有什么方法可以监控 aws 秘密管理器中的秘密轮换失败?

is there any way to monitor secret rotation failed in aws secret manager?

我想创建一个云监视警报来监控密钥轮换并在轮换失败时触发。

我查看了有关 RotationFailed 的 aws 文档。 This document 说,

RotationFailed event - a mechanism to inform you that secret rotation failed for an application.

但我找不到如何使用 RotationFailed 事件触发警报。请帮助我创建指标过滤器并针对秘密轮换失败发出警报。

试试这个 cloudwatch 活动

{
  "source": [
    "aws.secretsmanager"
  ],
  "detail-type": [
    "AWS API Call via CloudTrail"
  ],
  "detail": {
    "eventSource": [
      "secretsmanager.amazonaws.com"
    ],
    "eventName": [
      "RotationFailed"
    ]
  }
}