Master AWS Certified Solutions Architect Associate SAA-C03 Exam/

...

AWS CloudTrail

Get a detailed introduction to the AWS CloudTrail service and how it works.

We'll cover the following...

Introduction to CloudTrail
- CloudTrail events
- CloudTrail services
How CloudTrail works?
- Integration with other services
Benefits
Understanding costs

Another crucial component of monitoring and auditing our cloud infrastructure is tracking and logging every action on the cloud resource. AWS CloudTrail is one such service that logs all activity and API calls within our AWS cloud. Hence, we can use CloudTrail for explicit purposes of auditing, validating compliance standards, identifying security breaches, or troubleshooting any operational issues.

Introduction to CloudTrail

AWS CloudTrail is an AWS tool primarily used for logging any events that represent operations and actions done by users, AWS services, or IAM roles. These logs can be analyzed for monitoring and governing the AWS infrastructure. These events comprise any actions of an AWS service or resource via the AWS Management Console, AWS CLI, or AWS SDKs and APIs.

CloudTrail Event History is automatically enabled by default when we create an AWS account without requiring us to perform any steps manually. Any activity that happens within our AWS account gets recorded as a CloudTrail event.

Press + to interact

Here are some use cases of CloudTrail:

Audit the AWS Infrastructure: We can use CloudTrail to help audit our AWS infrastructure to affirm that it’s compliant with any industry and security regulations.
Maintain AWS Infrastructure security: We can use CloudTrail to improve the infrastructure security to log all user activity and have an automated service like EventBridge to set up workflows to identify any unusual activity within the collected logs and trigger the appropriate actions.
Operational statistics: By logging all operations that take place on AWS with CloudTrail we can extrapolate some insightful statistics from the logs. These statistics can be used to speed up debugging operational issues, investigate operational anomalies, or provide explanations to any operational queries. Some CloudTrail services, like CloudTrail Lake, also offer dashboards that display any visual trends.

Note: Please note that CloudTrail does not support the following AWS services and events:

AWS Import/Export service
Policy-specific events in Amazon VPC endpoints
AWS services that are still in preview
AWS services that are not made available for general use
AWS services that don’t support public APIs

CloudTrail events

A CloudTrail event is any action taken by an AWS user, role, resource, or service within our account. These ...

Understanding Cloud Computing Essentials— From Zero to Hero

Securing AWS Resources: Managing Access with IAM

AWS IAM Permission Boundaries

Using AWS IAM Access Analyzer

Understanding AWS Compute Services — From Zero to Hero

Working with Instances: An Amazon EC2 Walkthrough

Managing Instance Volumes Using EBS

Understanding Networking Services in AWS—From Zero to Hero

Controlling VPC Traffic Using Network ACLs

Managing Peer Connections between Amazon Virtual Private Clouds

Accessing AWS Services over AWS PrivateLink Using VPC Endpoints

Monitoring IP Traffic Using VPC Flow Logs

Getting to Know AWS Lambda

Building and Deploying Serverless Applications with AWS SAM

Developing RESTful Microservices with API Gateway and DynamoDB

Building a WebSocket-Based Chat Application Using API Gateway

Mastering AWS AppSync Lambda Resolvers

Getting Started with Amazon Simple Queue Service (SQS)

Handling Amazon SNS Notifications with AWS Lambda

Build a Fanout Serverless Architecture using SNS, SQS, and Lambda

Decoupling Serverless Applications with Amazon EventBridge

Getting Started with AWS Step Functions

Getting Started with Amazon ECS

Create an EKS Cluster and Deploy an Application

Managing Application Traffic Using Elastic Load Balancers

Understanding Auto Scaling Group (ASG) in AWS

Mastering Amazon EC2 Dynamic Scaling Policies

Understanding AWS Storage Options—From Zero to Hero

Working with AWS S3 Cross-Region Replication

Resizing Images with S3 Batch Operations and AWS Lambda

Managing Data Access with Amazon S3 Access Points

Getting Started with Amazon FSx for Windows File Server

Working with Relational Databases: A Beginner's Guide to AWS RDS

Getting Started with Amazon Aurora Database Engine

Working with NoSQL Databases: A Beginner's Guide to AWS DynamoDB

Exploring Graphs with Amazon Neptune

Getting Started with Amazon Keyspaces

Achieving Ultra-Fast Performance Using Amazon MemoryDB for Redis

Improving Database Performance with Amazon ElastiCache for Redis

Use of AWS Database Migration Service from Aurora MySQL to S3

Getting Started with AWS Key Management Service (KMS)

Encrypting S3 Buckets and EBS Volumes Using KMS

Protecting Web Applications Using AWS WAF

Managing Aurora DB Credentials and API Keys Using Secrets Manager

Finding Vulnerabilities on EC2 Instances Using AWS Inspector

Mastering AWS Deployment Services—From Zero to Hero

Getting to Know AWS CloudFormation

AWS CloudFormation Updates: Change Sets and Stack Policies

Mastering AWS CloudFormation Helper Scripts

Understanding Machine Learning Services on AWS—From Zero to Hero

Deploying a Machine Learning Model with Amazon SageMaker

Getting Started with Amazon Fraud Detector

Build an Educative Chatbot with Conversational AI Using AWS Lex

Analyzing S3 Data and CloudTrail Logs Using Amazon Athena

Getting Started with Amazon EMR

Getting Started with Amazon Redshift

Building ETL Pipelines on AWS

Create a Data Lake with Lake Formation and Analyze It with Athena

Building a Logs Processing Pipeline with Amazon Kinesis

Getting Started with Amazon Managed Streaming for Apache Kafka

Monitoring EC2 Instances Using AWS CloudWatch

Getting Started with AWS Config

Getting Started with AWS Systems Manager Parameter Store

Practice Exam - 1

Practice Exam - 2

Practice Exam - 3

AWS CloudTrail

Introduction to CloudTrail

CloudTrail events