Detections
Analytics

Ensure log exports has been enabled for AWS Neptune cluster

MEDIUM

Description

Not enabling logging export for AWS Neptune clusters will impact the incident response process.

Remediation

In AWS Console -

  1. Sign in to the AWS Console and go to the Amazon Neptune console.
  2. In the navigation pane, select Databases.
  3. Select the Neptune DB cluster.
  4. For Actions, select Modify.
  5. In the Log exports section, select the logs that you want to start publishing to CloudWatch Logs.
  6. Choose Continue, and then select Modify DB Cluster on the summary page.

In Terraform -

  1. In the aws_neptune_cluster resource, set the enable_cloudwatch_logs_exports field to audit.

References:
https://docs.aws.amazon.com/neptune/latest/userguide/cloudwatch.html
https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/neptune_cluster#enable_cloudwatch_logs_exports

Policy Details

Rule Reference ID: AC_AWS_0443
CSP: AWS
Remediation Available: Yes
Domain: Logging and Monitoring
Resource: aws_neptune_cluster
Resource Category: Database
Resource Type: Neptune

Frameworks