More Info:

Load balancers global backend services should have request logging enabled. Logging requests to Load Balancer endpoints is a helpful way of detecting and investigating potential attacks.

Risk Level

Medium

Address

Security, Operational Maturity

Compliance Standards

SOC2, GDPR, HITRUST, NISTCSF, PCIDSS, FedRAMP

Triage and Remediation

Remediation

To remediate the misconfiguration of Load Balancer Global Backend Services not having logging enabled in GCP, you can follow the below steps using the GCP console:

  1. Open the GCP console and navigate to the Load balancing section.
  2. Select the Load Balancer for which you want to enable logging.
  3. Click on the Edit button on the top of the Load Balancer details page.
  4. Scroll down to the Backend configuration section and click on the pencil icon next to the Global backend configuration.
  5. In the Global backend configuration settings, scroll down to the Logging section and click on the toggle button to enable logging.
  6. Select the appropriate log type from the drop-down menu.
  7. Click on the Save button to save the changes.

After following these steps, the Load Balancer Global Backend Services will have logging enabled, and you will be able to view the logs for the Load Balancer in the Logging section of the GCP console.

Additional Reading: