AWS CloudTrail

E293758

AWS service audit logging service cloud service

AWS CloudTrail is a logging and auditing service that records and monitors API calls and account activity across AWS resources for security, compliance, and operational troubleshooting.

Try in SPARQL Jump to: Surface forms Statements Referenced by

All labels observed (5)

Label	Occurrences
AWS CloudTrail canonical	22
CloudTrail Lake	2
AWS CloudTrail Lake	1
CloudTrail	1
CloudTrail Insights	1

Statements (75)

Predicate	Object
instanceOf	AWS service ⓘ audit logging service ⓘ cloud service ⓘ
configurationModel	per-account configuration ⓘ per-organization configuration ⓘ
developedBy	Amazon Web Services ⓘ
hasComponent	AWS CloudTrail self-linksurface differs ⓘ surface form: CloudTrail Insights AWS CloudTrail self-linksurface differs ⓘ surface form: CloudTrail Lake event history ⓘ trails ⓘ
hasPurpose	compliance support ⓘ governance ⓘ operational troubleshooting ⓘ security auditing ⓘ
integratesWith	AWS CloudTrail self-linksurface differs ⓘ surface form: AWS CloudTrail Lake AWS Config ⓘ AWS Identity and Access Management ⓘ AWS Organizations ⓘ AWS Security Hub ⓘ Amazon Athena ⓘ Amazon CloudWatch ⓘ surface form: Amazon CloudWatch Events Amazon CloudWatch ⓘ surface form: Amazon CloudWatch Logs Amazon EventBridge ⓘ Amazon S3 ⓘ
logFormat	JSON ⓘ
monitors	AWS API calls ⓘ AWS account activity ⓘ data events ⓘ management events ⓘ read events ⓘ write events ⓘ
offers	free event history for recent management events ⓘ
partOf	Amazon Web Services ⓘ surface form: Amazon Web Services cloud platform
providedBy	Amazon Web Services ⓘ
records	API call history ⓘ AWS CLI calls ⓘ AWS Management Console sign-in events ⓘ AWS SDK calls ⓘ AWS service-to-service calls ⓘ role activity ⓘ service activity ⓘ user activity ⓘ
regionScope	regional service ⓘ
securityFeature	access control via IAM policies ⓘ tamper-evident logs via integrity validation ⓘ
storesLogsIn	Amazon S3 ⓘ
supportsComplianceStandard	HIPAA evidence collection ⓘ ISO evidence collection ⓘ PCI DSS evidence collection ⓘ SOC evidence collection ⓘ
supportsFeature	API activity search ⓘ AWS CloudTrail self-linksurface differs ⓘ surface form: CloudTrail Lake advanced event selectors ⓘ data event logging ⓘ encryption at rest ⓘ encryption with AWS KMS ⓘ event history ⓘ event selectors ⓘ insights events ⓘ log file integrity validation ⓘ long-term event storage ⓘ management event logging ⓘ multi-region trails ⓘ organization trails ⓘ organization-level logging ⓘ single-region trails ⓘ
supportsResourceType	AWS Lambda ⓘ surface form: AWS Lambda functions Amazon DynamoDB tables ⓘ Amazon S3 buckets ⓘ many AWS resource types ⓘ
usedFor	change tracking ⓘ forensic analysis ⓘ incident response ⓘ regulatory compliance evidence ⓘ user behavior analysis ⓘ

Referenced by (27)

Full triples — surface form annotated when it differs from this entity's canonical label.

Amazon Web Services → offersService → AWS CloudTrail ⓘ

Amazon RDS → integratesWith → AWS CloudTrail ⓘ

Amazon CloudWatch → integratesWith → AWS CloudTrail ⓘ

Amazon S3 → integratesWith → AWS CloudTrail ⓘ

Amazon Elastic Kubernetes Service → integratesWith → AWS CloudTrail ⓘ

Amazon ECS → integratesWith → AWS CloudTrail ⓘ

AWS Fargate → integratesWith → AWS CloudTrail ⓘ

Amazon SageMaker → integratesWith → AWS CloudTrail ⓘ

AWS CloudFormation → supportsIntegration → AWS CloudTrail ⓘ

AWS CloudTrail → integratesWith → AWS CloudTrail self-linksurface differs ⓘ

this entity surface form: AWS CloudTrail Lake

AWS CloudTrail → supportsFeature → AWS CloudTrail self-linksurface differs ⓘ

this entity surface form: CloudTrail Lake

AWS CloudTrail → hasComponent → AWS CloudTrail self-linksurface differs ⓘ

this entity surface form: CloudTrail Lake

AWS CloudTrail → hasComponent → AWS CloudTrail self-linksurface differs ⓘ

this entity surface form: CloudTrail Insights

AWS Identity and Access Management → integratesWith → AWS CloudTrail ⓘ

AWS Key Management Service → integratesWith → AWS CloudTrail ⓘ

AWS CodeCommit → integratesWith → AWS CloudTrail ⓘ

Amazon API Gateway → integratesWith → AWS CloudTrail ⓘ

Amazon SNS → supportsIntegration → AWS CloudTrail ⓘ

Amazon SQS → integratesWith → AWS CloudTrail ⓘ

Amazon ElastiCache → integratesWith → AWS CloudTrail ⓘ

Amazon Neptune → integratesWith → AWS CloudTrail ⓘ

Amazon DocumentDB → integratesWith → AWS CloudTrail ⓘ

AWS Config → integratesWith → AWS CloudTrail ⓘ

AWS Config → supportsResourceType → AWS CloudTrail ⓘ

AWS Control Tower → integratesWith → AWS CloudTrail ⓘ

Amazon EFS → integratesWith → AWS CloudTrail ⓘ

Sumo Logic → integratesWith → AWS CloudTrail ⓘ

this entity surface form: CloudTrail