AWS-Redshift-Redshift-User-Activity-Logging-Enabled

Severity: Low

Description: This control ensures that Redshift clusters are configured to log user activity. User activity logging is useful to separate and centralize log data which is beneficial for troubleshooting purposes.

Remediation Steps:

Perform following to modify database audit logging for Redshift cluster :

1. Login to the AWS Management Console at https://console.aws.amazon.com.

2. Navigate to Redshift console.

3. In the navigation pane, under CONFIG, select Workload management.

4. Choose the Parameter Groups that you want to modify then under Parameters section click on Edit Parameters button.

5. On the selected parameter group configuration tab, choose the enable_user_activity_logging parameter and change its current value from false to true.

6. Click Save Changes to apply.

Important:

• For changes to take place cluster reboot is required.

Reference:

• https://docs.aws.amazon.com/cli/latest/reference/redshift/modify-cluster-parameter-group.html

• https://docs.aws.amazon.com/redshift/latest/APIReference/API_ModifyClusterParameterGroup.html