Optional
advancedSpecifies an advanced event selector for enabling data event logging. Fields documented below. Conflicts with event_selector
.
Optional
cloudLog group to which CloudTrail logs will be delivered.
Optional
enableWhether log file integrity validation is enabled. Defaults to false
.
Optional
enableEnables logging for the trail. Defaults to true
. Setting this to false
will pause logging.
Optional
eventSpecifies an event selector for enabling data event logging. Fields documented below. Please note the CloudTrail limits when configuring these. Conflicts with advanced_event_selector
.
Optional
includeWhether the trail is publishing events from global services such as IAM to the log files. Defaults to true
.
Optional
insightConfiguration block for identifying unusual operational activity. See details below.
Optional
isWhether the trail is created in the current region or in all regions. Defaults to false
.
Optional
isWhether the trail is an AWS Organizations trail. Organization trails log events for the master account and all member accounts. Can only be created in the organization master account. Defaults to false
.
Optional
kmsKMS key ARN to use to encrypt the logs delivered by CloudTrail.
Optional
nameName of the trail.
Optional
s3S3 bucket designated for publishing log files.
Optional
s3S3 key prefix that follows the name of the bucket you have designated for log file delivery.
Optional
snsName of the Amazon SNS topic defined for notification of log file delivery.
Optional
tagsMap of tags to assign to the trail. If configured with a provider default_tags
configuration block present, tags with matching keys will overwrite those defined at the provider-level.
Generated using TypeDoc
The set of arguments for constructing a Trail resource.