Cloudtrail - Can't set "Apply trail to all regions" to yes in terraform #4723
Comments
|
Hi @jmelfi The reason it has not reached Terraform codebase yet is because there was a bug in the CloudTrail API. It was impossible to disable multi-region support & global service events both at the same time (in one API call). The error coming out of such API call was
I have reached out to AWS on the 18th and reported this. The response I received back follows:
I will try and test the API again soon to see if this bug has been fixed. If it was, then there's nothing preventing us from implementing it. 😉 |
|
I just quickly reran the repro case from that mentioned support ticket with AWS and it seems the bug was fixed. 😄 |
|
@radeksimko thanks for the quick reply here! It would be awesome for this to get added in. Looking forward to it! |
|
+1 |
|
Recently merged #4939 implemented this option. |
|
@radeksimko thanks for the update on this merge and fix. I'll be looking at this today or tomorrow. |
|
I'm going to lock this issue because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues. If you have found a problem that seems similar to this, please open a new issue and complete the issue template so we can capture all the details necessary to investigate further. |
ghost
locked and limited conversation to collaborators
We've been using terraform for some time to configure our AWS infrastructure and have been liking it.
When configuring Cloudtrail Trails, it should be possible to change the trail from the default (only apply to the region that it is created in) to applying to all AWS envs. This is helpful since we have one global policy that gets analyzed in batch.
Currently changing this manually is not an issue, as terraform does not find that there is a change in the state.
The text was updated successfully, but these errors were encountered: