remediating cloudtrail-s3-dataevents-enabled

0

Its an aws config managed rule, but I don't see a clear remediation process. is the only way to set up data events in cloudtrail via the console? I don't see any means in boto or the cli.

asked 2 months ago312 views
1 Answer
2
Accepted Answer

Hello.

Check "Data events" when creating a trail with CloudTrail.
With these settings, S3 data events will be recorded in the trail.
https://docs.aws.amazon.com/awscloudtrail/latest/userguide/cloudtrail-create-a-trail-using-the-console-first-time.html

a

b

For AWS CLI, I think the following documentation will be helpful.
Set a data event in the trail using the command "put-event-selector".
https://docs.aws.amazon.com/awscloudtrail/latest/userguide/cloudtrail-additional-cli-commands.html#configuring-event-selector-examples
https://awscli.amazonaws.com/v2/documentation/api/latest/reference/cloudtrail/put-event-selectors.html

profile picture
EXPERT
answered 2 months ago
profile picture
EXPERT
reviewed a month ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions