CloudTrail multi-region is not enabled
Incident Management is now generally available! Incident Management is now generally available!
<  Back to rules search

CloudTrail multi-region is not enabled

cloudtrail

Classification:

compliance

Set up the cloudtrail integration.

Overview

Description

Ensure that AWS CloudTrail is enabled.

Rationale

AWS CloudTrail enables you to configure regions from one location to maintain infrastructure security.

Remediation

Console

Follow the [AWS CloudTrail tutorial][3] docs to get started with CloudTrail.

CLI

  1. Run aws cloudtrail describe-trails

  2. Run update-trail on any returned trail name above to enable multi-region-trail.

    update-trail.sh

        aws cloudtrail update-trail
            --name GlobalTrailName
            --is-multi-region-trail