Create a Custom Trail with AWS CloudTrail
In this lab, you'll practice creating a custom CloudTrail Trail focused on capturing write events. When you're finished with this lab, you'll understand how to store and read CloudTrail Events within S3 Bucket or CloudWatch Logs.
Terms and conditions apply.
Challenge
Create an S3 Bucket for CloudTrail Logs
Create an S3 bucket that will serve as storage for CloudTrail Events.
Challenge
Create a CloudWatch Log Group for CloudTrail Events
Create a CloudWatch Log Group to increase readability of CloudTrail Events.
Challenge
Create a Custom CloudTrail Trail
Create a regional write-only CloudTrail Trail, with events being captured by an S3 bucket and a Log Group.
Challenge
Monitor Write Activity of S3 Buckets with CloudTrail
Add an S3 bucket into CloudTrail Trail to capture S3 write events, produce an S3 write event, and locate the event in a CloudWatch Group.
Challenge
Create an EC2 Instance to Produce a CloudTrail Event
Create an EC2 Instance to trigger an EC2 write activity event captured by CloudTrail Trail, as well as locate the event in the CloudWatch Group.
Provided environment for hands-on practice
We will provide the credentials and environment necessary for you to practice right within your browser.
Guided walkthrough
Follow along with the author’s guided walkthrough and build something new in your provided environment!
Did you know?
On average, you retain 75% more of your learning if you get time for practice.
Recommended prerequisites
- Basic AWS S3 knowledge
- Basic AWS CloudWatch Logs knowledge