Object Storage buckets should have write-level logging enabled

Docs > Datadog Security > OOTB Rules > Object Storage buckets should have write-level logging enabled

このページは日本語には対応しておりません。随時翻訳に取り組んでいます。
翻訳に関してご質問やご意見ございましたら、お気軽にご連絡ください。

Description

Oracle Cloud Infrastructure (OCI) Object Storage buckets should have write-level logging enabled to track all write operations, modifications, and deletions. Write logs provide visibility into data changes, help detect unauthorized modifications, and support audit requirements for compliance frameworks. Without write-level logging, organizations lack the ability to investigate security incidents, track data lineage, or prove compliance with regulatory requirements.

Remediation

Enable write-level logging for your OCI Object Storage buckets by creating a log resource in the OCI Logging service with the following configuration:

Configure the log in the same compartment as the bucket
Set the service to objectstorage
Set the category to write
Specify the target bucket name as the resource
Ensure the log is in an ACTIVE lifecycle state

For detailed guidance on enabling Object Storage logging, refer to the Enabling Logging for a Resource section of the Oracle Cloud Infrastructure Documentation.

Object Storage buckets should have write-level logging enabled

Description

Remediation

How can I help you today?