Design Considerations - Real-Time Insights on AWS Account Activity

Design Considerations

Real-Time Event Monitoring

The Real-Time Insights on AWS Account Activity solution enables an AWS CloudTrail trail to monitor events that occur in your account in real-time. Some events, however, might take up to 15 minutes to arrive in Amazon Kinesis Data Firehose from CloudTrail.

CloudTrail Supported Services

This solution leverages CloudTrail to record account activity. CloudTrail records account activity and service events from most AWS services. For the list of supported services, see CloudTrail Supported Services in the CloudTrail User Guide.

CloudTrail Count

You can create up to five CloudTrail trails in a single AWS Region. A trail that applies to all regions will exist in each region and is counted as one trail in each region. Note that this solution will create a trail that applies to all regions. Therefore, this solution’s trail will count as one trail in each region in your account.

Regional Deployment

This solution uses the Amazon Kinesis Data Firehose and Amazon Kinesis Data Analytics services, which are currently available in specific AWS Regions only. Therefore, you must launch this solution in an AWS Region where these services are available. However, once deployed, this solution monitors all regions for events. For the most current service availability by region, see AWS service offerings by region.