Another crucial component of monitoring and auditing our cloud infrastructure is tracking and logging every action on the cloud resource. AWS CloudTrail is one such service that logs all activity and API calls within our AWS cloud. Hence, we can use CloudTrail for explicit purposes of auditing, validating compliance standards, identifying security breaches, or troubleshooting any operational issues.

Introduction to CloudTrail

AWS CloudTrail is an AWS tool primarily used for logging any events that represent operations and actions done by users, AWS services, or IAM roles. These logs can be analyzed for monitoring and governing the AWS infrastructure. These events comprise any actions of an AWS service or resource via the AWS Management Console, AWS CLI, or AWS SDKs and APIs.

CloudTrail Event History is automatically enabled by default when we create an AWS account without requiring us to perform any steps manually. Any activity that happens within our AWS account gets recorded as a CloudTrail event.

Get hands-on with 1200+ tech skills courses.