I wonder if there is any document/guide we have that describe how to use Graylog 2.3 for Multiple AWS accounts I believe there is a fix (#36) is performed to add this feature in the new version.
If there is none then, Do I have to perform the following steps to get the cloudtrail logs from multiple AWS Accounts ?
Create an IAM user in each account and give it the permission to access the SQS and S3 bucket as described in the GitHub
Define the access and secret key of each IAM user with SQS name and region in AWS cloudtrail Input in Graylog
Is that it ??
Please guide me if there is something else I need to do to get this working for me