---
title: "How to Simplify Multi-Account Deployments Monitoring: Centralized Logs for AWS CloudFormation StackSets"
type: source
tags: [AWS, CloudFormation, Multi-Account, Monitoring]
sources: []
last_updated: 2025-10-25
---

## Summary
- 核心主题：通过集中式日志监控简化AWS多账户部署
- 问题域：跨多账户部署CloudFormation StackSets时的运营可见性挑战
- 方法/机制：利用EventBridge和CloudWatch Logs实现跨账户日志集中收集
- 结论/价值：集中式日志系统提供跨所有账户的统一监控视图，简化故障排除

## Key Claims
- AWS CloudFormation StackSets支持跨多个账户和区域部署基础设施
- 解决方案架构包含四个组件：管理账户设置、目标账户配置、资源部署、监控可视化
- 事件流：CloudFormation生成事件→EventBridge规则捕获→跨账户转发→CloudWatch Log Group集中存储
- CloudWatch Logs Insights可自定义查询实现跨组织CloudFormation事件分析

## Key Concepts
- [[AWS CloudFormation StackSets]]：跨多个账户和区域部署基础设施的服务
- [[Amazon EventBridge]]：无服务器事件总线服务
- [[Amazon CloudWatch Logs]]：云监控日志服务
- [[IaC]]：Infrastructure as Code，基础设施即代码

## Key Entities
- [[AWS]]：亚马逊云服务提供商
- [[AWS Organizations]]：AWS组织管理服务

## Connections
- [[AWS CloudFormation StackSets]] ← 依赖 ← [[Amazon EventBridge]]
- [[Amazon EventBridge]] ← 转发 ← [[Amazon CloudWatch Logs]]
- [[IaC]] ← 实现 ← CloudFormation

## Contradictions