- Logs all requests to an S3 bucket, including authorized and denied requests, for audit and analysis.
- Logs are delivered to a target S3 bucket in the same AWS region as the source bucket.
- Useful for security audits and usage analytics.
Important:
- The target bucket must be different from the monitored bucket to avoid a logging loop, which can cause uncontrolled bucket growth.