Neptune logs export should be enabled
| Property | |
|---|---|
| Language |  |
| Severity |  |
| Service | neptune |
| Provider | AWS |
| Vulnerability Type | omission |
Description#
AWS Neptune clusters do not have audit logging enabled by default. Without enabling export logs, actions and changes within the Neptune instance are not recorded for audit purposes, reducing visibility into usage and access.
Impact#
Lack of audit logs makes it difficult to detect unauthorized access, investigate incidents, or comply with security policies. This can allow malicious activities or configuration changes to go unnoticed, increasing the risk of data breaches and regulatory non-compliance.
Resolution#
Enable export logs