CloudTrail trails should not be associated with missing SNS topics

Description

By associating a trail with an SNS topic, you can be notified when CloudTrail publishes new log files to your Amazon S3 bucket. The AWS API call history produced by CloudTrail enables security analysis, resource change tracking, and compliance auditing.

Console Remediation Steps

  • Navigate to CloudTrail.

  • In the left pane, select Trails.

  • Select the noncompliant trail.

  • Under General Details, select Edit.

  • Under Additional Settings, check the box to enable SNS notification delivery.

  • Under Create a New SNS Topic, select “New” and enter an SNS topic name, or select “Existing” and choose the desired trail.

CLI Remediation Steps

  • To associate a trail with an SNS topic, replace MYTRAILNAME with your trail name and MYTOPICNAME with your SNS topic name:

    • aws cloudtrail update-trail --name MYTRAILNAME --sns-topic-name MYTOPICNAME