MQ Broker should have audit logging enabled
| Property | |
|---|---|
| Language |  |
| Severity |  |
| Service | mq |
| Provider | AWS |
| Vulnerability Type | omission |
Description#
The MQ broker is configured without audit logging enabled, which prevents recording of user actions and broker events. This omission makes it difficult to track or investigate activities within the broker.
Impact#
Without audit logs, malicious or unauthorized actions may go undetected, hindering incident response and forensic analysis. This increases the risk of undetected data breaches or misuse, and may lead to compliance violations.
Resolution#
Enable audit logging