Monitor API Calls Made to an AWS Account with CloudTrail
In this lab, you’ll practice configuring AWS CloudTrail to monitor API calls made to your AWS Account. When you’re finished with this lab, you’ll have real world experience configuring AWS CloudTrail to help you safeguard your AWS Accounts.
* Our Labs are Available for Enterprise and Professional plans only. Terms and conditions apply.
Jason Mitschke has over 18 years of experience in IT and has a genuine love of technology and teaching others about technology. He initially started out as a software developer in the .NET space. As his career progressed and leadership opportunities presented themselves, Jason moved in to a management role. While transitioning he became a certified Scrum Master to assist with his effectiveness and influence over his teams. A task that Jason enjoys is helping his teams work through and manage the... moreir project tasks.
Jason has a real passion for IT in general and loves to develop software. Jason enjoys helping folks solve problems with technology and will ensure he understands the issue and educate where necessary to ensure all expectations are met/understood. He also loves to sit at a white board and discuss architecture and patterns. A good healthy debate on an approach to efficiently tackle a problem is always a fun exercise in his opinion.
Create and Monitor a CloudTrail Trail Using Read and Write Events
You’ll learn how to set up CloudTrail to monitor API calls made to your AWS Account. The trail will be set up to monitor for read/write events. You’ll verify the trail by performing an action against your account and see the event in the console.
Edit and Monitor a CloudTrail Trail Configured to Capture Data Events
You’ll learn how to edit an existing CloudTrail to monitor for data events executed against S3 buckets. You’ll verify the trail by performing an action against your account and see the event in the console.
Edit a CloudTrail Trail to Send Output to CloudWatch
You’ll learn how to edit an existing CloudTrail to allow its monitoring results to be viewed in CloudWatch. You’ll make an API call to your AWS Account and confirm the event information can be found and viewed within CloudWatch.
Validate CloudTrail Log File Integrity
You’ll learn how to validate the integrity of your CloudTrail log file. You will verify that the Log File Validation setting is enabled, and make a CLI call to verify that your log file is valid.
Provided environment for hands-on practice
We will provide the credentials and environment necessary for you to practice right within your browser.
Follow along with the author’s guided walkthrough and build something new in your provided environment!
Did you know?
On average, you retain 75% more of your learning if you get time for practice.