AWS service integrations with CloudTrail logs CloudTrail integration with Amazon EventBridge CloudTrail integration with AWS Organizations CloudTrail integration with AWS Control Tower CloudTrail integration with Amazon Security Lake CloudTrail Lake integration with Amazon Athena CloudTrail Lake integration with AWS Config CloudTrail Lake integration with AWS Audit Manager AWS service topics for CloudTrail Unsupported services

CloudTrail supported services and integrations

CloudTrail supports logging events for many AWS services. You can find the specifics for each supported service in that service's guide. For a list of service-specific topics, see AWS service topics for CloudTrail. In addition, some AWS services can be used to analyze and act upon data collected in CloudTrail logs.

Note

To see the list of supported Regions for each service, see Service endpoints and quotas in the Amazon Web Services General Reference.

Topics

AWS service integrations with CloudTrail logs
CloudTrail integration with Amazon EventBridge
CloudTrail integration with AWS Organizations
CloudTrail integration with AWS Control Tower
CloudTrail integration with Amazon Security Lake
CloudTrail Lake integration with Amazon Athena
CloudTrail Lake integration with AWS Config
CloudTrail Lake integration with AWS Audit Manager
AWS service topics for CloudTrail
CloudTrail unsupported services

AWS service integrations with CloudTrail logs

Note

You can also use CloudTrail Lake to query and analyze your events. CloudTrail Lake queries offer a deeper and more customizable view of events than simple key and value lookups in Event history, or running LookupEvents. CloudTrail Lake users can run complex Standard Query Language (SQL) queries across multiple fields in a CloudTrail event. For more information, see Working with AWS CloudTrail Lake and Copying trail events to CloudTrail Lake.

CloudTrail Lake event data stores and queries incur CloudTrail charges. For more information about CloudTrail Lake pricing, see AWS CloudTrail Pricing.

You can configure other AWS services to further analyze and act upon the event data collected in CloudTrail logs. For more information, see the following topics.

AWS Service	Topic	Description
Amazon Athena	Querying AWS CloudTrail Logs	Using Athena with CloudTrail logs is a powerful way to enhance your analysis of AWS service activity. For example, you can use queries to identify trends and further isolate activity by attribute, such as source IP address or user. You can automatically create tables for querying logs directly from the CloudTrail console, and use those tables to run queries in Athena. For more information, see Creating a Table for CloudTrail Logs in the CloudTrail Console in the Amazon Athena User Guide. Note Running queries in Amazon Athena incurs additional costs. For more information, see Amazon Athena Pricing.
Amazon CloudWatch Logs	Monitoring CloudTrail Log Files with Amazon CloudWatch Logs	You can configure CloudTrail with CloudWatch Logs to monitor your trail logs and be notified when specific activity occurs. For example, you can define CloudWatch Logs metric filters that will trigger CloudWatch alarms and send notifications to you when those alarms are triggered. Note Standard pricing for Amazon CloudWatch and Amazon CloudWatch Logs applies. For more information, see Amazon CloudWatch Pricing.

AWS Service

Topic

Description

Amazon Athena

Querying AWS CloudTrail Logs

Using Athena with CloudTrail logs is a powerful way to enhance your analysis of AWS service activity. For example, you can use queries to identify trends and further isolate activity by attribute, such as source IP address or user.

You can automatically create tables for querying logs directly from the CloudTrail console, and use those tables to run queries in Athena. For more information, see Creating a Table for CloudTrail Logs in the CloudTrail Console in the Amazon Athena User Guide.

Note

Running queries in Amazon Athena incurs additional costs. For more information, see Amazon Athena Pricing.

Amazon CloudWatch Logs

Monitoring CloudTrail Log Files with Amazon CloudWatch Logs

You can configure CloudTrail with CloudWatch Logs to monitor your trail logs and be notified when specific activity occurs. For example, you can define CloudWatch Logs metric filters that will trigger CloudWatch alarms and send notifications to you when those alarms are triggered.

Note

Standard pricing for Amazon CloudWatch and Amazon CloudWatch Logs applies. For more information, see Amazon CloudWatch Pricing.

CloudTrail integration with Amazon EventBridge

Amazon EventBridge is an AWS service that delivers a near real-time stream of system events that describe changes in AWS resources. In EventBridge, you can create rules that responds to events recorded by CloudTrail. For more information, see Create a rule in Amazon EventBridge.

You can deliver events that you are subscribed to on your trail to EventBridge by creating a rule with the EventBridge console.

From the EventBridge console:

Choose the AWS API Call via CloudTrail detail-type to deliver CloudTrail data and management events with an eventType of AwsApiCall. To record events with a detail-type value of AWS API Call via CloudTrail, you must have a trail that is currently logging management or data events.
Choose the AWS Console Sign In via CloudTrail detail-type to deliver AWS Management Console sign-in events. To record events with a detail-type of AWS Console Sign In via CloudTrail, you must have a trail that is currently logging management events.
Choose the AWS Insight via CloudTrail detail-type to deliver Insights events. To record events with a detail-type value of AWS Insight via CloudTrail, you must have a trail that is currently logging Insights events. For information about logging Insights events, see Logging Insights events.

For more information about how to create a trail, see Creating a trail with the CloudTrail console.

CloudTrail integration with AWS Organizations

The management account for an AWS Organizations organization can add a delegated administrator to manage the organization's CloudTrail resources. You can create an organization trail or organization event data store in the management account or delegated administrator account for an organization that collects all event data for all AWS accounts in an organization in AWS Organizations. Creating an organization trail or organization event data store helps you define a uniform event logging strategy for your organization.

CloudTrail integration with AWS Control Tower

AWS Control Tower sets up a new CloudTrail organization trail logging management events when you set up a landing zone. When you enroll an account into AWS Control Tower, your account is governed by the organization trail for the AWS Control Tower organization. If you have an existing organization trail in that account, you may see duplicate charges unless you delete the existing trail for the account before you enroll it in AWS Control Tower. You can view the Trails page on the CloudTrail console to see whether any organization trails have been created. For more information about AWS Control Tower, see About logging in AWS Control Tower in the AWS CloudTrail User Guide.

CloudTrail integration with Amazon Security Lake

Security Lake can collect logs associated with CloudTrail management events and CloudTrail data events for S3 and Lambda. For more information, see CloudTrail event logs in the Amazon Security Lake User Guide.

To collect CloudTrail management events in Security Lake, you must have at least one CloudTrail multi-Region organization trail that collects read and write CloudTrail management events.

CloudTrail Lake integration with Amazon Athena

You can federate an event data store to see the metadata associated with the event data store in the AWS Glue Data Catalog and run SQL queries on the event data using Amazon Athena. The table metadata stored in the AWS Glue Data Catalog lets the Athena query engine know how to find, read, and process the data that you want to query. For more information, see Federate an event data store.

CloudTrail Lake integration with AWS Config

You can create an event data store to include AWS Config configuration items, and use the event data store to investigate non-compliant changes to your production environments. For more information, see Create an event data store for configuration items with the console.

CloudTrail Lake integration with AWS Audit Manager

You can create an event data store for AWS Audit Manager evidence by using the Audit Manager console. For more information about aggregating evidence in CloudTrail Lake using Audit Manager, see Understanding how evidence finder works with CloudTrail Lake in the AWS Audit Manager User Guide.

AWS service topics for CloudTrail

You can learn more about how the events for individual AWS services are recorded in CloudTrail logs, including example events for that service in log files. For more information about how specific AWS services integrate with CloudTrail, see the topic about integration in the individual guide for that service.

Services that are still in preview, or not yet released for general availability (GA), or which don't have public APIs, are not considered supported.

Note

To see the list of supported Regions for each service, see Service endpoints and quotas in the Amazon Web Services General Reference.

For information about which services log data events, see Data events.

AWS Service	CloudTrail Topics	Support began
Amazon API Gateway	Log API management calls to Amazon API Gateway Using AWS CloudTrail	07/09/2015
Amazon AppFlow	Logging Amazon AppFlow API calls with AWS CloudTrail	04/22/2020
Amazon AppStream 2.0	Logging Amazon AppStream 2.0 API Calls with AWS CloudTrail	04/25/2019
Amazon Athena	Logging Amazon Athena API Calls with AWS CloudTrail	05/19/2017
Amazon Aurora	Monitoring Amazon Aurora API calls in AWS CloudTrail	08/31/2018
Amazon Bedrock	Log Amazon Bedrock API calls using AWS CloudTrail	10/23/2023
Amazon Braket	Amazon Braket API logging with CloudTrail	08/12/2020
Amazon Chime	Log Amazon Chime Administration Calls Using AWS CloudTrail	09/27/2017
Amazon Cloud Directory	Logging Cloud Directory API Calls Using AWS CloudTrail	01/26/2017
Amazon CloudFront	Using AWS CloudTrail to Capture Requests Sent to the CloudFront API	05/28/2014
Amazon CloudSearch	Logging Amazon CloudSearch Configuration Service Calls Using AWS CloudTrail	10/16/2014
Amazon CloudWatch	Logging Amazon CloudWatch API Calls in AWS CloudTrail	04/30/2014
Amazon CloudWatch Logs	Logging Amazon CloudWatch Logs API Calls in AWS CloudTrail	03/10/2016
Amazon CodeCatalyst	Logging CodeCatalyst API calls in connected AWS accounts using AWS CloudTrail	12/01/2022
Amazon CodeGuru Reviewer	Logging Amazon CodeGuru Reviewer API Calls with AWS CloudTrail	12/02/2019
Amazon Cognito	Logging Amazon Cognito API Calls with AWS CloudTrail	02/18/2016
Amazon Comprehend	Logging Amazon Comprehend API Calls with AWS CloudTrail	01/17/2018
Amazon Comprehend Medical	Logging Amazon Comprehend Medical API Calls by Using AWS CloudTrail	11/27/2018
Amazon Connect	Logging Amazon Connect API Calls with AWS CloudTrail	12/11/2019
Amazon Data Firehose	Monitoring Amazon Data Firehose API Calls with AWS CloudTrail	03/17/2016
Amazon Data Lifecycle Manager	Logging Amazon Data Lifecycle Manager API Calls Using AWS CloudTrail	07/24/2018
Amazon Detective	Logging Amazon Detective API calls with AWS CloudTrail	03/31/2020
Amazon DevOps Guru	Logging Amazon DevOps Guru API calls with AWS CloudTrail	05/04/2021
Amazon DocumentDB (with MongoDB compatibility)	Logging Amazon DocumentDB API Calls with AWS CloudTrail	01/09/2019
Amazon DynamoDB	Logging DynamoDB Operations By Using AWS CloudTrail	05/28/2015
Amazon EC2	Log Amazon EC2 API calls using AWS CloudTrail	11/13/2013
Amazon EC2 Auto Scaling	Logging Auto Scaling API Calls By Using CloudTrail	07/16/2014
Amazon EC2 Capacity Blocks	Logging Capacity Blocks API calls with AWS CloudTrail	10/31/2023
Amazon EC2 Image Builder	Logging EC2 Image Builder API calls using CloudTrail	12/02/2019
Amazon Elastic Block Store (Amazon EBS) EBS direct APIs	Logging API Calls Using AWS CloudTrail Log API Calls for the EBS direct APIs with AWS CloudTrail	Amazon EBS: 11/13/2013 EBS direct APIs: 06/30/2020
Amazon Elastic Container Registry (Amazon ECR)	Logging Amazon ECR API Calls By Using AWS CloudTrail	12/21/2015
Amazon Elastic Container Service (Amazon ECS)	Logging Amazon ECS API Calls By Using AWS CloudTrail	04/09/2015
Amazon Elastic File System (Amazon EFS)	Logging Amazon EFS API Calls with AWS CloudTrail	06/28/2016
Amazon Elastic Kubernetes Service (Amazon EKS)	Logging Amazon EKS API Calls with AWS CloudTrail	06/05/2018
Amazon Elastic Transcoder	Logging Amazon Elastic Transcoder API Calls with AWS CloudTrail	10/27/2014
Amazon ElastiCache	Logging Amazon ElastiCache API Calls Using AWS CloudTrail	09/15/2014
Amazon EMR	Logging Amazon EMR API Calls using AWS CloudTrail	04/04/2014
Amazon EMR on EKS	Logging Amazon EMR on EKS API calls using AWS CloudTrail	12/09/2020
Amazon EventBridge	Logging Amazon EventBridge API calls using AWS CloudTrail	07/11/2019
Amazon FinSpace	Querying AWS CloudTrail logs	10/18/2022
Amazon Forecast	Logging Amazon Forecast API Calls with AWS CloudTrail	11/28/2018
Amazon Fraud Detector	Logging Amazon Fraud Detector API Calls with AWS CloudTrail	01/09/2020
Amazon FSx for Lustre	Logging Amazon FSx for Lustre API Calls with AWS CloudTrail	01/11/2019
Amazon FSx for Windows File Server	Monitoring with AWS CloudTrail	11/28/2018
Amazon GameLift	Logging Amazon GameLift API Calls with AWS CloudTrail	01/27/2016
Amazon GuardDuty	Logging Amazon GuardDuty API Calls with AWS CloudTrail	02/12/2018
Amazon Inspector	Logging Amazon Inspector API calls using AWS CloudTrail	11/29/2021
Amazon Inspector Classic	Logging Amazon Inspector Classic API calls with AWS CloudTrail	04/20/2016
Amazon Inspector Scan	Amazon Inspector Scan information in CloudTrail	11/27/2023
Amazon Interactive Video Service	Logging Amazon IVS API Calls with AWS CloudTrail	07/15/2020
Amazon Kendra	Logging Amazon Kendra API calls with AWS CloudTrail and Logging Amazon Kendra Intelligent Ranking API calls with AWS CloudTrail logs	05/11/2020
Amazon Keyspaces (for Apache Cassandra)	Logging Amazon Keyspaces API calls with AWS CloudTrail	01/13/2020
Amazon Managed Service for Apache Flink	Logging Managed Service for Apache Flink API calls with AWS CloudTrail	03/22/2019
Amazon Kinesis Data Streams	Logging Amazon Kinesis Data Streams API Calls Using AWS CloudTrail	04/25/2014
Amazon Kinesis Video Streams	Logging Kinesis Video Streams API Calls with AWS CloudTrail	05/24/2018
Amazon Lex	Logging Amazon Lex API Calls with CloudTrail	08/15/2017
Amazon Lightsail	Logging Lightsail API Calls with AWS CloudTrail	12/23/2016
Amazon Location Service	Logging and monitoring with AWS CloudTrail	12/15/2020
Amazon Lookout for Equipment	Monitoring Amazon Lookout for Equipment	12/01/2020
Amazon Lookout for Metrics	Viewing Amazon Lookout for Metrics API activity in AWS CloudTrail	12/08/2020
Amazon Lookout for Vision	Logging Amazon Lookout for Vision calls with AWS CloudTrail	12/01/2020
Amazon Machine Learning	Logging Amazon ML API Calls By Using AWS CloudTrail	12/10/2015
Amazon Macie	Log Amazon Macie API calls using AWS CloudTrail	05/13/2020
Amazon Managed Blockchain	Logging Amazon Managed Blockchain API calls using AWS CloudTrail Logging Ethereum for Managed Blockchain API calls using AWS CloudTrail (Preview)	04/01/2019
Amazon Managed Grafana	Logging Amazon Managed Grafana API calls using AWS CloudTrail	12/15/2020
Amazon Managed Service for Prometheus	Logging Amazon Managed Service for Prometheus API calls using AWS CloudTrail	12/15/2020
Amazon Managed Streaming for Apache Kafka	Logging API Calls with AWS CloudTrail	12/11/2018
Amazon Managed Workflows for Apache Airflow	Viewing audit logs in AWS CloudTrail	11/24/2020
Amazon MemoryDB	Logging Amazon MemoryDB API calls with AWS CloudTrail	08/19/2021
Amazon MQ	Logging Amazon MQ API Calls Using AWS CloudTrail	07/19/2018
Amazon Neptune	Logging Amazon Neptune API Calls Using AWS CloudTrail	05/30/2018
Amazon One Enterprise	Logging Amazon One Enterprise API calls using AWS CloudTrail	11/27/2023
Amazon OpenSearch Service	Monitoring Amazon OpenSearch Service API calls with AWS CloudTrail	10/01/2015
Amazon Personalize	Logging Amazon Personalize API Calls with AWS CloudTrail	11/28/2018
Amazon Pinpoint	Logging Amazon Pinpoint API Calls with AWS CloudTrail	02/06/2018
Amazon Pinpoint SMS and Voice API	Logging Amazon Pinpoint API Calls with AWS CloudTrail	11/16/2018
Amazon Polly	Logging Amazon Polly API Calls with AWS CloudTrail	11/30/2016
Amazon Q Business	Logging Amazon Q Business API calls using AWS CloudTrail	11/28/2023
Amazon Q Developer	Logging Amazon Q Developer API calls using AWS CloudTrail	11/28/2023
Amazon Quantum Ledger Database (Amazon QLDB)	Logging Amazon QLDB API Calls with AWS CloudTrail	09/10/2019
Amazon QuickSight	Logging Operations with CloudTrail	04/28/2017
Amazon Relational Database Service (Amazon RDS)	Logging Amazon RDS API Calls Using AWS CloudTrail	11/13/2013
Amazon RDS Performance Insights	Logging Amazon RDS API Calls Using AWS CloudTrail The Amazon RDS Performance Insights API is a subset of the Amazon RDS API.	06/21/2018
Amazon Redshift	Logging Amazon Redshift API Calls with AWS CloudTrail	06/10/2014
Amazon Rekognition	Logging Amazon Rekognition API Calls Using AWS CloudTrail	04/6/2018
Amazon Route 53	Using AWS CloudTrail to Capture Requests Sent to the Route 53 API	02/11/2015
Amazon Application Recovery Controller (ARC)	Logging Amazon Application Recovery Controller (ARC) API calls using AWS CloudTrail	07/27/2021
Amazon S3	Logging Amazon S3 API Calls By Using AWS CloudTrail	Management events: 09/01/2015 Data events: 11/21/2016
Amazon S3 Glacier	Logging S3 Glacier API Calls By Using AWS CloudTrail	12/11/2014
Amazon SageMaker AI	Logging Amazon SageMaker AI API Calls with AWS CloudTrail	01/11/2018
Amazon Security Lake	Logging Amazon Security Lake API calls using CloudTrail	05/30/2023
Amazon Simple Email Service (Amazon SES)	Logging Amazon SES API Calls By Using AWS CloudTrail	05/07/2015
Amazon Simple Notification Service (Amazon SNS)	Logging Amazon SNS API Calls using AWS CloudTrail	10/09/2014
Amazon Simple Queue Service (Amazon SQS)	Logging Amazon SQS API Actions Using AWS CloudTrail	07/16/2014
Amazon Simple Workflow Service (Amazon SWF)	Recording API calls with AWS CloudTrail	Management events: 05/13/2014 Data events: 02/14/2024
Amazon Textract	Logging Amazon Textract API Calls with AWS CloudTrail	05/29/2019
Amazon Timestream	Logging Timestream API calls with AWS CloudTrail	09/30/2020
Amazon Transcribe	Logging Amazon Transcribe API Calls with AWS CloudTrail	06/28/2018
Amazon Translate	Logging Amazon Translate API Calls with AWS CloudTrail	04/04/2018
Amazon Verified Permissions	Logging Amazon Verified Permissions API calls using AWS CloudTrail	06/13/2023
Amazon Virtual Private Cloud (Amazon VPC)	Logging API Calls Using AWS CloudTrail The Amazon VPC API is a subset of the Amazon EC2 API.	11/13/2013
Amazon VPC Lattice	CloudTrail logs	03/31/2023
Amazon VPC Reachability Analyzer	Logging Reachability Analyzer API calls using AWS CloudTrail	11/27/2023
Amazon WorkDocs	Logging Amazon WorkDocs API Calls By Using AWS CloudTrail	08/27/2014
Amazon WorkMail	Logging Amazon WorkMail API Calls Using AWS CloudTrail	12/12/2017
Amazon WorkSpaces	Logging Amazon WorkSpaces API Calls by Using CloudTrail	04/09/2015
Amazon WorkSpaces Thin Client	Logging Amazon WorkSpaces Thin Client API calls using AWS CloudTrail	11/26/2023
Amazon WorkSpaces Web	Logging Amazon WorkSpaces Web API calls using AWS CloudTrail	11/30/2021
Application Auto Scaling	Logging Application Auto Scaling API calls with AWS CloudTrail	10/31/2016
AWS Account Management	Logging AWS Account Management API calls using AWS CloudTrail	10/01/2021
AWS Amplify	Logging Amplify API calls using AWS CloudTrail	11/30/2020
AWS App Mesh	Logging App Mesh API Calls with AWS CloudTrail	AWS App Mesh 10/30/2019 App Mesh Envoy Management Service 03/18/2022
AWS App Runner	Logging App Runner API calls with AWS CloudTrail	05/18/2021
AWS AppConfig	Logging AWS AppConfig API calls using AWS CloudTrail	Management events: 07/31/2020 Data events: 01/04/2024
AWS AppFabric	Logging AWS AppFabric API calls using AWS CloudTrail	06/27/2023
AWS Application Discovery Service	Logging Application Discovery Service API Calls with AWS CloudTrail	05/12/2016
AWS Application Transformation Service	(Backend service used by AWS tools, such as AWS Microservice Extractor for .NET)	08/26/2023
AWS AppSync	Logging AWS AppSync API Calls with AWS CloudTrail	02/13/2018
AWS Artifact	Logging AWS Artifact API calls with AWS CloudTrail	01/27/2023
AWS Audit Manager	Logging AWS Audit Manager API calls with AWS CloudTrail	12/07/2020
AWS Auto Scaling	Logging AWS Auto Scaling API Calls By Using CloudTrail	08/15/2018
AWS B2B Data Interchange	Logging AWS B2B Data Interchange API calls using AWS CloudTrail	12/01/2023
AWS Backup	Logging AWS Backup API Calls with AWS CloudTrail	02/04/2019
AWS Batch	Logging AWS Batch API Calls with AWS CloudTrail	1/10/2018
AWS Billing and Cost Management	Logging AWS Billing and Cost Management API Calls with AWS CloudTrail	06/07/2018
AWS Billing Conductor	Logging AWS Billing Conductor API calls using AWS CloudTrail	03/12/2024
AWS BugBust	Logging BugBust API calls using CloudTrail	06/24/2021
AWS Certificate Manager	Using AWS CloudTrail	03/25/2016
AWS Clean Rooms	Logging AWS Clean Rooms API calls using AWS CloudTrail	03/21/2023
AWS Cloud Map	Logging AWS Cloud Map API Calls with AWS CloudTrail	11/28/2018
AWS Cloud9	Logging AWS Cloud9 API Calls with AWS CloudTrail	01/21/2019
AWS CloudFormation	Logging AWS CloudFormation API Calls in AWS CloudTrail	04/02/2014
AWS CloudHSM	Logging AWS CloudHSM API Calls By Using AWS CloudTrail	01/08/2015
AWS CloudShell	Logging and monitoring in AWS CloudShell	12/15/2020
AWS CloudTrail	AWS CloudTrail API Reference (All CloudTrail API calls are logged by CloudTrail.)	11/13/2013
AWS CodeArtifact	Logging CodeArtifact API calls with AWS CloudTrail	06/10/2020
AWS CodeBuild	Logging AWS CodeBuild API Calls with AWS CloudTrail	12/01/2016
AWS CodeCommit	Logging AWS CodeCommit API Calls with AWS CloudTrail	01/11/2017
AWS CodeDeploy	Monitoring Deployments with AWS CloudTrail	12/16/2014
AWS CodePipeline	Logging CodePipeline API calls with AWS CloudTrail	07/09/2015
AWS CodeStar	Logging AWS CodeStar API Calls with AWS CloudTrail	06/14/2017
AWS CodeStar Notifications	Logging AWS CodeStar Notifications API Calls with AWS CloudTrail	11/05/2019
AWS Config	Logging AWS Config API Calls By with AWS CloudTrail	02/10/2015
AWS Control Catalog	Logging AWS Control Catalog API calls using AWS CloudTrail	04/08/2024
AWS Control Tower	Logging AWS Control Tower Actions with AWS CloudTrail	08/12/2019
AWS Data Pipeline	Logging AWS Data Pipeline API Calls by using AWS CloudTrail	12/02/2014
AWS Database Migration Service (AWS DMS)	Logging AWS Database Migration Service API Calls Using AWS CloudTrail	02/04/2016
AWS DataSync	Logging AWS DataSync API Calls with AWS CloudTrail	11/26/2018
AWS Deadline Cloud	Logging Deadline Cloud API calls using AWS CloudTrail	04/02/2024
AWS Device Farm	Logging AWS Device Farm API Calls By Using AWS CloudTrail	07/13/2015
AWS Direct Connect	Logging AWS Direct Connect API Calls in AWS CloudTrail	03/08/2014
AWS Directory Service	Logging AWS Directory Service API Calls by Using CloudTrail	05/14/2015
AWS Directory Service Data	Logging AWS Directory Service Data API calls using AWS CloudTrail	09/18/2024
AWS Elastic Beanstalk (Elastic Beanstalk)	Using Elastic Beanstalk API Calls with AWS CloudTrail	03/31/2014
AWS Elastic Disaster Recovery	Logging AWS Elastic Disaster Recovery API calls using AWS CloudTrail	11/17/2021
AWS Elemental MediaConnect	Logging AWS Elemental MediaConnect API Calls with AWS CloudTrail	11/27/2018
AWS Elemental MediaConvert	Logging AWS Elemental MediaConvert API Calls with CloudTrail	11/27/2017
AWS Elemental MediaLive	Logging MediaLive API Calls with AWS CloudTrail	01/19/2019
AWS Elemental MediaPackage	Logging AWS Elemental MediaPackage API Calls with AWS CloudTrail	12/21/2018
AWS Elemental MediaStore	Logging AWS Elemental MediaStore API Calls with CloudTrail	11/27/2017
AWS Elemental MediaTailor	Logging AWS Elemental MediaTailor API Calls with AWS CloudTrail	02/11/2019
AWS End User Messaging SMS	Logging AWS End User Messaging SMS API calls using AWS CloudTrail	10/10/2024
AWS End User Messaging Social	Logging AWS End User Messaging Social API calls using AWS CloudTrail	10/10/2024
AWS Entity Resolution	Logging AWS Entity Resolution API calls using AAWS CloudTrail	07/26/2023
AWS Fault Injection Service	Log API calls with AWS CloudTrail	03/15/2021
AWS Firewall Manager	Logging AWS Firewall Manager API Calls with AWS CloudTrail	04/05/2018
AWS Global Accelerator	Logging AWS Global Accelerator API Calls with AWS CloudTrail	11/26/2018
AWS Glue	Logging AWS Glue Operations Using AWS CloudTrail	11/07/2017
AWS Ground Station	Logging AWS Ground Station API Calls with AWS CloudTrail	05/31/2019
AWS Health	Logging AWS Health API Calls with AWS CloudTrail	11/21/2016
AWS Health Dashboard	Logging AWS Health API Calls with AWS CloudTrail	12/01/2016
AWS HealthImaging	Logging AWS HealthImaging API calls using AWS CloudTrail	07/26/2023
AWS HealthLake	Logging AWS HealthLake API calls with AWS CloudTrail	12/07/2020
AWS HealthOmics	Logging AWS HealthOmics API calls using AWS CloudTrail	11/29/2022
AWS IAM Identity Center	Logging IAM Identity Center API Calls with AWS CloudTrail	12/07/2017
AWS IAM Identity Center – SCIM	Logging IAM Identity Center API Calls with AWS CloudTrail	10/28/2024
AWS Identity and Access Management (IAM)	Logging IAM Events with AWS CloudTrail	11/13/2013
AWS IoT	Logging AWS IoT API Calls with AWS CloudTrail	04/11/2016
AWS IoT Analytics	Logging AWS IoT Analytics API calls with AWS CloudTrail	04/23/2018
AWS IoT Events	Understanding AWS IoT Events log file entries	06/11/2019
AWS IoT Greengrass	Logging AWS IoT Greengrass API Calls with AWS CloudTrail	10/29/2018
AWS IoT Greengrass V2	Log AWS IoT Greengrass V2 API calls with AWS CloudTrail	12/14/2020
AWS IoT SiteWise	Logging AWS IoT SiteWise API calls with AWS CloudTrail	04/29/2020
AWS Key Management Service (AWS KMS)	Logging AWS KMS API Calls using AWS CloudTrail	11/12/2014
AWS Lake Formation	Logging AWS Lake Formation API Calls Using AWS CloudTrail	08/09/2019
AWS Lambda	Logging AWS Lambda API Calls By Using AWS CloudTrail	Management events: 04/09/2015 Data events: 11/30/2017
AWS Launch Wizard	Logging AWS Launch Wizard API calls using AWS CloudTrail	11/08/2023
AWS License Manager	Logging AWS License Manager API Calls with AWS CloudTrail	03/01/2019
AWS Mainframe Modernization	Logging AWS Mainframe Modernization API calls using AWS CloudTrail	06/08/2022
AWS Managed Services	Log management in AMS Accelerate	12/21/2016
AWS Marketplace Agreements	Logging Agreements API Calls using AWS CloudTrail	09/01/2023
AWS Marketplace Deployment Service	Logging AWS Marketplace Deployment Service calls with CloudTrail	11/29/2023
AWS Marketplace Discovery	Logging AWS Marketplace Discovery API calls using AWS CloudTrail	12/15/2022
AWS Marketplace Metering Service	Logging AWS Marketplace API Calls with AWS CloudTrail	08/22/2018
AWS Migration Hub	Logging AWS Migration Hub API Calls with AWS CloudTrail	08/14/2017
AWS Migration Hub Journeys	Logging AWS Migration Hub Journeys API calls with AWS CloudTrail	12/03/2024
AWS Network Firewall	Logging calls to the AWS Network Firewall API with AWS CloudTrail	11/17/2020
AWS OpsWorks for Chef Automate	Logging AWS OpsWorks for Chef Automate API Calls with AWS CloudTrail	07/16/2018
AWS OpsWorks for Puppet Enterprise	Logging OpsWorks for Puppet Enterprise API Calls with AWS CloudTrail	07/16/2018
AWS OpsWorks Stacks	Logging AWS OpsWorks Stacks API Calls with AWS CloudTrail	06/04/2014
Oracle Database@AWS	Logging Oracle Database@AWS API Calls with AWS CloudTrail	12/01/2024
AWS Organizations	Logging AWS Organizations API calls with AWS CloudTrail	02/27/2017
AWS Outposts	Logging AWS Outposts API calls with AWS CloudTrail	02/04/2020
AWS Panorama	AWS Panorama API Reference	10/20/2021
AWS Payment Cryptography	Logging AWS Payment Cryptography API calls using AWS CloudTrail	06/08/2023
AWS Private 5G	Logging AWS Private 5G API calls using AWS CloudTrail	08/11/2022
AWS Private Certificate Authority (AWS Private CA)	Using CloudTrail	04/04/2018
AWS Proton	Logging and monitoring in AWS Proton	06/09/2021
AWS re:Post Private	Logging AWS re:Post Private API calls using AWS CloudTrail	11/26/2023
AWS Resilience Hub	AWS CloudTrail	11/10/2021
AWS Resource Access Manager (AWS RAM)	Logging AWS RAM API Calls with AWS CloudTrail	11/20/2018
AWS Resource Explorer	Logging AWS Resource Explorer API calls using AWS CloudTrail	11/07/2022
AWS Resource Groups	Logging and monitoring in Resource Groups	06/29/2018
AWS RoboMaker	Logging AWS RoboMaker API Calls with AWS CloudTrail	01/16/2019
AWS Secrets Manager	Monitor the Use of Your AWS Secrets Manager Secrets	04/05/2018
AWS Security Hub	Logging AWS Security Hub API Calls with AWS CloudTrail	11/27/2018
AWS Security Incident Response	Logging AWS Security Incident Response API calls using AWS CloudTrail	12/01/2024
AWS Security Token Service (AWS STS)	Logging IAM Events with AWS CloudTrail The IAM topic includes information for AWS STS.	11/13/2013
AWS Serverless Application Repository	Logging AWS Serverless Application Repository API Calls with AWS CloudTrail	02/20/2018
AWS Service Catalog	Logging Service Catalog API Calls with AWS CloudTrail	07/06/2016
AWS Shield	Logging Shield Advanced API Calls with AWS CloudTrail	02/08/2018
AWS Snowball Edge	Logging AWS Snowball Edge API Calls with AWS CloudTrail	01/25/2019
AWS Step Functions	Logging AWS Step Functions API Calls with AWS CloudTrail	12/01/2016
AWS Storage Gateway	Logging Storage Gateway API Calls by Using AWS CloudTrail	12/16/2014
AWS Support	Logging AWS Support API calls with AWS CloudTrail	04/21/2016
AWS Support Recommendations (Preview)	Logging AWS Support Recommendations API calls with AWS CloudTrail	05/22/2024
AWS Systems Manager	Logging AWS Systems Manager API Calls with AWS CloudTrail	11/29/2017
AWS Systems Manager Incident Manager	Logging AWS Systems Manager Incident Manager API calls using AWS CloudTrail	05/10/2021
AWS Telco Network Builder (AWS TNB)	Logging AWS Telco Network Builder API calls using AWS CloudTrail	02/21/2023
AWS Transfer for SFTP	Logging AWS Transfer for SFTP API Calls with AWS CloudTrail	01/08/2019
AWS Transit Gateway	Logging API Calls for Your Transit Gateway Using AWS CloudTrail	11/26/2018
AWS Trusted Advisor	Logging AWS Trusted Advisor console actions with AWS CloudTrail	10/22/2020
AWS Verified Access	Log AWS Verified Access API calls using AWS CloudTrail	04/27/2023
AWS WAF	Logging AWS WAF API Calls with AWS CloudTrail	04/28/2016
AWS Well-Architected Tool	Logging AWS Well-Architected Tool API Calls with AWS CloudTrail	12/15/2020
AWS X-Ray	Logging AWS X-Ray API Calls With CloudTrail	04/25/2018
Elastic Load Balancing	AWS CloudTrail Logging for Your Classic Load Balancer and AWS CloudTrail Logging for Your Application Load Balancer	04/04/2014
FreeRTOS Over-the-Air Updates (OTA)	Logging AWS IoT OTA API Calls with AWS CloudTrail	05/22/2019
Service Quotas	Logging Service Quotas API calls using AWS CloudTrail	06/24/2019

CloudTrail unsupported services

Services that are still in preview, or not yet released for general availability (GA), or which don't have public APIs, are not considered supported.

Additionally, the following AWS services and events are not supported:

AWS Import/Export

For a list of supported AWS services, see AWS service topics for CloudTrail.

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

Supported Regions

Quotas in AWS CloudTrail