AWS re:Post을(를) 사용하면 다음에 동의하게 됩니다. AWS re:Post 이용 약관
AWS re:Postre:Post

tracking access to a CloudWatch log group ?

0

Hello,
I would like to have the history of all the users that have accessed a specific CloudWatch log group.

It looks like CloudTrail does not log those events (GetLogEvents, FilterLogEvents).
See https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/logging_cw_api_calls_cwl.html

  1. Am I right to assume that CloudTrail cannot track CW Log Group access ? (GetLogEvents)
  2. Is there an other way to track who's accessing a CW Log Group ?

Thank you !

주제
관리 및 거버넌스
태그
AWS CloudTrail
언어
English
tbriot
질문됨 5년 전712회 조회
2개 답변
0

You are correct that the CloudWatch Logs APIs that you specified are not currently logged to CloudTrail.

Within AWS, we are working to grow the AWS API coverage that is logged to CloudTrail to include more data-plane APIs like these over time. We will add your request to our prioritization process.

Jeff

AWS-User-3197379
답변함 5년 전
0

Thanks Jeff.
I've got my answer: not possible yet. Maybe in the future.

tbriot
답변함 4년 전

로그인하지 않았습니다. 로그인해야 답변을 게시할 수 있습니다.

좋은 답변은 질문에 명확하게 답하고 건설적인 피드백을 제공하며 질문자의 전문적인 성장을 장려합니다.

질문 답변하기에 대한 가이드라인

관련 콘텐츠