Amazon CloudWatch GetMetricData API now supports AWS CloudTrail data event logging
Amazon CloudWatch now supports AWS CloudTrail data event logging for the GetMetricData and GetMetricWidgetImage APIs. With this launch, customers have greater visibility into metric retrieval activity from their AWS account for best practices in security and operational troubleshooting.
CloudTrail captures API activities related to Amazon CloudWatch GetMetricData and GetMetricWidgetImage APIs as events. Using the information that CloudTrail collects, you can identify a specific request to CloudWatch GetMetricData or GetMetricWidgetImage APIs, the IP address of the requester, the requester's identity, and the date and time of the request. Logging CloudWatch GetMetricData and GetMetricWidgetImage APIs using CloudTrail helps you enable operational and risk auditing, governance, and compliance of your AWS account.
AWS CloudTrail logging for the GetMetricData and GetMetricWidgetImage API actions is available now in all AWS commercial Regions.
Data logging incurs charges according to AWS CloudTrail Pricing. To learn more about this feature, visit the Amazon CloudWatch documentation page. To enable logging for Amazon CloudWatch metrics data events, using the AWS CloudTrail Management Console or the AWS CloudTrail Command Line Interface (CLI), specify CloudWatch metric as the data event type, then choose the APIs that you want to monitor.