Usando AWS re:Post, accetti AWS re:Post Termini di utilizzo
AWS re:Postre:Post

tracking access to a CloudWatch log group ?

0

Hello,
I would like to have the history of all the users that have accessed a specific CloudWatch log group.

It looks like CloudTrail does not log those events (GetLogEvents, FilterLogEvents).
See https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/logging_cw_api_calls_cwl.html

  1. Am I right to assume that CloudTrail cannot track CW Log Group access ? (GetLogEvents)
  2. Is there an other way to track who's accessing a CW Log Group ?

Thank you !

Argomenti
Gestione e amministrazione
Tag
AWS CloudTrail
Lingua
English
tbriot
posta 5 anni fa715 visualizzazioni
2 Risposte
0

You are correct that the CloudWatch Logs APIs that you specified are not currently logged to CloudTrail.

Within AWS, we are working to grow the AWS API coverage that is logged to CloudTrail to include more data-plane APIs like these over time. We will add your request to our prioritization process.

Jeff

AWS-User-3197379
con risposta 5 anni fa
0

Thanks Jeff.
I've got my answer: not possible yet. Maybe in the future.

tbriot
con risposta 4 anni fa

Accesso non effettuato. Accedi per postare una risposta.

Una buona risposta soddisfa chiaramente la domanda, fornisce un feedback costruttivo e incoraggia la crescita professionale del richiedente.

Linee guida per rispondere alle domande

Contenuto pertinente