AWS CloudTrail
Update trail
Cette page n'est pas encore disponible en français, sa traduction est en cours.
Si vous avez des questions ou des retours sur notre projet de traduction actuel,
n'hésitez pas à nous contacter.
Update trail settings that control the events being logged, and how to handle log files.
Inputs
The name of the trail or trail ARN.
The name of the Amazon S3 bucket designated for publishing log files.
The Amazon S3 key prefix that comes after the name of the bucket designated for log file delivery.
Apply the trail only to the current region or to all regions.
default: true
Specify the role for the CloudWatch Logs endpoint to assume to write to a user's log group.
cloudWatchLogsLogGroupArn
Specify a log group name using an Amazon Resource Name (ARN), a unique identifier that represents the log group to which CloudTrail logs are delivered. Not required unless you specify Cloud watch logs role.
Specify the KMS key ID to use to encrypt the logs delivered by CloudTrail. The value can be an alias name prefixed by alias/
, a fully specified ARN to an alias, a fully specified ARN to a key, or a globally unique identifier. CloudTrail also supports KMS multi-Region keys.
Outputs
Specifies the name of the trail.
Specifies the name of the Amazon S3 bucket designated for publishing log files.
Specifies the Amazon S3 key prefix that comes after the name of the bucket you have designated for log file delivery. For more information, see Finding Your IAM Log Files.
This field is no longer in use. Use SnsTopicARN.
Specifies the ARN of the Amazon SNS topic that CloudTrail uses to send notifications when log files are delivered. The following is the format of a topic ARN. arn:aws:sns:us-east-2:123456789012:MyTopic
IncludeGlobalServiceEvents
Specifies whether the trail is publishing events from global services such as IAM to the log files.
Specifies whether the trail exists in one Region or in all Regions.
Specifies the ARN of the trail that was updated. The following is the format of a trail ARN. arn:aws:cloudtrail:us-east-2:123456789012:trail/MyTrail
Specifies whether log file integrity validation is enabled.
CloudWatchLogsLogGroupArn
Specifies the Amazon Resource Name (ARN) of the log group to which CloudTrail logs are delivered.
Specifies the role for the CloudWatch Logs endpoint to assume to write to a user's log group.
Specifies the KMS key ID that encrypts the logs delivered by CloudTrail. The value is a fully specified ARN to a KMS key in the following format. arn:aws:kms:us-east-2:123456789012:key/12345678-1234-1234-1234-123456789012
Specifies whether the trail is an organization trail.