How to filter Vault Audit Logs in AWS CloudWatch logs