I'm my scenario, Currently, we have all developers connect to ec2 instances using the ec2-user account. Is there a better way to do this so we can see which actions developers take on the machines?
I'm wanting to be able to identify who executes certain commands. Currently, with everyone as 'ec2-user' there's no way to identify who ran which command. For example on the dev server, there is no way to identify who changed the '/etc' directory permissions.
can anyone advise me on how to solve it?