# cloudtrail-s3-dataevents-enabled
<a name="cloudtrail-s3-dataevents-enabled"></a>

Checks if at least one Amazon CloudTrail trail is logging Amazon Simple Storage Service (Amazon S3) data events for all S3 buckets. The rule is NON\$1COMPLIANT if there are trails or if no trails record S3 data events. 



**Identifier:** CLOUDTRAIL\$1S3\$1DATAEVENTS\$1ENABLED

**Trigger type:** Periodic

**Amazon Web Services Region:** All supported Amazon regions

**Parameters:**

S3BucketNames (Optional)Type: String  
Comma-separated list of S3 bucket names for which data events logging should be enabled. Default behavior checks for all S3 buckets.

## Amazon CloudFormation template
<a name="w2aac20c16c17b7d339c17"></a>

To create Amazon Config managed rules with Amazon CloudFormation templates, see [Creating Amazon Config Managed Rules With Amazon CloudFormation Templates](aws-config-managed-rules-cloudformation-templates.md).