🗂️ Navigation
📁 Multi-Cloud Management
📋 AWS Well-Architected Tools
🔧 AWS CloudTrail

AWS CloudTrail

Log, continuously monitor, and retain account activity related to actions across your AWS infrastructure.

Visit Website →

Overview

AWS CloudTrail is a service that helps you enable governance, compliance, and operational and risk auditing of your AWS account. Actions taken by a user, role, or an AWS service are recorded as events in CloudTrail. Events include actions taken in the AWS Management Console, AWS Command Line Interface, and AWS SDKs and APIs.

✨ Key Features

  • Log all API activity in your AWS account
  • Continuous monitoring of account activity
  • Event history for troubleshooting
  • Deliver log files to Amazon S3
  • CloudTrail Lake for advanced event analysis

🎯 Key Differentiators

  • The authoritative source for all AWS API activity
  • Enabled by default on all AWS accounts
  • Deeply integrated with other AWS security and management services

Unique Value: Provides a complete and immutable record of all actions taken in your AWS account, which is essential for security, auditing, and operational troubleshooting.

🎯 Use Cases (4)

Security analysis and threat detection Compliance auditing Operational troubleshooting ('Who did what and when?') Tracking changes to resources

✅ Best For

  • Investigating unauthorized IAM user activity
  • Auditing changes to security group configurations

💡 Check With Vendor

Verify these considerations match your specific requirements:

  • Monitoring resource performance metrics (use CloudWatch instead)
  • Tracking resource configuration state (use AWS Config instead)

🏆 Alternatives

Splunk Sumo Logic Third-party SIEM solutions

Serves as the primary data source for third-party security and logging tools, making it a necessary component rather than a direct competitor for analyzing AWS activity.

💻 Platforms

Web API

🔌 Integrations

Amazon S3 Amazon CloudWatch Amazon Athena AWS Security Hub

🛟 Support Options

  • ✓ Email Support
  • ✓ Live Chat
  • ✓ Phone Support
  • ✓ Dedicated Support (Business, Enterprise tier)

🔒 Compliance & Security

✓ SOC 2 ✓ HIPAA ✓ BAA Available ✓ GDPR ✓ ISO 27001 ✓ SSO ✓ SOC 1, 2, 3 ✓ ISO/IEC 27001 ✓ PCI DSS ✓ HIPAA

💰 Pricing

$2.00/mo
Free Tier Available

Free tier: The first copy of management events in each region is delivered free of charge.

Visit AWS CloudTrail Website →

🔄 Similar Tools in AWS Well-Architected Tools

AWS Well-Architected Tool

A tool to review your workloads against AWS best practices....

Contact

AWS Cost Explorer

An interface to visualize, understand, and manage your AWS costs and usage....

Contact

AWS Budgets

A tool for setting custom cost and usage budgets and receiving alerts....

$0.10/mo

AWS Trusted Advisor

Provides real-time guidance to help you provision your resources following AWS best practices....

$29.00/mo

AWS Config

A service to assess, audit, and evaluate resource configurations....

Contact

Amazon CloudWatch

A monitoring and observability service for cloud resources and applications....

Contact