xpk/terraform.aws-baseline-infra
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
93876110d9
terraform.aws-baseline-infra/modules/security_identity_compliance/cloudtrail_cwlogs
History
xpk d47e06df0c
UPD: updated several modules to simplify input variables
2022-09-05 13:52:21 +08:00
..
cloudtrail.tf UPD: updated several modules to simplify input variables 2022-09-05 13:52:21 +08:00
ct-key.tf UPD: updated several modules to simplify input variables 2022-09-05 13:52:21 +08:00
ct-s3-bucket.tf UPD: updated several modules to simplify input variables 2022-09-05 13:52:21 +08:00
cw-loggroup.tf UPD: updated several modules to simplify input variables 2022-09-05 13:52:21 +08:00
main.tf NEW: cloudtrail and cwl 2021-01-26 21:40:02 +08:00
outputs.tf NEW: cloudtrail and cwl 2021-01-26 21:40:02 +08:00
README.md DOC: added readme 2021-01-28 16:36:32 +08:00
variables.tf UPD: updated several modules to simplify input variables 2022-09-05 13:52:21 +08:00

README.md

Overview

This module performs the following tasks:

  • Create KMS key for cloudtrail and CWL encryption
  • Create s3 bucket for cloudtrail use
  • Create cloudtrail
  • Create cloudwatch log group for cloudtrail
  • Create cloudwatch metric filter for CIS1.1
  • Create cloudwatch alarm for CIS1.1

Inputs:

Name Description Type Default Required
application name of application string none yes
environment capacity of environment (prd/dev/lab) string none yes
customer-name owner of aws resources string none yes
project name of project string none yes
default-tags tags to be added to resources list none yes
cloudtrail-retain-days Days before cloudtrail logs are expired on s3 number 90 yes
aws-region-short short name of aws region (e.g. apne1) string none yes