💼 [MQ.2] ActiveMQ brokers should stream audit logs to CloudWatch
- ID:
/frameworks/aws-fsbp-v1.0.0/mq/02
Description
By publishing ActiveMQ broker logs to CloudWatch Logs, you can create CloudWatch alarms and metrics that increase the visibility of security-related information.
Similar
- AWS Security Hub
- Internal
- ID:
dec-c-b961cfb8
- ID:
Similar Sections (Give Policies To)
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|---|---|---|---|---|
| 💼 NIST SP 800-53 Revision 5 → 💼 AU-2 Event Logging | 4 | 23 | no data | ||
| 💼 NIST SP 800-53 Revision 5 → 💼 AU-3 Content of Audit Records | 3 | 13 | 34 | no data | |
| 💼 NIST SP 800-53 Revision 5 → 💼 AU-12 Audit Record Generation | 4 | 47 | 70 | no data | |
| 💼 NIST SP 800-53 Revision 5 → 💼 SI-4 System Monitoring | 25 | 1 | 14 | no data | |
| 💼 PCI DSS v4.0.1 → 💼 10.3.3 Audit log files, including those for external-facing technologies, are promptly backed up to a secure, central, internal log server(s) or other media that is difficult to modify. | 1 | no data |
Sub Sections
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|
Policies (1)
| Policy | Logic Count | Flags | Compliance |
|---|---|---|---|
| 🛡️ AWS MQ ActiveMQ Broker Audit Logging is not enabled🟢 | 1 | 🟢 x6 | no data |