AWS GuardDuty is Logging to a Master Account

Risk

Remediation Effort

High

Low

This policy validates that all GuardDuty Detectors are sending logs to a specified master GuardDuty account. This is a best practice for centralizing log data.

This policy requires configuration before it can be enabled.

Remediation

To remediate this, configure all GuardDuty detectors to send to the GuardDuty master.

Reference

AWS Managing GuardDuty documentation

PreviousAWS EC2 Volume Is Encrypted NextAWS GuardDuty Is Enabled

Last updated 3 years ago