AWS CloudTrail lets you monitor activity across all APIs in your account, making it easy for you to determine which API user made a call and what call was used.
AWS has made CloudTrail even more useful with two updates: turn on CloudTrail for all regions and support for multiple trails.
Formerly, users had to turn on CloudTrail for each region they want to use. Given how time-consuming this was, AWS has updated the feature so that you may now easily turn on CloudTrail for all regions.
To do this, just simply specify that a trail will apply to all regions, and CloudTrail will automatically replicate the trail for them. It will record log files for each region and deliver them to the S3 bucket or the specified CloudWatch Logs group you created. This will apply to any future new regions as well.
This update allows multiple users with different roles to create their own specialized trails. As such, a security administrator can view all trails, while a developer can create a trail that applies to one region and get notifications from an API activity of their choice.
Users can generate up to 5 trails per region. They may monitor and manage their trails through the enhanced CloudTrail Console screen.
All users may create one trail as part of the free tier. Pricing is at $2 for 100,000 events in each additional trail.
Find out more about how CloudWatch can help with your security and auditing needs. Contact our PolarSeven cloud experts today.
[video_player type=”youtube” width=”560″ height=”315″ align=”center” margin_top=”0″ margin_bottom=”20″ border_size=”3″ border_color=”#45dede”]aHR0cHM6Ly93d3cueW91dHViZS5jb20vd2F0Y2g/dj10MGUtbXpfSTJPVQ==[/video_player]