AWS Monitoring — Monitoring Sign-in for AWS Accounts

  1. A Rule needs to be configured only in us-east-1 region to capture Sign-in events.
  2. A Rule needs to be configured for every account in AWS Organizations (even with CloudTrail logging to central location — CloudWatch cannot catch them from another account). You can create a target per rule per account, or push events to Master or Shared account Event Bus, and configure target there.
  1. Click “Create Rule”.
  2. Configure the same rule in other accounts, creating either SNS topic, or pushing event to Event Bus in Master or Shared Account

--

--

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store