My cloudtrail setting like this : ![](/media/postImages/original/IMvbhrFChSSoGeHeHEQwN1jQ) cloudtrail-security-trail-enabledis COMPLIANT if there is at least one trail that meets all of the following: * records global service events * is a multi-region trail * has Log file validation enabled * encrypted with a KMS key * records events for reads and writes * records management events * does not exclude any management events My trail meets all those conditions, but rule is Noncompliant. ![](/media/postImages/original/IMJesXFBLYR1aU1GEdO-bCdA) What's the problem?

aws config cloudtrail-security-trail-enabled rule Noncompliant resource

My cloudtrail setting like this :

cloudtrail-security-trail-enabledis COMPLIANT if there is at least one trail that meets all of the following:

records global service events
is a multi-region trail
has Log file validation enabled
encrypted with a KMS key
records events for reads and writes
records management events
does not exclude any management events

My trail meets all those conditions, but rule is Noncompliant.

What's the problem?

トピック

管理とガバナンス

タグ

AWS Config

言語

English

rePost-User-0993987

質問済み 1年前287ビュー

1回答

新しい順
投票が多い順
コメントが多い順

これらの回答は役に立ちましたか？コミュニティがあなたの知識を活用できるように、正解に賛成票を投じてください。

Settings for CloudTrail seems to be correct but "Last file validation delivered" is empty which means this settings is either newly configured or the trail is newly configured.

Did you configure your CloudTrail after you saw the non-compliant results in Config? Please try to "Re-evaluate" this rule OR "Delete results" and "Re-evaluate" on Config end.

KevinL

回答済み 1年前

aws config cloudtrail-security-trail-enabled rule Noncompliant resource

関連するコンテンツ