To integrate AWS CloudTrail into Regulait, on the Available Integrations page, click on the CloudTrail icon (marked with an arrow below).
the CloudTrail icon is marked with an arrow In the "Add Integration" window below, we must provide the AWS Access Key and Secret Key.
Before obtaining these keys, we need to ensure that our CloudTrail users in the AWS system have Read-Only Permissions.
These permissions are crucial for the Regulait system to gather information from the Integration App.
Regulait only requires Read-Only access, as it retrieves data solely for compliance purposes, without making any changes, deletions, or additions to the CloudTrail system.
the Add Integration window Below we see the AWS Console home page, we'll click on the IAM (Identity and Access Management) button (marked with an arrow below) to access User Groups and Permissions.
If, for some reason, you do not see an IAM button on the main Console page, search for "IAM" in the site's search bar.
the IAM button is marked with an arrow below Here, on the User Groups tab, we'll create a Group, give that Group the Read-Only Permission for CloudTrail, and any User added to the Group will automatically get these Permissions.
Start by clicking the Create Group button (marked with an arrow below).
the Create Group button is marked with an arrow Add Permissions to a User Group
On the Create Group page, search for the CloudTrail Read Only Access permission policy (circled below).
the CloudTrail Read Only Access permission policy is circled After selecting the right Permission (marked with an arrow below), click on the Create Group button (circled below).
selecting the right permission and creating a User Group Creating a User
In case we don't have any existing Users to add to the Group - on the Users tab, click on Create User (marked with an arrow below).
the Create User button is marked with an arrow Name the new User.
Now add the new User to the CloudTrail Group.
This ensures that the User gets the Cloudtrail Read-Only Permissions, necessary for Integrating the system with Regulait.
adding a User to our User Group Get the Access and Secret Keys
We've made sure that our Users have the Read-Only permissions for CloudTrail.
Now we'll click on our Admin name to open the drop-down options menu (marked with an arrow below).
On this menu, circled below, select Security Credentials.
navigating to Security Credentials Under 'Access Keys', click the 'Create Access Key' button (marked with an arrow below).
the 'Create Access Key' button is marked with an arrow Adding the Integration in Regulait's System
Back on Regulait's Add Integration window, fill in a custom Integration name, and the created Keys.
entering the mandatory Keys in the Add Integration window Vendor Management for an Integration
Now select the proper Vendor that provides the CloudTrail service.
To learn more about Vendor Management - click here.
If we don't have an appropriate Vendor, we can also create a Vendor here on the Add Integration window, and click on the Create Vendor button (marked with an arrow below).
the Create Vendor button is marked with an arrow After filling out all Mandatory fields, click on the Add Integration button (marked with an arrow below).
the Add Integration button is marked with an arrow On the Installed Integration page, we can view our Installed Integrations, in the Image below, we can see one CloudTrail Integration installed.
To learn more about using and managing Integrations, continue to the Using Integrations guide chapter.
the new CloudTrail integration is installed To return to the Integrations Guide hub, click here.
To return to the main guide hub, click here.
