On this page💼 4 Logging ID: /frameworks/cis-aws-v7.0.0/04 Description​ This section contains recommendations for configuring AWS logging features. Similar​ Sub Sections​ SectionSub SectionsInternal RulesPoliciesFlagsCompliance💼 4.1 Ensure CloudTrail is enabled in all regions (Manual)1no data💼 4.2 Ensure CloudTrail log file validation is enabled (Automated)1no data💼 4.3 Ensure AWS Config is enabled in all regions (Automated)1no data💼 4.4 Ensure that server access logging is enabled on the CloudTrail S3 bucket (Manual)1no data💼 4.5 Ensure CloudTrail logs are encrypted at rest using KMS CMKs (Automated)1no data💼 4.6 Ensure rotation for customer-created symmetric CMKs is enabled (Automated)1no data💼 4.7 Ensure VPC flow logging is enabled in all VPCs (Automated)1no data💼 4.8 Ensure that object-level logging for write events is enabled for S3 buckets (Automated)1no data💼 4.9 Ensure that object-level logging for read events is enabled for S3 buckets (Automated)1no data💼 4.10 Ensure all AWS-managed web front-end services have access logging enabled (Manual)no data