Mods
AWS

Policy: AWS > Turbot > Audit Trail > CloudTrail > Trail > Type

The type of CloudTrail deployment to use with Guardrails Audit Trail.

CloudTrail has options for multi-region or single region trails, as well as a new option for Organization trails (for customers that leverage AWS Organizations). This provides flexibility in implementation (as well as backwards compatibility - neither multi-region nor organization trails were options when the service launched).

Note that Guardrails must manage your Organization Master account in order to use an Organization trail - this can only be configured from the Organization master account.

Resource Types

This policy targets the following resource types:

Primary Policy

This policy is used with the following primary policy:

Controls

Policy Packs

This policy setting is used by the following policy packs:

Policy Specification

Schema Type
string
Default
A multi-region trail in the `Trail > Global Region` in each account
Valid Values [YAML]
  • A trail in each region of each account
    
  • A multi-region trail in the `Trail > Global Region` in each account
    

Category

In Your Workspace

Developers