Logging to CloudTrail

Logging to CloudTrail

  1. Access AWS Management Console
  • Find S3
  • Select S3

test cloudtrail

  1. In the S3 interface
  • Select Buckets
  • Select kms-key-s3

test cloudtrail

  1. Next we select the cloudtrail/ folder

test cloudtrail

  1. Next step
  • You follow the path and see that in the cloudtrail/ folder there are no logs recorded

test cloudtrai

  1. Go back to kms-key-s3
  • Select Upload

test cloudtrai

  1. In the Upload section
  • Select Add files
  • Select File to download in section 4.2
  • Press Open

test cloudtrai

  1. Next step
  • Select Properties

test cloudtrai

  1. Scroll down to the Server-side encryption section
  • Server-side encryption select Specify an encryption key
  • Encryption settings select Override bucket settings for default encryption
  • Encryption type select Server-side encryption with AWS Key Management Service keys (SSE-KMS)
  • AWS KMS key select Choose from your AWS KMS keys

test cloudtrai

  1. We scroll down to the Available AWS KMS keys section
  • Select kms-key-encrypt-decrypt

test cloudtrai

  1. Scroll down and press Upload

test cloudtrai

  1. Notification of successful upload

test cloudtrai

  1. Go back and select the cloudtrail/ folder

test cloudtrai

  1. You choose the path and see the log has been recorded in the folder cloudtrail/

Here, I upload data to April 16, 2024. The log will automatically create the folder 2024/ > 04/ > 16/. If you upload data to any day, month, or year, the diary will automatically create a folder!

test cloudtrai