AWS Tutorial
- AWS CP Tutorial
- AWS Cloud Computing
- AWS Cloud Benefits
- AWS Infrastructure
- AWS EC2 Intro
- AWS EC2 Instance Types
- AWS EC2 Pricing
- AWS EC2 Scaling
- AWS EC2 Auto Scaling
- AWS Elastic Load Balancing
- AWAS Messaging
- AWS SQS
- AWS Messaging
- AWS Serverless
- AWS Lambda
- AWS Containers
- AWS ECS
- AWS EKS
- AWS Fargate
- AWS Additional Compute
- AWS Infrastructure
- AWS Regions
- AWS Availability Zones
- AWS Edge Locations
- AWS Provisioning
- AWS Provisioning Services
- AWS Elastic Beanstalk
- AWS CloudFormation
- AWS Networking
- AWS Connectivity
- AWS Subnets & Access
- AWS Global Networking
- AWS Global Architectures
- AWS Storage
- AWS Instance Stores
- Amazon EBS
- AWS S3
- AWS Elastic File System
- AWS Storage Comparison
- AWS Databases
- AWS DynamoDB
- AWS DynamoDB vs RDS
- AWS Redshift
- AWS Additional DB Services
- AWS AI & ML
- AWS Sagemaker
- AWS Applied AI Services
- AWS Generative AI Intro
- AWS Generative AI Services
- AWS Data Analytics
- AWS Data Pipelines
- AWS Cloud Security
- AWS Shared Responsibility
- AWS User Access
- AWS Network Protection
- AWS Data Protection
- AWS Detection & Response
- AWS Monitoring & Governance
- AWS Monitoring Intro
- AWS Amazon CloudWatch
- AWS CloudTrail
- AWS Compliance
- AWS Auditing
- AWS Organizations
- AWS Governance
- AWS Health Dashboard
- AWS Trusted Advisor
- AWS Pricing & Support
- AWS Free Tier
- AWS Core Pricing Concepts
- AWS Billing Services
- AWS Support Plans
- AWS Marketplace
- AWS Cost Optimization
- AWS Migration
- AWS CAF
- AWS Migration Strategies
- AWS Migration Services
- AWS Database Migration
- AWS Online Data Transfer
- AWS Offline Data Transfer
- AWS Well-Architected Solution
- AWS Well-Architected Framework
- AWS Specialized Services
- AWS Specialized Use Cases
- AWS CP Wrap-Up
AWS CloudTrail
AWS Tutorial: AWS CloudTrail
Welcome to the AWS CloudTrail lesson. If CloudWatch monitors the performance of your resources, CloudTrail monitors the people interacting with your account.
Why Learn AWS CloudTrail?
If a production database is accidentally deleted, you need to know exactly who deleted it, what time they did it, and from what IP address. CloudTrail acts as the ultimate security camera for your AWS account, providing strict governance, compliance, and auditing.
Tutorial Overview
In this tutorial, you will learn:
- What AWS CloudTrail is.
- The difference between CloudTrail and CloudWatch.
What is AWS CloudTrail?
AWS CloudTrail records every single API call made within your AWS account. Whether an action was taken by a user clicking in the Management Console, a developer running an AWS CLI command, or an automated script using the AWS SDK, CloudTrail logs the event.
A CloudTrail log answers three crucial questions:
- Who made the API call? (IAM User or Role)
- When was the API call made? (Timestamp)
- What was the API call? (e.g.,
TerminateInstances)
Exercise
?You need to conduct a security audit to determine which IAM User deleted an Amazon S3 bucket yesterday. Which service provides this information?