Classification:
compliance
Framework:
cis-aws
Control:
cis-3.3
Set up the cloudtrail integration.
Detect AWS root user activity.
Monitor CloudTrail and detect when any @userIdentity.type
has a value of Root
, but is not invoked by an AWS service.
For best practices, check out the AWS Root Account Best Practices documentation.
このページ