Watch this YouTube video
Core Steps
- creating a secret of other type and rest of the default value
- create a cloud trail of type management event with s3 bucket, also select the exclude kms and rds events
- edit the trail and enable the log management, it will result in creating log group
- create a metric filter for the log group we just created and use “GetSecretValue” for filtering
- create a alarm of type sum, your threshold and sns topic and the subscriber
- confirm the sns subscription
- access your secret more than your defined threshold