AWS CloudTrail Reviews

We use AWS CloudTrail as a complete data centre. It is working on a cloud. We have different operating systems. We have completely deployed in the cloud.

There are requirement variations depending on the organisation and their specific needs. There are fundamental concepts related to deployment, AWS, and computing that must be understood. Support is available based on the individual's knowledge of computing and their ability to handle cloud technologies.

CloudTrail is available 24/7. There is no downtime and administration is very simple. The single window console has so many features.

The most valuable aspect of AWS CloudTrail is its availability within the IT environment, making it effective for any customer regardless of PAM or outside.

The solution is very expensive.

I have been using AWS CloudTrail for three years.

The product is stable.

I rate the solution’s stability a seven to eight out of ten.

More than 100 users are using this solution. The solution is used 24/7 and we are planning to increase its usage.

I rate the solution’s scalability an eight out of ten.

AWS doesn't require involvement from IT personnel. Its necessity depends on technical factors, such as DCP, and other considerations. Based on the policies we maintain, technical support teams are required.

When considering other options, there are many service providers offering cloud computing and data centers. We explored providers outside our country. These were the solutions available. However, when it comes to AWS, it stands out as superior due to its managed data centers, especially regarding cybersecurity.

The setup experience was very bad. Initially, when we began migrating our teams and configuring systems like AWS CloudTrail, we encountered some complications. Understanding the administration and navigating access loops resulted in numerous emails. However, after three or four years of experience, we understand the platform. Five to seven people including support are required for deployment.

I rate the initial setup a six out of ten, where one is difficult, and ten is easy.

The third-party integration servers are very good, with no issues. The email solution is not currently available on cloud computing. AWS has a managed email system.

The solution’s maintenance depends on the situation. Sometimes there are critical issues like device issues, application issues, Internet issues, infrastructure issues, or HSA issues. It depends on the team, infrastructure size, and the scope of the cloud. If it is a set of three or four servers, there is no need for a team, the Microsoft support team handles it.

The product is good.

Overall, I rate the solution an eight out of ten.

I use AWS CloudTrail to gather audit logs to determine who, what, where, when, how, and why actions took place within the cloud environment.

I have a use case where I determined that system failures or API failures happen with specific IM roles, and I saw that within the log data, so I reached out to the team responsible for that role and allowed the team to remediate that. AWS CloudTrail has been beneficial as it provided better reliability within the service. It was a blocker, which the team wasn't particularly aware of until I raised it.

What I found most valuable in AWS CloudTrail is that it provides a good context of what's happening in the environment, so it's an excellent way to baseline what's occurring.

I also like that AWS CloudTrail helps with audits.

I have to check if this is still the case, but I know that filtering multiple values within the console is a feature that has yet to exist in AWS CloudTrail.

You can look up a user identity, service, or action, but you can't search for multiple dimensions. For example, you can't combine service and user identity as search filters. If AWS CloudTrail lets you filter more and get a subset of the information on multiple dimensions, that'd be useful.

Besides that, I'm content with the solution, and AWS has made some good improvements over the years.

I've been working with AWS CloudTrail for about six years.

AWS CloudTrail is a stable solution, and I've not seen many performance issues. The performance issue only occurred when the downstream service was affected.

For example, a few years back, AWS had a problem with Amazon S3. Amazon S3 was out of service for six hours or more, which caused massive issues within AWS that led to a downstream effect that affected AWS CloudTrail. It was only one instance in the years I've worked with the solution.

AWS CloudTrail is scalable, and I didn't find any issues with its reliability or ability to scale. Scalability-wise, the solution is a ten.

AWS CloudTrail is easy to deploy, and by default, it's already turned on.

My company deploys AWS CloudTrail in-house. Once the account is provisioned, the service turns on.

AWS CloudTrail is pretty affordable, and I have to double-check, but the service is free to use. I can add logs on the console, but if I want to store logs long-term, then I have to pay a storage fee, but it's relatively inexpensive.

AWS CloudTrail hooks right into Amazon S3, and you can even send your files to CloudWatch if you wish, though that adds to the cost. You can also view certain data events. It's mainly for the control plane of services, but you can view AWS Lambda and Amazon S3 actions, which entails a higher cost. Though not free, the charge is pretty affordable. In terms of cloud spending per year, it's not that high.

AWS CloudTrail gets updated regularly, so I'm using the latest version. It's similar to a SaaS, which means it's consumed in the AWS cloud and not hosted.

I advise anyone looking into implementing AWS CloudTrail to devise a strategy for retrieving logs and integrating the AWS CloudTrail logs into any incident response and detection service. It would be best if you also considered the data retention needed for the log data. The logs will continually add up, and you'll incur more costs over time. Figuring out your log life cycling policy might help reduce the number of logs you're storing.

My rating for AWS CloudTrail is nine out of ten.

Our company uses the solution to monitor cloud services. All cloud activities are stored in the solution. 

We check the solution's logs and compare them to CloudWatch. 

The solution is good as a central logging platform for showing all cloud events. For example, it records new users and their activities or events. When you open the solution, you get good details about what has been going on for the entire day. 

The auditing and compliance points of view are good. 

The solution should incorporate visibility for CloudWatch events so that one view includes everything across both products. 

The event capture timing should be reduced. Currently, you have to wait about 15 minutes after an event happens before you can view it in the log. 

I have been using the solution for four years. 

The stability is good and rated an eight out of ten. 

The scalability is rated an eight out of ten. 

Technical support is very responsive so is rated a nine out of ten. 

Positive

There is no setup because the solution's service is included with the AWS cloud. 

The solution is free if you don't need customizations but is not expensive otherwise. 

CyberArk is good at capturing events but the solution is pretty smart. It is difficult to compare the two products because both are good, scalable, and stable. 

The solution is a good, all-in-one product for logs, security, and compliance that are important in the cloud. Its logs automatically capture publishing, services, events, and anything you create in AWS. 

I rate the solution a nine out of ten. 

AWS CloudTrail is a service provider that enables complaints, operation auditing, and risk auditing for AWS accounts. CloudTrail logs API all across our AWS resources and maintains an event history for AWS accounts. The solution integrates with Amazon S3 buckets, and the logs are stored in the S3 buckets of our choice.

AWS CloudTrail integrates with AWS Config and provides custom event, security, and compliance auditing.

The solution's operation visibility could be improved.

I have been using AWS CloudTrail for more than one year.

AWS CloudTrail is a stable solution.

More than three people are using the solution in our organization.

I am happy with the solution’s technical support.

The solution’s initial setup is easy.

AWS CloudTrail is a cheap solution.

I would recommend the solution to other users. Using AWS CloudTrail has helped us better monitor our organization's operational health. The integration of AWS CloudTrail with other AWS services has helped configure the solution's settings, verify login, and monitor and analyze logs. It is easy for somebody to learn to use AWS CloudTrail for the first time.

Overall, I rate the solution ten out of ten.

We use it for auditing to ensure secure AWS environments. Most of our customers require FSA compliance, which necessitates proper logging and auditing. We've enabled CloudTrail for most services for this reason.

AWS CloudTrail helps in accelerating incident investigation and response. It increases it because I pull out the logs to CloudTrail, and from CloudTrail watch, I'll send it to the Security Hub and do a visualization with Prometheus and Grafana. 

Our software engineer can then visualize and perform a root cause analysis (RCA) of any issues that happen. So, it has accelerated both troubleshooting scenarios and proactive monitoring.

CloudTrail is invaluable for compliance, security, and auditing, especially during audits. It allows me to easily retrieve necessary details for our organization.

However, it does increase the security and compliance angle. This covers everything. For example, if we take a customer from a healthcare perspective, I have all the HIPAA-related compliance services to ensure I can meet those requirements. It's not a problem.

I like Active Directory group policy auditing. If enabled, I receive automatic notifications when someone changes a password, eliminating the need to manually check Active Directory for these events.

It's getting better, but it's not perfect because technology landscapes and use cases constantly evolve. There's a lot happening, so it's not perfect. It's improving.

It is a very stable product. I have not faced any issues in the cloud environment. 

Anyone in our organization using AWS will be using CloudTrail. Security is built into our DNS, it doesn't separate.

So, there are about 40 to 45 end users. 

In the initial stages, when I faced challenges, I used to contact support very frequently. 

However, once I started using CloudTrail for all accounts and became familiar with it, I was able to handle most configuration aspects from a CloudTrail standpoint without needing much assistance from AWS support.

The initial setu is easy. There is a lot of documentation available on the AWS website. I can easily refer to that if I get stuck anywhere. 

Plus, there's a great community available. If I just post a question there, I'm happy to get all the details. 

Whether I was stuck, the community, all the documentation, or white papers provided me with the right solutions and answers. So there were no deployment roadblocks for me.

CloudTrail is a native AWS service, so on-premises deployment isn't possible.

It is a very cheap service because management is a SaaS offering from AWS.

The cost depends on how many files you enable, but it's very compatible with other AWS tools.

My advice depends on whether you're a BFSA customer or a healthcare customer. Specific parameters need to be enabled based on your industry. With that configuration, you'll be able to trigger notifications and pull out data.  

Overall, I would rate the solution an eight out of ten because when you consider all business sectors like healthcare, shipping, retail, manufacturing, and research & development, each generates different types of files and events.  

It's like a native feature. It's like a single audit point for everything AWS. Any changes made by users or roles get saved in CloudTrail. It's gotta be enabled; it's the most important security feature on AWS.

Maybe if we could do direct queries on CloudTrail without needing to export it to Athena, that'd be great. 

I have been using it for three years now. 

It is a stable solution. AWS handles it well.

There are five to six admins using this solution, we don't have separate user groups.

It is a one-click deployment.

CloudTrail itself is free of cost. 

I'd advise to integrate it with your security solution and correlate logs across AWS. That's the single point to start understanding if your account is compromised. And always keep a backup of the logs.

And make sure those logs are kept in a separate AWS account from the main one. First thing any attacker would do is delete those logs to cover their tracks. Forensics becomes very tough without them.

Overall, I would rate the solution a ten out of ten.

Whenever we need to find out who made the API call or who terminated the instance or service. AWS CloudTrail was really helpful for me to figure out who the user is and who has triggered the action or made the API call. It helps find who terminated an instance or service. The tool was very helpful for me. I always check my CloudTrail logs and by username, and I could find a lot of helpful information.

It would be good if we were able to integrate with other services as well. From what I am aware of, we do the monitoring. We can integrate AWS CloudTrail with CloudWatch, Amazon Athena, and EventBridge. If we can integrate AWS CloudTrail with more services, then it can be a more helpful product for the organization.

I have been using AWS CloudTrail for years. I am a customer and user of Amazon tools.

From a scalability point of view, the tool has no issue, and it is completely fine. Scalability-wise, I rate the solution a nine out of ten.

The tool has been set up and integrated with our company's services, so it exists in the cloud environment. Whoever has access to the cloud, mainly the DevOps team uses AWS CloudTrail to identify or zero down the event or the user who made the API call. The DevOps team mostly uses the tool to manage the cloud environment.

I have used AWS CloudFormation.

The product's initial setup phase is not pretty straightforward. I will say that the setup phase is a little bit complex. You should have some knowledge when you are setting up AWS CloudTrail. On a scale of one to ten, I would rate the setup phase a six for the visibility.

From the time perspective, it doesn't take much time if you are aware of how to set up the tool, as it is quite a fast process and can be done in very less time.

AWS CloudTrail's most valuable feature in enhancing your compliance audit is that it gives me the ability to search for users who have made different API calls, which is something I find really helpful in AWS in most cases. I searched for the user who made that API call or identified it easily by using the search feature in AWS CloudTrail.

My company has integrated AWS CloudTrail with Amazon EventBridge and Amazon Athena. When we integrated AWS CloudTrail with Amazon Athena, we could easily enhance our analysis. For example, if I want to identify the trend and isolate some activity by attribute or source IP address, then I will use CloudTrail logs integrated with Amazon Athena. I could easily isolate activities associated with the source IP address.

The tool is easy to use, and I rate it seven out of ten. You need to have some knowledge of AWS CloudTrail because you have to run some queries or filter the source IP address. You should have some knowledge about the tool.

I recommend the tool to others.

I have not used the tool's AI capabilities.

I rate the tool a nine out of ten.

We use the product for monitoring activities of AWS accounts in terms of operational review, governance, and compliance.

The product’s most valuable feature is monitoring. Changes in AWS account at the application and resource level are easily audited with cloudtrail.

The platform’s reporting log sheet feature could be more user-friendly.

We have been using AWS CloudTrail for three years now.

It is a stable product.

We have three administrators using AWS CloudTrail in our organization.

The initial setup is easy. It has default functionality for application and resource-level monitoring of databases.

I rate AWS CloudTrail an eight out of ten. I recommend the solution if you are auditing compliance and security for data usage.