The error message you talked about, “CloudWatch Logs function ARN have to be set in account settings to allow logging,” usually happens if you’re making an attempt to allow logging for an AWS service that requires a CloudWatch Logs function, however the essential function hasn’t been arrange or configured accurately in your account settings. To resolve this concern, you’ll be able to comply with these steps:
-
Check in to the AWS Administration Console.
-
Open the AWS CloudTrail console at https://console.aws.amazon.com/cloudtrail/.
-
Within the navigation pane, click on on “Settings.”
-
Underneath “Log supply,” find the “CloudWatch Logs settings” part.
-
Guarantee that you’ve a CloudWatch Logs function arrange and configured. Should you haven’t created a CloudWatch Logs function but, you’ll be able to click on on the “Create function” button to create one.
-
Observe the prompts to create the function. Present a reputation for the function and choose the required permissions. The required permissions depend upon the service you’re making an attempt to allow logging for. For instance, for those who’re enabling CloudTrail logging, the function ought to have permissions to jot down logs to CloudWatch Logs.
-
After creating the function, return to the CloudTrail settings web page and choose the newly created function from the dropdown menu below “CloudWatch Logs settings.”
-
Save the settings.
When you’ve accomplished these steps, the CloudWatch Logs function can be arrange in your AWS account settings, and you need to have the ability to allow logging for the respective service with out encountering the “CloudWatch Logs function ARN have to be set in account settings to allow logging” error message.
Be aware that the precise steps and interface might range barely relying on updates to the AWS Administration Console. Should you encounter any difficulties or have additional questions, I like to recommend referring to the AWS documentation or reaching out to AWS Help for help.