AWS Cloudwatch enables auditing, security monitoring, and operational troubleshooting by tracking user activity and API usage. CloudTrail logs, continuously monitors, and retains account activity related to actions across your AWS infrastructure, giving you control over storage, analysis, and remediation actions.
1. Go to IAM configuration panel and click on "Users"
2. Add a new user filling the name and marking the access type "Programmatic access". Then click on Next.
3. Click on Attach existing policies directly. Find CloudWatchReadOnlyAccess and mark it. Then click on next.
4. In the tags page click on next.
5. Create user and then download the csv file with the access and secret keys.
6. Fill the following inputs with the info obtained in previous steps.
Configuring AWS Cloudwatch
7. In the CloudTrail panel, select “Create trail”.
8. Fill in the "Trail name" field.
9. Mark "Select all S3 buckets in your account".
10. Fill in the "S3 bucket" field. The name of the bucket must be unique in S3. Then click on “Create”.
11. Click on the name of the trail to edit.
12. Configure CloudWatch Logs.
13. Fill the group name and continue.
14. Click on “Allow” to grant CloudTrail permissions.
15. Click on the button shown below, to activate the UTMStack features related to this integration