AWS::CloudTrail::EventDataStoreCloudTrail EventDataStore
A storage lake of event data against which you can run complex SQL-based queries. An event data store can include events that you have logged on your account from the last 7 to 2557 or 3653 days (about seven or ten years) depending on the selected BillingMode.
Properties
16 configurable properties. Click a row to see details.
Filter:
| Property | Type | Flags |
|---|---|---|
AdvancedEventSelectors | Array<AdvancedEventSelector> | |
BillingMode | string | |
ContextKeySelectors | Array<ContextKeySelector> | |
FederationEnabled | boolean | |
FederationRoleArn | string | |
IngestionEnabled | boolean | |
InsightsDestination | string | |
InsightSelectors | Array<InsightSelector> | |
KmsKeyId | string | |
MaxEventSize | string | |
MultiRegionEnabled | boolean | |
Name | string | |
OrganizationEnabled | boolean | |
RetentionPeriod | integer | |
Tags | Array<Tag> | |
TerminationProtectionEnabled | boolean |
Return Values
Values returned after the resource is created. Access these with Fn::GetAtt.
| Attribute | Type | Description |
|---|---|---|
CreatedTimestamp | string | The timestamp of the event data store's creation. |
EventDataStoreArn | string | The ARN of the event data store. |
Status | string | The status of an event data store. Values are STARTING_INGESTION, ENABLED, STOPPING_INGESTION, STOPPED_INGESTION and PENDING_DELETION. |
UpdatedTimestamp | string | The timestamp showing when an event data store was updated, if applicable. UpdatedTimestamp is always either the same or newer than the time shown in CreatedTimestamp. |
Sample CloudFormation Template
A minimal template with required properties and common optional ones.
template.yaml
AWSTemplateFormatVersion: "2010-09-09"
Description: Sample template for AWS::CloudTrail::EventDataStore
Resources:
MyResource:
Type: AWS::CloudTrail::EventDataStore
Properties:
Tags:
- Key: Environment
Value: Production
Name: !Ref "AWS::StackName"Required IAM Permissions
Permissions CloudFormation needs in your IAM role to manage this resource.
create
CloudTrail:CreateEventDataStoreCloudTrail:AddTagsCloudTrail:PutInsightSelectorsCloudTrail:EnableFederationCloudTrail:GetEventDataStoreCloudTrail:PutEventConfigurationiam:PassRoleiam:GetRoleread
CloudTrail:GetEventDataStoreCloudTrail:ListEventDataStoresCloudTrail:GetInsightSelectorsCloudTrail:GetEventConfigurationCloudTrail:ListTagsupdate
CloudTrail:UpdateEventDataStoreCloudTrail:RestoreEventDataStoreCloudTrail:AddTagsCloudTrail:RemoveTagsCloudTrail:StartEventDataStoreIngestionCloudTrail:StopEventDataStoreIngestionCloudTrail:GetEventDataStoreCloudTrail:PutInsightSelectorsdelete
CloudTrail:DeleteEventDataStoreCloudTrail:GetEventDataStoreCloudTrail:DisableFederationglue:DeleteTablelakeformation:DeregisterResourcelist
CloudTrail:ListEventDataStoresCloudTrail:GetEventDataStoreCloudTrail:GetInsightSelectorsCloudTrail:ListTagsLearn AWS the Practical Way
Our bi-weekly newsletter teaches hands-on AWS fundamentals. No certification fluff - just practical knowledge.
Subscribe to NewsletterQuick Facts
ServiceCloudTrail
Properties20
Required0
TaggingSupported
Primary ID
EventDataStoreArnSupported Operations
CreateReadUpdateDeleteList