Back to AWS Cloudformation index <–
Cloudtrail_logging
Description
This script will create a trail that logs events in all regions, an Amazon S3 bucket where logs are published, and an SNS topic where notifications are sent. The bucket and topic policies allow CloudTrail (from the specified regions) to publish logs to the S3 bucket and to send notifications to an email that you specify.Create a CloudWatch Log Group to store CloudTrail logs, and the IAM Role required for this. Include Data Events for Lambda and/or S3 to record data plane operations