Stack Overflow
Stack Overflow

Questions tagged [amazon-cloudtrail]

Monitor AWS deployments in the cloud by getting a history of AWS API calls for the AWS account, including API calls made via the AWS Management Console, the AWS SDKs, the command line tools, and higher-level AWS services. Identify which users and accounts called AWS APIs for services that support CloudTrail, the source IP address the calls were made from, and when the calls occurred.

293 questions
1
vote
0 answers

ssl.SSLCertVerificationError: [SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: unable to get local issuer certificate (_ssl.c:1123)

Traceback (most recent call last): File "C:\Users\kbollu\AppData\Local\Programs\Python\Python38-32\lib\site-packages\urllib3\connectionpool.py", line 670, in urlopen httplib_response = self._make_request( File…
Karthik b
  • 11
  • 1
1
vote
1 answer

How to read AWS CloudTrail JSON Logs into a pandas dataframe

I have a problem as I am loading my data to pandas using Jupyterlab running with Anaconda3 as my VM suddenly went down. After it was up, I found that my code doesn't work anymore for some reason. Here is my code: awsc = pd.DataFrame() json_pattern =…
Ihsan Haikal
  • 1,085
  • 4
  • 16
  • 42
1
vote
1 answer

How to monitor entire AWS environment?

I am looking for a way to monitor any changes that occur to my production envrionment. Such as security group changes, ec2 create/stop/deletes, database changes, s3 bucket changes, route table changes, subnet changes, etc... I was looking at using…
Roger
  • 99
  • 1
  • 5
1
vote
1 answer

How to monitor and debug every request made to s3 in AWS?

so somehow I've exceeded the 20k allocated monthly requests on the free tier in AWS. in about 7 days. I was wondering how I can debug this and see where these requests are being made as it seems a hugely successive amount. I have 2 buckets, one…
Red Baron
  • 7,181
  • 10
  • 39
  • 86
1
vote
1 answer

AWS CloudWatch Events delay in CloudTrail log

I want to monitor the change in security group of an EC2 instance using CloudWatch Events. So, used API call via CloudTrail as the event type. Typically, CloudTrail delivers an event within 15 minutes of the API call which would hinder the near…
Abhishek Verma
  • 73
  • 7
1
vote
1 answer

Are the AWS Comprehend synchronous calls (e.g. BatchDetectSentiment) logged in Cloudtrail?

The AWS documentation explicitly list the API calls that are logged here: Logging Amazon Comprehend API Calls with AWS CloudTrail and they seems not to be included, but at the same time there is an example here: Logging Amazon Comprehend Medical API…
Ignacio
  • 331
  • 6
  • 15
1
vote
2 answers

Track AWS S3 bucket creation?

I'm working in an environment where anyone with the necessary access is allowed to create an S3 bucket; however, it's getting to a point where we have a lot of buckets and it is hard to keep track of who created the bucket. I know it is possible to…
J. Patwary
  • 427
  • 1
  • 7
  • 22
1
vote
0 answers

AWS Nuke script not working, access denied error

I am trying to clean up resources for my organization account using this AWS-Nuke Script Here, How I have done using AWS Console, I have created an organization and added few member accounts in it. From Github repository, In aws-nuke-config.yaml ,…
Manish Goyal
  • 69
  • 1
  • 9
1
vote
2 answers

Template contains errors.: [/Resources/CloudTrail/Type/EventSelectors] 'null' values are not allowed in templates in AWS CloudFormation CloudTrail

I am getting "Template contains errors.: [/Resources/CloudTrail/Type/EventSelectors] 'null' values are not allowed in templates" error when I am trying to validate my cloudformation template. "Conditions": "S3Enabled": "Fn::Equals": -…
SanD
  • 503
  • 2
  • 7
  • 25
1
vote
1 answer

Get notification when AWS Device Farm finished a run

How can I get notified when a Device Farm run is finished ? Is it possible to get the report into s3 bucket ? So it can be use as a source trigger in CodePipeline ?
dngot_
  • 413
  • 4
  • 9
1
vote
0 answers

How to get notification from S3 Server Access Loggings to CloudWatch?

I used Terraform to create a new S3 bucket for getting logs automatically from three different existing S3 bucket, next step I want to make the most use of these logs, getting various notification, e.g if someone created/deleted/modified a S3…
wawawa
  • 2,835
  • 6
  • 44
  • 105
1
vote
1 answer

stream logs to elastic using cloudformation template

Cloudtrail default logs can be streamed to elasticsearch domain as shown in this image. How do I achieve this using cloudformation template?
shantanuo
  • 31,689
  • 78
  • 245
  • 403
1
vote
1 answer

Turning off audit trails of AWS CloudTrail

AWS CloudTrail Events has a feature which turns on audit trails automatically in AWS account and keeps the data for couple of days. Due to some compliance, want this feature to be turned off. Is there any way to turn this off? Is there any API to…
Atish Kumbhar
  • 579
  • 1
  • 8
  • 21
1
vote
1 answer

How to manage AWS CloudTrail logs events to CloudWatch?

I have set AWS CloudTrail to send log to CloudWatch via trails. How can I control now what type of log is sent from CloudTrail to CloudWatch? For example what if I only want to get logs related to "EC2 instances" to go from CloudTrail to CloudWatch?
Ajay Gupta
  • 127
  • 3
  • 13
1
vote
1 answer

How long AssumeRoleSaml session valid?

I am trying to figure out usage of an AD user, using AWS via AssumeRoleWithSAML, following this ink, https://aws.amazon.com/blogs/security/how-to-easily-identify-your-federated-users-by-using-aws-cloudtrail/. However, i dont see AssumeRoleWithSAML…
Amit
  • 83
  • 1
  • 7
1 2 3
19 20