Monitor AWS deployments in the cloud by getting a history of AWS API calls for the AWS account, including API calls made via the AWS Management Console, the AWS SDKs, the command line tools, and higher-level AWS services. Identify which users and accounts called AWS APIs for services that support CloudTrail, the source IP address the calls were made from, and when the calls occurred.
Questions tagged [amazon-cloudtrail]
293 questions
0
votes
2 answers
Who created an Amazon EC2 instance using Boto and Python?
I want to know who created a particular instance. I am using Cloud Trail to find out the statistics, but I am not able to get a particular statistics of who created that instance. I am using Python and Boto3 for finding out the details.
I am using…
upaang saxena
- 779
- 1
- 6
- 18
-1
votes
1 answer
AWS cloud trail events
Why do we need to choose us-east-1 as our region when to viewing CreateUser events in cloudtrail?
Is there a guide that describes this.
Note: my trails are in eu-west1 and are multi region.
Checking the events in my region
-1
votes
1 answer
Enable CloudTrail on S3 bucket with Prefix
I need to capture all S3 events and store in S3 bucket. I got the option to enable Cloud trail for a S3 bucket, but I need to do it on a particular prefix instead of entire S3 bucket.
I do not see an option to add Prefix for enabling Cloud Trail on…
PythonDeveloper
- 289
- 1
- 4
- 24
-1
votes
1 answer
AWS Cloudtrail - Access Key IDs Randomly Generated
Requesting for inputs here. I am trying to learn AWS, passed Practitioner. I tried to Google and the max I could find was -
https://docs.aws.amazon.com/awscloudtrail/latest/userguide/view-cloudtrail-events-console.html
AWS access key
The AWS access…
Origami
- 87
- 7
-1
votes
2 answers
Boto3 does not use specified region
I have the following script to list trails from CloudTrail:
import boto3
import os
os.environ['AWS_DEFAULT_REGION'] = 'us-east-2'
current_session = boto3.session.Session(profile_name='production')
client =…
user_mda
- 18,148
- 27
- 82
- 145
-1
votes
1 answer
Filter output of cloudtrail logs obtained using get_object from S3
I am working on Lambda function to track my instances start and stop time.
I did set up my trail - for management events - and my S3 buckets have proper permissions attached.
I used get_object to read the data from S3. Code below.
Get_object is…
D kashyap
- 25
- 7
-1
votes
1 answer
elasticsearch v5 template to v6
I am currently running elasticsearch cluster version 6.3.1 on AWS and here is template file which I need to upload but can't
```
{
"template" : "logstash-*",
"settings" : {
"index.refresh_interval" : "5s"
},
"mappings" : {
…
tripleb
- 67
- 2
- 2
- 10
-1
votes
1 answer
Recover access logs of AWS before activate ClouldTrail
Is it possible to recover the access logins of my AWS account before 7 days and before the activation of the ClouldTrail?
I need to know all the IPs that accessed my account in all 2017.
Thank you.
João Calvin
- 193
- 1
- 2
- 9