How do I know which user made a particular change to my AWS infrastructure?

Last updated: 2020-12-14

I want to track which users are changing my AWS resources and infrastructure.

Resolution

To track which users are changing your AWS resources and infrastructure, enable AWS CloudTrail for your resources. CloudTrail creates logs of API calls made on your account and then delivers those logs to an Amazon Simple Storage Service (Amazon S3) bucket that you specify. This allows you to track changes to your resources and see which user made the changes.

For instructions on using CloudTrail to analyze your account activity, see Working with CloudTrail.