Difference between revisions of "AWS CloudTrail Best Practices"
Jump to navigation
Jump to search
| (7 intermediate revisions by the same user not shown) | |||
| Line 1: | Line 1: | ||
* 2021 https://aws.amazon.com/blogs/mt/aws-cloudtrail-best-practices/ | * 2021 https://aws.amazon.com/blogs/mt/aws-cloudtrail-best-practices/ | ||
| + | <code>[[aws cloudtrail create-trail]]</code> | ||
| − | * [[Enable CloudTrail log file integrity validation]] | + | * [[Enable CloudTrail log file integrity validation]]: <code>[[--enable-log-file-validation]]</code> |
* [[Receiving CloudTrail log files from multiple accounts]] | * [[Receiving CloudTrail log files from multiple accounts]] | ||
| − | * [[Enable MFA-delete and versioning on the Amazon S3 Bucket storing log files]]: <code>[[aws_s3_versioning]], [[mfa_delete]]</code> | + | * [[Enable MFA-delete and versioning on the Amazon S3 Bucket storing log files]]: <code>[[aws_s3_versioning]], [[mfa_delete]]</code>, <code>[[aws s3api put-bucket-versioning]]</code> |
| + | * [[Use advanced event selectors with data events]]: <code>[[DeleteObject]]</code> | ||
| + | * [[Integrate CloudTrail with Amazon CloudWatch Logs]] | ||
== Related == | == Related == | ||
| Line 11: | Line 14: | ||
* [[Data events]] | * [[Data events]] | ||
* <code>[[--is-multi-region-trail]]</code> | * <code>[[--is-multi-region-trail]]</code> | ||
| + | * <code>[[--enable-log-file-validation]]</code> | ||
== See also == | == See also == | ||
Latest revision as of 05:21, 11 July 2024
- Enable CloudTrail log file integrity validation:
--enable-log-file-validation - Receiving CloudTrail log files from multiple accounts
- Enable MFA-delete and versioning on the Amazon S3 Bucket storing log files:
aws_s3_versioning, mfa_delete,aws s3api put-bucket-versioning - Use advanced event selectors with data events:
DeleteObject - Integrate CloudTrail with Amazon CloudWatch Logs
Related[edit]
- AWS CloudTrail Events
- AWS Best Practices
- Data events
--is-multi-region-trail--enable-log-file-validation
See also[edit]
Advertising:
