Ensure RDS Instance Events is Logged

SLS log audit exists in the form of log service app. In addition to inheriting all SLS functions, it also enhances the real-time automatic centralized collection of audit related logs across multi cloud products under multi accounts, and provides support for storage, query and information summary required by audit. It covers actiontrail, OSS, NAS, SLB, API gateway, RDS, WAF, cloud firewall, cloud security center and other products.

Suggest Edits

Risk Level: high
Platform: Alicloud
Spectral Rule ID: TFALCLD048

REMEDIATION

All RDS Instance events trackers should be 'true'

variable_map = {
- "rds_enabled" = "false"
+ "rds_enabled" = "true"
}

https://registry.terraform.io/providers/aliyun/alicloud/latest/docs/resources/log_audit
https://www.alibabacloud.com/help/en/resource-orchestration-service/latest/aliyun-sls-audit

Updated over 1 year ago

REMEDIATION

Read more: