Difference between revisions of "AWS CloudTrail Best Practices"
Jump to navigation
Jump to search
(14 intermediate revisions by the same user not shown) | |||
Line 1: | Line 1: | ||
* 2021 https://aws.amazon.com/blogs/mt/aws-cloudtrail-best-practices/ | * 2021 https://aws.amazon.com/blogs/mt/aws-cloudtrail-best-practices/ | ||
+ | <code>[[aws cloudtrail create-trail]]</code> | ||
− | + | * [[Enable CloudTrail log file integrity validation]]: <code>[[--enable-log-file-validation]]</code> | |
* [[Receiving CloudTrail log files from multiple accounts]] | * [[Receiving CloudTrail log files from multiple accounts]] | ||
+ | * [[Enable MFA-delete and versioning on the Amazon S3 Bucket storing log files]]: <code>[[aws_s3_versioning]], [[mfa_delete]]</code>, <code>[[aws s3api put-bucket-versioning]]</code> | ||
+ | * [[Use advanced event selectors with data events]]: <code>[[DeleteObject]]</code> | ||
+ | * [[Integrate CloudTrail with Amazon CloudWatch Logs]] | ||
== Related == | == Related == | ||
Line 10: | Line 14: | ||
* [[Data events]] | * [[Data events]] | ||
* <code>[[--is-multi-region-trail]]</code> | * <code>[[--is-multi-region-trail]]</code> | ||
+ | * <code>[[--enable-log-file-validation]]</code> | ||
== See also == | == See also == | ||
+ | * {{aws cloudtrail create-trail}} | ||
* {{CloudTrail}} | * {{CloudTrail}} | ||
[[Category:Cloudtrail]] | [[Category:Cloudtrail]] |
Latest revision as of 05:21, 11 July 2024
- Enable CloudTrail log file integrity validation:
--enable-log-file-validation
- Receiving CloudTrail log files from multiple accounts
- Enable MFA-delete and versioning on the Amazon S3 Bucket storing log files:
aws_s3_versioning, mfa_delete
,aws s3api put-bucket-versioning
- Use advanced event selectors with data events:
DeleteObject
- Integrate CloudTrail with Amazon CloudWatch Logs
Related[edit]
- AWS CloudTrail Events
- AWS Best Practices
- Data events
--is-multi-region-trail
--enable-log-file-validation
See also[edit]
Advertising: