Skip to content

CloudTrail Trail

Captures account activity as audit events.

management
category17
settings5
inputs0
outputs

Configuration

Setting	Type	Required	Default
Trail name	Text	Yes	`—`
Destination S3 bucket	Text	Yes	`—`
S3 key prefix	Text	—	`—`
Multi-region	Toggle	—	`true`
Organization trail	Toggle	—	`false`
Log file validation	Toggle	—	`true`
Include global events	Toggle	—	`true`
Enable logging	Toggle	—	`true`
KMS key ID (log encryption)	Text	—	`—`
CloudWatch logs group ARN	Text	—	`—`
CloudWatch logs role ARN	Text	—	`—`
SNS topic name	Text	—	`—`
Insights enabled	Toggle	—	`false`
Insight types	List	—	`—`
Event selectors (JSON)	Text	—	`—`
Advanced event selectors (JSON)	Text	—	`—`
Tags	Key–value	—	`—`

Connections

Socket	Direction	Accepts	Terraform arg
Log destination	Input	aws.s3	`s3_bucket_name`
Encryption KMS key	Input	aws.kms-key	`kms_key_id`
CloudWatch log group	Input	aws.cloudwatch-log-group	`cloud_watch_logs_group_arn`
CloudWatch logs role	Input	aws.iam-role	`cloud_watch_logs_role_arn`
Notification SNS topic	Input	aws.sns	`sns_topic_name`