Logging and monitoring

CloudTrail not enabled in all regions

Risk Level

Informational (4)

Platform(s)
Compliance Frameworks

Description

AWS CloudTrail is a service that enables governance, compliance, operational auditing, and risk auditing of your AWS account. With CloudTrail, you can log, continuously monitor, and retain account activity related to actions across your AWS infrastructure. We identified CloudTrail is not enabled in all regions for this account.
  • Recommended Mitigation

    In order to enhance the visibility of API calls in the account, CloudTrail should be enabled for all regions. Enabling logging with CloudTrail allows you to identify what actions were performed in your account, by who, and on which assets - enabling quicker discovery and response to anomalous activity or events in your account. More details can be found in <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/cloudtrail-getting-started.html" target="_blank" rel="noopener noreferrer">https://docs.aws.amazon.com/awscloudtrail/latest/userguide/cloudtrail-getting-started.html</a>