AWS_Cloudtrail_8
S3 object-level API operations such as GetObject, DeleteObject, and PutObject are called data events. By default, CloudTrail trails don’t log data events and so it is recommended to enable Object-level logging for S3 buckets.
Perform the following in the AWS Management Console:
1. Login to the AWS Management Console and navigate to S3 dashboard at https://console.aws.amazon.com/s3/
2. In the left navigation panel, click buckets and then click on the S3 Bucket Name that you want to examine.
3.Click Properties tab to see in detail bucket configuration.
4.Click on the Object-level logging setting, enter the CloudTrail name for the recording activity. You can choose an existing Cloudtrail or create a new one by navigating to the Cloudtrail console link https://console.aws.amazon.com/cloudtrail/
5.Once the Cloudtrail is selected, check the Read event checkbox, so that object-level logging for Read events is enabled.
Want to Know More?
Learn how our partners are managing their cloud security and compliance with Cloudlytics.
I hereby accept the GDPR and Privacy Policy, by subscribing to the newsletters.
