Creating a trail gives you a record of ongoing events in your AWS account. In this demo, review CloudTrail events and custom trails.
- [Narrator] To view what CloudTrail has tracked … as to what's happened in this AWS account, … we have to open up CloudTrail. … CloudTrail can be found under management and governance. … Selecting CloudTrail, it should open … and show us some events that it's tracked. … Note that it's tracking the last 90 days. … If we wanted these events to be permanent, … we would have to create our own trial … that points these records to an history bucket. … On the left side, let's click event history … and scroll down and look at some of the events I-E … the activity that's been carried out in this account. … Notice that the root user has been in doing some work. … That's not good. … Let's scroll down and take a look … as to what the root account has been doing. … The root account has created a VPcEndpoint, … the root account has deleted a load balancer. … Let's take a look at this entry, … and we can actually see when it's happened. … The source IP whether work was done. … Scrolling down a bit further, …
Skill Level Intermediate
1. Infrastructure Security
2. Data Protection
3. Detective Controls
- Mark as unwatched
- Mark all as unwatched
Are you sure you want to mark all the videos in this course as unwatched?
This will not affect your course history, your reports, or your certificates of completion for this course.Cancel
Take notes with your new membership!
Type in the entry box, then click Enter to save your note.
1:30Press on any video thumbnail to jump immediately to the timecode shown.
Notes are saved with you account but can also be exported as plain text, MS Word, PDF, Google Doc, or Evernote.