Difference between AWS Cloudtrial and Azure Activity Logs
Both CloudTrail and Activity Logs record the configuration changes made to an AWS account or Azure subscription respectively. However, while CloudTrail can be enabled or disabled per region, Activity Logs are a global record for the entire subscription. CloudTrail logs a trail of management and configuration events to an S3 bucket in your account, so you can encrypt using KMS, and also the logs can potentially be manipulated, hence the optional feature to verify logs using a digest. Azure Activity log is a centralised record stored by Microsoft, so doesn’t appear in any of your Azure Storage buckets, there’s no option for encryption using KMS, and no need for a digest feature (at least, none that’s visible to the customer). You can’t disable Azure Activity logs, and after 90 days, the logs can no longer be viewed. To keep logs older than 90 days, Azure Activity logs can be archived in Azure Storage, streamed to Event Hub, or sent to a Log Analytics workspace. Any of these methods ca...