Fortinet black logo

Online Help

Home FortiCNP 22.3.a Online Help

Risk Management Example - CloudTrail should be enabled across all regions

22.3.a
22.4.a
22.3.b
22.3.a
Copy Link
Copy Doc ID cf00dcb1-0886-11ed-bb32-fa163e15d75b:252017

Risk Management Example - CloudTrail should be enabled across all regions

Description

This policy checks if CloudTrail is enabled in all regions. It is a compliance and security best practice to turn on CloudTrail across different regions to get a complete audit trail of activities across various AWS services.

After the policy is enabled, when CloudTrail is disabled in any of the available AWS region, a finding will be generated.

Configuration Steps

  1. Go to POLICIES > Risk Management > Predefined tab.
  2. Locate the policy: "CloudTrail should be enabled across all regions", click on the right arrow key > button to expand the policy.
  3. Click Enabled toggle switch button to enable the policy. The default is always turned on.

  4. Click on Applied To drop down menu to select the AWS accounts that this policy should apply to.
  5. Click Save Changes to finish.

Previous
Next

Risk Management Example - CloudTrail should be enabled across all regions

Description

This policy checks if CloudTrail is enabled in all regions. It is a compliance and security best practice to turn on CloudTrail across different regions to get a complete audit trail of activities across various AWS services.

After the policy is enabled, when CloudTrail is disabled in any of the available AWS region, a finding will be generated.

Configuration Steps

  1. Go to POLICIES > Risk Management > Predefined tab.
  2. Locate the policy: "CloudTrail should be enabled across all regions", click on the right arrow key > button to expand the policy.
  3. Click Enabled toggle switch button to enable the policy. The default is always turned on.

  4. Click on Applied To drop down menu to select the AWS accounts that this policy should apply to.
  5. Click Save Changes to finish.

Previous
Next