Certified Security - Specialty

Sign Up Free or Log In to participate!

Cloudtrail logs for SSH/RDP Sessions

The CloudTrail lesson mentions that SSH/RDP sessions are not logged by CloudTrail. I am wondering what would be an alternate way to capture user activity leveraging these access methods?

1 Answers

Would Systems Manager Session Manager be an option?

As far as I understand the docs, sessions can be logged: https://docs.aws.amazon.com/systems-manager/latest/userguide/session-manager-logging-auditing.html#session-manager-logging-auditing-cloudtrail

Sign In
Welcome Back!

Psst…this one if you’ve been moved to ACG!

Get Started
Who’s going to be learning?