AWS CloudWatch log centralization makes cross-account logging simple. Learn how to set it up, avoid gotchas, and query logs across your organization.

AWS Fundamentals offers foundational knowledge and resources for understanding Amazon Web Services (AWS) cloud computing services. From basic concepts like virtual servers and storage to advanced topics like serverless architecture and machine learning on AWS, readers can learn how to leverage the full potential of cloud computing for their applications and businesses.

AWS Fundamentals

AWS CloudWatch now supports simplified cross-account log centralization through organizational rules. Set up a delegated administrator in your logging account, create rules based on account IDs, organizational units, or entire organizations, and automatically copy logs across accounts and regions. Logs include @aws.account and @aws.region fields for filtering in Logs Insights. The first copy is free, with subsequent copies costing $0.05/GB. Note that log group settings like retention policies are not preserved and must be reapplied separately.

Simple Cross-Account Logging on AWS

Logs have the fields @aws.account and @aws.region

Additional Settings like Retention Are Stripped of