Audit, Monitor & Evaluate with AWS CloudTrail & AWS Config
This lesson has been replaced with new lessons. You can access Tracking and Recording Activity with AWS CloudTrail Managing your Trails within AWS CloudTrail and Introduction to AWS Config Behavior and Setup here*.
This lesson provides an introductory look to two AWS services that are used to help you audit, monitor and evaluate your AWS infrastructure and resources, these being AWS CloudTrail and AWS Config.
Learning Objectives
This lesson has been designed to help you understand how AWS CloudTrail can be used to track, audit, and monitor all API requests made in your AWS account, making it an effective security analysis tool. Also, you will gain an understanding of how AWS Config can help you to:
- Understand what resources you have
- Identify the status of resource configurations
- Review resource relationships
- Log a resource history, including all previous changes against that resource
- Understand if your resources are compliant with specific governance controls
- Provide up to date and accurate auditing information
Once you have completed this lesson, you will be able to determine when and why you would implement AWS CloudTrail and/or AWS Config within your environment.
Intended Audience
This lesson has been created for:
- Security Architects
- Operations Analysts
- Compliance Managers
- Those looking to take the AWS Associate level certifications
Prerequisites:
To get the most from this lesson, you should be familiar with the basic concepts of AWS as well as with some of its core components, such as EC2.