diff --git a/cloudtrail/cloudtrail.tf b/cloudtrail/cloudtrail.tf
index da06709..a36774c 100644
--- a/cloudtrail/cloudtrail.tf
+++ b/cloudtrail/cloudtrail.tf
@@ -8,7 +8,7 @@ resource "aws_cloudtrail" "this" {
   enable_logging                = true
   kms_key_id                    = var.kms_key_arn
   sns_topic_name                = var.enable_sns ? aws_sns_topic.cloudtrail[0].arn : null
-  cloud_watch_logs_group_arn    = aws_cloudwatch_log_group.cloudtrail.arn
+  cloud_watch_logs_group_arn    = format("%v:*", aws_cloudwatch_log_group.cloudtrail.arn)
   cloud_watch_logs_role_arn     = aws_iam_role.cloudtrail.arn
   is_organization_trail         = var.enable_organization