Back to All Checks
Medium Redshift Regional

Redshift Serverless namespaces should export logs to CloudWatch Logs

FSBP

Description

Checks if Amazon Redshift Serverless namespaces are configured to export logs to Amazon CloudWatch Logs. The control fails if the namespace is not configured to export any logs to CloudWatch Logs.

Remediation

To enable logs export to CloudWatch Logs for Redshift Serverless namespaces, follow these steps:

Steps

  1. Sign in to the AWS Management Console and open the Amazon Redshift console.
  2. In the navigation pane, choose 'Serverless dashboard'.
  3. Select the identified namespace that requires logs export to be enabled.
  4. Choose 'Edit'.
  5. In the 'Logging' section, enable the desired log types (e.g., 'userlog', 'connectionlog', 'useractivitylog').
  6. Choose 'Save changes'.
  7. For detailed guidance, refer to the AWS documentation: 'Logging for Amazon Redshift Serverless' in the Amazon Redshift User Guide.

Compliance

FSBP
Start Your Free Security Check