Skip to content

Binbash Leverage™

Audit | CloudTrail

binbashar/le-ref-architecture-doc

Binbash Leverage™

binbashar/le-ref-architecture-doc

Home
Home
- Home
- Welcome
- First steps
- How it works
- User guide
- Work with us
- License
First Steps
First Steps
How it works
How it works
- Reference Architecture
  Reference Architecture
  - Overview
  - Reference Architecture | AWS
  - Reference Architecture | EKS
  - General concepts
    General concepts
    
    Why Leverage?
    
    Why our stack?
  - Considerations
- Infra Code Library
  Infra Code Library
- Leverage CLI
- Features
  Features
  - Overview
  - AWS Organization
    AWS Organization
    
    Organization
    
    Accounts
    
    Billing
  - Identities
    Identities
    
    Overview
    
    IAM Roles
  - SSO
  - Costs
  - Security
    Security
    
    Overview
    
    VPN
    
    Services
    
    Certificates
    
    Audit | CloudTrail
    
    IAM Access Analyzer
  - Network
    Network
    
    VPC Topology
    
    VPC Adressing
    
    VPC Peering
    
    TGW Topology
    
    VPC Outbound Traffic
    
    DNS
  - Secrets
  - Compute
    Compute
    
    Overview
    
    K8s Kops
    
    K8s EKS
    
    K8s Service Mesh
    
    Serverless
    
    Tools
  - Database
    Database
    
    Databases
    
    MySQL
    
    PostgresSQL
  - Storage
  - CDN
  - CI/CD
    CI/CD
    
    Overview
    
    ArgoCD
  - Monitoring
    Monitoring
    
    Monitoring
    
    Metrics
    
    Logs
    
    Tracing
    
    APM
    
    Notifications
  - Reliability
    Reliability
    
    Backups
    
    High Availability
    
    Health Checks
    
    Disaster Recovery
- Read More
User guide
User guide
- Pre-requisites
- Reference Architecture | AWS
  Reference Architecture | AWS
- Reference Architecture | Vault
  Reference Architecture | Vault
- Reference Architecture | Ansible
  Reference Architecture | Ansible
  - Configs
  - Workflow
- Leverage CLI
  Leverage CLI
  - Install Leverage CLI
  - Reference
    Reference
    
    Basic features
    
    Commands
    Commands
    
    project
    
    credentials
    
    aws
    
    terraform
    
    run
  - Custom tasks
  - Shell environment
- Features
  Features
  - Overview
  - AWS Organization
    AWS Organization
    
    Organization Init
    
    Invite Legacy accounts
  - Identities
    Identities
    
    gpg
    
    Identities
    
    Credentials
    
    Credentials Vault
  - SSO
  - Costs
  - Security
    Security
    
    VPN
    
    Services
  - Network
    Network
    
    VPC
    
    VPC Peering
    
    DNS
  - Secrets
  - Compute
    Compute
    
    Overview
    
    K8s Kops
    
    K8s EKS
    
    Serverless
  - Database
    Database
    
    Databases
    
    MySQL
    
    PostgresSQL
  - Storage
  - CDN
  - CI/CD
  - Monitoring
    Monitoring
    
    Monitoring
    
    Metrics
    
    Logs
    
    Tracing
    
    APM
  - Reliability
    Reliability
    
    Backups
    
    Disaster Recovery
    
    Health Checks
Work with us
Work with us
- Overview
- Support
  Support
  - Support
  - Updates
    Updates
    
    December 2021
- Leverage vs Competition
- Contribute
- Roadmap
  Roadmap
  - Reference Architecture
    Reference Architecture
    
    Overview
    
    Operational Excellence
    
    Reliability & Performance
    
    Security
    
    Cost Optimization
    
    Demo Applications
  - Leverage CLI
- Careers
- FAQs
- Contact Us

Audit | CloudTrail ¶

AWS CloudTrail monitors and records account activity across your AWS infrastructure, giving you control over storage, analysis, and remediation actions.

Cloudtrail Diagram

Leverage Reference Architecture | Security Audit

CloudTrail module. Key elements:

Destination bucket
KMS Key to files encrypt files
Include global services
Enable multi-regional trail

S3 Bucket Module. Key elements:

Lifecycle rule
Expiration

KMS Key Module. Key elements:

Deletion Window
Policy
Grant permission to the rest of the accounts to use the key

Read More ¶