In this lab Cloud Trail will be created to monitor the and create a log file with every event that happens in the Oregon region where the dinostore buckets are created.
AWS CloudTrail is a service that enables governance, compliance, operational auditing, and risk auditing of your AWS account. With CloudTrail, you can log, continuously monitor, and retain events related to API calls across your AWS infrastructure. CloudTrail provides a history of AWS API calls for your account, including API calls made through the AWS Management Console, AWS SDKs, command line tools, and other AWS services. This history simplifies security analysis, resource change tracking, and troubleshooting.
In this Lab you will learn:
- How to Create a Cloud Trail
To begin you have to log in to your AWS console go to Services and select Cloud Trail. Click on Add cloud Trail.
Note: You can create your 1st cloud trail for free. if you need to create additional cloud trail you will be charged. There are 2 types of events in the cloud trail, they are:
- Management Events: Represent standard API activity for AWS services. For example, CloudTrail delivers management events for API calls such as launching EC2 instances or creating S3 buckets. The first copy of management events is delivered free of charge. Additional copies of management events are charged at $2.00 per 100,000 events.
- Data Events: Represent S3 object-level API activity, such as Get, Put, Delete and List actions. Data events are recorded only for the buckets you specify and are charged at $0.10 per 100,000 events.
For the cloud trail give a name as you wish. In the apply trail to all regions option i have given my cloud trail to monitor on the specific region because all my dinostore files are on oregon therefore i have given no to that option. you can give yes if your files are in the other regions.
Give the bucket name you want to record the data events. i have chosen my Dinostore Buckets. For the storage location you can create a new bucket, in that bucket all the log files will be saved for you to monitor.
I uploaded a file on to my dinostore bucket to check if the trail is working.
Go to you s3 bucket select the folder you created to save the events.
When you are on the folder you can see all the events that is recorded.
If the cloud trail is working successfully, you have completed this lab.