Control: 4.1 Ensure IBM Cloud Databases disk encryption is enabled with customer managed keys
Description
Collect audit events from IBM Cloud resources so that you can monitor activity in your IBM Cloud account.
Remediation
From Console
- Log in to IBM Cloud
- Go to the Menu icon. Then, select Observability to access the Observability dashboard.
- Select Activity Tracker from the page navigation menu
- Check that you can see an Activity Tracker instance in Frankfurt and one instance for each location where you operate in the IBM Cloud.
- To launch the LogDNA web UI, for each instance, select View LogDNA.
- In the LogDNA web UI, verify that you can see audit events, and that they comply with the IBM event format that is documented. For more information about the format, see Event fields.
Usage
Run the control in your terminal:
powerpipe control run ibm_compliance.control.cis_v100_4_1
Snapshot and share results via Turbot Pipes:
powerpipe loginpowerpipe control run ibm_compliance.control.cis_v100_4_1 --share
SQL
This control uses a named query:
manual_control