cloud-trail-encryption-enabled - AWS Config

cloud-trail-encryption-enabled

Checks if AWS CloudTrail is configured to use the server side encryption (SSE)AWS Key Management Service (AWS KMS) encryption. The rule is COMPLIANT if the KmsKeyId is defined.

Identifier: CLOUD_TRAIL_ENCRYPTION_ENABLED

Trigger type: Periodic

AWS Region: All supported AWS regions

Parameters:

None

AWS CloudFormation template

To create AWS Config managed rules with AWS CloudFormation templates, see Creating AWS Config Managed Rules With AWS CloudFormation Templates.