I get ListMetrics in CloudWatch but I do not know why
Hello, I got charged this month and I didn't know why. It seems it is from CloudWatch. Today I read about CloudWatch for the first time. It seems I did something which no I do not know how to stop. The support could not help me, and they said "If you do not want to be billed make less requests".
I removed all roles. Added MFA to root user. I used to drop DataDog logs using their integration (which was linked to my root user), I deleted that integration. My root user does not have credentials.
Could anyone help me figure out what I did in order to stop getting billed?
From what you've posted, I can't tell what is causing the requests. However, I recommend enabling CloudTrail [1]. CloudTrail is the AWS audit system. The first trail is free other than storage fees. You can store the CloudTrail logs in an S3 bucket (I also recommend creating a lifecycle policy [2] or those logs will only accumulate costing you money) and you can search the logs through Athena [3] or by going and downloading the logs. Through the CloudTrail logs, you should be able to find the GetMetric entries and that should tell you the ARN of what is making the requests and the user/role that is doing it. From this, you should be able to determine what is causing the costs in Cloud Watch.
[1] https://aws.amazon.com/cloudtrail/ [2] https://docs.aws.amazon.com/AmazonS3/latest/userguide/object-lifecycle-mgmt.html [3] https://docs.aws.amazon.com/athena/latest/ug/cloudtrail-logs.html
Relevant questions
Cloudwatch Evidently API quota limit
asked 2 months agohow do I uninstall the cloudwatch unified agent from an EC2 instance?
asked 3 years agoDo I get charged for stopped instances?
Accepted Answerasked 5 years agoCloudWatch Agent Metric Namespaces not respecting configuration
asked 2 years agoI get ListMetrics in CloudWatch but I do not know why
asked 3 months agoWhy am I being billed for Cloudwatch when I have NO running instances, no used storage, no active services of any kind?
asked 2 months agoI would like to know easy way to start from the first line of log for the code-build execution (either in code-build console or cloudwatch-log console)
asked 18 days agoPlease I confused, I don't know why I got this error in S3 - Codecommit and Cloudformation
asked 2 days agoHow can I check CloudWatch agent and shell script use which apis.
asked 2 months agoLambda logging to CloudWatch seems to be broken?
Accepted Answerasked 2 months ago
CloudTrail makes 90 days' worth of data available in the Console too without you needing to create a Trail (go to Event History on the menu), so you can use that interface to filter for the GetMetric and ListMetric events without having to set anything else up. If you've already stopped the integration which was causing those APIs to be called and since any Trails you create now will only contain new events, the Event History in the Console is the only way you can see related entries.