By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

aws config cloudtrail-security-trail-enabled rule Noncompliant resource

1

My cloudtrail setting like this :

cloudtrail-security-trail-enabledis COMPLIANT if there is at least one trail that meets all of the following:

  • records global service events
  • is a multi-region trail
  • has Log file validation enabled
  • encrypted with a KMS key
  • records events for reads and writes
  • records management events
  • does not exclude any management events

My trail meets all those conditions, but rule is Noncompliant.

What's the problem?

Topics
Management & Governance
Tags
AWS Config
Language
English
rePost-User-0993987
asked 10 months ago261 views
1 Answer
0

Settings for CloudTrail seems to be correct but "Last file validation delivered" is empty which means this settings is either newly configured or the trail is newly configured.

Did you configure your CloudTrail after you saw the non-compliant results in Config? Please try to "Re-evaluate" this rule OR "Delete results" and "Re-evaluate" on Config end.

AWS
KevinL
answered 10 months ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content