Deleting a trail with the CloudTrail console
You can delete trails with the CloudTrail console. If an organization's management account or delegated administrator account deletes an organization trail, the trail is removed from all member accounts of the organization.
If you've enabled CloudTrail management events in Amazon Security Lake, you are required to maintain at least one
organizational trail that is multi-Region and logs both read
and
write
management events. You cannot delete a trail if it is the only trail
you have that meets this requirement, unless you turn off CloudTrail management events in Security Lake.
To delete a trail with the CloudTrail console
-
Sign in to the AWS Management Console and open the CloudTrail console at https://console.aws.amazon.com/cloudtrail/
. -
Open the Trails page of the CloudTrail console.
-
Choose the trail name.
-
At the top of the trail details page, choose Delete.
-
When you are prompted to confirm, choose Delete to delete the trail permanently. The trail is removed from the list of trails. Log files that were already delivered to the Amazon S3 bucket are not deleted and continue to incur S3 charges.
Note
Content delivered to Amazon S3 buckets might contain customer content. For more information about removing sensitive data, see Emptying a bucket and Deleting a bucket in the Amazon S3 User Guide.