- Newest
- Most votes
- Most comments
AWS CloudTrail does support multi-region trails, you should convert any single-region trails that you have into multi-region trails. This will allow you to capture all global service events, including ConsoleLogin, in their respective regions. You can then set up an EventBridge rule in each region where you want to receive notifications for these events, or centralize the processing by forwarding events to a specific region, as you initially described.
To centralize the processing of
ConsoleLogin
events in a specific region, create a multi-region CloudTrail trail to capture events from all regions. Then, set up EventBridge rules in each region to forwardConsoleLogin
events to a central event bus in your preferred region. Finally, configure a central EventBridge rule in that region to trigger notifications or processing actions based on the forwarded events.
Relevant content
- asked 2 years ago
- asked a year ago
- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated 7 months ago
That is currently the process that I am using. Wondering if there is a simpler method seeing that ConsoleLogin which indicates AWS login is something you may want notifications for regardless of where the login region comes from which setting up an EventBridge for every region would be a tedious task after previously being a single step.