CloudTrail auditor
Project description
Description
This auditor ensures that CloudTrail:
is enabled globally on multi-region
logs to a central location
has SNS/SQS notifications enabled and being sent to the correct queues
and that regional trails (of our chosen name) are not enabled
Configuration Options
Option name |
Default Value |
Type |
Description |
---|---|---|---|
enabled |
False |
bool |
Enable the CloudTrail auditor |
interval |
60 |
int |
Run frequency in minutes |
bucket_account |
CHANGE ME |
string |
Name of the account (must exist), in which to create the S3 bucket where CloudTrail logs will be delivered |
bucket_name |
CHANGE ME |
string |
Name of the S3 bucket to send CloudTrail logs to |
bucket_region |
us-west-2 |
string |
Region where to enable global events logging |
global_cloudtrail_region |
us-west-2 |
string |
Region where to enable the global CloudTrail |
sns_topic_name |
CHANGE ME |
string |
Name of the SNS topic for CloudTrail log delivery |
sqs_queue_account |
CHANGE ME |
string |
Name of the account (must exist) which owns the SQS queue for CloudTrail log delivery notifications |
sqs_queue_name |
SET ME |
string |
Name of the SQS queue |
sqs_queue_region |
us-west-2 |
string |
Region for the SQS queue |
trail_name |
us-west-2 |
string |
Name of the CloudTrail trail region |
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Hashes for cinq-auditor-cloudtrail-1.1.5.tar.gz
Algorithm | Hash digest | |
---|---|---|
SHA256 | 782a5d3ff00d26e1356fe453cf7f93d05ce384e9126eea5fc7fb7436fa5d1dcb |
|
MD5 | 451917aa6183e5519b0c993e0d7d40c2 |
|
BLAKE2b-256 | 97ad25c682bd795f1df5465fa7a37db696e51fc89e472d0e306855c11b48c3e8 |