3.2.2 Ensure that the audit policy covers key security concerns

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version

Information

Ensure that the audit policy created for the cluster covers key security concerns.

Security audit logs should cover access and modification of key resources in the cluster, to enable them to form an effective part of a security environment.

Solution

Consider modification of the audit policy in use on the cluster to include these items, at a minimum.

Impact:

Increasing audit logging will consume resources on the nodes or other log destination.

See Also

https://workbench.cisecurity.org/benchmarks/17568