Skip to content
By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post
About re:Post

aws config cloudtrail-security-trail-enabled rule Noncompliant resource

1

My cloudtrail setting like this :

cloudtrail-security-trail-enabledis COMPLIANT if there is at least one trail that meets all of the following:

  • records global service events
  • is a multi-region trail
  • has Log file validation enabled
  • encrypted with a KMS key
  • records events for reads and writes
  • records management events
  • does not exclude any management events

My trail meets all those conditions, but rule is Noncompliant.

What's the problem?

Topics
Management & Governance
Tags
AWS Config
Language
English
asked 2 years ago469 views
1 Answer
0

Settings for CloudTrail seems to be correct but "Last file validation delivered" is empty which means this settings is either newly configured or the trail is newly configured.

Did you configure your CloudTrail after you saw the non-compliant results in Config? Please try to "Re-evaluate" this rule OR "Delete results" and "Re-evaluate" on Config end.

AWS
answered 2 years ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Relevant content