In this video, learn how to carry out the steps to create a CloudTrail trail for storing API calls and authentication in an S3 bucket.
(bright music) - [Instructor] Welcome to this challenge video. The task I'm going to step you through is how to create a CloudTrail Trail which will store events in an S3 Bucket that you'll also create. You'll need some AWS resources to carry out this task of course. If you don't have an AWS account, Google Free AWS tier and then sign up to AWS and then you could create this S3 Bucket using that account. So the first thing we have to do is log into the AWS console as an administrator. Then we'll select an open CloudTrail. In CloudTrail on the left click Dashboard, then on the right click Trail. Name your trail whatever you want. Then we have to store the records. So we have to create an S3 Bucket. Or we could use CloudWatch logs. For this challenge we're going to create an S3 bucket. After you've created the S3 bucket with any name that's unique, then we have to enter an alias for the key that's encrypting our records. That key's stored in the Key Management Service. For the alias enter CT1 and click next. For the log events that are going to be stored in our trail, accept all the defaults, then click next. And finally, you want to review all the options and the click Create trail and you'll be done. You'll have an S3 bucket and any API calls and authentications in the region that you're operating in will be stored in that S3 bucket. Let me give you some additional pointers. Let's go into the console. In the console select services. Once in services scroll down under Management and Governance and you'll see CloudTrail. In CloudTrail we have to go to the Dashboard. Once in the Dashboard we click Create trail. Then we enter our name, the S3 bucket, our alias, and ultimately the rest of the steps you're clicking next and affirming what you actually want the CloudTrail service to create for you. So that's important to help you on your way. Good luck.
- Design principals
- Key operational areas
- Key AWS services
- Designing workloads with key managed services
- Using Lambda for operational readiness
- Managing operational health
- Responding to health events