Home icon

AWS CloudTrail Lake now supports CloudTrail Insights

News

This article announces the availability of AWS CloudTrail Insights as a data source in AWS CloudTrail Lake. CloudTrail Lake is a managed data lake that allows you to aggregate, store, query, and visualize your AWS activity logs for auditing, security investigations, and troubleshooting.

Specifically, the article covers:

  • CloudTrail Insights helps identify unusual operational activity in your AWS accounts, such as spikes in resource provisioning or bursts of IAM actions.
  • Previously, CloudTrail Insights were only available with CloudTrail trails, but now you can analyze Insights events and AWS management events in CloudTrail Lake.
  • This allows you to correlate unusual activity with the AWS management events that could have led to it.
  • You can use the curated CloudTrail Lake dashboards to get an overview of anomalous behavior in your account, including the type of Insights generated and the source.
  • To get started, create a CloudTrail Lake event data store to collect Insights events.
  • Pricing information for ingestion, query charges, and CloudTrail Insights charges is provided.
  • The feature is available in all AWS Regions where CloudTrail Lake is available.
Go to article

The AWS News Feed is currently looking for gold sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.

Related articles

The AWS News Feed is currently looking for silver sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.