本文為英文版的機器翻譯版本,如內容有任何歧義或不一致之處,概以英文版為準。
# 使用 AWS CloudTrail 記錄 AWS Partner Central API 呼叫
AWS Partner Central 已與 [AWS CloudTrail](https://aws.amazon.com/cloudtrail/) 整合,AWS CloudTrail 是一種服務,可記錄使用者、角色或 AWS Partner Central 中的 AWS 服務所採取的動作。CloudTrail 會將來自 AWS Partner Central 主控台的呼叫和對 AWS Partner Central API 操作的程式碼呼叫擷取為事件。
當您建立 CloudTrail 時,其在您的 AWS 帳戶中處於作用中狀態,且不需要任何手動設定。AWS Partner Central 中支援的事件活動會記錄在 CloudTrail 主控台**的事件歷史記錄**頁面上的 [CloudTrail ](https://console.aws.amazon.com/cloudtrail/)事件和其他 AWS 服務事件中。您可以在帳戶中檢視、搜尋和下載事件 AWS 。
每個事件或日誌項目都包含產生請求之使用者的身分。此資訊可協助您判斷請求是否由下列任何一項提出:
+ 具有根或 AWS Identity and Access Management 使用者憑證的使用者。
+ 具有角色或聯合身分使用者的臨時安全登入資料的使用者。
+ 另一項 AWS 服務。
AWS Partner Central 支援使用 將`partnerCentralAccountManagement`操作記錄為 CloudTrail 日誌檔案中的事件 `eventSource` `partnercentral-account-management.amazonaws.com`
**Topics**
+ [AWS Partner Central 日誌檔案項目範例](#entry-examples)
+ [相關主題](#logging-related-topics)
## AWS Partner Central 日誌檔案項目範例
**範例:`AssociatePartnerAccount`**
```
{
"eventVersion":"1.08",
"userIdentity":{
"type":"IAMUser",
"principalId":"EX_PRINCIPAL_ID",
"arn":"arn:aws:iam::123456789012:user/Alice",
"accountId":"123456789012",
"accessKeyId":"EXAMPLE_KEY_ID",
"userName":"Alice"
},
"eventTime":"2023-10-11T20:57:35Z",
"eventSource":"partnercentral-account-management.amazonaws.com",
"eventName":"AssociatePartnerAccount",
"awsRegion":"us-east-1",
"sourceIPAddress":"192.0.0.2/24",
"userAgent":"Mozilla/5.0",
"requestParameters":{
"value":"HIDDEN_DUE_TO_SECURITY_REASONS"
},
"responseElements":null,
"requestID":"F9PAD7MAYFGV73S4T7B3",
"eventID":"fe2a5873-773c-462a-b7c8-810d224de821",
"readOnly":false,
"eventType":"AwsApiCall",
"managementEvent":true,
"recipientAccountId":"123456789012",
"eventCategory":"Management"
}
```
**範例:`DisassociatePartnerUser`**
```
{
"eventVersion":"1.09",
"userIdentity":{
"type":"AssumedRole",
"principalId":"EX_PRINCIPAL_ID",
"arn":"arn:aws:iam::123456789012:role/PartnerCentralRoleForCloudAdmin-1234",
"accountId":"123456789012",
"accessKeyId":"EXAMPLE_KEY_ID",
"invokedBy":"partnercentral-account-management.amazonaws.com"
},
"eventTime":"2023-10-11T20:57:35Z",
"eventSource":"partnercentral-account-management.amazonaws.com",
"eventName":"AssociatePartnerUser",
"awsRegion":"us-east-1",
"sourceIPAddress":"partnercentral-account-management.amazonaws.com",
"userAgent":"partnercentral-account-management.amazonaws.com",
"requestParameters":{
"partnerUserId":"005123456789012345",
"iamRoleArn":"arn:aws:iam::123456789012:role/PartnerCentralRoleForUser-1234",
"partnerAccountId":"1234567"
},
"responseElements":null,
"requestID":"655832a6-8452-4088-9a0f-17212fa55765",
"eventID":"f7394769-4a3b-4101-9b00-ee0b86a77d89",
"readOnly":false,
"eventType":"AwsApiCall",
"managementEvent":true,
"recipientAccountId":"123456789012",
"eventCategory":"Management"
}
```
## 相關主題
如需詳細資訊,請參閱[AWS CloudTrail 《 使用者指南](https://docs.aws.amazon.com/awscloudtrail/latest/userguide/)》中的下列章節:
+ [為 AWS 您的帳戶建立追蹤](https://docs.aws.amazon.com/awscloudtrail/latest/userguide/cloudtrail-create-and-update-a-trail.html)
+ [AWS 服務與 CloudTrail 日誌整合](https://docs.aws.amazon.com/awscloudtrail/latest/userguide/cloudtrail-aws-service-specific-topics.html#cloudtrail-aws-service-specific-topics-integrations)
+ [設定 CloudTrail 的 Amazon SNS 通知](https://docs.aws.amazon.com/awscloudtrail/latest/userguide/configure-sns-notifications-for-cloudtrail.html)
+ [從多個區域接收 CloudTrail 日誌檔案](https://docs.aws.amazon.com/awscloudtrail/latest/userguide/receive-cloudtrail-log-files-from-multiple-regions.html)
+ [CloudTrail userIdentity 元素](https://docs.aws.amazon.com/awscloudtrail/latest/userguide/cloudtrail-event-reference-user-identity.html)