Skip to content

Contact Sales

Loading form...

If this message remains, it may be due to cookies being disabled or to an ad blocker.

Close button
Labs icon Lab
Skills Expanded
Google Cloud Platform icon
Labs

Enable AWS CloudTrail and Protecting CloudTrail Logs

In this lab, you will enable AWS CloudTrail and safeguard the logs that are created by the service. When you’re finished, you’ll have real world experience configuring and protecting AWS CloudTrail and its logs to help you protect your AWS accounts.

* Our Labs are Available for Enterprise and Professional plans only.
Terms and conditions apply.
Contact sales
Google Cloud Platform icon
Labs

Lab info

Rating (11)
Level
Intermediate
Duration
1h 30m
Released
Jan 26, 2024

Lab author

Lab Author: Jason Mitschke
Jason Mitschke
Jason Mitschke has over 18 years of experience in IT and has a genuine love of technology and teaching others about technology. He initially started out as a software developer in the .NET space. As his career progressed and leadership opportunities presented themselves, Jason moved in to a management role. While transitioning he became a certified Scrum Master to assist with his effectiveness and influence over his teams. A task that Jason enjoys is helping his teams work through and manage the... more
Challenge

Enable CloudTrail in Your AWS Account

You’ll learn how to set up CloudTrail to monitor various events within the provided AWS account. You’ll verify the trail by performing an action against the account, and will see the event in the AWS Console.

Challenge

Edit and Monitor a CloudTrail Trail Configured to Capture S3 Data Events

You’ll learn how to edit an existing CloudTrail to monitor for data events executed against S3 buckets. You’ll verify the trail by performing an action against your account, and will see the event in the console.

Challenge

Use Server-side Encryption with AWS KMS Managed Keys

You’ll learn how to create a KMS key that you manage and use it to encrypt your CloudTrail log file. You will create a new KMS key (CMK - Customer Managed Key) with appropriate permissions for CloudTrail and apply it to your CloudTrail trail.

Challenge

Configure Object Lifecycle Management in a CloudTrail Log File S3 Bucket

You’ll learn how to configure object lifecycle management rules for your CloudTrail log file S3 bucket. You will configure specific object lifecycle management rules based on the needs of your business.

Challenge

Validate CloudTrail Log File Integrity

You’ll learn how to validate the integrity of your CloudTrail log file. You will verify that the Log File Validation setting is enabled, and make a CLI call to verify that your log file is valid.

Labs - code icon

Provided environment for hands-on practice

We will provide the credentials and environment necessary for you to practice right within your browser.

Labs - list icon

Guided walkthrough

Follow along with the author’s guided walkthrough and build something new in your provided environment!

Labs - analytic icon

Did you know?

On average, you retain 75% more of your learning if you get time for practice.

Recommended prerequisites

  • AWS S3 Buckets and Policies
  • AWS IAM Users and Policies
  • AWS KMS - CMK
  • Linux command prompt
  • AWS CLI

Start learning by doing today

Contact sales

Contact Sales

Loading form...

If this message remains, it may be due to cookies being disabled or to an ad blocker.

Close button

Ready to skill up
your entire team?

20
Subscriptions
Continue to checkout Continue to checkout
Cancel

With your Pluralsight plan, you can:

With your 30-day pilot, you can:

  • Access thousands of videos to develop critical skills
  • Give up to 50 users access to thousands of video courses
  • Practice and apply skills with interactive courses and projects
  • See skills, usage, and trend data for your teams
  • Prepare for certifications with industry-leading practice exams
  • Measure proficiency across skills and roles
  • Align learning to your goals with paths and channels

Ready to skill up
your entire team?

10
Subscriptions
Continue to checkout
Cancel

With your Pluralsight plan, you can:

With your 30-day pilot, you can:

  • Access thousands of videos to develop critical skills
  • Give up to 50 users access to thousands of video courses
  • Practice and apply skills with interactive courses and projects
  • See skills, usage, and trend data for your teams
  • Prepare for certifications with industry-leading practice exams
  • Measure proficiency across skills and roles
  • Align learning to your goals with paths and channels