AWS CloudTrail

AWS CloudTrail Reviews

Do you work for this company? Learn how we help vendors

Ratings and Reviews
(1-4 of 23)

Companies can't remove reviews or game the system. Here's why
Score 10 out of 10
Vetted Review
Verified User
Review Source
AWS CloudTrail is used for governance, compliance and investigating API usage across all of our AWS accounts.
Every action that is taken by a user or script is an API call so this is logged to [AWS] Cloudtrail. This is critical in keeping a close eye on what users are doing in AWS.
  • Implementation - easy across organisation/accounts
  • AWS support
  • Detailed logs
  • Delay
  • User interface, must send logs elsewhere to view them
It is necessary to enable [AWS] Cloudtrail when using AWS in a production environment, otherwise you will not have any idea what is happening within your accounts. Third party monitoring applications will all require [AWS] CloudTrail to be enabled as well. I would not recommend it solely as a monitoring tool, to get the most out of it you must send the logs elsewhere. Either to Cloudwatch logs or a third party product.
Score 10 out of 10
Vetted Review
Verified User
Review Source
We have adopted CloudTrail in order to facilitate our log management. The level of details is so good and it has been used a lot to make our product even better. We mainly use it to monitor our API activities and based on that we have some reports to understand better our usage.
  • Logs details
  • Easy implementation
  • Great support
  • It could be more commercial
If you have a system mainly based on API's or at least want to understand better your API's usage, you definitely should adopt CloudTrail, of course, it's much useful when your entire network is on AWS and it can be a powered tool to have an overview of everything that is going on around.
Score 10 out of 10
Vetted Review
Verified User
Review Source
AWS CloudTrail is essential to our AWS architecture design. It is used by every single account within our AWS Organization (all accounts within the company). From the moment a child account is added to our organization, AWS CloudTrail is baked in and enforced for its entire lifespan. The business problem that it solves is mainly to satisfy requirements for our security and governance teams. On top of the security features, it allows the Cloud Admins to help our users troubleshoot and backtrack when issues arise.
  • AWS native service
  • Extremely powerful
  • Multi-region support
  • Optional encryption
  • File integrity validation
  • [In my experience] Cost can easily get out of control with multiple trails on full logging
  • Logs can be difficult to decipher
Highly recommended. This is an essential service for any Cloud solution. There are probably other products that will accomplish these same objectives but AWS CloudTrail being an integrated native solution is very hard to beat. AWS CloudTrail can also be integrated with SNS, SQS and passed on-prem to data lakes or visualization tools.
Score 8 out of 10
Vetted Review
Verified User
Review Source
AWS CloudTrail helps our organization to troubleshoot [a] lot of permissions related issues in our Amazon Web Services Virtual Private Cloud.
It just works and most importantly CloudTrail is scalable. We also utilize CloudTrail to achieve good level of the auditing logs as part of preserving [a] chain of evidence during security incidents.
  • Auditing
  • Logs
  • Delay
  • Interface
AWS CloudTrail is an amazing AWS service which is used for auditing purposes. CloudTrail can record user activities, network events, and analyzed these data directly from the CloudTrail dashboard.
AWS CloudTrail also has the ability to track API calls. The CoudTrail logging will show the API flexibility and show the insights of these AWS API calls.

AWS CloudTrail Scorecard Summary

What is AWS CloudTrail?

AWS CloudTrail is a service that enables governance, compliance, operational auditing, and risk auditing of AWS accounts. With CloudTrail, users can log, continuously monitor, and retain account activity related to actions across the AWS infrastructure. CloudTrail provides an event history of AWS account activity, including actions taken through the AWS Management Console, AWS SDKs, command line tools, and other AWS services. Once enabled, users get a CloudTrail with all Management Events automatically and at no charge. Then, users also have several different data event sources that can opt in to depending on particular applications and compliance needs. This event history is yet another source of observability data that AWS provides which simplifies security analysis, resource change tracking, and troubleshooting.

AWS CloudTrail Features

  • Supported: Audit Trails
  • Supported: Event Delivery
  • Supported: Search and Analytics
  • Supported: CloudTrail Insights

AWS CloudTrail Screenshots

CloudTrail Insights: Identify and respond to unusual operational activity
•Unexpected spikes in resource provisioning
•Bursts of IAM management actions
•Gaps in periodic maintenance activity
•Automatic analysis of API calls and usage patterns
•Alerts when unusual activity is detected

AWS CloudTrail Videos

AWS CloudTrail: Simplify Security Analysis, Resource Change Tracking, and Troubleshooting
Monitor Unusual Activity in AWS Accounts using CloudTrail Insights
How can I use CloudTrail to review what API calls and actions have occurred in my AWS account

AWS CloudTrail Integrations

  • AWS Lambda
  • Amazon CloudWatch Logs
  • Amazon CloudWatch Events

AWS CloudTrail Competitors

  • IBM Cloud Activity Tracker
  • Google Cloud Audit Log
  • Alibaba Cloud Action Trail
  • Oracle Cloud Infrastructure Logging/Audit
  • Azure Monitor and Security Logging

AWS CloudTrail Pricing

AWS CloudTrail Technical Details

Deployment TypesOn-premise
Operating SystemsWindows, Linux, Mac
Mobile ApplicationNo
Supported CountriesVirginia, Ohio, Oregon, Northern California, Montreal, Sao Paulo, GovCloud US West, GovCloud US East, Frankfurt, Ireland, London, Milan, Paris, Stockholm, Bahrain, Cape Town, Singapore, Tokyo, Sydney, Seoul, Mumbai, Hong Kong, Beijing Ningxia, Osaka

Frequently Asked Questions

What is AWS CloudTrail?

AWS CloudTrail is a service that enables governance, compliance, operational auditing, and risk auditing of an AWS account. With CloudTrail, users can log, continuously monitor, and retain account activity related to actions across AWS infrastructure. CloudTrail provides event history of AWS account activity, including actions taken through the AWS Management Console, AWS SDKs, command line tools, and other AWS services. This event history simplifies security analysis, resource change tracking, and troubleshooting. In addition, you can use CloudTrail to detect unusual activity in AWS accounts. These capabilities help simplify operational analysis and troubleshooting.

Who uses AWS CloudTrail?

The most common users of AWS CloudTrail are from Enterprises and the Information Technology & Services industry.