Amazon CloudWatch now supports AWS CloudTrail data event logging for the PutMetricData, GetMetricStatistics and ListMetrics APIs. With this launch, customers have full visibility into metric ingestion and egress activity to their AWS account for best practices in security, operational troubleshooting, and financial management.
CloudTrail captures API activities related to Amazon CloudWatch PutMetricData and other metrics APIs as events. Using the information that CloudTrail collects, you can identify a specific request to any of the CloudWatch metric APIs, the IP address of the requester, the requester’s identity, and the date and time of the request. Logging CloudWatch PutMetricData and other metrics APIs using CloudTrail helps you enable operational and risk auditing, governance, and compliance of your AWS account.
AWS CloudTrail logging for the PutMetricData, GetMetricStatistic and ListMetrics API actions is now available in all AWS Regions, including the AWS GovCloud (US) Regions.
Data logging incurs charges according to AWS CloudTrail Pricing. To learn more about this feature, visit the Amazon CloudWatch documentation page. To enable logging for Amazon CloudWatch metrics data events, using the AWS CloudTrail Management Console, specify CloudWatch metric as the data event type, then choose the APIs that you want to monitor.
Source:: Amazon AWS