AWS EKS Cluster control plane logging must be enabled for 'api', 'audit', 'authenticator', 'controllerManager' and 'scheduler'

Tenacity Id

Risk Level

Categories

eks-003

3

Last Updated:

April 21, 2022

Amazon EKS control plane logging provides audit and diagnostic logs directly from the Amazon EKS control plane to CloudWatch Logs in your account. These logs make it easy for you to secure and run your clusters. You can select the exact log types you need, and logs are sent as log streams to a group for each Amazon EKS cluster in CloudWatch.