Start preparing for your Next Exam | Use coupon – TOGETHER | Avail 30% discount

AWS Config Vs AWS CloudTrail Vs CloudWatch

  1. Home
  3. AWS Certified SysOps Administrator – Associate (SOA-C01)
  5. AWS Config Vs AWS CloudTrail Vs CloudWatch

Config vs CloudTrail

Config

  • reports on what has changed,
  • focused on the configuration of AWS resources and reports with detailed snapshots on how resources have changed.

CloudTrail

  • reports on who made the change, when, and from which location.
  • Focuses on the events, or API calls, that drive changes in resources
  • focuses on the user, application, and activity performed on the system.

CloudWatch vs CloudTrail

CloudWatch

  • It is a monitoring service for AWS resources and applications.
  • It can
    • collect and track metrics
    • collect and monitor log files
    • set alarms
  • Logs are then stored in an S3 bucket
  • Logs reports on application logs
  • Events are near real time stream of system events
  • Events describe changes to AWS resources.
  • Usually delivers metric data in 5 minutes periods for basic monitoring and 1 minute periods for detailed monitoring.
  • Logs Agent will send log data every five seconds by default.

CloudTrail

  • It is a web service that records API activity in AWS account.
  • It logs information on
  • who made a request
    • the services used
    • the actions performed
    • parameters for the actions
    • the response elements returned by the AWS service.
  • Stores Logs in specific log group.
  • Logs provide specific information on what occurred in AWS account.
  • focuses more on AWS API calls made in AWS account.
  • helps in meeting compliance and regulatory standards.
  • Usually delivers an event within 15 minutes of the API call.
Menu