CloudWatch alarms not monitoring console authentication

Logging and monitoring

CloudWatch alarms not monitoring console authentication

Risk Level

Informational (4)

Platform(s)

Compliance Frameworks

Brazilian General Data Protection (LGPD)
CCM-CSA
CCPA
cis_8
GDPR
HITRUST
ISO/IEC 27001
Mitre ATT&CK v12
New Zealand Information Security Manual
NIST 800-171
NIST 800-53
Orca Best Practices
UK Cyber Essentials

Description

AWS CloudWatch alarms feature allows to watch metrics and receive notifications when metrics fall outside the settings you configured. We have identified that the cloud account ""{CloudAccount}"" is not configured with CloudWatch metrics to monitor console authentication.

Recommended Mitigation

Ensure cloudwatch metric is set to monitor console authentication. more details can be found in <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/send-cloudtrail-events-to-cloudwatch-logs.html" target="_blank" rel="noopener noreferrer">https://docs.aws.amazon.com/awscloudtrail/latest/userguide/send-cloudtrail-events-to-cloudwatch-logs.html</a>

CloudWatch alarms not monitoring console authentication

Description

Need help?

CLOUD SECURITY PLATFORM

TECHNOLOGY ECOSYSTEM

By Solution

By Industry

COMPARISONS