Usando AWS re:Post, accetti AWS re:Post Termini di utilizzo
AWS re:Postre:Post

AWS Org CloudTrail - Member Account Not Added Automatically

0

CloudTrail has been setup to log all member accounts under the AWS Organizations. A new account is created however, the trail is not visible from the member account and nothing is being logged. Anyone know where to look to understand why this new account is not associated the main cloudtrail that was setup to do logging for all member accounts?

Argomenti
Gestione e amministrazione
Tag
Organizzazioni AWSAWS CloudTrail
Lingua
English
AWS-User-0
posta 2 anni fa715 visualizzazioni
1 Risposta
1

When you added new member account in the org, the trail was NOT added to the account? If the trail has been enabled to the admin account of the org with IsOrganizationTrail true, the trail should be automatically added to new member accounts at the same time as created the accounts.

Did you setup anything SCP? (e.g. Deny create-trail)

AWS
suzuki
con risposta 2 anni fa
  • AWS-User-0
    2 anni fa

    If SCPs were blocking create-trail would removing this automatically fix the issue or are further steps required?

Accesso non effettuato. Accedi per postare una risposta.

Una buona risposta soddisfa chiaramente la domanda, fornisce un feedback costruttivo e incoraggia la crescita professionale del richiedente.

Linee guida per rispondere alle domande

Contenuto pertinente