Posted On: May 9, 2017
AWS CloudTrail now enables you to send S3 data events recorded by CloudTrail to Amazon CloudWatch Logs for search, alerting, or additional analysis. CloudTrail data events allow you to record detailed S3 object-level API activity, such as the AWS account of the caller, IP address of the API call, and time of the API call. Previously, only management events could be delivered to CloudWatch Logs. Now, both management events and object-level Amazon S3 data events can be delivered to CloudWatch Logs. For example, you can now create alarms and receive notifications when you create, modify, or delete a file in your S3 bucket.
AWS CloudTrail data event delivery to Amazon CloudWatch Logs is available in US East (Ohio), US East (N. Virginia), US West (N. California), US West (Oregon), Asia Pacific (Mumbai), Asia Pacific (Seoul), Asia Pacific (Singapore), Asia Pacific (Sydney), Asia Pacific (Tokyo), EU (Frankfurt), EU (Ireland), and South America (São Paulo) public regions.