Stack Overflow
Stack Overflow

Questions tagged [amazon-cloudtrail]

Monitor AWS deployments in the cloud by getting a history of AWS API calls for the AWS account, including API calls made via the AWS Management Console, the AWS SDKs, the command line tools, and higher-level AWS services. Identify which users and accounts called AWS APIs for services that support CloudTrail, the source IP address the calls were made from, and when the calls occurred.

293 questions
0
votes
1 answer

Unable to access S3 bucket used by CloudTrail

I have an Amazon S3 bucket that is being used by CloudTrail. However, the S3 bucket is not visible in S3. When I click on the bucket in CloudTrail, it links to S3 but I get access denied. The bucket is currently in use by CloudTrail, and based on…
yctn
  • 11
  • 1
0
votes
1 answer

See Who Toggles S3 Inventory On/Off

Is it possible to see which user turned S3 Inventory On or Off? I've checked my CloudTrail's Event History but I don't see anything for this in the filters. Is it only possible if you have a trail on the specific bucket?
Kyle Bridenstine
  • 6,055
  • 11
  • 62
  • 100
0
votes
1 answer

Is there a more efficient way to find all cloudtrail events in AWS performed by a specific role?

I need to analyse all cloudtrail events within an account (actually multiple accounts, but restricting it to one for now) - however I don't have direct access to the S3 bucket where events are stored. I need to find all events initiated by any role…
Slushysnowman
  • 438
  • 2
  • 9
0
votes
1 answer

How to get all the events between start and end times using cloudtrail's lookup_events in boto3 without specifying MaxResults?

I'm trying to fetch AWS cloudtrail events for a particular user using boto3. CloudTrail client I'm using cloudtrail client and lookup_events() function. I can specify the StartTime and EndTime between which I need to get the results. But I might…
Underoos
  • 4,708
  • 8
  • 42
  • 85
0
votes
0 answers

How to create a separate cloudtrail for each IAM user in AWS S3 buckets using boto3?

I have a case where I need to add IAM users dynamically and send their credentials to their emails so that they can login to the AWS account and do some operations like creating vpcs, ec2 instances, s3 buckets, deleting resources etc. I also need to…
Underoos
  • 4,708
  • 8
  • 42
  • 85
0
votes
1 answer

Automatic Acceptance of Transit Gateway Attachment from Another AWS Account

I have two AWS accounts and trying to do VPC sharing using a TransitGateway. Account-A has the TGW and shared with Accunt-B using RAM. I execute a CloudFormation script in Account-B which creates a TransitGateway Attachment. In Accunt-A I need to…
mumbo_s5
  • 161
  • 1
  • 14
0
votes
1 answer

Refreshing boto3 session when paginating though cloudtrail

I'm writing a script in python using boto3 to report on the api calls made over the past few months. I have the script pretty much done but we have a max session length of 1 hour and this will always take longer than that and so the session expires…
Steve
  • 175
  • 1
  • 3
  • 13
0
votes
2 answers

Ignore old files and push only latest log files from S3 using logstash

how to ignore old files and push only latest log files from S3 using logstash. We are using logstash to push cloudtaril logs from s3 to elasticsearch. Cloudtrail logs are in below format /AWSLogs/CloudTrail/xxxAccount…
user2416
  • 223
  • 4
  • 18
0
votes
1 answer

InvalidCondition in s3 Bucket Policy

I am creating a cloudformation stack where the templates creates Cloud trail and then S3 bucket and pushes all logs to S3 bucket. I have tried creating Cloud trail,s3 bucket and tried attaching the s3 Bucket Policy to the bucket Parameters: …
maestro
  • 1
  • 5
0
votes
2 answers

How Do I Enable Object-Level Logging for an S3 Bucket using boto3

I'm trying to create an amazon cloudWatch rule which triggers whenever an object is uploaded into a bucket. I know that to do this I need to trigger on the PutObject Event, however best I can tell that requires enabling object level logging on the…
H. Pope
  • 123
  • 13
0
votes
0 answers

how to pull aws CloudTrail log using rest API

I need help to fetch logs from AWS CloudTrail via rest API.How can I get this rest API ? I will use restAPI in my python code.
Ajay Gupta
  • 127
  • 3
  • 13
0
votes
1 answer

Discover who created a CloudTrail and how?

I am doing a bit of discovery on my current AWS environment and was trying to understand how the existing CloudTrail was created and who is the owner? By "How" I mean - was it created using some CloudFormation template or via the Console or via any…
14578446
  • 1,044
  • 7
  • 30
  • 50
0
votes
1 answer

Finding & Appending bucket to Cloudtrail logging

A co-worker created and setup a working Cloudtrail logger: resource "aws_cloudtrail" "cloudtrail" { name = "logger" s3_bucket_name = "bucket-name" …
Tony
  • 1,318
  • 1
  • 14
  • 36
0
votes
2 answers

How can I create an "aws.cloudformation" CloudWatch event type for a specific CloudFormation stack?

I need to create an aws.cloudformation event type for a specific CloudFormation stack. For example when StackA receives the UpdateStack event, I need to be able to catch that event. Through the console I was able to create the following event rule…
Deiv
  • 3,000
  • 2
  • 18
  • 30
0
votes
2 answers

How do you enable S3 Object Logging to Cloud Trail using AWS CLI?

Its possible to do object logging on a S3 bucket to Cloud trail using the following guide, but this is through the console. https://docs.aws.amazon.com/AmazonS3/latest/user-guide/enable-cloudtrail-events.html I've been trying to figure out a way to…
puji
  • 487
  • 4
  • 9
1 2 3
19 20