Help Center/ Config/ User Guide/ Conformance Packages/ Conformance Package Templates/ Conformance Package for Logging and Monitoring
Updated on 2024-10-15 GMT+08:00

Conformance Package for Logging and Monitoring

The following table lists the rules and solutions included in this conformance package template.

Table 1 Conformance package description

Rule Identifier

Cloud Service

Description

alarm-action-enabled-check

ces

If an alarm rule is not enabled, this rule is noncompliant.

apig-instances-execution-logging-enabled

apig

If logging is not enabled for a dedicated APIG gateway, this gateway is considered non-compliant.

as-group-elb-healthcheck-required

as

If an AS group is not using Elastic Load Balancing health check, this rule is noncompliant.

cts-kms-encrypted-check

cts

If a CTS tracker is not encrypted using KMS, this tracker is noncompliant.

cts-lts-enable

cts

If Transfer to LTS is not enabled for a CTS tracker, this tracker is noncompliant.

cts-obs-bucket-track

cts

If no CTS trackers are created for the specified OBS bucket, this rule is noncompliant.

cts-support-validate-check

cts

If Verify Trace File is not enabled for a CTS tracker, this tacker is noncompliant.

cts-tracker-exists

cts

If there are no CTS trackers in an account, this account is noncompliant.

dws-enable-log-dump

dws

If the Audit Log Dump is not enabled for a DWS cluster, this cluster is noncompliant.

function-graph-concurrency-check

fgs

If the number of concurrent requests of a FunctionGraph function is not within the specified range, this function is noncompliant.

multi-region-cts-tracker-exists

cts

If there are no CTS trackers in any of the specified regions, this rule is noncompliant.

rds-instance-logging-enabled

rds

If an RDS instance does not have the collection of any types of logs enabled, this instance is noncompliant.

vpc-flow-logs-enabled

vpc

If there is a flow log that has not been enabled for a VPC, this VPC is noncompliant.