Azure Native v3.2.0, Apr 14 25

This is the latest version of Azure Native. Use the Azure Native v2 docs if using the v2 version of this package.

Azure Native v3.2.0 published on Monday, Apr 14, 2025 by Pulumi

azure-native.awsconnector.CloudTrailTrail

Explore with Pulumi AI

This is the latest version of Azure Native. Use the Azure Native v2 docs if using the v2 version of this package.

Azure Native v3.2.0 published on Monday, Apr 14, 2025 by Pulumi

pulumi/pulumi-azure-native

CloudTrailTrails_CreateOrReplace

using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;

return await Deployment.RunAsync(() => 
{
    var cloudTrailTrail = new AzureNative.AwsConnector.CloudTrailTrail("cloudTrailTrail", new()
    {
        Location = "lectoohspiqh",
        Name = "Replace this value with a string matching RegExp ^(z=.{0,259}[^zs.]$)(z!.*[zzzzzzzz])",
        Properties = new AzureNative.AwsConnector.Inputs.CloudTrailTrailPropertiesArgs
        {
            Arn = "jlwqroammottlyguyzu",
            AwsAccountId = "mynelopf",
            AwsProperties = new AzureNative.AwsConnector.Inputs.AwsCloudTrailTrailPropertiesArgs
            {
                AdvancedEventSelectors = new[]
                {
                    new AzureNative.AwsConnector.Inputs.AdvancedEventSelectorArgs
                    {
                        FieldSelectors = new[]
                        {
                            new AzureNative.AwsConnector.Inputs.AdvancedFieldSelectorArgs
                            {
                                EndsWith = new[]
                                {
                                    "xvhm",
                                },
                                Equals = new[]
                                {
                                    "wxznrgvwsjlxdvssmmse",
                                },
                                Field = "mq",
                                NotEndsWith = new[]
                                {
                                    "x",
                                },
                                NotEquals = new[]
                                {
                                    "vglmmoivfeqg",
                                },
                                NotStartsWith = new[]
                                {
                                    "pojptcfcw",
                                },
                                StartsWith = new[]
                                {
                                    "fvldfltesnmpieljtehsvxudvxdujk",
                                },
                            },
                        },
                        Name = "ee",
                    },
                },
                Arn = "gbcn",
                CloudWatchLogsLogGroupArn = "nznfnuyxarmdmdtgjiougqgq",
                CloudWatchLogsRoleArn = "umhmpx",
                EnableLogFileValidation = true,
                EventSelectors = new[]
                {
                    new AzureNative.AwsConnector.Inputs.EventSelectorArgs
                    {
                        DataResources = new[]
                        {
                            new AzureNative.AwsConnector.Inputs.DataResourceArgs
                            {
                                Type = "txxrjncwohiohorurqdxzabre",
                                Values = new[]
                                {
                                    "xhlnkujkbtpptbwchhh",
                                },
                            },
                        },
                        ExcludeManagementEventSources = new[]
                        {
                            "r",
                        },
                        IncludeManagementEvents = true,
                        ReadWriteType = AzureNative.AwsConnector.EventSelectorReadWriteType.All,
                    },
                },
                IncludeGlobalServiceEvents = true,
                InsightSelectors = new[]
                {
                    new AzureNative.AwsConnector.Inputs.InsightSelectorArgs
                    {
                        InsightType = "brwlpasadlbwolsysta",
                    },
                },
                IsLogging = true,
                IsMultiRegionTrail = true,
                IsOrganizationTrail = true,
                KmsKeyId = "myqwqkkcuyltblpdsbgestqmjs",
                S3BucketName = "iknyfgvujttyxsralujehxb",
                S3KeyPrefix = "tzkelsqjqfspyoppsbhewvbenpwll",
                SnsTopicArn = "owdxqmsrqylekull",
                SnsTopicName = "goknthoxfekdccclolilvnyacvcop",
                Tags = new[]
                {
                    new AzureNative.AwsConnector.Inputs.TagArgs
                    {
                        Key = "sytikpggzq",
                        Value = "vnsgm",
                    },
                },
                TrailName = "oawneexezdnuouxdykllsflq",
            },
            AwsRegion = "dfvobbnupacpqsgexblxjlw",
            AwsSourceSchema = "tvnaxpvricaiyoucpeauofeibwrk",
            AwsTags = 
            {
                { "key5810", "tfepsytqwqilahaumarsjj" },
            },
            PublicCloudConnectorsResourceId = "i",
            PublicCloudResourceName = "aidwpmbkjspiucpvmzgg",
        },
        ResourceGroupName = "rgcloudTrailTrail",
        Tags = 
        {
            { "key8112", "rxvuvmalioxplkvujldcyntebbsmuh" },
        },
    });

});

package main

import (
	awsconnector "github.com/pulumi/pulumi-azure-native-sdk/awsconnector/v3"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := awsconnector.NewCloudTrailTrail(ctx, "cloudTrailTrail", &awsconnector.CloudTrailTrailArgs{
			Location: pulumi.String("lectoohspiqh"),
			Name:     pulumi.String("Replace this value with a string matching RegExp ^(z=.{0,259}[^zs.]$)(z!.*[zzzzzzzz])"),
			Properties: &awsconnector.CloudTrailTrailPropertiesArgs{
				Arn:          pulumi.String("jlwqroammottlyguyzu"),
				AwsAccountId: pulumi.String("mynelopf"),
				AwsProperties: &awsconnector.AwsCloudTrailTrailPropertiesArgs{
					AdvancedEventSelectors: awsconnector.AdvancedEventSelectorArray{
						&awsconnector.AdvancedEventSelectorArgs{
							FieldSelectors: awsconnector.AdvancedFieldSelectorArray{
								&awsconnector.AdvancedFieldSelectorArgs{
									EndsWith: pulumi.StringArray{
										pulumi.String("xvhm"),
									},
									Equals: pulumi.StringArray{
										pulumi.String("wxznrgvwsjlxdvssmmse"),
									},
									Field: pulumi.String("mq"),
									NotEndsWith: pulumi.StringArray{
										pulumi.String("x"),
									},
									NotEquals: pulumi.StringArray{
										pulumi.String("vglmmoivfeqg"),
									},
									NotStartsWith: pulumi.StringArray{
										pulumi.String("pojptcfcw"),
									},
									StartsWith: pulumi.StringArray{
										pulumi.String("fvldfltesnmpieljtehsvxudvxdujk"),
									},
								},
							},
							Name: pulumi.String("ee"),
						},
					},
					Arn:                       pulumi.String("gbcn"),
					CloudWatchLogsLogGroupArn: pulumi.String("nznfnuyxarmdmdtgjiougqgq"),
					CloudWatchLogsRoleArn:     pulumi.String("umhmpx"),
					EnableLogFileValidation:   pulumi.Bool(true),
					EventSelectors: awsconnector.EventSelectorArray{
						&awsconnector.EventSelectorArgs{
							DataResources: awsconnector.DataResourceArray{
								&awsconnector.DataResourceArgs{
									Type: pulumi.String("txxrjncwohiohorurqdxzabre"),
									Values: pulumi.StringArray{
										pulumi.String("xhlnkujkbtpptbwchhh"),
									},
								},
							},
							ExcludeManagementEventSources: pulumi.StringArray{
								pulumi.String("r"),
							},
							IncludeManagementEvents: pulumi.Bool(true),
							ReadWriteType:           pulumi.String(awsconnector.EventSelectorReadWriteTypeAll),
						},
					},
					IncludeGlobalServiceEvents: pulumi.Bool(true),
					InsightSelectors: awsconnector.InsightSelectorArray{
						&awsconnector.InsightSelectorArgs{
							InsightType: pulumi.String("brwlpasadlbwolsysta"),
						},
					},
					IsLogging:           pulumi.Bool(true),
					IsMultiRegionTrail:  pulumi.Bool(true),
					IsOrganizationTrail: pulumi.Bool(true),
					KmsKeyId:            pulumi.String("myqwqkkcuyltblpdsbgestqmjs"),
					S3BucketName:        pulumi.String("iknyfgvujttyxsralujehxb"),
					S3KeyPrefix:         pulumi.String("tzkelsqjqfspyoppsbhewvbenpwll"),
					SnsTopicArn:         pulumi.String("owdxqmsrqylekull"),
					SnsTopicName:        pulumi.String("goknthoxfekdccclolilvnyacvcop"),
					Tags: awsconnector.TagArray{
						&awsconnector.TagArgs{
							Key:   pulumi.String("sytikpggzq"),
							Value: pulumi.String("vnsgm"),
						},
					},
					TrailName: pulumi.String("oawneexezdnuouxdykllsflq"),
				},
				AwsRegion:       pulumi.String("dfvobbnupacpqsgexblxjlw"),
				AwsSourceSchema: pulumi.String("tvnaxpvricaiyoucpeauofeibwrk"),
				AwsTags: pulumi.StringMap{
					"key5810": pulumi.String("tfepsytqwqilahaumarsjj"),
				},
				PublicCloudConnectorsResourceId: pulumi.String("i"),
				PublicCloudResourceName:         pulumi.String("aidwpmbkjspiucpvmzgg"),
			},
			ResourceGroupName: pulumi.String("rgcloudTrailTrail"),
			Tags: pulumi.StringMap{
				"key8112": pulumi.String("rxvuvmalioxplkvujldcyntebbsmuh"),
			},
		})
		if err != nil {
			return err
		}
		return nil
	})
}

package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.awsconnector.CloudTrailTrail;
import com.pulumi.azurenative.awsconnector.CloudTrailTrailArgs;
import com.pulumi.azurenative.awsconnector.inputs.CloudTrailTrailPropertiesArgs;
import com.pulumi.azurenative.awsconnector.inputs.AwsCloudTrailTrailPropertiesArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        var cloudTrailTrail = new CloudTrailTrail("cloudTrailTrail", CloudTrailTrailArgs.builder()
            .location("lectoohspiqh")
            .name("Replace this value with a string matching RegExp ^(z=.{0,259}[^zs.]$)(z!.*[zzzzzzzz])")
            .properties(CloudTrailTrailPropertiesArgs.builder()
                .arn("jlwqroammottlyguyzu")
                .awsAccountId("mynelopf")
                .awsProperties(AwsCloudTrailTrailPropertiesArgs.builder()
                    .advancedEventSelectors(AdvancedEventSelectorArgs.builder()
                        .fieldSelectors(AdvancedFieldSelectorArgs.builder()
                            .endsWith("xvhm")
                            .equals("wxznrgvwsjlxdvssmmse")
                            .field("mq")
                            .notEndsWith("x")
                            .notEquals("vglmmoivfeqg")
                            .notStartsWith("pojptcfcw")
                            .startsWith("fvldfltesnmpieljtehsvxudvxdujk")
                            .build())
                        .name("ee")
                        .build())
                    .arn("gbcn")
                    .cloudWatchLogsLogGroupArn("nznfnuyxarmdmdtgjiougqgq")
                    .cloudWatchLogsRoleArn("umhmpx")
                    .enableLogFileValidation(true)
                    .eventSelectors(EventSelectorArgs.builder()
                        .dataResources(DataResourceArgs.builder()
                            .type("txxrjncwohiohorurqdxzabre")
                            .values("xhlnkujkbtpptbwchhh")
                            .build())
                        .excludeManagementEventSources("r")
                        .includeManagementEvents(true)
                        .readWriteType("All")
                        .build())
                    .includeGlobalServiceEvents(true)
                    .insightSelectors(InsightSelectorArgs.builder()
                        .insightType("brwlpasadlbwolsysta")
                        .build())
                    .isLogging(true)
                    .isMultiRegionTrail(true)
                    .isOrganizationTrail(true)
                    .kmsKeyId("myqwqkkcuyltblpdsbgestqmjs")
                    .s3BucketName("iknyfgvujttyxsralujehxb")
                    .s3KeyPrefix("tzkelsqjqfspyoppsbhewvbenpwll")
                    .snsTopicArn("owdxqmsrqylekull")
                    .snsTopicName("goknthoxfekdccclolilvnyacvcop")
                    .tags(TagArgs.builder()
                        .key("sytikpggzq")
                        .value("vnsgm")
                        .build())
                    .trailName("oawneexezdnuouxdykllsflq")
                    .build())
                .awsRegion("dfvobbnupacpqsgexblxjlw")
                .awsSourceSchema("tvnaxpvricaiyoucpeauofeibwrk")
                .awsTags(Map.of("key5810", "tfepsytqwqilahaumarsjj"))
                .publicCloudConnectorsResourceId("i")
                .publicCloudResourceName("aidwpmbkjspiucpvmzgg")
                .build())
            .resourceGroupName("rgcloudTrailTrail")
            .tags(Map.of("key8112", "rxvuvmalioxplkvujldcyntebbsmuh"))
            .build());

    }
}

import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";

const cloudTrailTrail = new azure_native.awsconnector.CloudTrailTrail("cloudTrailTrail", {
    location: "lectoohspiqh",
    name: "Replace this value with a string matching RegExp ^(z=.{0,259}[^zs.]$)(z!.*[zzzzzzzz])",
    properties: {
        arn: "jlwqroammottlyguyzu",
        awsAccountId: "mynelopf",
        awsProperties: {
            advancedEventSelectors: [{
                fieldSelectors: [{
                    endsWith: ["xvhm"],
                    equals: ["wxznrgvwsjlxdvssmmse"],
                    field: "mq",
                    notEndsWith: ["x"],
                    notEquals: ["vglmmoivfeqg"],
                    notStartsWith: ["pojptcfcw"],
                    startsWith: ["fvldfltesnmpieljtehsvxudvxdujk"],
                }],
                name: "ee",
            }],
            arn: "gbcn",
            cloudWatchLogsLogGroupArn: "nznfnuyxarmdmdtgjiougqgq",
            cloudWatchLogsRoleArn: "umhmpx",
            enableLogFileValidation: true,
            eventSelectors: [{
                dataResources: [{
                    type: "txxrjncwohiohorurqdxzabre",
                    values: ["xhlnkujkbtpptbwchhh"],
                }],
                excludeManagementEventSources: ["r"],
                includeManagementEvents: true,
                readWriteType: azure_native.awsconnector.EventSelectorReadWriteType.All,
            }],
            includeGlobalServiceEvents: true,
            insightSelectors: [{
                insightType: "brwlpasadlbwolsysta",
            }],
            isLogging: true,
            isMultiRegionTrail: true,
            isOrganizationTrail: true,
            kmsKeyId: "myqwqkkcuyltblpdsbgestqmjs",
            s3BucketName: "iknyfgvujttyxsralujehxb",
            s3KeyPrefix: "tzkelsqjqfspyoppsbhewvbenpwll",
            snsTopicArn: "owdxqmsrqylekull",
            snsTopicName: "goknthoxfekdccclolilvnyacvcop",
            tags: [{
                key: "sytikpggzq",
                value: "vnsgm",
            }],
            trailName: "oawneexezdnuouxdykllsflq",
        },
        awsRegion: "dfvobbnupacpqsgexblxjlw",
        awsSourceSchema: "tvnaxpvricaiyoucpeauofeibwrk",
        awsTags: {
            key5810: "tfepsytqwqilahaumarsjj",
        },
        publicCloudConnectorsResourceId: "i",
        publicCloudResourceName: "aidwpmbkjspiucpvmzgg",
    },
    resourceGroupName: "rgcloudTrailTrail",
    tags: {
        key8112: "rxvuvmalioxplkvujldcyntebbsmuh",
    },
});

import pulumi
import pulumi_azure_native as azure_native

cloud_trail_trail = azure_native.awsconnector.CloudTrailTrail("cloudTrailTrail",
    location="lectoohspiqh",
    name="Replace this value with a string matching RegExp ^(z=.{0,259}[^zs.]$)(z!.*[zzzzzzzz])",
    properties={
        "arn": "jlwqroammottlyguyzu",
        "aws_account_id": "mynelopf",
        "aws_properties": {
            "advanced_event_selectors": [{
                "field_selectors": [{
                    "ends_with": ["xvhm"],
                    "equals": ["wxznrgvwsjlxdvssmmse"],
                    "field": "mq",
                    "not_ends_with": ["x"],
                    "not_equals": ["vglmmoivfeqg"],
                    "not_starts_with": ["pojptcfcw"],
                    "starts_with": ["fvldfltesnmpieljtehsvxudvxdujk"],
                }],
                "name": "ee",
            }],
            "arn": "gbcn",
            "cloud_watch_logs_log_group_arn": "nznfnuyxarmdmdtgjiougqgq",
            "cloud_watch_logs_role_arn": "umhmpx",
            "enable_log_file_validation": True,
            "event_selectors": [{
                "data_resources": [{
                    "type": "txxrjncwohiohorurqdxzabre",
                    "values": ["xhlnkujkbtpptbwchhh"],
                }],
                "exclude_management_event_sources": ["r"],
                "include_management_events": True,
                "read_write_type": azure_native.awsconnector.EventSelectorReadWriteType.ALL,
            }],
            "include_global_service_events": True,
            "insight_selectors": [{
                "insight_type": "brwlpasadlbwolsysta",
            }],
            "is_logging": True,
            "is_multi_region_trail": True,
            "is_organization_trail": True,
            "kms_key_id": "myqwqkkcuyltblpdsbgestqmjs",
            "s3_bucket_name": "iknyfgvujttyxsralujehxb",
            "s3_key_prefix": "tzkelsqjqfspyoppsbhewvbenpwll",
            "sns_topic_arn": "owdxqmsrqylekull",
            "sns_topic_name": "goknthoxfekdccclolilvnyacvcop",
            "tags": [{
                "key": "sytikpggzq",
                "value": "vnsgm",
            }],
            "trail_name": "oawneexezdnuouxdykllsflq",
        },
        "aws_region": "dfvobbnupacpqsgexblxjlw",
        "aws_source_schema": "tvnaxpvricaiyoucpeauofeibwrk",
        "aws_tags": {
            "key5810": "tfepsytqwqilahaumarsjj",
        },
        "public_cloud_connectors_resource_id": "i",
        "public_cloud_resource_name": "aidwpmbkjspiucpvmzgg",
    },
    resource_group_name="rgcloudTrailTrail",
    tags={
        "key8112": "rxvuvmalioxplkvujldcyntebbsmuh",
    })

resources:
  cloudTrailTrail:
    type: azure-native:awsconnector:CloudTrailTrail
    properties:
      location: lectoohspiqh
      name: Replace this value with a string matching RegExp ^(z=.{0,259}[^zs.]$)(z!.*[zzzzzzzz])
      properties:
        arn: jlwqroammottlyguyzu
        awsAccountId: mynelopf
        awsProperties:
          advancedEventSelectors:
            - fieldSelectors:
                - endsWith:
                    - xvhm
                  equals:
                    - wxznrgvwsjlxdvssmmse
                  field: mq
                  notEndsWith:
                    - x
                  notEquals:
                    - vglmmoivfeqg
                  notStartsWith:
                    - pojptcfcw
                  startsWith:
                    - fvldfltesnmpieljtehsvxudvxdujk
              name: ee
          arn: gbcn
          cloudWatchLogsLogGroupArn: nznfnuyxarmdmdtgjiougqgq
          cloudWatchLogsRoleArn: umhmpx
          enableLogFileValidation: true
          eventSelectors:
            - dataResources:
                - type: txxrjncwohiohorurqdxzabre
                  values:
                    - xhlnkujkbtpptbwchhh
              excludeManagementEventSources:
                - r
              includeManagementEvents: true
              readWriteType: All
          includeGlobalServiceEvents: true
          insightSelectors:
            - insightType: brwlpasadlbwolsysta
          isLogging: true
          isMultiRegionTrail: true
          isOrganizationTrail: true
          kmsKeyId: myqwqkkcuyltblpdsbgestqmjs
          s3BucketName: iknyfgvujttyxsralujehxb
          s3KeyPrefix: tzkelsqjqfspyoppsbhewvbenpwll
          snsTopicArn: owdxqmsrqylekull
          snsTopicName: goknthoxfekdccclolilvnyacvcop
          tags:
            - key: sytikpggzq
              value: vnsgm
          trailName: oawneexezdnuouxdykllsflq
        awsRegion: dfvobbnupacpqsgexblxjlw
        awsSourceSchema: tvnaxpvricaiyoucpeauofeibwrk
        awsTags:
          key5810: tfepsytqwqilahaumarsjj
        publicCloudConnectorsResourceId: i
        publicCloudResourceName: aidwpmbkjspiucpvmzgg
      resourceGroupName: rgcloudTrailTrail
      tags:
        key8112: rxvuvmalioxplkvujldcyntebbsmuh

Create CloudTrailTrail Resource

Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

Constructor syntax

TypeScript
Python
Go
C#
Java
YAML

new CloudTrailTrail(name: string, args: CloudTrailTrailArgs, opts?: CustomResourceOptions);

@overload
def CloudTrailTrail(resource_name: str,
                    args: CloudTrailTrailArgs,
                    opts: Optional[ResourceOptions] = None)

@overload
def CloudTrailTrail(resource_name: str,
                    opts: Optional[ResourceOptions] = None,
                    resource_group_name: Optional[str] = None,
                    location: Optional[str] = None,
                    name: Optional[str] = None,
                    properties: Optional[CloudTrailTrailPropertiesArgs] = None,
                    tags: Optional[Mapping[str, str]] = None)

func NewCloudTrailTrail(ctx *Context, name string, args CloudTrailTrailArgs, opts ...ResourceOption) (*CloudTrailTrail, error)

public CloudTrailTrail(string name, CloudTrailTrailArgs args, CustomResourceOptions? opts = null)

public CloudTrailTrail(String name, CloudTrailTrailArgs args)
public CloudTrailTrail(String name, CloudTrailTrailArgs args, CustomResourceOptions options)

type: azure-native:awsconnector:CloudTrailTrail
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

Parameters

name string: The unique name of the resource.
args CloudTrailTrailArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args CloudTrailTrailArgs: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args CloudTrailTrailArgs: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args CloudTrailTrailArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

name String: The unique name of the resource.
args CloudTrailTrailArgs: The arguments to resource properties.
options CustomResourceOptions: Bag of options to control resource's behavior.

Constructor example

The following reference example uses placeholder values for all input properties.

TypeScript
Python
Go
C#
Java
YAML

var cloudTrailTrailResource = new AzureNative.AwsConnector.CloudTrailTrail("cloudTrailTrailResource", new()
{
    ResourceGroupName = "string",
    Location = "string",
    Name = "string",
    Properties = new AzureNative.AwsConnector.Inputs.CloudTrailTrailPropertiesArgs
    {
        Arn = "string",
        AwsAccountId = "string",
        AwsProperties = new AzureNative.AwsConnector.Inputs.AwsCloudTrailTrailPropertiesArgs
        {
            AdvancedEventSelectors = new[]
            {
                new AzureNative.AwsConnector.Inputs.AdvancedEventSelectorArgs
                {
                    FieldSelectors = new[]
                    {
                        new AzureNative.AwsConnector.Inputs.AdvancedFieldSelectorArgs
                        {
                            EndsWith = new[]
                            {
                                "string",
                            },
                            Equals = new[]
                            {
                                "string",
                            },
                            Field = "string",
                            NotEndsWith = new[]
                            {
                                "string",
                            },
                            NotEquals = new[]
                            {
                                "string",
                            },
                            NotStartsWith = new[]
                            {
                                "string",
                            },
                            StartsWith = new[]
                            {
                                "string",
                            },
                        },
                    },
                    Name = "string",
                },
            },
            Arn = "string",
            CloudWatchLogsLogGroupArn = "string",
            CloudWatchLogsRoleArn = "string",
            EnableLogFileValidation = false,
            EventSelectors = new[]
            {
                new AzureNative.AwsConnector.Inputs.EventSelectorArgs
                {
                    DataResources = new[]
                    {
                        new AzureNative.AwsConnector.Inputs.DataResourceArgs
                        {
                            Type = "string",
                            Values = new[]
                            {
                                "string",
                            },
                        },
                    },
                    ExcludeManagementEventSources = new[]
                    {
                        "string",
                    },
                    IncludeManagementEvents = false,
                    ReadWriteType = "string",
                },
            },
            IncludeGlobalServiceEvents = false,
            InsightSelectors = new[]
            {
                new AzureNative.AwsConnector.Inputs.InsightSelectorArgs
                {
                    InsightType = "string",
                },
            },
            IsLogging = false,
            IsMultiRegionTrail = false,
            IsOrganizationTrail = false,
            KmsKeyId = "string",
            S3BucketName = "string",
            S3KeyPrefix = "string",
            SnsTopicArn = "string",
            SnsTopicName = "string",
            Tags = new[]
            {
                new AzureNative.AwsConnector.Inputs.TagArgs
                {
                    Key = "string",
                    Value = "string",
                },
            },
            TrailName = "string",
        },
        AwsRegion = "string",
        AwsSourceSchema = "string",
        AwsTags = 
        {
            { "string", "string" },
        },
        PublicCloudConnectorsResourceId = "string",
        PublicCloudResourceName = "string",
    },
    Tags = 
    {
        { "string", "string" },
    },
});

example, err := awsconnector.NewCloudTrailTrail(ctx, "cloudTrailTrailResource", &awsconnector.CloudTrailTrailArgs{
	ResourceGroupName: pulumi.String("string"),
	Location:          pulumi.String("string"),
	Name:              pulumi.String("string"),
	Properties: &awsconnector.CloudTrailTrailPropertiesArgs{
		Arn:          pulumi.String("string"),
		AwsAccountId: pulumi.String("string"),
		AwsProperties: &awsconnector.AwsCloudTrailTrailPropertiesArgs{
			AdvancedEventSelectors: awsconnector.AdvancedEventSelectorArray{
				&awsconnector.AdvancedEventSelectorArgs{
					FieldSelectors: awsconnector.AdvancedFieldSelectorArray{
						&awsconnector.AdvancedFieldSelectorArgs{
							EndsWith: pulumi.StringArray{
								pulumi.String("string"),
							},
							Equals: pulumi.StringArray{
								pulumi.String("string"),
							},
							Field: pulumi.String("string"),
							NotEndsWith: pulumi.StringArray{
								pulumi.String("string"),
							},
							NotEquals: pulumi.StringArray{
								pulumi.String("string"),
							},
							NotStartsWith: pulumi.StringArray{
								pulumi.String("string"),
							},
							StartsWith: pulumi.StringArray{
								pulumi.String("string"),
							},
						},
					},
					Name: pulumi.String("string"),
				},
			},
			Arn:                       pulumi.String("string"),
			CloudWatchLogsLogGroupArn: pulumi.String("string"),
			CloudWatchLogsRoleArn:     pulumi.String("string"),
			EnableLogFileValidation:   pulumi.Bool(false),
			EventSelectors: awsconnector.EventSelectorArray{
				&awsconnector.EventSelectorArgs{
					DataResources: awsconnector.DataResourceArray{
						&awsconnector.DataResourceArgs{
							Type: pulumi.String("string"),
							Values: pulumi.StringArray{
								pulumi.String("string"),
							},
						},
					},
					ExcludeManagementEventSources: pulumi.StringArray{
						pulumi.String("string"),
					},
					IncludeManagementEvents: pulumi.Bool(false),
					ReadWriteType:           pulumi.String("string"),
				},
			},
			IncludeGlobalServiceEvents: pulumi.Bool(false),
			InsightSelectors: awsconnector.InsightSelectorArray{
				&awsconnector.InsightSelectorArgs{
					InsightType: pulumi.String("string"),
				},
			},
			IsLogging:           pulumi.Bool(false),
			IsMultiRegionTrail:  pulumi.Bool(false),
			IsOrganizationTrail: pulumi.Bool(false),
			KmsKeyId:            pulumi.String("string"),
			S3BucketName:        pulumi.String("string"),
			S3KeyPrefix:         pulumi.String("string"),
			SnsTopicArn:         pulumi.String("string"),
			SnsTopicName:        pulumi.String("string"),
			Tags: awsconnector.TagArray{
				&awsconnector.TagArgs{
					Key:   pulumi.String("string"),
					Value: pulumi.String("string"),
				},
			},
			TrailName: pulumi.String("string"),
		},
		AwsRegion:       pulumi.String("string"),
		AwsSourceSchema: pulumi.String("string"),
		AwsTags: pulumi.StringMap{
			"string": pulumi.String("string"),
		},
		PublicCloudConnectorsResourceId: pulumi.String("string"),
		PublicCloudResourceName:         pulumi.String("string"),
	},
	Tags: pulumi.StringMap{
		"string": pulumi.String("string"),
	},
})

var cloudTrailTrailResource = new CloudTrailTrail("cloudTrailTrailResource", CloudTrailTrailArgs.builder()
    .resourceGroupName("string")
    .location("string")
    .name("string")
    .properties(CloudTrailTrailPropertiesArgs.builder()
        .arn("string")
        .awsAccountId("string")
        .awsProperties(AwsCloudTrailTrailPropertiesArgs.builder()
            .advancedEventSelectors(AdvancedEventSelectorArgs.builder()
                .fieldSelectors(AdvancedFieldSelectorArgs.builder()
                    .endsWith("string")
                    .equals("string")
                    .field("string")
                    .notEndsWith("string")
                    .notEquals("string")
                    .notStartsWith("string")
                    .startsWith("string")
                    .build())
                .name("string")
                .build())
            .arn("string")
            .cloudWatchLogsLogGroupArn("string")
            .cloudWatchLogsRoleArn("string")
            .enableLogFileValidation(false)
            .eventSelectors(EventSelectorArgs.builder()
                .dataResources(DataResourceArgs.builder()
                    .type("string")
                    .values("string")
                    .build())
                .excludeManagementEventSources("string")
                .includeManagementEvents(false)
                .readWriteType("string")
                .build())
            .includeGlobalServiceEvents(false)
            .insightSelectors(InsightSelectorArgs.builder()
                .insightType("string")
                .build())
            .isLogging(false)
            .isMultiRegionTrail(false)
            .isOrganizationTrail(false)
            .kmsKeyId("string")
            .s3BucketName("string")
            .s3KeyPrefix("string")
            .snsTopicArn("string")
            .snsTopicName("string")
            .tags(TagArgs.builder()
                .key("string")
                .value("string")
                .build())
            .trailName("string")
            .build())
        .awsRegion("string")
        .awsSourceSchema("string")
        .awsTags(Map.of("string", "string"))
        .publicCloudConnectorsResourceId("string")
        .publicCloudResourceName("string")
        .build())
    .tags(Map.of("string", "string"))
    .build());

cloud_trail_trail_resource = azure_native.awsconnector.CloudTrailTrail("cloudTrailTrailResource",
    resource_group_name="string",
    location="string",
    name="string",
    properties={
        "arn": "string",
        "aws_account_id": "string",
        "aws_properties": {
            "advanced_event_selectors": [{
                "field_selectors": [{
                    "ends_with": ["string"],
                    "equals": ["string"],
                    "field": "string",
                    "not_ends_with": ["string"],
                    "not_equals": ["string"],
                    "not_starts_with": ["string"],
                    "starts_with": ["string"],
                }],
                "name": "string",
            }],
            "arn": "string",
            "cloud_watch_logs_log_group_arn": "string",
            "cloud_watch_logs_role_arn": "string",
            "enable_log_file_validation": False,
            "event_selectors": [{
                "data_resources": [{
                    "type": "string",
                    "values": ["string"],
                }],
                "exclude_management_event_sources": ["string"],
                "include_management_events": False,
                "read_write_type": "string",
            }],
            "include_global_service_events": False,
            "insight_selectors": [{
                "insight_type": "string",
            }],
            "is_logging": False,
            "is_multi_region_trail": False,
            "is_organization_trail": False,
            "kms_key_id": "string",
            "s3_bucket_name": "string",
            "s3_key_prefix": "string",
            "sns_topic_arn": "string",
            "sns_topic_name": "string",
            "tags": [{
                "key": "string",
                "value": "string",
            }],
            "trail_name": "string",
        },
        "aws_region": "string",
        "aws_source_schema": "string",
        "aws_tags": {
            "string": "string",
        },
        "public_cloud_connectors_resource_id": "string",
        "public_cloud_resource_name": "string",
    },
    tags={
        "string": "string",
    })

const cloudTrailTrailResource = new azure_native.awsconnector.CloudTrailTrail("cloudTrailTrailResource", {
    resourceGroupName: "string",
    location: "string",
    name: "string",
    properties: {
        arn: "string",
        awsAccountId: "string",
        awsProperties: {
            advancedEventSelectors: [{
                fieldSelectors: [{
                    endsWith: ["string"],
                    equals: ["string"],
                    field: "string",
                    notEndsWith: ["string"],
                    notEquals: ["string"],
                    notStartsWith: ["string"],
                    startsWith: ["string"],
                }],
                name: "string",
            }],
            arn: "string",
            cloudWatchLogsLogGroupArn: "string",
            cloudWatchLogsRoleArn: "string",
            enableLogFileValidation: false,
            eventSelectors: [{
                dataResources: [{
                    type: "string",
                    values: ["string"],
                }],
                excludeManagementEventSources: ["string"],
                includeManagementEvents: false,
                readWriteType: "string",
            }],
            includeGlobalServiceEvents: false,
            insightSelectors: [{
                insightType: "string",
            }],
            isLogging: false,
            isMultiRegionTrail: false,
            isOrganizationTrail: false,
            kmsKeyId: "string",
            s3BucketName: "string",
            s3KeyPrefix: "string",
            snsTopicArn: "string",
            snsTopicName: "string",
            tags: [{
                key: "string",
                value: "string",
            }],
            trailName: "string",
        },
        awsRegion: "string",
        awsSourceSchema: "string",
        awsTags: {
            string: "string",
        },
        publicCloudConnectorsResourceId: "string",
        publicCloudResourceName: "string",
    },
    tags: {
        string: "string",
    },
});

type: azure-native:awsconnector:CloudTrailTrail
properties:
    location: string
    name: string
    properties:
        arn: string
        awsAccountId: string
        awsProperties:
            advancedEventSelectors:
                - fieldSelectors:
                    - endsWith:
                        - string
                      equals:
                        - string
                      field: string
                      notEndsWith:
                        - string
                      notEquals:
                        - string
                      notStartsWith:
                        - string
                      startsWith:
                        - string
                  name: string
            arn: string
            cloudWatchLogsLogGroupArn: string
            cloudWatchLogsRoleArn: string
            enableLogFileValidation: false
            eventSelectors:
                - dataResources:
                    - type: string
                      values:
                        - string
                  excludeManagementEventSources:
                    - string
                  includeManagementEvents: false
                  readWriteType: string
            includeGlobalServiceEvents: false
            insightSelectors:
                - insightType: string
            isLogging: false
            isMultiRegionTrail: false
            isOrganizationTrail: false
            kmsKeyId: string
            s3BucketName: string
            s3KeyPrefix: string
            snsTopicArn: string
            snsTopicName: string
            tags:
                - key: string
                  value: string
            trailName: string
        awsRegion: string
        awsSourceSchema: string
        awsTags:
            string: string
        publicCloudConnectorsResourceId: string
        publicCloudResourceName: string
    resourceGroupName: string
    tags:
        string: string

CloudTrailTrail Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

The CloudTrailTrail resource accepts the following input properties:

ResourceGroupName string: The name of the resource group. The name is case insensitive.
Location string: The geo-location where the resource lives
Name string: Name of CloudTrailTrail
Properties Pulumi.AzureNative.AwsConnector.Inputs.CloudTrailTrailProperties: The resource-specific properties for this resource.
Tags Dictionary<string, string>: Resource tags.

ResourceGroupName string: The name of the resource group. The name is case insensitive.
Location string: The geo-location where the resource lives
Name string: Name of CloudTrailTrail
Properties CloudTrailTrailPropertiesArgs: The resource-specific properties for this resource.
Tags map[string]string: Resource tags.

resourceGroupName String: The name of the resource group. The name is case insensitive.
location String: The geo-location where the resource lives
name String: Name of CloudTrailTrail
properties CloudTrailTrailProperties: The resource-specific properties for this resource.
tags Map<String,String>: Resource tags.

resourceGroupName string: The name of the resource group. The name is case insensitive.
location string: The geo-location where the resource lives
name string: Name of CloudTrailTrail
properties CloudTrailTrailProperties: The resource-specific properties for this resource.
tags {[key: string]: string}: Resource tags.

resource_group_name str: The name of the resource group. The name is case insensitive.
location str: The geo-location where the resource lives
name str: Name of CloudTrailTrail
properties CloudTrailTrailPropertiesArgs: The resource-specific properties for this resource.
tags Mapping[str, str]: Resource tags.

resourceGroupName String: The name of the resource group. The name is case insensitive.
location String: The geo-location where the resource lives
name String: Name of CloudTrailTrail
properties Property Map: The resource-specific properties for this resource.
tags Map<String>: Resource tags.

Outputs

All input properties are implicitly available as output properties. Additionally, the CloudTrailTrail resource produces the following output properties:

AzureApiVersion string: The Azure API version of the resource.
Id string: The provider-assigned unique ID for this managed resource.
SystemData Pulumi.AzureNative.AwsConnector.Outputs.SystemDataResponse: Azure Resource Manager metadata containing createdBy and modifiedBy information.
Type string: The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"

AzureApiVersion string: The Azure API version of the resource.
Id string: The provider-assigned unique ID for this managed resource.
SystemData SystemDataResponse: Azure Resource Manager metadata containing createdBy and modifiedBy information.
Type string: The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"

azureApiVersion String: The Azure API version of the resource.
id String: The provider-assigned unique ID for this managed resource.
systemData SystemDataResponse: Azure Resource Manager metadata containing createdBy and modifiedBy information.
type String: The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"

azureApiVersion string: The Azure API version of the resource.
id string: The provider-assigned unique ID for this managed resource.
systemData SystemDataResponse: Azure Resource Manager metadata containing createdBy and modifiedBy information.
type string: The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"

azure_api_version str: The Azure API version of the resource.
id str: The provider-assigned unique ID for this managed resource.
system_data SystemDataResponse: Azure Resource Manager metadata containing createdBy and modifiedBy information.
type str: The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"

azureApiVersion String: The Azure API version of the resource.
id String: The provider-assigned unique ID for this managed resource.
systemData Property Map: Azure Resource Manager metadata containing createdBy and modifiedBy information.
type String: The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"

Supporting Types

AdvancedEventSelector
, AdvancedEventSelectorArgs

FieldSelectors List<Pulumi.AzureNative.AwsConnector.Inputs.AdvancedFieldSelector>: Contains all selector statements in an advanced event selector.
Name string: An optional, descriptive name for an advanced event selector, such as 'Log data events for only two S3 buckets'.

FieldSelectors []AdvancedFieldSelector: Contains all selector statements in an advanced event selector.
Name string: An optional, descriptive name for an advanced event selector, such as 'Log data events for only two S3 buckets'.

fieldSelectors List<AdvancedFieldSelector>: Contains all selector statements in an advanced event selector.
name String: An optional, descriptive name for an advanced event selector, such as 'Log data events for only two S3 buckets'.

fieldSelectors AdvancedFieldSelector[]: Contains all selector statements in an advanced event selector.
name string: An optional, descriptive name for an advanced event selector, such as 'Log data events for only two S3 buckets'.

field_selectors Sequence[AdvancedFieldSelector]: Contains all selector statements in an advanced event selector.
name str: An optional, descriptive name for an advanced event selector, such as 'Log data events for only two S3 buckets'.

fieldSelectors List<Property Map>: Contains all selector statements in an advanced event selector.
name String: An optional, descriptive name for an advanced event selector, such as 'Log data events for only two S3 buckets'.

AdvancedEventSelectorResponse
, AdvancedEventSelectorResponseArgs

FieldSelectors List<Pulumi.AzureNative.AwsConnector.Inputs.AdvancedFieldSelectorResponse>: Contains all selector statements in an advanced event selector.
Name string: An optional, descriptive name for an advanced event selector, such as 'Log data events for only two S3 buckets'.

FieldSelectors []AdvancedFieldSelectorResponse: Contains all selector statements in an advanced event selector.
Name string: An optional, descriptive name for an advanced event selector, such as 'Log data events for only two S3 buckets'.

fieldSelectors List<AdvancedFieldSelectorResponse>: Contains all selector statements in an advanced event selector.
name String: An optional, descriptive name for an advanced event selector, such as 'Log data events for only two S3 buckets'.

fieldSelectors AdvancedFieldSelectorResponse[]: Contains all selector statements in an advanced event selector.
name string: An optional, descriptive name for an advanced event selector, such as 'Log data events for only two S3 buckets'.

field_selectors Sequence[AdvancedFieldSelectorResponse]: Contains all selector statements in an advanced event selector.
name str: An optional, descriptive name for an advanced event selector, such as 'Log data events for only two S3 buckets'.

fieldSelectors List<Property Map>: Contains all selector statements in an advanced event selector.
name String: An optional, descriptive name for an advanced event selector, such as 'Log data events for only two S3 buckets'.

AdvancedFieldSelector
, AdvancedFieldSelectorArgs

EndsWith List<string>: An operator that includes events that match the last few characters of the event record field specified as the value of Field.
Equals List<string>: An operator that includes events that match the exact value of the event record field specified as the value of Field. This is the only valid operator that you can use with the readOnly, eventCategory, and resources.type fields.
Field string: A field in an event record on which to filter events to be logged. Supported fields include readOnly, eventCategory, eventSource (for management events), eventName, resources.type, and resources.ARN.
NotEndsWith List<string>: An operator that excludes events that match the last few characters of the event record field specified as the value of Field.
NotEquals List<string>: An operator that excludes events that match the exact value of the event record field specified as the value of Field.
NotStartsWith List<string>: An operator that excludes events that match the first few characters of the event record field specified as the value of Field.
StartsWith List<string>: An operator that includes events that match the first few characters of the event record field specified as the value of Field.

EndsWith []string: An operator that includes events that match the last few characters of the event record field specified as the value of Field.
Equals []string: An operator that includes events that match the exact value of the event record field specified as the value of Field. This is the only valid operator that you can use with the readOnly, eventCategory, and resources.type fields.
Field string: A field in an event record on which to filter events to be logged. Supported fields include readOnly, eventCategory, eventSource (for management events), eventName, resources.type, and resources.ARN.
NotEndsWith []string: An operator that excludes events that match the last few characters of the event record field specified as the value of Field.
NotEquals []string: An operator that excludes events that match the exact value of the event record field specified as the value of Field.
NotStartsWith []string: An operator that excludes events that match the first few characters of the event record field specified as the value of Field.
StartsWith []string: An operator that includes events that match the first few characters of the event record field specified as the value of Field.

endsWith List<String>: An operator that includes events that match the last few characters of the event record field specified as the value of Field.
equals_ List<String>: An operator that includes events that match the exact value of the event record field specified as the value of Field. This is the only valid operator that you can use with the readOnly, eventCategory, and resources.type fields.
field String: A field in an event record on which to filter events to be logged. Supported fields include readOnly, eventCategory, eventSource (for management events), eventName, resources.type, and resources.ARN.
notEndsWith List<String>: An operator that excludes events that match the last few characters of the event record field specified as the value of Field.
notEquals List<String>: An operator that excludes events that match the exact value of the event record field specified as the value of Field.
notStartsWith List<String>: An operator that excludes events that match the first few characters of the event record field specified as the value of Field.
startsWith List<String>: An operator that includes events that match the first few characters of the event record field specified as the value of Field.

endsWith string[]: An operator that includes events that match the last few characters of the event record field specified as the value of Field.
equals string[]: An operator that includes events that match the exact value of the event record field specified as the value of Field. This is the only valid operator that you can use with the readOnly, eventCategory, and resources.type fields.
field string: A field in an event record on which to filter events to be logged. Supported fields include readOnly, eventCategory, eventSource (for management events), eventName, resources.type, and resources.ARN.
notEndsWith string[]: An operator that excludes events that match the last few characters of the event record field specified as the value of Field.
notEquals string[]: An operator that excludes events that match the exact value of the event record field specified as the value of Field.
notStartsWith string[]: An operator that excludes events that match the first few characters of the event record field specified as the value of Field.
startsWith string[]: An operator that includes events that match the first few characters of the event record field specified as the value of Field.

ends_with Sequence[str]: An operator that includes events that match the last few characters of the event record field specified as the value of Field.
equals Sequence[str]: An operator that includes events that match the exact value of the event record field specified as the value of Field. This is the only valid operator that you can use with the readOnly, eventCategory, and resources.type fields.
field str: A field in an event record on which to filter events to be logged. Supported fields include readOnly, eventCategory, eventSource (for management events), eventName, resources.type, and resources.ARN.
not_ends_with Sequence[str]: An operator that excludes events that match the last few characters of the event record field specified as the value of Field.
not_equals Sequence[str]: An operator that excludes events that match the exact value of the event record field specified as the value of Field.
not_starts_with Sequence[str]: An operator that excludes events that match the first few characters of the event record field specified as the value of Field.
starts_with Sequence[str]: An operator that includes events that match the first few characters of the event record field specified as the value of Field.

endsWith List<String>: An operator that includes events that match the last few characters of the event record field specified as the value of Field.
equals List<String>: An operator that includes events that match the exact value of the event record field specified as the value of Field. This is the only valid operator that you can use with the readOnly, eventCategory, and resources.type fields.
field String: A field in an event record on which to filter events to be logged. Supported fields include readOnly, eventCategory, eventSource (for management events), eventName, resources.type, and resources.ARN.
notEndsWith List<String>: An operator that excludes events that match the last few characters of the event record field specified as the value of Field.
notEquals List<String>: An operator that excludes events that match the exact value of the event record field specified as the value of Field.
notStartsWith List<String>: An operator that excludes events that match the first few characters of the event record field specified as the value of Field.
startsWith List<String>: An operator that includes events that match the first few characters of the event record field specified as the value of Field.

AdvancedFieldSelectorResponse
, AdvancedFieldSelectorResponseArgs

EndsWith List<string>: An operator that includes events that match the last few characters of the event record field specified as the value of Field.
Equals List<string>: An operator that includes events that match the exact value of the event record field specified as the value of Field. This is the only valid operator that you can use with the readOnly, eventCategory, and resources.type fields.
Field string: A field in an event record on which to filter events to be logged. Supported fields include readOnly, eventCategory, eventSource (for management events), eventName, resources.type, and resources.ARN.
NotEndsWith List<string>: An operator that excludes events that match the last few characters of the event record field specified as the value of Field.
NotEquals List<string>: An operator that excludes events that match the exact value of the event record field specified as the value of Field.
NotStartsWith List<string>: An operator that excludes events that match the first few characters of the event record field specified as the value of Field.
StartsWith List<string>: An operator that includes events that match the first few characters of the event record field specified as the value of Field.

EndsWith []string: An operator that includes events that match the last few characters of the event record field specified as the value of Field.
Equals []string: An operator that includes events that match the exact value of the event record field specified as the value of Field. This is the only valid operator that you can use with the readOnly, eventCategory, and resources.type fields.
Field string: A field in an event record on which to filter events to be logged. Supported fields include readOnly, eventCategory, eventSource (for management events), eventName, resources.type, and resources.ARN.
NotEndsWith []string: An operator that excludes events that match the last few characters of the event record field specified as the value of Field.
NotEquals []string: An operator that excludes events that match the exact value of the event record field specified as the value of Field.
NotStartsWith []string: An operator that excludes events that match the first few characters of the event record field specified as the value of Field.
StartsWith []string: An operator that includes events that match the first few characters of the event record field specified as the value of Field.

endsWith List<String>: An operator that includes events that match the last few characters of the event record field specified as the value of Field.
equals_ List<String>: An operator that includes events that match the exact value of the event record field specified as the value of Field. This is the only valid operator that you can use with the readOnly, eventCategory, and resources.type fields.
field String: A field in an event record on which to filter events to be logged. Supported fields include readOnly, eventCategory, eventSource (for management events), eventName, resources.type, and resources.ARN.
notEndsWith List<String>: An operator that excludes events that match the last few characters of the event record field specified as the value of Field.
notEquals List<String>: An operator that excludes events that match the exact value of the event record field specified as the value of Field.
notStartsWith List<String>: An operator that excludes events that match the first few characters of the event record field specified as the value of Field.
startsWith List<String>: An operator that includes events that match the first few characters of the event record field specified as the value of Field.

endsWith string[]: An operator that includes events that match the last few characters of the event record field specified as the value of Field.
equals string[]: An operator that includes events that match the exact value of the event record field specified as the value of Field. This is the only valid operator that you can use with the readOnly, eventCategory, and resources.type fields.
field string: A field in an event record on which to filter events to be logged. Supported fields include readOnly, eventCategory, eventSource (for management events), eventName, resources.type, and resources.ARN.
notEndsWith string[]: An operator that excludes events that match the last few characters of the event record field specified as the value of Field.
notEquals string[]: An operator that excludes events that match the exact value of the event record field specified as the value of Field.
notStartsWith string[]: An operator that excludes events that match the first few characters of the event record field specified as the value of Field.
startsWith string[]: An operator that includes events that match the first few characters of the event record field specified as the value of Field.

ends_with Sequence[str]: An operator that includes events that match the last few characters of the event record field specified as the value of Field.
equals Sequence[str]: An operator that includes events that match the exact value of the event record field specified as the value of Field. This is the only valid operator that you can use with the readOnly, eventCategory, and resources.type fields.
field str: A field in an event record on which to filter events to be logged. Supported fields include readOnly, eventCategory, eventSource (for management events), eventName, resources.type, and resources.ARN.
not_ends_with Sequence[str]: An operator that excludes events that match the last few characters of the event record field specified as the value of Field.
not_equals Sequence[str]: An operator that excludes events that match the exact value of the event record field specified as the value of Field.
not_starts_with Sequence[str]: An operator that excludes events that match the first few characters of the event record field specified as the value of Field.
starts_with Sequence[str]: An operator that includes events that match the first few characters of the event record field specified as the value of Field.

endsWith List<String>: An operator that includes events that match the last few characters of the event record field specified as the value of Field.
equals List<String>: An operator that includes events that match the exact value of the event record field specified as the value of Field. This is the only valid operator that you can use with the readOnly, eventCategory, and resources.type fields.
field String: A field in an event record on which to filter events to be logged. Supported fields include readOnly, eventCategory, eventSource (for management events), eventName, resources.type, and resources.ARN.
notEndsWith List<String>: An operator that excludes events that match the last few characters of the event record field specified as the value of Field.
notEquals List<String>: An operator that excludes events that match the exact value of the event record field specified as the value of Field.
notStartsWith List<String>: An operator that excludes events that match the first few characters of the event record field specified as the value of Field.
startsWith List<String>: An operator that includes events that match the first few characters of the event record field specified as the value of Field.

AwsCloudTrailTrailProperties
, AwsCloudTrailTrailPropertiesArgs

AdvancedEventSelectors List<Pulumi.AzureNative.AwsConnector.Inputs.AdvancedEventSelector>: The advanced event selectors that were used to select events for the data store.
Arn string: Property arn
CloudWatchLogsLogGroupArn string: Specifies a log group name using an Amazon Resource Name (ARN), a unique identifier that represents the log group to which CloudTrail logs will be delivered. Not required unless you specify CloudWatchLogsRoleArn.
CloudWatchLogsRoleArn string: Specifies the role for the CloudWatch Logs endpoint to assume to write to a user's log group.
EnableLogFileValidation bool: Specifies whether log file validation is enabled. The default is false.
EventSelectors List<Pulumi.AzureNative.AwsConnector.Inputs.EventSelector>: Use event selectors to further specify the management and data event settings for your trail. By default, trails created without specific event selectors will be configured to log all read and write management events, and no data events. When an event occurs in your account, CloudTrail evaluates the event selector for all trails. For each trail, if the event matches any event selector, the trail processes and logs the event. If the event doesn't match any event selector, the trail doesn't log the event. You can configure up to five event selectors for a trail.
IncludeGlobalServiceEvents bool: Specifies whether the trail is publishing events from global services such as IAM to the log files.
InsightSelectors List<Pulumi.AzureNative.AwsConnector.Inputs.InsightSelector>: Lets you enable Insights event logging by specifying the Insights selectors that you want to enable on an existing trail.
IsLogging bool: Whether the CloudTrail is currently logging AWS API calls.
IsMultiRegionTrail bool: Specifies whether the trail applies only to the current region or to all regions. The default is false. If the trail exists only in the current region and this value is set to true, shadow trails (replications of the trail) will be created in the other regions. If the trail exists in all regions and this value is set to false, the trail will remain in the region where it was created, and its shadow trails in other regions will be deleted. As a best practice, consider using trails that log events in all regions.
IsOrganizationTrail bool: Specifies whether the trail is created for all accounts in an organization in AWS Organizations, or only for the current AWS account. The default is false, and cannot be true unless the call is made on behalf of an AWS account that is the master account for an organization in AWS Organizations.
KmsKeyId string: Specifies the KMS key ID to use to encrypt the logs delivered by CloudTrail. The value can be an alias name prefixed by 'alias/', a fully specified ARN to an alias, a fully specified ARN to a key, or a globally unique identifier.
S3BucketName string: Specifies the name of the Amazon S3 bucket designated for publishing log files. See Amazon S3 Bucket Naming Requirements.
S3KeyPrefix string: Specifies the Amazon S3 key prefix that comes after the name of the bucket you have designated for log file delivery. For more information, see Finding Your CloudTrail Log Files. The maximum length is 200 characters.
SnsTopicArn string: Property snsTopicArn
SnsTopicName string: Specifies the name of the Amazon SNS topic defined for notification of log file delivery. The maximum length is 256 characters.
Tags List<Pulumi.AzureNative.AwsConnector.Inputs.Tag>: Property tags
TrailName string: Property trailName

AdvancedEventSelectors []AdvancedEventSelector: The advanced event selectors that were used to select events for the data store.
Arn string: Property arn
CloudWatchLogsLogGroupArn string: Specifies a log group name using an Amazon Resource Name (ARN), a unique identifier that represents the log group to which CloudTrail logs will be delivered. Not required unless you specify CloudWatchLogsRoleArn.
CloudWatchLogsRoleArn string: Specifies the role for the CloudWatch Logs endpoint to assume to write to a user's log group.
EnableLogFileValidation bool: Specifies whether log file validation is enabled. The default is false.
EventSelectors []EventSelector: Use event selectors to further specify the management and data event settings for your trail. By default, trails created without specific event selectors will be configured to log all read and write management events, and no data events. When an event occurs in your account, CloudTrail evaluates the event selector for all trails. For each trail, if the event matches any event selector, the trail processes and logs the event. If the event doesn't match any event selector, the trail doesn't log the event. You can configure up to five event selectors for a trail.
IncludeGlobalServiceEvents bool: Specifies whether the trail is publishing events from global services such as IAM to the log files.
InsightSelectors []InsightSelector: Lets you enable Insights event logging by specifying the Insights selectors that you want to enable on an existing trail.
IsLogging bool: Whether the CloudTrail is currently logging AWS API calls.
IsMultiRegionTrail bool: Specifies whether the trail applies only to the current region or to all regions. The default is false. If the trail exists only in the current region and this value is set to true, shadow trails (replications of the trail) will be created in the other regions. If the trail exists in all regions and this value is set to false, the trail will remain in the region where it was created, and its shadow trails in other regions will be deleted. As a best practice, consider using trails that log events in all regions.
IsOrganizationTrail bool: Specifies whether the trail is created for all accounts in an organization in AWS Organizations, or only for the current AWS account. The default is false, and cannot be true unless the call is made on behalf of an AWS account that is the master account for an organization in AWS Organizations.
KmsKeyId string: Specifies the KMS key ID to use to encrypt the logs delivered by CloudTrail. The value can be an alias name prefixed by 'alias/', a fully specified ARN to an alias, a fully specified ARN to a key, or a globally unique identifier.
S3BucketName string: Specifies the name of the Amazon S3 bucket designated for publishing log files. See Amazon S3 Bucket Naming Requirements.
S3KeyPrefix string: Specifies the Amazon S3 key prefix that comes after the name of the bucket you have designated for log file delivery. For more information, see Finding Your CloudTrail Log Files. The maximum length is 200 characters.
SnsTopicArn string: Property snsTopicArn
SnsTopicName string: Specifies the name of the Amazon SNS topic defined for notification of log file delivery. The maximum length is 256 characters.
Tags []Tag: Property tags
TrailName string: Property trailName

advancedEventSelectors List<AdvancedEventSelector>: The advanced event selectors that were used to select events for the data store.
arn String: Property arn
cloudWatchLogsLogGroupArn String: Specifies a log group name using an Amazon Resource Name (ARN), a unique identifier that represents the log group to which CloudTrail logs will be delivered. Not required unless you specify CloudWatchLogsRoleArn.
cloudWatchLogsRoleArn String: Specifies the role for the CloudWatch Logs endpoint to assume to write to a user's log group.
enableLogFileValidation Boolean: Specifies whether log file validation is enabled. The default is false.
eventSelectors List<EventSelector>: Use event selectors to further specify the management and data event settings for your trail. By default, trails created without specific event selectors will be configured to log all read and write management events, and no data events. When an event occurs in your account, CloudTrail evaluates the event selector for all trails. For each trail, if the event matches any event selector, the trail processes and logs the event. If the event doesn't match any event selector, the trail doesn't log the event. You can configure up to five event selectors for a trail.
includeGlobalServiceEvents Boolean: Specifies whether the trail is publishing events from global services such as IAM to the log files.
insightSelectors List<InsightSelector>: Lets you enable Insights event logging by specifying the Insights selectors that you want to enable on an existing trail.
isLogging Boolean: Whether the CloudTrail is currently logging AWS API calls.
isMultiRegionTrail Boolean: Specifies whether the trail applies only to the current region or to all regions. The default is false. If the trail exists only in the current region and this value is set to true, shadow trails (replications of the trail) will be created in the other regions. If the trail exists in all regions and this value is set to false, the trail will remain in the region where it was created, and its shadow trails in other regions will be deleted. As a best practice, consider using trails that log events in all regions.
isOrganizationTrail Boolean: Specifies whether the trail is created for all accounts in an organization in AWS Organizations, or only for the current AWS account. The default is false, and cannot be true unless the call is made on behalf of an AWS account that is the master account for an organization in AWS Organizations.
kmsKeyId String: Specifies the KMS key ID to use to encrypt the logs delivered by CloudTrail. The value can be an alias name prefixed by 'alias/', a fully specified ARN to an alias, a fully specified ARN to a key, or a globally unique identifier.
s3BucketName String: Specifies the name of the Amazon S3 bucket designated for publishing log files. See Amazon S3 Bucket Naming Requirements.
s3KeyPrefix String: Specifies the Amazon S3 key prefix that comes after the name of the bucket you have designated for log file delivery. For more information, see Finding Your CloudTrail Log Files. The maximum length is 200 characters.
snsTopicArn String: Property snsTopicArn
snsTopicName String: Specifies the name of the Amazon SNS topic defined for notification of log file delivery. The maximum length is 256 characters.
tags List<Tag>: Property tags
trailName String: Property trailName

advancedEventSelectors AdvancedEventSelector[]: The advanced event selectors that were used to select events for the data store.
arn string: Property arn
cloudWatchLogsLogGroupArn string: Specifies a log group name using an Amazon Resource Name (ARN), a unique identifier that represents the log group to which CloudTrail logs will be delivered. Not required unless you specify CloudWatchLogsRoleArn.
cloudWatchLogsRoleArn string: Specifies the role for the CloudWatch Logs endpoint to assume to write to a user's log group.
enableLogFileValidation boolean: Specifies whether log file validation is enabled. The default is false.
eventSelectors EventSelector[]: Use event selectors to further specify the management and data event settings for your trail. By default, trails created without specific event selectors will be configured to log all read and write management events, and no data events. When an event occurs in your account, CloudTrail evaluates the event selector for all trails. For each trail, if the event matches any event selector, the trail processes and logs the event. If the event doesn't match any event selector, the trail doesn't log the event. You can configure up to five event selectors for a trail.
includeGlobalServiceEvents boolean: Specifies whether the trail is publishing events from global services such as IAM to the log files.
insightSelectors InsightSelector[]: Lets you enable Insights event logging by specifying the Insights selectors that you want to enable on an existing trail.
isLogging boolean: Whether the CloudTrail is currently logging AWS API calls.
isMultiRegionTrail boolean: Specifies whether the trail applies only to the current region or to all regions. The default is false. If the trail exists only in the current region and this value is set to true, shadow trails (replications of the trail) will be created in the other regions. If the trail exists in all regions and this value is set to false, the trail will remain in the region where it was created, and its shadow trails in other regions will be deleted. As a best practice, consider using trails that log events in all regions.
isOrganizationTrail boolean: Specifies whether the trail is created for all accounts in an organization in AWS Organizations, or only for the current AWS account. The default is false, and cannot be true unless the call is made on behalf of an AWS account that is the master account for an organization in AWS Organizations.
kmsKeyId string: Specifies the KMS key ID to use to encrypt the logs delivered by CloudTrail. The value can be an alias name prefixed by 'alias/', a fully specified ARN to an alias, a fully specified ARN to a key, or a globally unique identifier.
s3BucketName string: Specifies the name of the Amazon S3 bucket designated for publishing log files. See Amazon S3 Bucket Naming Requirements.
s3KeyPrefix string: Specifies the Amazon S3 key prefix that comes after the name of the bucket you have designated for log file delivery. For more information, see Finding Your CloudTrail Log Files. The maximum length is 200 characters.
snsTopicArn string: Property snsTopicArn
snsTopicName string: Specifies the name of the Amazon SNS topic defined for notification of log file delivery. The maximum length is 256 characters.
tags Tag[]: Property tags
trailName string: Property trailName

advanced_event_selectors Sequence[AdvancedEventSelector]: The advanced event selectors that were used to select events for the data store.
arn str: Property arn
cloud_watch_logs_log_group_arn str: Specifies a log group name using an Amazon Resource Name (ARN), a unique identifier that represents the log group to which CloudTrail logs will be delivered. Not required unless you specify CloudWatchLogsRoleArn.
cloud_watch_logs_role_arn str: Specifies the role for the CloudWatch Logs endpoint to assume to write to a user's log group.
enable_log_file_validation bool: Specifies whether log file validation is enabled. The default is false.
event_selectors Sequence[EventSelector]: Use event selectors to further specify the management and data event settings for your trail. By default, trails created without specific event selectors will be configured to log all read and write management events, and no data events. When an event occurs in your account, CloudTrail evaluates the event selector for all trails. For each trail, if the event matches any event selector, the trail processes and logs the event. If the event doesn't match any event selector, the trail doesn't log the event. You can configure up to five event selectors for a trail.
include_global_service_events bool: Specifies whether the trail is publishing events from global services such as IAM to the log files.
insight_selectors Sequence[InsightSelector]: Lets you enable Insights event logging by specifying the Insights selectors that you want to enable on an existing trail.
is_logging bool: Whether the CloudTrail is currently logging AWS API calls.
is_multi_region_trail bool: Specifies whether the trail applies only to the current region or to all regions. The default is false. If the trail exists only in the current region and this value is set to true, shadow trails (replications of the trail) will be created in the other regions. If the trail exists in all regions and this value is set to false, the trail will remain in the region where it was created, and its shadow trails in other regions will be deleted. As a best practice, consider using trails that log events in all regions.
is_organization_trail bool: Specifies whether the trail is created for all accounts in an organization in AWS Organizations, or only for the current AWS account. The default is false, and cannot be true unless the call is made on behalf of an AWS account that is the master account for an organization in AWS Organizations.
kms_key_id str: Specifies the KMS key ID to use to encrypt the logs delivered by CloudTrail. The value can be an alias name prefixed by 'alias/', a fully specified ARN to an alias, a fully specified ARN to a key, or a globally unique identifier.
s3_bucket_name str: Specifies the name of the Amazon S3 bucket designated for publishing log files. See Amazon S3 Bucket Naming Requirements.
s3_key_prefix str: Specifies the Amazon S3 key prefix that comes after the name of the bucket you have designated for log file delivery. For more information, see Finding Your CloudTrail Log Files. The maximum length is 200 characters.
sns_topic_arn str: Property snsTopicArn
sns_topic_name str: Specifies the name of the Amazon SNS topic defined for notification of log file delivery. The maximum length is 256 characters.
tags Sequence[Tag]: Property tags
trail_name str: Property trailName

advancedEventSelectors List<Property Map>: The advanced event selectors that were used to select events for the data store.
arn String: Property arn
cloudWatchLogsLogGroupArn String: Specifies a log group name using an Amazon Resource Name (ARN), a unique identifier that represents the log group to which CloudTrail logs will be delivered. Not required unless you specify CloudWatchLogsRoleArn.
cloudWatchLogsRoleArn String: Specifies the role for the CloudWatch Logs endpoint to assume to write to a user's log group.
enableLogFileValidation Boolean: Specifies whether log file validation is enabled. The default is false.
eventSelectors List<Property Map>: Use event selectors to further specify the management and data event settings for your trail. By default, trails created without specific event selectors will be configured to log all read and write management events, and no data events. When an event occurs in your account, CloudTrail evaluates the event selector for all trails. For each trail, if the event matches any event selector, the trail processes and logs the event. If the event doesn't match any event selector, the trail doesn't log the event. You can configure up to five event selectors for a trail.
includeGlobalServiceEvents Boolean: Specifies whether the trail is publishing events from global services such as IAM to the log files.
insightSelectors List<Property Map>: Lets you enable Insights event logging by specifying the Insights selectors that you want to enable on an existing trail.
isLogging Boolean: Whether the CloudTrail is currently logging AWS API calls.
isMultiRegionTrail Boolean: Specifies whether the trail applies only to the current region or to all regions. The default is false. If the trail exists only in the current region and this value is set to true, shadow trails (replications of the trail) will be created in the other regions. If the trail exists in all regions and this value is set to false, the trail will remain in the region where it was created, and its shadow trails in other regions will be deleted. As a best practice, consider using trails that log events in all regions.
isOrganizationTrail Boolean: Specifies whether the trail is created for all accounts in an organization in AWS Organizations, or only for the current AWS account. The default is false, and cannot be true unless the call is made on behalf of an AWS account that is the master account for an organization in AWS Organizations.
kmsKeyId String: Specifies the KMS key ID to use to encrypt the logs delivered by CloudTrail. The value can be an alias name prefixed by 'alias/', a fully specified ARN to an alias, a fully specified ARN to a key, or a globally unique identifier.
s3BucketName String: Specifies the name of the Amazon S3 bucket designated for publishing log files. See Amazon S3 Bucket Naming Requirements.
s3KeyPrefix String: Specifies the Amazon S3 key prefix that comes after the name of the bucket you have designated for log file delivery. For more information, see Finding Your CloudTrail Log Files. The maximum length is 200 characters.
snsTopicArn String: Property snsTopicArn
snsTopicName String: Specifies the name of the Amazon SNS topic defined for notification of log file delivery. The maximum length is 256 characters.
tags List<Property Map>: Property tags
trailName String: Property trailName

AwsCloudTrailTrailPropertiesResponse
, AwsCloudTrailTrailPropertiesResponseArgs

AdvancedEventSelectors List<Pulumi.AzureNative.AwsConnector.Inputs.AdvancedEventSelectorResponse>: The advanced event selectors that were used to select events for the data store.
Arn string: Property arn
CloudWatchLogsLogGroupArn string: Specifies a log group name using an Amazon Resource Name (ARN), a unique identifier that represents the log group to which CloudTrail logs will be delivered. Not required unless you specify CloudWatchLogsRoleArn.
CloudWatchLogsRoleArn string: Specifies the role for the CloudWatch Logs endpoint to assume to write to a user's log group.
EnableLogFileValidation bool: Specifies whether log file validation is enabled. The default is false.
EventSelectors List<Pulumi.AzureNative.AwsConnector.Inputs.EventSelectorResponse>: Use event selectors to further specify the management and data event settings for your trail. By default, trails created without specific event selectors will be configured to log all read and write management events, and no data events. When an event occurs in your account, CloudTrail evaluates the event selector for all trails. For each trail, if the event matches any event selector, the trail processes and logs the event. If the event doesn't match any event selector, the trail doesn't log the event. You can configure up to five event selectors for a trail.
IncludeGlobalServiceEvents bool: Specifies whether the trail is publishing events from global services such as IAM to the log files.
InsightSelectors List<Pulumi.AzureNative.AwsConnector.Inputs.InsightSelectorResponse>: Lets you enable Insights event logging by specifying the Insights selectors that you want to enable on an existing trail.
IsLogging bool: Whether the CloudTrail is currently logging AWS API calls.
IsMultiRegionTrail bool: Specifies whether the trail applies only to the current region or to all regions. The default is false. If the trail exists only in the current region and this value is set to true, shadow trails (replications of the trail) will be created in the other regions. If the trail exists in all regions and this value is set to false, the trail will remain in the region where it was created, and its shadow trails in other regions will be deleted. As a best practice, consider using trails that log events in all regions.
IsOrganizationTrail bool: Specifies whether the trail is created for all accounts in an organization in AWS Organizations, or only for the current AWS account. The default is false, and cannot be true unless the call is made on behalf of an AWS account that is the master account for an organization in AWS Organizations.
KmsKeyId string: Specifies the KMS key ID to use to encrypt the logs delivered by CloudTrail. The value can be an alias name prefixed by 'alias/', a fully specified ARN to an alias, a fully specified ARN to a key, or a globally unique identifier.
S3BucketName string: Specifies the name of the Amazon S3 bucket designated for publishing log files. See Amazon S3 Bucket Naming Requirements.
S3KeyPrefix string: Specifies the Amazon S3 key prefix that comes after the name of the bucket you have designated for log file delivery. For more information, see Finding Your CloudTrail Log Files. The maximum length is 200 characters.
SnsTopicArn string: Property snsTopicArn
SnsTopicName string: Specifies the name of the Amazon SNS topic defined for notification of log file delivery. The maximum length is 256 characters.
Tags List<Pulumi.AzureNative.AwsConnector.Inputs.TagResponse>: Property tags
TrailName string: Property trailName

AdvancedEventSelectors []AdvancedEventSelectorResponse: The advanced event selectors that were used to select events for the data store.
Arn string: Property arn
CloudWatchLogsLogGroupArn string: Specifies a log group name using an Amazon Resource Name (ARN), a unique identifier that represents the log group to which CloudTrail logs will be delivered. Not required unless you specify CloudWatchLogsRoleArn.
CloudWatchLogsRoleArn string: Specifies the role for the CloudWatch Logs endpoint to assume to write to a user's log group.
EnableLogFileValidation bool: Specifies whether log file validation is enabled. The default is false.
EventSelectors []EventSelectorResponse: Use event selectors to further specify the management and data event settings for your trail. By default, trails created without specific event selectors will be configured to log all read and write management events, and no data events. When an event occurs in your account, CloudTrail evaluates the event selector for all trails. For each trail, if the event matches any event selector, the trail processes and logs the event. If the event doesn't match any event selector, the trail doesn't log the event. You can configure up to five event selectors for a trail.
IncludeGlobalServiceEvents bool: Specifies whether the trail is publishing events from global services such as IAM to the log files.
InsightSelectors []InsightSelectorResponse: Lets you enable Insights event logging by specifying the Insights selectors that you want to enable on an existing trail.
IsLogging bool: Whether the CloudTrail is currently logging AWS API calls.
IsMultiRegionTrail bool: Specifies whether the trail applies only to the current region or to all regions. The default is false. If the trail exists only in the current region and this value is set to true, shadow trails (replications of the trail) will be created in the other regions. If the trail exists in all regions and this value is set to false, the trail will remain in the region where it was created, and its shadow trails in other regions will be deleted. As a best practice, consider using trails that log events in all regions.
IsOrganizationTrail bool: Specifies whether the trail is created for all accounts in an organization in AWS Organizations, or only for the current AWS account. The default is false, and cannot be true unless the call is made on behalf of an AWS account that is the master account for an organization in AWS Organizations.
KmsKeyId string: Specifies the KMS key ID to use to encrypt the logs delivered by CloudTrail. The value can be an alias name prefixed by 'alias/', a fully specified ARN to an alias, a fully specified ARN to a key, or a globally unique identifier.
S3BucketName string: Specifies the name of the Amazon S3 bucket designated for publishing log files. See Amazon S3 Bucket Naming Requirements.
S3KeyPrefix string: Specifies the Amazon S3 key prefix that comes after the name of the bucket you have designated for log file delivery. For more information, see Finding Your CloudTrail Log Files. The maximum length is 200 characters.
SnsTopicArn string: Property snsTopicArn
SnsTopicName string: Specifies the name of the Amazon SNS topic defined for notification of log file delivery. The maximum length is 256 characters.
Tags []TagResponse: Property tags
TrailName string: Property trailName

advancedEventSelectors List<AdvancedEventSelectorResponse>: The advanced event selectors that were used to select events for the data store.
arn String: Property arn
cloudWatchLogsLogGroupArn String: Specifies a log group name using an Amazon Resource Name (ARN), a unique identifier that represents the log group to which CloudTrail logs will be delivered. Not required unless you specify CloudWatchLogsRoleArn.
cloudWatchLogsRoleArn String: Specifies the role for the CloudWatch Logs endpoint to assume to write to a user's log group.
enableLogFileValidation Boolean: Specifies whether log file validation is enabled. The default is false.
eventSelectors List<EventSelectorResponse>: Use event selectors to further specify the management and data event settings for your trail. By default, trails created without specific event selectors will be configured to log all read and write management events, and no data events. When an event occurs in your account, CloudTrail evaluates the event selector for all trails. For each trail, if the event matches any event selector, the trail processes and logs the event. If the event doesn't match any event selector, the trail doesn't log the event. You can configure up to five event selectors for a trail.
includeGlobalServiceEvents Boolean: Specifies whether the trail is publishing events from global services such as IAM to the log files.
insightSelectors List<InsightSelectorResponse>: Lets you enable Insights event logging by specifying the Insights selectors that you want to enable on an existing trail.
isLogging Boolean: Whether the CloudTrail is currently logging AWS API calls.
isMultiRegionTrail Boolean: Specifies whether the trail applies only to the current region or to all regions. The default is false. If the trail exists only in the current region and this value is set to true, shadow trails (replications of the trail) will be created in the other regions. If the trail exists in all regions and this value is set to false, the trail will remain in the region where it was created, and its shadow trails in other regions will be deleted. As a best practice, consider using trails that log events in all regions.
isOrganizationTrail Boolean: Specifies whether the trail is created for all accounts in an organization in AWS Organizations, or only for the current AWS account. The default is false, and cannot be true unless the call is made on behalf of an AWS account that is the master account for an organization in AWS Organizations.
kmsKeyId String: Specifies the KMS key ID to use to encrypt the logs delivered by CloudTrail. The value can be an alias name prefixed by 'alias/', a fully specified ARN to an alias, a fully specified ARN to a key, or a globally unique identifier.
s3BucketName String: Specifies the name of the Amazon S3 bucket designated for publishing log files. See Amazon S3 Bucket Naming Requirements.
s3KeyPrefix String: Specifies the Amazon S3 key prefix that comes after the name of the bucket you have designated for log file delivery. For more information, see Finding Your CloudTrail Log Files. The maximum length is 200 characters.
snsTopicArn String: Property snsTopicArn
snsTopicName String: Specifies the name of the Amazon SNS topic defined for notification of log file delivery. The maximum length is 256 characters.
tags List<TagResponse>: Property tags
trailName String: Property trailName

advancedEventSelectors AdvancedEventSelectorResponse[]: The advanced event selectors that were used to select events for the data store.
arn string: Property arn
cloudWatchLogsLogGroupArn string: Specifies a log group name using an Amazon Resource Name (ARN), a unique identifier that represents the log group to which CloudTrail logs will be delivered. Not required unless you specify CloudWatchLogsRoleArn.
cloudWatchLogsRoleArn string: Specifies the role for the CloudWatch Logs endpoint to assume to write to a user's log group.
enableLogFileValidation boolean: Specifies whether log file validation is enabled. The default is false.
eventSelectors EventSelectorResponse[]: Use event selectors to further specify the management and data event settings for your trail. By default, trails created without specific event selectors will be configured to log all read and write management events, and no data events. When an event occurs in your account, CloudTrail evaluates the event selector for all trails. For each trail, if the event matches any event selector, the trail processes and logs the event. If the event doesn't match any event selector, the trail doesn't log the event. You can configure up to five event selectors for a trail.
includeGlobalServiceEvents boolean: Specifies whether the trail is publishing events from global services such as IAM to the log files.
insightSelectors InsightSelectorResponse[]: Lets you enable Insights event logging by specifying the Insights selectors that you want to enable on an existing trail.
isLogging boolean: Whether the CloudTrail is currently logging AWS API calls.
isMultiRegionTrail boolean: Specifies whether the trail applies only to the current region or to all regions. The default is false. If the trail exists only in the current region and this value is set to true, shadow trails (replications of the trail) will be created in the other regions. If the trail exists in all regions and this value is set to false, the trail will remain in the region where it was created, and its shadow trails in other regions will be deleted. As a best practice, consider using trails that log events in all regions.
isOrganizationTrail boolean: Specifies whether the trail is created for all accounts in an organization in AWS Organizations, or only for the current AWS account. The default is false, and cannot be true unless the call is made on behalf of an AWS account that is the master account for an organization in AWS Organizations.
kmsKeyId string: Specifies the KMS key ID to use to encrypt the logs delivered by CloudTrail. The value can be an alias name prefixed by 'alias/', a fully specified ARN to an alias, a fully specified ARN to a key, or a globally unique identifier.
s3BucketName string: Specifies the name of the Amazon S3 bucket designated for publishing log files. See Amazon S3 Bucket Naming Requirements.
s3KeyPrefix string: Specifies the Amazon S3 key prefix that comes after the name of the bucket you have designated for log file delivery. For more information, see Finding Your CloudTrail Log Files. The maximum length is 200 characters.
snsTopicArn string: Property snsTopicArn
snsTopicName string: Specifies the name of the Amazon SNS topic defined for notification of log file delivery. The maximum length is 256 characters.
tags TagResponse[]: Property tags
trailName string: Property trailName

advanced_event_selectors Sequence[AdvancedEventSelectorResponse]: The advanced event selectors that were used to select events for the data store.
arn str: Property arn
cloud_watch_logs_log_group_arn str: Specifies a log group name using an Amazon Resource Name (ARN), a unique identifier that represents the log group to which CloudTrail logs will be delivered. Not required unless you specify CloudWatchLogsRoleArn.
cloud_watch_logs_role_arn str: Specifies the role for the CloudWatch Logs endpoint to assume to write to a user's log group.
enable_log_file_validation bool: Specifies whether log file validation is enabled. The default is false.
event_selectors Sequence[EventSelectorResponse]: Use event selectors to further specify the management and data event settings for your trail. By default, trails created without specific event selectors will be configured to log all read and write management events, and no data events. When an event occurs in your account, CloudTrail evaluates the event selector for all trails. For each trail, if the event matches any event selector, the trail processes and logs the event. If the event doesn't match any event selector, the trail doesn't log the event. You can configure up to five event selectors for a trail.
include_global_service_events bool: Specifies whether the trail is publishing events from global services such as IAM to the log files.
insight_selectors Sequence[InsightSelectorResponse]: Lets you enable Insights event logging by specifying the Insights selectors that you want to enable on an existing trail.
is_logging bool: Whether the CloudTrail is currently logging AWS API calls.
is_multi_region_trail bool: Specifies whether the trail applies only to the current region or to all regions. The default is false. If the trail exists only in the current region and this value is set to true, shadow trails (replications of the trail) will be created in the other regions. If the trail exists in all regions and this value is set to false, the trail will remain in the region where it was created, and its shadow trails in other regions will be deleted. As a best practice, consider using trails that log events in all regions.
is_organization_trail bool: Specifies whether the trail is created for all accounts in an organization in AWS Organizations, or only for the current AWS account. The default is false, and cannot be true unless the call is made on behalf of an AWS account that is the master account for an organization in AWS Organizations.
kms_key_id str: Specifies the KMS key ID to use to encrypt the logs delivered by CloudTrail. The value can be an alias name prefixed by 'alias/', a fully specified ARN to an alias, a fully specified ARN to a key, or a globally unique identifier.
s3_bucket_name str: Specifies the name of the Amazon S3 bucket designated for publishing log files. See Amazon S3 Bucket Naming Requirements.
s3_key_prefix str: Specifies the Amazon S3 key prefix that comes after the name of the bucket you have designated for log file delivery. For more information, see Finding Your CloudTrail Log Files. The maximum length is 200 characters.
sns_topic_arn str: Property snsTopicArn
sns_topic_name str: Specifies the name of the Amazon SNS topic defined for notification of log file delivery. The maximum length is 256 characters.
tags Sequence[TagResponse]: Property tags
trail_name str: Property trailName

advancedEventSelectors List<Property Map>: The advanced event selectors that were used to select events for the data store.
arn String: Property arn
cloudWatchLogsLogGroupArn String: Specifies a log group name using an Amazon Resource Name (ARN), a unique identifier that represents the log group to which CloudTrail logs will be delivered. Not required unless you specify CloudWatchLogsRoleArn.
cloudWatchLogsRoleArn String: Specifies the role for the CloudWatch Logs endpoint to assume to write to a user's log group.
enableLogFileValidation Boolean: Specifies whether log file validation is enabled. The default is false.
eventSelectors List<Property Map>: Use event selectors to further specify the management and data event settings for your trail. By default, trails created without specific event selectors will be configured to log all read and write management events, and no data events. When an event occurs in your account, CloudTrail evaluates the event selector for all trails. For each trail, if the event matches any event selector, the trail processes and logs the event. If the event doesn't match any event selector, the trail doesn't log the event. You can configure up to five event selectors for a trail.
includeGlobalServiceEvents Boolean: Specifies whether the trail is publishing events from global services such as IAM to the log files.
insightSelectors List<Property Map>: Lets you enable Insights event logging by specifying the Insights selectors that you want to enable on an existing trail.
isLogging Boolean: Whether the CloudTrail is currently logging AWS API calls.
isMultiRegionTrail Boolean: Specifies whether the trail applies only to the current region or to all regions. The default is false. If the trail exists only in the current region and this value is set to true, shadow trails (replications of the trail) will be created in the other regions. If the trail exists in all regions and this value is set to false, the trail will remain in the region where it was created, and its shadow trails in other regions will be deleted. As a best practice, consider using trails that log events in all regions.
isOrganizationTrail Boolean: Specifies whether the trail is created for all accounts in an organization in AWS Organizations, or only for the current AWS account. The default is false, and cannot be true unless the call is made on behalf of an AWS account that is the master account for an organization in AWS Organizations.
kmsKeyId String: Specifies the KMS key ID to use to encrypt the logs delivered by CloudTrail. The value can be an alias name prefixed by 'alias/', a fully specified ARN to an alias, a fully specified ARN to a key, or a globally unique identifier.
s3BucketName String: Specifies the name of the Amazon S3 bucket designated for publishing log files. See Amazon S3 Bucket Naming Requirements.
s3KeyPrefix String: Specifies the Amazon S3 key prefix that comes after the name of the bucket you have designated for log file delivery. For more information, see Finding Your CloudTrail Log Files. The maximum length is 200 characters.
snsTopicArn String: Property snsTopicArn
snsTopicName String: Specifies the name of the Amazon SNS topic defined for notification of log file delivery. The maximum length is 256 characters.
tags List<Property Map>: Property tags
trailName String: Property trailName

CloudTrailTrailProperties
, CloudTrailTrailPropertiesArgs

Arn string: Amazon Resource Name (ARN)
AwsAccountId string: AWS Account ID
AwsProperties Pulumi.AzureNative.AwsConnector.Inputs.AwsCloudTrailTrailProperties: AWS Properties
AwsRegion string: AWS Region
AwsSourceSchema string: AWS Source Schema
AwsTags Dictionary<string, string>: AWS Tags
PublicCloudConnectorsResourceId string: Public Cloud Connectors Resource ID
PublicCloudResourceName string: Public Cloud Resource Name

Arn string: Amazon Resource Name (ARN)
AwsAccountId string: AWS Account ID
AwsProperties AwsCloudTrailTrailProperties: AWS Properties
AwsRegion string: AWS Region
AwsSourceSchema string: AWS Source Schema
AwsTags map[string]string: AWS Tags
PublicCloudConnectorsResourceId string: Public Cloud Connectors Resource ID
PublicCloudResourceName string: Public Cloud Resource Name

arn String: Amazon Resource Name (ARN)
awsAccountId String: AWS Account ID
awsProperties AwsCloudTrailTrailProperties: AWS Properties
awsRegion String: AWS Region
awsSourceSchema String: AWS Source Schema
awsTags Map<String,String>: AWS Tags
publicCloudConnectorsResourceId String: Public Cloud Connectors Resource ID
publicCloudResourceName String: Public Cloud Resource Name

arn string: Amazon Resource Name (ARN)
awsAccountId string: AWS Account ID
awsProperties AwsCloudTrailTrailProperties: AWS Properties
awsRegion string: AWS Region
awsSourceSchema string: AWS Source Schema
awsTags {[key: string]: string}: AWS Tags
publicCloudConnectorsResourceId string: Public Cloud Connectors Resource ID
publicCloudResourceName string: Public Cloud Resource Name

arn str: Amazon Resource Name (ARN)
aws_account_id str: AWS Account ID
aws_properties AwsCloudTrailTrailProperties: AWS Properties
aws_region str: AWS Region
aws_source_schema str: AWS Source Schema
aws_tags Mapping[str, str]: AWS Tags
public_cloud_connectors_resource_id str: Public Cloud Connectors Resource ID
public_cloud_resource_name str: Public Cloud Resource Name

arn String: Amazon Resource Name (ARN)
awsAccountId String: AWS Account ID
awsProperties Property Map: AWS Properties
awsRegion String: AWS Region
awsSourceSchema String: AWS Source Schema
awsTags Map<String>: AWS Tags
publicCloudConnectorsResourceId String: Public Cloud Connectors Resource ID
publicCloudResourceName String: Public Cloud Resource Name

CloudTrailTrailPropertiesResponse
, CloudTrailTrailPropertiesResponseArgs

ProvisioningState string: The status of the last operation.
Arn string: Amazon Resource Name (ARN)
AwsAccountId string: AWS Account ID
AwsProperties Pulumi.AzureNative.AwsConnector.Inputs.AwsCloudTrailTrailPropertiesResponse: AWS Properties
AwsRegion string: AWS Region
AwsSourceSchema string: AWS Source Schema
AwsTags Dictionary<string, string>: AWS Tags
PublicCloudConnectorsResourceId string: Public Cloud Connectors Resource ID
PublicCloudResourceName string: Public Cloud Resource Name

ProvisioningState string: The status of the last operation.
Arn string: Amazon Resource Name (ARN)
AwsAccountId string: AWS Account ID
AwsProperties AwsCloudTrailTrailPropertiesResponse: AWS Properties
AwsRegion string: AWS Region
AwsSourceSchema string: AWS Source Schema
AwsTags map[string]string: AWS Tags
PublicCloudConnectorsResourceId string: Public Cloud Connectors Resource ID
PublicCloudResourceName string: Public Cloud Resource Name

provisioningState String: The status of the last operation.
arn String: Amazon Resource Name (ARN)
awsAccountId String: AWS Account ID
awsProperties AwsCloudTrailTrailPropertiesResponse: AWS Properties
awsRegion String: AWS Region
awsSourceSchema String: AWS Source Schema
awsTags Map<String,String>: AWS Tags
publicCloudConnectorsResourceId String: Public Cloud Connectors Resource ID
publicCloudResourceName String: Public Cloud Resource Name

provisioningState string: The status of the last operation.
arn string: Amazon Resource Name (ARN)
awsAccountId string: AWS Account ID
awsProperties AwsCloudTrailTrailPropertiesResponse: AWS Properties
awsRegion string: AWS Region
awsSourceSchema string: AWS Source Schema
awsTags {[key: string]: string}: AWS Tags
publicCloudConnectorsResourceId string: Public Cloud Connectors Resource ID
publicCloudResourceName string: Public Cloud Resource Name

provisioning_state str: The status of the last operation.
arn str: Amazon Resource Name (ARN)
aws_account_id str: AWS Account ID
aws_properties AwsCloudTrailTrailPropertiesResponse: AWS Properties
aws_region str: AWS Region
aws_source_schema str: AWS Source Schema
aws_tags Mapping[str, str]: AWS Tags
public_cloud_connectors_resource_id str: Public Cloud Connectors Resource ID
public_cloud_resource_name str: Public Cloud Resource Name

provisioningState String: The status of the last operation.
arn String: Amazon Resource Name (ARN)
awsAccountId String: AWS Account ID
awsProperties Property Map: AWS Properties
awsRegion String: AWS Region
awsSourceSchema String: AWS Source Schema
awsTags Map<String>: AWS Tags
publicCloudConnectorsResourceId String: Public Cloud Connectors Resource ID
publicCloudResourceName String: Public Cloud Resource Name

DataResource
, DataResourceArgs

Type string: The resource type in which you want to log data events. You can specify AWS::S3::Object or AWS::Lambda::Function resources.
Values List<string>: An array of Amazon Resource Name (ARN) strings or partial ARN strings for the specified objects.

Type string: The resource type in which you want to log data events. You can specify AWS::S3::Object or AWS::Lambda::Function resources.
Values []string: An array of Amazon Resource Name (ARN) strings or partial ARN strings for the specified objects.

type String: The resource type in which you want to log data events. You can specify AWS::S3::Object or AWS::Lambda::Function resources.
values List<String>: An array of Amazon Resource Name (ARN) strings or partial ARN strings for the specified objects.

type string: The resource type in which you want to log data events. You can specify AWS::S3::Object or AWS::Lambda::Function resources.
values string[]: An array of Amazon Resource Name (ARN) strings or partial ARN strings for the specified objects.

type str: The resource type in which you want to log data events. You can specify AWS::S3::Object or AWS::Lambda::Function resources.
values Sequence[str]: An array of Amazon Resource Name (ARN) strings or partial ARN strings for the specified objects.

type String: The resource type in which you want to log data events. You can specify AWS::S3::Object or AWS::Lambda::Function resources.
values List<String>: An array of Amazon Resource Name (ARN) strings or partial ARN strings for the specified objects.

DataResourceResponse
, DataResourceResponseArgs

Type string: The resource type in which you want to log data events. You can specify AWS::S3::Object or AWS::Lambda::Function resources.
Values List<string>: An array of Amazon Resource Name (ARN) strings or partial ARN strings for the specified objects.

Type string: The resource type in which you want to log data events. You can specify AWS::S3::Object or AWS::Lambda::Function resources.
Values []string: An array of Amazon Resource Name (ARN) strings or partial ARN strings for the specified objects.

type String: The resource type in which you want to log data events. You can specify AWS::S3::Object or AWS::Lambda::Function resources.
values List<String>: An array of Amazon Resource Name (ARN) strings or partial ARN strings for the specified objects.

type string: The resource type in which you want to log data events. You can specify AWS::S3::Object or AWS::Lambda::Function resources.
values string[]: An array of Amazon Resource Name (ARN) strings or partial ARN strings for the specified objects.

type str: The resource type in which you want to log data events. You can specify AWS::S3::Object or AWS::Lambda::Function resources.
values Sequence[str]: An array of Amazon Resource Name (ARN) strings or partial ARN strings for the specified objects.

type String: The resource type in which you want to log data events. You can specify AWS::S3::Object or AWS::Lambda::Function resources.
values List<String>: An array of Amazon Resource Name (ARN) strings or partial ARN strings for the specified objects.

EventSelector
, EventSelectorArgs

DataResources List<Pulumi.AzureNative.AwsConnector.Inputs.DataResource>: Property dataResources
ExcludeManagementEventSources List<string>: An optional list of service event sources from which you do not want management events to be logged on your trail. In this release, the list can be empty (disables the filter), or it can filter out AWS Key Management Service events by containing 'kms.amazonaws.com'. By default, ExcludeManagementEventSources is empty, and AWS KMS events are included in events that are logged to your trail.
IncludeManagementEvents bool: Specify if you want your event selector to include management events for your trail.
ReadWriteType string | Pulumi.AzureNative.AwsConnector.EventSelectorReadWriteType: Specify if you want your trail to log read-only events, write-only events, or all. For example, the EC2 GetConsoleOutput is a read-only API operation and RunInstances is a write-only API operation.

DataResources []DataResource: Property dataResources
ExcludeManagementEventSources []string: An optional list of service event sources from which you do not want management events to be logged on your trail. In this release, the list can be empty (disables the filter), or it can filter out AWS Key Management Service events by containing 'kms.amazonaws.com'. By default, ExcludeManagementEventSources is empty, and AWS KMS events are included in events that are logged to your trail.
IncludeManagementEvents bool: Specify if you want your event selector to include management events for your trail.
ReadWriteType string | EventSelectorReadWriteType: Specify if you want your trail to log read-only events, write-only events, or all. For example, the EC2 GetConsoleOutput is a read-only API operation and RunInstances is a write-only API operation.

dataResources List<DataResource>: Property dataResources
excludeManagementEventSources List<String>: An optional list of service event sources from which you do not want management events to be logged on your trail. In this release, the list can be empty (disables the filter), or it can filter out AWS Key Management Service events by containing 'kms.amazonaws.com'. By default, ExcludeManagementEventSources is empty, and AWS KMS events are included in events that are logged to your trail.
includeManagementEvents Boolean: Specify if you want your event selector to include management events for your trail.
readWriteType String | EventSelectorReadWriteType: Specify if you want your trail to log read-only events, write-only events, or all. For example, the EC2 GetConsoleOutput is a read-only API operation and RunInstances is a write-only API operation.

dataResources DataResource[]: Property dataResources
excludeManagementEventSources string[]: An optional list of service event sources from which you do not want management events to be logged on your trail. In this release, the list can be empty (disables the filter), or it can filter out AWS Key Management Service events by containing 'kms.amazonaws.com'. By default, ExcludeManagementEventSources is empty, and AWS KMS events are included in events that are logged to your trail.
includeManagementEvents boolean: Specify if you want your event selector to include management events for your trail.
readWriteType string | EventSelectorReadWriteType: Specify if you want your trail to log read-only events, write-only events, or all. For example, the EC2 GetConsoleOutput is a read-only API operation and RunInstances is a write-only API operation.

data_resources Sequence[DataResource]: Property dataResources
exclude_management_event_sources Sequence[str]: An optional list of service event sources from which you do not want management events to be logged on your trail. In this release, the list can be empty (disables the filter), or it can filter out AWS Key Management Service events by containing 'kms.amazonaws.com'. By default, ExcludeManagementEventSources is empty, and AWS KMS events are included in events that are logged to your trail.
include_management_events bool: Specify if you want your event selector to include management events for your trail.
read_write_type str | EventSelectorReadWriteType: Specify if you want your trail to log read-only events, write-only events, or all. For example, the EC2 GetConsoleOutput is a read-only API operation and RunInstances is a write-only API operation.

dataResources List<Property Map>: Property dataResources
excludeManagementEventSources List<String>: An optional list of service event sources from which you do not want management events to be logged on your trail. In this release, the list can be empty (disables the filter), or it can filter out AWS Key Management Service events by containing 'kms.amazonaws.com'. By default, ExcludeManagementEventSources is empty, and AWS KMS events are included in events that are logged to your trail.
includeManagementEvents Boolean: Specify if you want your event selector to include management events for your trail.
readWriteType String | "All" | "ReadOnly" | "WriteOnly": Specify if you want your trail to log read-only events, write-only events, or all. For example, the EC2 GetConsoleOutput is a read-only API operation and RunInstances is a write-only API operation.

EventSelectorReadWriteType
, EventSelectorReadWriteTypeArgs

All: AllEventSelectorReadWriteType enum All
ReadOnly: ReadOnlyEventSelectorReadWriteType enum ReadOnly
WriteOnly: WriteOnlyEventSelectorReadWriteType enum WriteOnly

EventSelectorReadWriteTypeAll: AllEventSelectorReadWriteType enum All
EventSelectorReadWriteTypeReadOnly: ReadOnlyEventSelectorReadWriteType enum ReadOnly
EventSelectorReadWriteTypeWriteOnly: WriteOnlyEventSelectorReadWriteType enum WriteOnly

All: AllEventSelectorReadWriteType enum All
ReadOnly: ReadOnlyEventSelectorReadWriteType enum ReadOnly
WriteOnly: WriteOnlyEventSelectorReadWriteType enum WriteOnly

All: AllEventSelectorReadWriteType enum All
ReadOnly: ReadOnlyEventSelectorReadWriteType enum ReadOnly
WriteOnly: WriteOnlyEventSelectorReadWriteType enum WriteOnly

ALL: AllEventSelectorReadWriteType enum All
READ_ONLY: ReadOnlyEventSelectorReadWriteType enum ReadOnly
WRITE_ONLY: WriteOnlyEventSelectorReadWriteType enum WriteOnly

"All": AllEventSelectorReadWriteType enum All
"ReadOnly": ReadOnlyEventSelectorReadWriteType enum ReadOnly
"WriteOnly": WriteOnlyEventSelectorReadWriteType enum WriteOnly

EventSelectorResponse
, EventSelectorResponseArgs

DataResources List<Pulumi.AzureNative.AwsConnector.Inputs.DataResourceResponse>: Property dataResources
ExcludeManagementEventSources List<string>: An optional list of service event sources from which you do not want management events to be logged on your trail. In this release, the list can be empty (disables the filter), or it can filter out AWS Key Management Service events by containing 'kms.amazonaws.com'. By default, ExcludeManagementEventSources is empty, and AWS KMS events are included in events that are logged to your trail.
IncludeManagementEvents bool: Specify if you want your event selector to include management events for your trail.
ReadWriteType string: Specify if you want your trail to log read-only events, write-only events, or all. For example, the EC2 GetConsoleOutput is a read-only API operation and RunInstances is a write-only API operation.

DataResources []DataResourceResponse: Property dataResources
ExcludeManagementEventSources []string: An optional list of service event sources from which you do not want management events to be logged on your trail. In this release, the list can be empty (disables the filter), or it can filter out AWS Key Management Service events by containing 'kms.amazonaws.com'. By default, ExcludeManagementEventSources is empty, and AWS KMS events are included in events that are logged to your trail.
IncludeManagementEvents bool: Specify if you want your event selector to include management events for your trail.
ReadWriteType string: Specify if you want your trail to log read-only events, write-only events, or all. For example, the EC2 GetConsoleOutput is a read-only API operation and RunInstances is a write-only API operation.

dataResources List<DataResourceResponse>: Property dataResources
excludeManagementEventSources List<String>: An optional list of service event sources from which you do not want management events to be logged on your trail. In this release, the list can be empty (disables the filter), or it can filter out AWS Key Management Service events by containing 'kms.amazonaws.com'. By default, ExcludeManagementEventSources is empty, and AWS KMS events are included in events that are logged to your trail.
includeManagementEvents Boolean: Specify if you want your event selector to include management events for your trail.
readWriteType String: Specify if you want your trail to log read-only events, write-only events, or all. For example, the EC2 GetConsoleOutput is a read-only API operation and RunInstances is a write-only API operation.

dataResources DataResourceResponse[]: Property dataResources
excludeManagementEventSources string[]: An optional list of service event sources from which you do not want management events to be logged on your trail. In this release, the list can be empty (disables the filter), or it can filter out AWS Key Management Service events by containing 'kms.amazonaws.com'. By default, ExcludeManagementEventSources is empty, and AWS KMS events are included in events that are logged to your trail.
includeManagementEvents boolean: Specify if you want your event selector to include management events for your trail.
readWriteType string: Specify if you want your trail to log read-only events, write-only events, or all. For example, the EC2 GetConsoleOutput is a read-only API operation and RunInstances is a write-only API operation.

data_resources Sequence[DataResourceResponse]: Property dataResources
exclude_management_event_sources Sequence[str]: An optional list of service event sources from which you do not want management events to be logged on your trail. In this release, the list can be empty (disables the filter), or it can filter out AWS Key Management Service events by containing 'kms.amazonaws.com'. By default, ExcludeManagementEventSources is empty, and AWS KMS events are included in events that are logged to your trail.
include_management_events bool: Specify if you want your event selector to include management events for your trail.
read_write_type str: Specify if you want your trail to log read-only events, write-only events, or all. For example, the EC2 GetConsoleOutput is a read-only API operation and RunInstances is a write-only API operation.

dataResources List<Property Map>: Property dataResources
excludeManagementEventSources List<String>: An optional list of service event sources from which you do not want management events to be logged on your trail. In this release, the list can be empty (disables the filter), or it can filter out AWS Key Management Service events by containing 'kms.amazonaws.com'. By default, ExcludeManagementEventSources is empty, and AWS KMS events are included in events that are logged to your trail.
includeManagementEvents Boolean: Specify if you want your event selector to include management events for your trail.
readWriteType String: Specify if you want your trail to log read-only events, write-only events, or all. For example, the EC2 GetConsoleOutput is a read-only API operation and RunInstances is a write-only API operation.

InsightSelector
, InsightSelectorArgs

InsightType string: The type of insight to log on a trail.

InsightType string: The type of insight to log on a trail.

insightType String: The type of insight to log on a trail.

insightType string: The type of insight to log on a trail.

insight_type str: The type of insight to log on a trail.

insightType String: The type of insight to log on a trail.

InsightSelectorResponse
, InsightSelectorResponseArgs

InsightType string: The type of insight to log on a trail.

InsightType string: The type of insight to log on a trail.

insightType String: The type of insight to log on a trail.

insightType string: The type of insight to log on a trail.

insight_type str: The type of insight to log on a trail.

insightType String: The type of insight to log on a trail.

SystemDataResponse
, SystemDataResponseArgs

CreatedAt string: The timestamp of resource creation (UTC).
CreatedBy string: The identity that created the resource.
CreatedByType string: The type of identity that created the resource.
LastModifiedAt string: The timestamp of resource last modification (UTC)
LastModifiedBy string: The identity that last modified the resource.
LastModifiedByType string: The type of identity that last modified the resource.

CreatedAt string: The timestamp of resource creation (UTC).
CreatedBy string: The identity that created the resource.
CreatedByType string: The type of identity that created the resource.
LastModifiedAt string: The timestamp of resource last modification (UTC)
LastModifiedBy string: The identity that last modified the resource.
LastModifiedByType string: The type of identity that last modified the resource.

createdAt String: The timestamp of resource creation (UTC).
createdBy String: The identity that created the resource.
createdByType String: The type of identity that created the resource.
lastModifiedAt String: The timestamp of resource last modification (UTC)
lastModifiedBy String: The identity that last modified the resource.
lastModifiedByType String: The type of identity that last modified the resource.

createdAt string: The timestamp of resource creation (UTC).
createdBy string: The identity that created the resource.
createdByType string: The type of identity that created the resource.
lastModifiedAt string: The timestamp of resource last modification (UTC)
lastModifiedBy string: The identity that last modified the resource.
lastModifiedByType string: The type of identity that last modified the resource.

created_at str: The timestamp of resource creation (UTC).
created_by str: The identity that created the resource.
created_by_type str: The type of identity that created the resource.
last_modified_at str: The timestamp of resource last modification (UTC)
last_modified_by str: The identity that last modified the resource.
last_modified_by_type str: The type of identity that last modified the resource.

createdAt String: The timestamp of resource creation (UTC).
createdBy String: The identity that created the resource.
createdByType String: The type of identity that created the resource.
lastModifiedAt String: The timestamp of resource last modification (UTC)
lastModifiedBy String: The identity that last modified the resource.
lastModifiedByType String: The type of identity that last modified the resource.

Tag
, TagArgs

Key string: The key name of the tag. You can specify a value that is 1 to 128 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -.
Value string: The value for the tag. You can specify a value that is 0 to 256 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -.

Key string: The key name of the tag. You can specify a value that is 1 to 128 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -.
Value string: The value for the tag. You can specify a value that is 0 to 256 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -.

key String: The key name of the tag. You can specify a value that is 1 to 128 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -.
value String: The value for the tag. You can specify a value that is 0 to 256 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -.

key string: The key name of the tag. You can specify a value that is 1 to 128 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -.
value string: The value for the tag. You can specify a value that is 0 to 256 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -.

key str: The key name of the tag. You can specify a value that is 1 to 128 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -.
value str: The value for the tag. You can specify a value that is 0 to 256 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -.

key String: The key name of the tag. You can specify a value that is 1 to 128 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -.
value String: The value for the tag. You can specify a value that is 0 to 256 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -.

TagResponse
, TagResponseArgs

Key string: The key name of the tag. You can specify a value that is 1 to 128 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -.
Value string: The value for the tag. You can specify a value that is 0 to 256 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -.

Key string: The key name of the tag. You can specify a value that is 1 to 128 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -.
Value string: The value for the tag. You can specify a value that is 0 to 256 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -.

key String: The key name of the tag. You can specify a value that is 1 to 128 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -.
value String: The value for the tag. You can specify a value that is 0 to 256 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -.

key string: The key name of the tag. You can specify a value that is 1 to 128 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -.
value string: The value for the tag. You can specify a value that is 0 to 256 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -.

key str: The key name of the tag. You can specify a value that is 1 to 128 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -.
value str: The value for the tag. You can specify a value that is 0 to 256 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -.

key String: The key name of the tag. You can specify a value that is 1 to 128 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -.
value String: The value for the tag. You can specify a value that is 0 to 256 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -.

Import

An existing resource can be imported using its type token, name, and identifier, e.g.

$ pulumi import azure-native:awsconnector:CloudTrailTrail edilbyzlahavvhncoa /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.AwsConnector/cloudTrailTrails/{name}

To learn more about importing existing cloud resources, see Importing resources.

Package Details

Repository: Azure Native pulumi/pulumi-azure-native
License: Apache-2.0

This is the latest version of Azure Native. Use the Azure Native v2 docs if using the v2 version of this package.

Azure Native v3.2.0 published on Monday, Apr 14, 2025 by Pulumi

pulumi/pulumi-azure-native

azure-native.awsconnector.CloudTrailTrail

On this page

On this page

Example Usage

CloudTrailTrails_CreateOrReplace

Create CloudTrailTrail Resource

Constructor syntax

Parameters

Constructor example

CloudTrailTrail Resource Properties

Inputs

Outputs

Supporting Types

AdvancedEventSelector
, AdvancedEventSelectorArgs

AdvancedEventSelectorResponse
, AdvancedEventSelectorResponseArgs

AdvancedFieldSelector
, AdvancedFieldSelectorArgs

AdvancedFieldSelectorResponse
, AdvancedFieldSelectorResponseArgs

AwsCloudTrailTrailProperties
, AwsCloudTrailTrailPropertiesArgs

AwsCloudTrailTrailPropertiesResponse
, AwsCloudTrailTrailPropertiesResponseArgs

CloudTrailTrailProperties
, CloudTrailTrailPropertiesArgs

CloudTrailTrailPropertiesResponse
, CloudTrailTrailPropertiesResponseArgs

DataResource
, DataResourceArgs

DataResourceResponse
, DataResourceResponseArgs

EventSelector
, EventSelectorArgs

EventSelectorReadWriteType
, EventSelectorReadWriteTypeArgs

EventSelectorResponse
, EventSelectorResponseArgs

InsightSelector
, InsightSelectorArgs

InsightSelectorResponse
, InsightSelectorResponseArgs

SystemDataResponse
, SystemDataResponseArgs

Tag
, TagArgs

TagResponse
, TagResponseArgs

Import

Package Details

On this page

On this page

azure-native.awsconnector.CloudTrailTrail

On this page

On this page

Example Usage

CloudTrailTrails_CreateOrReplace

Create CloudTrailTrail Resource

Constructor syntax

Parameters

Constructor example

CloudTrailTrail Resource Properties

Inputs

Outputs

Supporting Types

AdvancedEventSelector, AdvancedEventSelectorArgs

AdvancedEventSelectorResponse, AdvancedEventSelectorResponseArgs

AdvancedFieldSelector, AdvancedFieldSelectorArgs

AdvancedFieldSelectorResponse, AdvancedFieldSelectorResponseArgs

AwsCloudTrailTrailProperties, AwsCloudTrailTrailPropertiesArgs

AwsCloudTrailTrailPropertiesResponse, AwsCloudTrailTrailPropertiesResponseArgs

CloudTrailTrailProperties, CloudTrailTrailPropertiesArgs

CloudTrailTrailPropertiesResponse, CloudTrailTrailPropertiesResponseArgs

DataResource, DataResourceArgs

DataResourceResponse, DataResourceResponseArgs

EventSelector, EventSelectorArgs

EventSelectorReadWriteType, EventSelectorReadWriteTypeArgs

EventSelectorResponse, EventSelectorResponseArgs

InsightSelector, InsightSelectorArgs

InsightSelectorResponse, InsightSelectorResponseArgs

SystemDataResponse, SystemDataResponseArgs

Tag, TagArgs

TagResponse, TagResponseArgs

Import

Package Details

On this page

On this page

AdvancedEventSelector
, AdvancedEventSelectorArgs

AdvancedEventSelectorResponse
, AdvancedEventSelectorResponseArgs

AdvancedFieldSelector
, AdvancedFieldSelectorArgs

AdvancedFieldSelectorResponse
, AdvancedFieldSelectorResponseArgs

AwsCloudTrailTrailProperties
, AwsCloudTrailTrailPropertiesArgs

AwsCloudTrailTrailPropertiesResponse
, AwsCloudTrailTrailPropertiesResponseArgs

CloudTrailTrailProperties
, CloudTrailTrailPropertiesArgs

CloudTrailTrailPropertiesResponse
, CloudTrailTrailPropertiesResponseArgs

DataResource
, DataResourceArgs

DataResourceResponse
, DataResourceResponseArgs

EventSelector
, EventSelectorArgs

EventSelectorReadWriteType
, EventSelectorReadWriteTypeArgs

EventSelectorResponse
, EventSelectorResponseArgs

InsightSelector
, InsightSelectorArgs

InsightSelectorResponse
, InsightSelectorResponseArgs

SystemDataResponse
, SystemDataResponseArgs

Tag
, TagArgs

TagResponse
, TagResponseArgs