Rule: API Gateway stage logging should be enabled

Rule Description:

Troubleshooting Steps:

2. 1.
   Check if the API Gateway stage logging is currently enabled.
4. 2.
   Verify if the API Gateway stages are correctly configured to log all relevant activities.
6. 3.
   Ensure that the logging settings comply with the requirements outlined in NIST 800-171 Revision 2.
8. 4.
   Review the logs periodically to identify any security incidents or unauthorized access attempts.

Necessary Code:

// Sample code to enable API Gateway stage logging
// Replace <stage-name> with the name of your API Gateway stage

aws apigateway update-stage \
--rest-api-id <rest-api-id> \
--stage-name <stage-name> \
--patch-operations op=replace,path=/logging/dataTrace,value=true

Step-by-Step Guide for Remediation:

2. 1.
   Identify the API Gateway stage(s) you want to enable logging for.
4. 2.
   Verify if logging is already enabled for the selected stage(s) by checking the current configuration.
6. 3.
   If logging is not enabled, proceed with the following steps. If it is already enabled, you can skip to step 6.
8. 4.
   Open the AWS Command Line Interface (CLI) or use the AWS Management Console.
10. 5.
    Execute the necessary command to enable logging for the selected stage(s), as shown in the "Necessary Code" section above. Replace '<rest-api-id>' with the ID of your API Gateway REST API, and '<stage-name>' with the name of the desired stage.
12. 6.
    Once the command has been executed successfully, API Gateway stage logging will be enabled for NIST 800-171 Revision 2 compliance.
14. 7.
    Validate and review the logs periodically to ensure compliance with the logging requirements outlined in NIST 800-171 Revision 2.