<  Back to rules search

CloudTrail multi-region is enabled

cloudtrail

Classification:

compliance

このページは日本語には対応しておりません。随時翻訳に取り組んでいます。翻訳に関してご質問やご意見ございましたら、お気軽にご連絡ください。

Description

Ensure that AWS CloudTrail is enabled.

Rationale

AWS CloudTrail enables you to configure regions from one location to maintain infrastructure security.

Remediation

Console

Follow the AWS CloudTrail tutorial docs to get started with CloudTrail.

CLI

  1. Run aws cloudtrail describe-trails

  2. Run update-trail on any returned trail name above to enable multi-region-trail.

    update-trail.sh

        aws cloudtrail update-trail
            --name GlobalTrailName
            --is-multi-region-trail