turbot/aws_compliance

GitHub
Loading controls...

Benchmark: AU-2(a)(d)

Description

The organization: a. Determines that the information system is capable of auditing the following events: Successful and unsuccessful account logon events, account management events, object access, policy change, privilege functions, process tracking, and system events. For Web applications: all administrator activity, authentication checks, authorization checks, data deletions, data access, data changes, and permission changes. d. Determines that the following events are to be audited within the information system: [organization-defined subset of the auditable events defined in AU-2 a to be audited continually for each identified event].

Usage

steampipe check aws_compliance.benchmark.fedramp_moderate_rev_4_au_2_a_d

Controls

Tags