Trace File Verification Is Enabled
Rule Details
|
Parameter |
Description |
|---|---|
|
Rule Name |
cts-support-validate-check |
|
Identifier |
cts-support-validate-check |
|
Description |
If a CTS tracker does not have trace file verification enabled, this tacker is noncompliant. |
|
Tag |
cts |
|
Trigger Type |
Configuration change |
|
Filter Type |
cts.trackers |
|
Configure Rule Parameters |
None |
Applicable Scenario
Operation records can provide reliable, effective evidence for security audit and troubleshooting. It is important to protect these records from being deleted or tampered with. This rule allows you to verify the integrity of a trace file.
Solution
You can enable trace file verification for noncompliant CTS trackers. For details, see Enabling Verification of Trace File Integrity.
Rule Logic
- If a CTS tracker (disabled or enabled) has trace file verification enabled, this tracker is compliant.
- If a CTS tracker (disabled or enabled) does not have trace file verification enabled, this tracker is noncompliant.
Constraints
If an organization CTS tracker is involved, and this rule is triggered with a member account from this organization, there may be a lag of up to 24 hours in updating the evaluating results due to the delay in collecting tracker resources deployed by the organization administrator.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot
