AWS-Redshift-Redshift-Cluster-Audit-Logging-Enabled

Severity: Medium

Description: The control ensure audit logging status is enabled. Audit logging option records usage information for Redshift Cluster. This information includes queries executed. Connection attempt requests, logging other data that can be proven useful for security, compliance, troubleshooting, and in audits reporting.

Remediation Steps:

Perform following to enable logging for Redshift cluster :

1. Login to the AWS Management Console at https://console.aws.amazon.com.

2. Navigate to Redshift console.

3. In the navigation pane, choose CLUSTERS, then choose the cluster that you want to modify for encryption.

4. Go to Maintenance and Monitoring Tab.

5. Under the "Audit logging" Choose Edit.

6. Enable the option for audit logging. 

7. In the Database configuration section, choose to modify customer

8. Choose the Modify cluster.

Important:

Reference:

• https://docs.aws.amazon.com/cli/latest/reference/redshift/enable-logging.html