CloudTrail
nzoschke opened this issue · 3 comments
nzoschke commented
It is always nice to be able to audit KMS access. Should this stack create a CloudTrail?
mwarkentin commented
Cloudtrail can log Lambda invocations, etc. as well. +1!
nzoschke commented
Should be easy with the CloudTrail CF resource:
https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-cloudtrail-trail.html
mwarkentin commented
I believe it can also track lambda invocations now.