AWS Config Rule: CloudTrail Enabled

CLOUD_TRAIL_ENABLED

Ryan Ware

Last Update 8 bulan yang lalu

Description: Checks if AWS CloudTrail is enabled in your AWS account. Optionally, you can specify which S3 bucket, SNS topic, and AWS CloudTrail ARN to use. The rule is NON_COMPLIANT if AWS CloudTrail is not enabled.


Trigger type: Periodic


AWS Region: All supported AWS regions


How to Resolve Manually

To resolve this manually, you must enable CloudTrail as a service within your AWS Account. If this is not enabled, the AWS Config Rule will simply mark this as NON_COMPLIANT


In the console, you create a trail that logs events in all AWS Regions that you have enabled. This is a recommended best practice. 

For best guidance in creating a CloudTrail Trail in the AWS Console, please refer to this AWS User Guide.


Want to know more about StackZone and how to make your cloud management simple and secure?

Check our how it works section with easy to follow videos or just create your own StackZone Account here

Was this article helpful?

0 out of 0 liked this article

Still need help? Message Us