As per the documentation, the cloudtrail-enabled managed rule evaluates trails as per the following statement -
Checks if AWS CloudTrail is enabled in your AWS account. Optionally, you can specify which S3 bucket, SNS topic, and AWS CloudTrail ARN to use. The rule is NON_COMPLIANT if AWS CloudTrail is not enabled.
However, if I create a single trail in the us-east-1 region, and create a config rule to evaluate cloudtrail-enabled rule in the us-east-2 region, the rule evaluates it to Noncompliant.
Shouldn't the description be updated to say that the rule is looking for trails(or multi-region trails) in all the regions? Is my understanding correct or am I missing something?
As per the documentation, the
cloudtrail-enabledmanaged rule evaluates trails as per the following statement -However, if I create a single trail in the
us-east-1region, and create a config rule to evaluatecloudtrail-enabledrule in theus-east-2region, the rule evaluates it toNoncompliant.Shouldn't the description be updated to say that the rule is looking for trails(or multi-region trails) in all the regions? Is my understanding correct or am I missing something?