lza_menace
/
tf-modules
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
ctalarms-whitelist
master
v0.0.1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
tf-modules/security/cloudtrail
History
lalanza808 bc534db02e formatting all templates 4 years ago
..
README.md add cloudtrail module 4 years ago
iam.tf formatting all templates 4 years ago
kms.tf add cloudtrail module 4 years ago
main.tf formatting all templates 4 years ago
output.tf add cloudtrail module 4 years ago
storage.tf add cloudtrail module 4 years ago
variables.tf formatting all templates 4 years ago

README.md

Cloudtrail

Configure AWS Cloudtrail in a given AWS account. Logs all S3 bucket data plane operations by default; see inputs for more info.

https://aws.amazon.com/cloudtrail/

Usage

module "cloudtrail" {
  source = "github.com/lalanza808/tf-modules.git/security/cloudtrail"
}

Inputs

There are a few variables that can be tweaked here. You can also override the default behavior of logging all S3 bucket data plane operations to either log nothing or log some buckets.

  • default_log_bucket - set to empty string to remove all bucket logging
  • activity_log_buckets - list of bucket names to setup extra logging for

See the full list of inputs here: variables.tf

Outputs

output.tf