CloudTrail审计员
probator-auditor-cloudtrail的Python项目详细描述
认证审计员CloudTrail
请在Probator存储库中打开问题
说明
该审计员确保cloudtrail:
- 在多个区域上全局启用
- 记录到中心位置
- 已启用sns/sqs通知并将其发送到正确的队列
- 未启用(所选名称的)区域路径
配置选项
Option name | Default Value | Type | Description |
---|---|---|---|
bucket_name | None | string | Name of the S3 bucket to send CloudTrail logs to |
bucket_region | us-west-2 | string | Region to create S3 bucket in |
cloudtrail_region | us-west-2 | string | Region to create CloudTrail in |
enabled | False | bool | Enable the CloudTrail auditor |
interval | 60 | int | Run frequency in minutes |
resource_tags | None | list | List of tags, in ^{ |
s3_archive_days | 31 | int | Days after which files go to cold storage. Empty or ^{ |
s3_kms_key_id | None | string | KMS Key ID for S3 SSE encryption. If empty, uses the default AWS KMS Key |
sns_topic_name | None | string | SNS topic name for CloudTrail log delivery |
sqs_queue_arn | None | string | ARN of the SQS queue receiving log notifications |
trail_name | us-west-2 | string | Name of the trail to create |
基于防暴游戏的工作Cloud Inquisitor