Skip to main content
All CollectionsControl Tests
Test: Only Authorized Users can Access Log Sinks
Test: Only Authorized Users can Access Log Sinks

Drata inspects the access policy for the infrastructure logging system to determine if only authorized users can access log sinks.

Ashley Hyman avatar
Written by Ashley Hyman
Updated over a week ago

ASSOCIATED DRATA CONTROL

This test is part of the Logs Centrally Stored control that ensures your company uses a system that collects and stores server logs in a central location. This control also verifies the system can be queried in an ad hoc fashion by authorized users.

WHAT TO DO IF A TEST FAILS

If Drata finds users that have access to your infrastructure logging system that do not match against the list of infrastructure admins in your 'Company Settings' page the test will fail. With a failed test you will receive a list of authorized logging users that are not infrastructure admins.

To remediate a failed test, you will need to either revoke these users' access to the logging system or add them as infrastructure administrators in your Managed Accounts page in Drata. To see details on how this test operates as part of the Datadog connection, please go to this article.
โ€‹
โ€‹

Did this answer your question?