AWS Org CloudTrail - Member Account Not Added Automatically

CloudTrail has been setup to log all member accounts under the AWS Organizations. A new account is created however, the trail is not visible from the member account and nothing is being logged. Anyone know where to look to understand why this new account is not associated the main cloudtrail that was setup to do logging for all member accounts?

主題

管理與治理

標籤

AWS Organizations AWS CloudTrail

語言

English

AWS-User-0

已提問 2 年前檢視次數 715 次

1 個回答

最新
最多得票
最多評論

When you added new member account in the org, the trail was NOT added to the account? If the trail has been enabled to the admin account of the org with IsOrganizationTrail true, the trail should be automatically added to new member accounts at the same time as created the accounts.

Did you setup anything SCP? (e.g. Deny create-trail)

suzuki

已回答 2 年前

AWS-User-0
2 年前
If SCPs were blocking create-trail would removing this automatically fix the issue or are further steps required?

AWS Org CloudTrail - Member Account Not Added Automatically

相關內容