AWS CloudTrail

AWS CloudTrail

Score 8.6 out of 10
AWS CloudTrail

Overview

What is AWS CloudTrail?

AWS CloudTrail is a service that enables governance, compliance, operational auditing, and risk auditing of an AWS account. With CloudTrail, users can log, continuously monitor, and retain account activity related to actions across AWS infrastructure. CloudTrail provides event history of...
Read more

Recent Reviews

Read all reviews
Return to navigation

Pricing

View all pricing
N/A
Unavailable

What is AWS CloudTrail?

AWS CloudTrail is a service that enables governance, compliance, operational auditing, and risk auditing of an AWS account. With CloudTrail, users can log, continuously monitor, and retain account activity related to actions across AWS infrastructure. CloudTrail provides event history of AWS…

Entry-level set up fee?

  • No setup fee
For the latest information on pricing, visithttps://aws.amazon.com/cloudtrail/prici…

Offerings

  • Free Trial
  • Free/Freemium Version
  • Premium Consulting / Integration Services

Would you like us to let the vendor know that you want pricing?

Alternatives Pricing

What is Cisco Secure Access by Duo?

Cisco Secure Access, by Duo is a two-factor authentication system (2FA), acquired by Cisco in October 2018. It provides single sign-on (SSO) and endpoint visibility, as well as access controls and policy controlled adaptive authentication.

What is Azure Security Center?

Microsoft Azure Security Center provides unified security management and advanced threat protection for hybrid cloud workloads.

Return to navigation

Product Demos

AWS CloudTrail: Simplify Security Analysis, Resource Change Tracking, and Troubleshooting
01:31
Monitor Unusual Activity in AWS Accounts Using CloudTrail Insights
03:15
How can I use CloudTrail to review what API calls and actions have occured in my AWS account?
06:12
Return to navigation

Product Details

What is AWS CloudTrail?

AWS CloudTrail is a service that enables governance, compliance, operational auditing, and risk auditing of AWS accounts. With CloudTrail, users can log, continuously monitor, and retain account activity related to actions across the AWS infrastructure. CloudTrail provides an event history of AWS account activity, including actions taken through the AWS Management Console, AWS SDKs, command line tools, and other AWS services. Once enabled, users get a CloudTrail with all Management Events automatically and at no charge. Then, users also have several different data event sources that can opt in to depending on particular applications and compliance needs. This event history is yet another source of observability data that AWS provides which simplifies security analysis, resource change tracking, and troubleshooting.

AWS CloudTrail Features

  • Supported: Audit Trails
  • Supported: Event Delivery
  • Supported: Search and Analytics
  • Supported: CloudTrail Insights

AWS CloudTrail Screenshots

Screenshot of CloudTrail Insights: Identify and respond to unusual operational activity
•Unexpected spikes in resource provisioning
•Bursts of IAM management actions
•Gaps in periodic maintenance activity
•Automatic analysis of API calls and usage patterns
•Alerts when unusual activity is detected

AWS CloudTrail Videos

AWS CloudTrail: Simplify Security Analysis, Resource Change Tracking, and Troubleshooting
Monitor Unusual Activity in AWS Accounts using CloudTrail Insights
How can I use CloudTrail to review what API calls and actions have occurred in my AWS account

AWS CloudTrail Integrations

  • AWS Lambda
  • Amazon CloudWatch Logs
  • Amazon CloudWatch Events

AWS CloudTrail Competitors

  • IBM Cloud Activity Tracker
  • Google Cloud Audit Log
  • Alibaba Cloud Action Trail
  • Oracle Cloud Infrastructure Logging/Audit
  • Azure Monitor and Security Logging

AWS CloudTrail Technical Details

Deployment TypesOn-premise
Operating SystemsWindows, Linux, Mac
Mobile ApplicationNo
Supported CountriesVirginia, Ohio, Oregon, Northern California, Montreal, Sao Paulo, GovCloud US West, GovCloud US East, Frankfurt, Ireland, London, Milan, Paris, Stockholm, Bahrain, Cape Town, Singapore, Tokyo, Sydney, Seoul, Mumbai, Hong Kong, Beijing Ningxia, Osaka
Return to navigation

Comparisons

View all alternatives
Return to navigation

Reviews and Ratings

 (39)

Reviews

(1-3 of 3)
Companies can't remove reviews or game the system. Here's why
Score 10 out of 10
Vetted Review
Verified User
We have adopted CloudTrail in order to facilitate our log management. The level of details is so good and it has been used a lot to make our product even better. We mainly use it to monitor our API activities and based on that we have some reports to understand better our usage.
  • Logs details
  • Easy implementation
  • Great support
  • It could be more commercial
If you have a system mainly based on API's or at least want to understand better your API's usage, you definitely should adopt CloudTrail, of course, it's much useful when your entire network is on AWS and it can be a powered tool to have an overview of everything that is going on around.
  • Log Monitoring
  • Integration with our services
  • Since we started using CloudTrail, we could understand better our product usage and consequently understand our customer's profiles.
I think in the end, CloudTrail has more features and you can dive deeper inside the logs so it depends on your usage and what you expect in the end to make the right choice, I would say that both tools are really useful and bring a lot of benefits to I.T. companies.
Score 10 out of 10
Vetted Review
Verified User
AWS CloudTrail is used for governance, compliance and investigating API usage across all of our AWS accounts.
Every action that is taken by a user or script is an API call so this is logged to [AWS] Cloudtrail. This is critical in keeping a close eye on what users are doing in AWS.
  • Implementation - easy across organisation/accounts
  • AWS support
  • Detailed logs
  • Delay
  • User interface, must send logs elsewhere to view them
It is necessary to enable [AWS] Cloudtrail when using AWS in a production environment, otherwise you will not have any idea what is happening within your accounts. Third party monitoring applications will all require [AWS] CloudTrail to be enabled as well. I would not recommend it solely as a monitoring tool, to get the most out of it you must send the logs elsewhere. Either to Cloudwatch logs or a third party product.
  • Logging
  • Ease of use
  • Allows us to investigate any strange api actions
  • Increases security
  • Audit trail of changes made in AWS
For this specific functionality, I am not aware of any other product that can do what [AWS] Cloudtrail does.
We did not evaluate any other products.
Score 10 out of 10
Vetted Review
Verified User
AWS CloudTrail is essential to our AWS architecture design. It is used by every single account within our AWS Organization (all accounts within the company). From the moment a child account is added to our organization, AWS CloudTrail is baked in and enforced for its entire lifespan. The business problem that it solves is mainly to satisfy requirements for our security and governance teams. On top of the security features, it allows the Cloud Admins to help our users troubleshoot and backtrack when issues arise.
  • AWS native service
  • Extremely powerful
  • Multi-region support
  • Optional encryption
  • File integrity validation
  • [In my experience] Cost can easily get out of control with multiple trails on full logging
  • Logs can be difficult to decipher
Highly recommended. This is an essential service for any Cloud solution. There are probably other products that will accomplish these same objectives but AWS CloudTrail being an integrated native solution is very hard to beat. AWS CloudTrail can also be integrated with SNS, SQS and passed on-prem to data lakes or visualization tools.
  • Multi-region support
  • Log file integrity validation
  • Integration with other AWS services like SNS / SQS
  • "Always on"
  • Saved us from purchasing and managing 3rd party solutions
  • Satisfies Security/Governance requirements
  • No upkeep/maintenance
Our company has not used any alternatives. Within our industry, it seems that AWS CloudTrail is the defacto standard for this type of functionality within the AWS environment.
Return to navigation