Posted On: Apr 11, 2017
AWS CloudTrail now allows you to add data events, management events, and activity filters during the CloudTrail configuration setup in the console. With data events logging, you can record all API actions on Amazon S3 objects and receive detailed information, such as the S3 object level API activity, AWS account of the caller, and time of the API call. With management events logging, you can record operations that occur on your AWS accounts and resources, such as administrative actions to create, delete, and modify EC2 instances or user access activities. Activity filters allow you to specify read-only, write-only, or read/write account activity collection for management and data events.
Previously, data events and activity filters could only be added after the initial AWS CloudTrail setup was completed. Now, data events, management events, and activity filters can be configured during the initial setup. Visit documentation for more information.
For more information on CloudTrail: