Skip to main content
TrustRadius
AWS CloudTrail

AWS CloudTrail

Overview

What is AWS CloudTrail?

AWS CloudTrail is a service that enables governance, compliance, operational auditing, and risk auditing of an AWS account. With CloudTrail, users can log, continuously monitor, and retain account activity related to actions across AWS infrastructure. CloudTrail provides event history…

Read more
Recent Reviews

AWS CloudTrail Review

10 out of 10
June 25, 2021
Incentivized
AWS CloudTrail is essential to our AWS architecture design. It is used by every single account within our AWS Organization (all accounts …
Continue reading
Read all reviews

Reviewer Pros & Cons

View all pros & cons
Return to navigation

Pricing

View all pricing
N/A
Unavailable

What is AWS CloudTrail?

AWS CloudTrail is a service that enables governance, compliance, operational auditing, and risk auditing of an AWS account. With CloudTrail, users can log, continuously monitor, and retain account activity related to actions across AWS infrastructure. CloudTrail provides event history of AWS…

Entry-level set up fee?

  • No setup fee
For the latest information on pricing, visithttps://aws.amazon.com/cloudtrail/prici…

Offerings

  • Free Trial
  • Free/Freemium Version
  • Premium Consulting/Integration Services

Would you like us to let the vendor know that you want pricing?

1 person also want pricing

Alternatives Pricing

What is Cisco Duo?

Cisco Duo is a two-factor authentication system (2FA), acquired by Cisco in October 2018. It provides single sign-on (SSO) and endpoint visibility, as well as access controls and policy controlled adaptive authentication.

What is OpsCompass?

OpsCompass is an enterprise-ready cloud security management software that drives multi-cloud operational control, visibility, and security to Microsoft Azure, AWS, and Google Cloud Platform. Its UI is designed to provide clear data visualization for resource management, remediation, and…

Return to navigation

Product Demos

AWS CloudTrail - Part 4 - DEMO | CloudTrail Logs from multiple accounts to one S3 Bucket | Pricing

YouTube

Terraform to create AWS CloudTrail to CloudWatch log | Github Actions

YouTube

AWS CloudTrail Beginner Guide

YouTube

A Deep Dive into AWS CloudTrail

YouTube

AWS CloudTrail Demo | What is AWS CloudTrail | AWS Tutorial | AWS Tutorial by Java Home

YouTube

AWS CloudTrail Tutorial | CloudTrail in AWS | AWS CloudTrail Demo | Edureka

YouTube
Return to navigation

Product Details

What is AWS CloudTrail?

AWS CloudTrail is a service that enables governance, compliance, operational auditing, and risk auditing of AWS accounts. With CloudTrail, users can log, continuously monitor, and retain account activity related to actions across the AWS infrastructure. CloudTrail provides an event history of AWS account activity, including actions taken through the AWS Management Console, AWS SDKs, command line tools, and other AWS services. Once enabled, users get a CloudTrail with all Management Events automatically and at no charge. Then, users also have several different data event sources that can opt in to depending on particular applications and compliance needs. This event history is yet another source of observability data that AWS provides which simplifies security analysis, resource change tracking, and troubleshooting.

AWS CloudTrail Features

  • Supported: Audit Trails
  • Supported: Event Delivery
  • Supported: Search and Analytics
  • Supported: CloudTrail Insights

AWS CloudTrail Screenshots

Screenshot of CloudTrail Insights: Identify and respond to unusual operational activity
•Unexpected spikes in resource provisioning
•Bursts of IAM management actions
•Gaps in periodic maintenance activity
•Automatic analysis of API calls and usage patterns
•Alerts when unusual activity is detected

AWS CloudTrail Videos

AWS CloudTrail: Simplify Security Analysis, Resource Change Tracking, and Troubleshooting
Monitor Unusual Activity in AWS Accounts using CloudTrail Insights
How can I use CloudTrail to review what API calls and actions have occurred in my AWS account

AWS CloudTrail Integrations

  • AWS Lambda
  • Amazon CloudWatch Logs
  • Amazon CloudWatch Events

AWS CloudTrail Competitors

  • IBM Cloud Activity Tracker
  • Google Cloud Audit Log
  • Alibaba Cloud Action Trail
  • Oracle Cloud Infrastructure Logging/Audit
  • Azure Monitor and Security Logging

AWS CloudTrail Technical Details

Deployment TypesOn-premise
Operating SystemsWindows, Linux, Mac
Mobile ApplicationNo
Supported CountriesVirginia, Ohio, Oregon, Northern California, Montreal, Sao Paulo, GovCloud US West, GovCloud US East, Frankfurt, Ireland, London, Milan, Paris, Stockholm, Bahrain, Cape Town, Singapore, Tokyo, Sydney, Seoul, Mumbai, Hong Kong, Beijing Ningxia, Osaka
Return to navigation

Comparisons

View all alternatives
Return to navigation

Reviews and Ratings

(47)

Reviews

(1-4 of 4)
Companies can't remove reviews or game the system. Here's why
Score 8 out of 10
Vetted Review
Verified User
Incentivized
Mainly we're using it for an audit trail of all actions done in AWS CloudTrail and for user activity of course. Moreover, our Dev-Ops were using it to debug AWS services, especially understanding what and why went wrong during the AWS CloudTrail setup or changes. The scope is mainly audit/logging of API calls and monitoring, mainly detecting unusual or suspicious activities.
  • API Log
  • User activity tracking
  • Real-time alerts
  • UI/UX is not the easiest and greatest
  • Advanced filtering (mainly logs overload)
  • Not flexible alerting system
Most probably it would be suitable for Finance industries, where security is at the head of the table. However, in our case for E-commerce, it's also quite suitable, since we have quite a significant amount of data and usage of AWS services. Especially with usage of AWS services, AWS CloudTrail comes into play as a heavy plus. For instance, troubleshooting any issues in AWS services is really nice.

Therefore, it would be less appropriate with a small amount of AWS service usage and some basic web hosting.
  • Enhanced security of course
  • Quick troubleshooting
  • Readiness for audit (significant time saver)
We mainly needed to focus on logging and auditing of AWS services and activity, while Datadog & New Relic are more about performance monitoring and analytics. Moreover, AWS CloudTrail has a seamless integration with AWS, since it's coming from one bucket of products. So having all pros and cons in our case management decided to go with AWS CloudTrail.
Score 10 out of 10
Vetted Review
Verified User
Incentivized
We have adopted CloudTrail in order to facilitate our log management. The level of details is so good and it has been used a lot to make our product even better. We mainly use it to monitor our API activities and based on that we have some reports to understand better our usage.
  • Logs details
  • Easy implementation
  • Great support
  • It could be more commercial
If you have a system mainly based on API's or at least want to understand better your API's usage, you definitely should adopt CloudTrail, of course, it's much useful when your entire network is on AWS and it can be a powered tool to have an overview of everything that is going on around.
  • Log Monitoring
  • Integration with our services
  • Since we started using CloudTrail, we could understand better our product usage and consequently understand our customer's profiles.
I think in the end, CloudTrail has more features and you can dive deeper inside the logs so it depends on your usage and what you expect in the end to make the right choice, I would say that both tools are really useful and bring a lot of benefits to I.T. companies.
Score 10 out of 10
Vetted Review
Verified User
Incentivized
AWS CloudTrail is used for governance, compliance and investigating API usage across all of our AWS accounts.
Every action that is taken by a user or script is an API call so this is logged to [AWS] Cloudtrail. This is critical in keeping a close eye on what users are doing in AWS.
  • Implementation - easy across organisation/accounts
  • AWS support
  • Detailed logs
  • Delay
  • User interface, must send logs elsewhere to view them
It is necessary to enable [AWS] Cloudtrail when using AWS in a production environment, otherwise you will not have any idea what is happening within your accounts. Third party monitoring applications will all require [AWS] CloudTrail to be enabled as well. I would not recommend it solely as a monitoring tool, to get the most out of it you must send the logs elsewhere. Either to Cloudwatch logs or a third party product.
  • Logging
  • Ease of use
  • Allows us to investigate any strange api actions
  • Increases security
  • Audit trail of changes made in AWS
For this specific functionality, I am not aware of any other product that can do what [AWS] Cloudtrail does.
We did not evaluate any other products.
Score 10 out of 10
Vetted Review
Verified User
Incentivized
AWS CloudTrail is essential to our AWS architecture design. It is used by every single account within our AWS Organization (all accounts within the company). From the moment a child account is added to our organization, AWS CloudTrail is baked in and enforced for its entire lifespan. The business problem that it solves is mainly to satisfy requirements for our security and governance teams. On top of the security features, it allows the Cloud Admins to help our users troubleshoot and backtrack when issues arise.
  • AWS native service
  • Extremely powerful
  • Multi-region support
  • Optional encryption
  • File integrity validation
  • [In my experience] Cost can easily get out of control with multiple trails on full logging
  • Logs can be difficult to decipher
Highly recommended. This is an essential service for any Cloud solution. There are probably other products that will accomplish these same objectives but AWS CloudTrail being an integrated native solution is very hard to beat. AWS CloudTrail can also be integrated with SNS, SQS and passed on-prem to data lakes or visualization tools.
  • Multi-region support
  • Log file integrity validation
  • Integration with other AWS services like SNS / SQS
  • "Always on"
  • Saved us from purchasing and managing 3rd party solutions
  • Satisfies Security/Governance requirements
  • No upkeep/maintenance
Our company has not used any alternatives. Within our industry, it seems that AWS CloudTrail is the defacto standard for this type of functionality within the AWS environment.
Return to navigation