search

gravitational / teleport

The easiest, and most secure way to access and protect all of your infrastructure.
https://goteleport.com
GNU Affero General Public License v3.0
17.75k stars 1.78k forks source link

Create an Audit Event for when a user access Audit Logs - Required for PCI Compliance #25095

Open yjperez opened 1 year ago

yjperez commented 1 year ago

What would you like Teleport to do? Teleport should create an audit event for any time someone access Audit Logs. Implementing this will cover PCI v3.2.1 control 10.2.3. At the moment Teleport complies with all 10.2 controls with the exception of 10.2.3.

10.2 - Implement automated audit trails for all system components to reconstruct the following events:
10.2.3 - Access to all audit trails

What problem does this solve? Allows for Teleport to be fully compliant for PCI v3.2.1 compliant

If a workaround exists, please include it. Currently no work around

zmb3 commented 1 year ago

We already have an audit event for when a session recording is accessed. See https://github.com/gravitational/teleport/pull/14302