Provides organization-wide visibility into S3 usage and activity, helping optimize cost, detect anomalies, and enforce best practices.
Features:
- 30-day usage and activity metrics.
- Aggregates data at org, account, region, bucket, and prefix levels.
- Default dashboard (cannot be deleted, but can be disabled) + custom dashboards.
- Daily export to S3 in CSV or Parquet.
Key metrics categories:
- Summary: StorageBytes, ObjectCount → identify growth or unused data.
- Cost Optimization: NonCurrentVersionStorageBytes, IncompleteMultipartUploadStorageBytes → reduce costs via lifecycle rules.
- Data Protection: VersioningEnabledBucketCount, MFADeleteEnabledBucketCount, SSEKMSEnabledBucketCount, CrossRegionReplicationRuleCount → enforce security best practices.
- Access Management: ObjectOwnershipBucketOwnerEnforcedBucketCount → track ownership settings.
- Events: EventNotificationEnabledBucketCount → see notification usage.
- Performance: TransferAccelerationEnabledBucketCount → check acceleration adoption.
- Activity: AllRequests, GetRequests, PutRequests, BytesDownloaded → analyze usage patterns.
- Status Codes: 200OKStatusCount, 403ForbiddenErrorCount, 404NotFoundErrorCount → troubleshoot access issues.
Free vs. Advanced Metrics:
- Free: ~28 usage metrics, 14-day retention.
- Advanced (paid): Adds activity, advanced cost/data protection, status code metrics, prefix aggregation, CloudWatch publishing, 15-month retention.