatch Logs. Audit logs are crucial for recording detailed information about access and changes to OpenSearch resources, enabling you to track user activities, detect suspicious behavior, and ensure compliance with security policies and regulatory requirements.

Remediation

To enable audit logging for an Amazon OpenSearch Service domain, refer to the Configuring Amazon OpenSearch Service to Enable Audit Logging section of the Amazon OpenSearch Service Developer Guide.

PREVIEWING: aliciascott/DOCS-9725-Cloudcraft