Lambda Function Is Not Recorded by CloudTrail

Overview

Lambda function events should be recorded in CloudTrail to gain visibility into when and by whom your Lambda functions are being invoked, allowing you to audit usage, identify potential security issues, troubleshoot problems, and comply with compliance requirements by tracking who triggered the function and what data was passed to it

This check verifies that there is at least one Trail present in the account that records read and write data events for the Lambda service

Vendor

AWS

Cloud Service

Lambda

References

https://aws.amazon.com/blogs/mt/gain-visibility-into-the-execution-of-your-aws-lambda-functions-with-aws-cloudtrail/

Severity

Item Types

AWS::Lambda::Function

AWS::CloudTrail::Trail

Overview​

Vendor​

Cloud Service​

References​

Severity​

Item Types​

Related Item Types​