AWS S3 Bucket Has Logging Enabled

Risk

Remediation Effort

Low

This policy validates that all S3 Buckets have access logging enabled. Access logging creates a record of who is accessing what within a given bucket, an important audit trail during investigations.

Remediation

To remediate this, enable S3 bucket access logging for each S3 bucket.

Reference

AWS S3 Bucket access logging documentation

PreviousAWS S3 Bucket Lifecycle Configuration Expires Data NextAWS S3 Bucket Has MFA Delete Enabled

Last updated 3 years ago