Stack Overflow
Stack Overflow

Questions tagged [amazon-cloudtrail]

Monitor AWS deployments in the cloud by getting a history of AWS API calls for the AWS account, including API calls made via the AWS Management Console, the AWS SDKs, the command line tools, and higher-level AWS services. Identify which users and accounts called AWS APIs for services that support CloudTrail, the source IP address the calls were made from, and when the calls occurred.

293 questions
2
votes
1 answer

Cloudwatch alert on any instance creation?

I would like to send out alerts and create logs any time an instance is created within an aws account. The instances in the account are mostly static and are rarely changed, so an alert should go off when an unauthorized change is made. How can I…
Alex Cohen
  • 5,596
  • 16
  • 54
  • 104
2
votes
1 answer

How to trace dynamoDB transactions

We can see read transactions are breaking dynamodb threshold. I would like to see what query is making this high utilization. I am looking for some report like AWR in oracle. Any suggestions
Vino
  • 21
  • 4
1
vote
1 answer

I need information about the BPImageWalker/2.0 function

I received an email about updating the connection of an s3 bucket, from TLS 1.0 to TLS1.2 because the following connection has been detected: eu-west-3|bucket| REST.GET.OBJECT|TLSv1|62|[BPImageWalker/2.0 (www.bdbrandprotect.com)] But I have been…
Airhune
  • 13
  • 2
1
vote
1 answer

AWS CloudTrail DynamoDB response Element is always "null"

In AWS, I'm trying to set up CloudTrail logging on DynamoDB, to see what calls are being made and what effect that has on the DB records. I see the DB calls logged in CloudTrail, but the "responseElement" field is always "null". According to the…
Amos Long
  • 845
  • 11
  • 14
1
vote
1 answer

Determine Who Removed the Security Group which was Attached to EC2 machine in AWS

Problem Statment: I have an EC2 machine that is running, and today I found someone removed one of the Security Group attached to the EC2 machine. I wanted to know, how can we check who removed the security group from the EC2 machine. Solution Tried…
Not A Bot
  • 2,474
  • 2
  • 16
  • 33
1
vote
0 answers

S3 Permission denied when using Athena

I'm trying to query an S3 bucket using Athena but I am getting the following error: Permission denied on S3 path: s3://BUCKET_NAME/LOGS_LOCATION This query ran against the "default" database, unless qualified by the query. Please post the error…
Tegue Morrison
  • 21
  • 4
1
vote
2 answers

Enrich CloudWatch and CloudTrail with custom Lambda invocation input

Problem: I have an application with many lambda functions. However, most of them never log anything. That makes it hard to retrieve anything when there's a problem. We use CloudWatch and CloudTrail. But the CloudWatch logs are often empty (just the…
bvdb
  • 22,839
  • 10
  • 110
  • 123
1
vote
1 answer

Cloudtrail console resources missing from event record

I need to get all the resources referenced by the action per each AWS event record. I use Python and cloudaux/boto. The documentation states a "resources" field:…
Idan
  • 5,365
  • 5
  • 24
  • 28
1
vote
2 answers

Cloudtrail using terraform

I'm creating a cloudtrail using terraform. The problem is my source bucket keeps changing after 3 months. Now I want to give the dynamic S3 bucket value for field_selector. I'm doing something like this: resource "aws_cloudtrail" "test" { …
Coding_ninja
  • 121
  • 7
1
vote
1 answer

How to get Number of read and write events using Athana from Cloudtrail

I've to get the read and write events from a Cloudtrail per day for n days. How do we partition the query to get a column where event type (read/write) is also specified? Tried referring to the documentation, couldn't find anything there. Please…
Kanika Singla
  • 59
  • 9
1
vote
0 answers

Does AWS Athena partition projection support more than one `storage.location.template`?

AWS ControlTower managed CloutTrail created account-trail-logs which used /org id/AWSLogs/… log path in S3 bucket, until Landing Zone 3.0 update which replaced it with organization-trail logs whose new log path is /org id/AWSLogs/org…
Pal Ramasamy
  • 11
  • 4
1
vote
0 answers

Extract value of Tags from cloudTrail logs using Athena

I am trying to query cloudtrail logs using Athena. My goal is to find specific instances and extract them with their Tags. The query I am using is: SELECT eventTime, awsRegion , json_extract(responseelements, '$.instancesSet.items[0].instanceId') AS…
D kashyap
  • 25
  • 7
1
vote
0 answers

Is there a way to find the most recent call of a lambda in AWS using the CLI?

I have inherited a large number of undocumented lambdas and I want to know which ones we are and which ones we are not using in our estate. I can collect a list of all of them using aws lambda list-functions, but does not tell me whether they were…
Bev Rivling
  • 13
  • 6
1
vote
1 answer

How can I choose a single dynamodb table as event type in Cloudtrail

I plan to create a trail in Cloudtrail to capture all data events for a dynamodb table. But it doesn't allow me to select a single dynamodb table. It is greyed out in below screenshot. Is there a way to only capture one single table rather than all…
Joey Yi Zhao
  • 37,514
  • 71
  • 268
  • 523
1
vote
0 answers

Checking Dynamodb Exceptions in Cloudtrail

I am using AWS Java-SDK to query Dynamodb table and I get the following exception java.util.concurrent.CompletionException: software.amazon.awssdk.services.dynamodb.model.DynamoDbException: One or more parameter values are not valid. The…
Chaitanya
  • 3,590
  • 14
  • 33
1 2 3
19 20