AWS GuardDuty is Logging to a Master Account

Risk

Remediation Effort

High

Low

This policy validates that all GuardDuty Detectors are sending logs to a specified master GuardDuty account. This is a best practice for centralizing log data.

This policy requires configuration before it can be enabled.

Remediation

To remediate this, configure all GuardDuty detectors to send to the GuardDuty master.

Reference

Last updated

#1924: [don't merge until ~Oct] Notion Logs (Beta)

Change request updated