πΌ h. audit logging and monitoring of access to information assets by all users;
- Contextual name: πΌ h. audit logging and monitoring of access to information assets by all users;
- ID:
/frameworks/apra-cpg-234/c/7/h - Located in: πΌ 7 A regulated entity would typically deploy the following access controls:
Descriptionβ
Empty...
Similarβ
- Internal
- ID:
dec-c-a13087f6
- ID:
Sub Sectionsβ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|
Policies (9)β
| Policy | Logic Count | Flags |
|---|---|---|
| π AWS API Gateway API Access Logging in CloudWatch is not enabled π’ | 1 | π x1, π’ x5 |
| π AWS API Gateway API Execution Logging in CloudWatch is not enabled π’ | 1 | π’ x6 |
| π AWS CloudFront Distribution Logging is not enabled π’ | 1 | π’ x6 |
| π AWS CloudTrail S3 Bucket Access Logging is not enabled. π’ | 1 | π’ x6 |
| π AWS EKS Cluster Logging is not enabled for all control plane logs types π’ | 1 | π’ x6 |
| π AWS S3 Bucket Server Access Logging is not enabled π’ | 1 | π’ x6 |
| π Azure Diagnostic Setting for Azure Key Vault is not enabled π’ | π’ x3 | |
| π Azure Storage Blob Logging is not enabled for Read, Write, and Delete requests π’ | 1 | π’ x6 |
| π Azure Storage Queue Logging is not enabled for Read, Write, and Delete requests π’ | 1 | π’ x6 |
Internal Rulesβ
| Rule | Policies | Flags |
|---|---|---|
| βοΈ dec-x-2ac6c302 | 1 | |
| βοΈ dec-x-8ccccedc | 1 | |
| βοΈ dec-x-611eaa35 | 1 | |
| βοΈ dec-x-a5c2acfe | 1 | |
| βοΈ dec-x-b2ce0ca1 | 1 | |
| βοΈ dec-x-d75f6d86 | 1 | |
| βοΈ dec-x-db1b7a1b | 1 | |
| βοΈ dec-x-e0014333 | 2 |