AWS Certificate Manager Private Certificate Authority Now Emits State Change Events
AWS Certificate Manager (ACM) Private Certificate Authority (CA) now emits Amazon CloudWatch Events. CloudWatch Events delivers a near real-time stream of system events that describe changes in Amazon Web Services (AWS) resources, enabling you to react selectively to events in the cloud. With this feature you can configure alerts, build event-driven workflows, and trigger custom logic based on events that are sent for certificate issuance, revocation, and other CA operations. For example, you can send a CloudWatch Event to notify you that something unexpected occurred, such as if a certificate is issued from a protected root CA with limited access or if your certificate revocation list (CRL) fails to update. With this feature, AWS publishes CloudWatch events for CA creation, certificate issuance, certificate revocation, audit report generation , and CRL generation.
Source:: Amazon AWS