cloud-trail-log-file-validation-enabled
Checks if AWS CloudTrail creates a signed digest file with logs. AWS recommends that the file validation must be enabled on all trails. The rule is NON_COMPLIANT if the validation is not enabled.
Identifier: CLOUD_TRAIL_LOG_FILE_VALIDATION_ENABLED
Resource Types: AWS::CloudTrail::Trail
Trigger type: Periodic
AWS Region: All supported AWS regions
Parameters:
- None
AWS CloudFormation template
To create AWS Config managed rules with AWS CloudFormation templates, see Creating AWS Config Managed Rules With AWS CloudFormation Templates.