Neptune DB Clusters Do Not Publish Logs To CloudWatch Logs

Overview

This check assesses whether a Neptune DB cluster is configured to transmit audit logs to Amazon CloudWatch Logs. The evaluation outcome is unsuccessful if a Neptune DB cluster is not actively sending audit logs to CloudWatch Logs. The prerequisite for passing this control is having the EnableCloudWatchLogsExport parameter set to 'Audit'.

Amazon Neptune seamlessly integrates with Amazon CloudWatch, facilitating the collection and analysis of performance metrics. Neptune automatically forwards metrics to CloudWatch and also supports CloudWatch Alarms. The audit logs, known for their adaptability, can be extensively tailored. When conducting a database audit, each data operation is subject to monitoring and logging in an audit trail. This includes comprehensive details such as the accessed database cluster and the specifics of the operation performed.

Vendor

AWS

Cloud Service

RDS

Neptune.2

Severity

Item Types

AWS::RDS::DBCluster

Overview​

Vendor​

Cloud Service​

Related Controls​

Severity​

Item Types​

Overview

Vendor

Cloud Service

Related Controls

Severity

Item Types