Amazon WorkMail now supports Audit Logging

Amazon WorkMail now supports Audit Logging, which allows you to get insights into mailbox access patterns. Using Audit Logging, you can choose to receive authentication, access control, and mailbox access logs on Amazon CloudWatch Logs, Amazon S3, and Amazon Data Firehose. You will also receive new mailbox metrics in CloudWatch about your WorkMail organizations. The Audit Logging feature provides logs for administrators to find out why users were unable to access their mailbox, the IP address that accessed a particular mailbox, and who moved or deleted mailbox data. Administrators can set alarms when authentication or access failures exceed a predefined level, or customize processing on the logs delivered as JSON records. To learn more, see [Audit Logging](https://docs.aws.amazon.com/workmail/latest/adminguide/monitoring-audit-logging.html) on Amazon WorkMail. To learn more about Amazon WorkMail, or to create a no-cost 30-day test organization, see [Amazon WorkMail](https://aws.amazon.com/workmail/).