OCI-008 Oracle Cloud Infrastructure (OCI)

VCN Flow Logs are enabled.

VCN Flow Logs are enabled.

Domain
Oracle Cloud Infrastructure (OCI)
Area
Logging
Automated / manual
Automated

Risk if it fails

No network telemetry = blind to attacks.

Without network logs you cannot see an attacker scanning, moving laterally, or copying data out of your network — there is no record to investigate.

How Tess tests it

1 test — each concludes only on cited evidence.

VCN Flow Logs are enabled.

Automated
Procedure
Confirm flow logs exist for subnets/VCNs.

Read-only command 

oci logging log-group list --compartment-id <compartment-ocid> --all
oci logging log list --log-group-id <lg-ocid>

More in Oracle Cloud Infrastructure (OCI)

OCI-001 MFA is enforced for all IAM users, especially administrators. OCI-002 Customer secret keys / API keys are rotated regularly (<=90 days). OCI-003 A strong password policy is configured. OCI-004 Membership of the Administrators group is minimal.

Want Tess to test OCI-008 against your evidence?

Book a demo