Audit | CloudTrail ¶
AWS CloudTrail monitors and records account activity across your AWS infrastructure, giving you control over storage, analysis, and remediation actions.
AWS CloudTrail overview
This service will be configured to enable auditing of all AWS services in all accounts. Once enabled, as shown in the below presented figure, CloudTrail will deliver all events from all accounts to the Security account in order to have a centralized way to audit operations on AWS resources. Audit events will be available from CloudTrail for 90 days but a longer retention time will be available through a centralized S3 bucket.
IaC Terraform Codebase <>
binbash-managementaccount | Audit: Cloudtrail
binbash-securityaccount | Audit: Cloudtrail & S3 Bucket
binbash-sharedaccount | Audit: Cloudtrail
binbash-apps-devstgaccount | Audit: Cloudtrail
binbash-apps-prdaccount | Audit: Cloudtrail
binbash-networkaccount | Audit: Cloudtrail
Read more ¶
AWS reference links
Consider the following AWS official links as reference: