A database instance is considered compliant if the security audit feature of Database Autonomy Service (DAS) is enabled.
Risk level
Default risk level: Medium.
You can change the risk level as needed.
Detection logic
A database instance is considered compliant if the security audit feature of DAS is enabled.
Rule details
Parameter | Description |
Rule name | Enable security audit for a database instance |
Rule identifier | |
Tag | RDS, Instance |
Automatic remediation | Not supported |
Rule trigger | Configuration change |
Supported resource types | ACS::RDS::DBInstance, ACS::PolarDB::DBCluster, ACS::DRDS::DBInstance, ACS::DRDS::PolarDBXInstance |
Input parameters | None |
Remediation
You can remediate a non-compliant resource by enabling the security audit feature. For more information, see Enable the security audit feature (New version).