# wafv2-logging-enabled
<a name="wafv2-logging-enabled"></a>

Checks if logging is enabled on Amazon WAFv2 regional and global web access control lists (web ACLs). The rule is NON\$1COMPLIANT if the logging is enabled but the logging destination does not match the value of the parameter. 

**Note**  
**Amazon Security Lake Exception**  
This rule does not check logging done with Security Lake for Amazon WAFV2 web ACLs.

**Identifier:** WAFV2\$1LOGGING\$1ENABLED

**Resource Types:** AWS::WAFv2::WebACL

**Trigger type:** Periodic

**Amazon Web Services Region:** All supported Amazon regions

**Parameters:**

KinesisFirehoseDeliveryStreamArns (Optional)Type: CSV  
Comma separated list of Kinesis Firehose delivery stream ARNs

## Amazon CloudFormation template
<a name="w2aac20c16c17b7e1597c19"></a>

To create Amazon Config managed rules with Amazon CloudFormation templates, see [Creating Amazon Config Managed Rules With Amazon CloudFormation Templates](aws-config-managed-rules-cloudformation-templates.md).