0
0
AWScloud~5 mins

CloudTrail for API auditing in AWS - Cheat Sheet & Quick Revision

Choose your learning style9 modes available
LearnWhyDeepVisualTryChallengeProjectRecallTime
Recall & Review
beginner
What is AWS CloudTrail?
AWS CloudTrail is a service that records API calls made in your AWS account. It helps you track who did what, when, and from where.
Click to reveal answer
beginner
Why is CloudTrail important for API auditing?
CloudTrail provides a history of API calls, which helps detect unauthorized actions, troubleshoot issues, and meet compliance requirements.
Click to reveal answer
intermediate
What types of events does CloudTrail record?
CloudTrail records management events (like creating or deleting resources) and data events (like reading or writing data in S3 buckets).
Click to reveal answer
intermediate
How does CloudTrail deliver logs?
CloudTrail delivers logs to an Amazon S3 bucket you specify. You can also send logs to CloudWatch Logs for real-time monitoring.
Click to reveal answer
advanced
What is a best practice when setting up CloudTrail for API auditing?
Enable multi-region trails to capture API activity across all regions, and protect your S3 bucket with proper permissions to secure your logs.
Click to reveal answer
What does AWS CloudTrail primarily record?
AAPI calls made in your AWS account
BCPU usage of EC2 instances
CNetwork traffic between AWS services
DBilling and cost reports
Where does CloudTrail store its log files by default?
AAWS Lambda function
BAmazon RDS database
CAmazon S3 bucket
DAmazon DynamoDB table
Which CloudTrail event type records actions like reading data from an S3 bucket?
AData events
BBilling events
CManagement events
DSecurity events
Why should you enable multi-region trails in CloudTrail?
ATo automatically fix security issues
BTo reduce storage costs
CTo speed up EC2 instance launches
DTo capture API activity across all AWS regions
How can you monitor CloudTrail logs in real time?
AStore logs in Amazon S3 only
BSend logs to Amazon CloudWatch Logs
CUse AWS Config
DEnable AWS Shield
Explain how AWS CloudTrail helps with API auditing and security.
Think about how tracking actions helps keep your cloud safe.
You got /4 concepts.
    Describe best practices for setting up CloudTrail to ensure effective API auditing.
    Consider how to get complete logs and keep them safe.
    You got /4 concepts.