Receiving CloudTrail Log Files from Multiple Regions - AWS CloudTrail

Receiving CloudTrail Log Files from Multiple Regions

You can configure CloudTrail to deliver log files from multiple regions to a single S3 bucket for a single account. For example, you have a trail in the US West (Oregon) Region that is configured to deliver log files to a S3 bucket, and a CloudWatch Logs log group. When you apply the trail to all regions, CloudTrail creates a new trail in all other regions. This trail has the original trail configuration. CloudTrail delivers log files to the same S3 bucket and CloudWatch Logs log group. As long as CloudTrail has permissions to write to an S3 bucket, the bucket for a multi-region trail does not have to be in the trail's home region.

To receive CloudTrail log files from multiple regions

  1. Sign in to the AWS Management Console and open the CloudTrail console at

  2. Choose Trails, and then choose a trail name.

  3. Click the pencil icon next to Apply trail to all regions, and then choose Yes.

  4. Choose Save. The original trail is now replicated across all regions. CloudTrail delivers log files from all regions to the specified S3 bucket.


When a new region launches in the aws partition, CloudTrail automatically creates a trail for you in the new region with the same settings as your original trail.

For more information, see the following resources: