- Newest
- Most votes
- Most comments
Assuming you are using CloudTrail, here are instructions for how to filter the log events:
https://docs.aws.amazon.com/awscloudtrail/latest/userguide/view-cloudtrail-events.html
Thanks so much for trying to help.
In the CloudTrail logs, the credential of the IAM user that was used to send the message is not arriving.
Should I send only via Topic instead of directly?
How can I force the application developer to send an ID and identification?
The CloudTrail entry includes the userIdentity element here: https://docs.aws.amazon.com/awscloudtrail/latest/userguide/cloudtrail-event-reference-user-identity.html Have you looked at the raw entry?
I have this log in CloudWatch :
CloudWatch > Log groups > sns/sa-east-1/111111111111/DirectPublishToPhoneNumber
{ "notification": { "messageId": "d2352d76-xxxx-yyyy-zzzz-76346da44859", "timestamp": "2022-07-08 14:34:09.558" }, "delivery": { "mnc": 6, "numberOfMessageParts": 1, "destination": "+5511999999999", "priceInUSD": 0.02297, "smsType": "Transactional", "mcc": 724, "providerResponse": "Message has been accepted by phone", "dwellTimeMs": 31, "dwellTimeMsUntilDeviceAck": 3323 }, "status": "SUCCESS" }
how can i know which credential was used to send this sms message?
I have little experience, I'm trying to find some reference in cloudTrail, but without success.
@Rodney Lester I read your indication, but in it I found the indication of the creation of the log, but not of the sending of the SMS message.
You are looking in CloudWatch Logs, not CloudTrail, which is the audit trail for API calls. Do you have CloudTrail enabled? The first trail is free, except for storage in S3, which you can lifecycle policy to regularly delete.
Relevant content
- Accepted Answerasked a year ago
- AWS OFFICIALUpdated 5 months ago
- AWS OFFICIALUpdated 10 months ago
- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated 10 months ago
Rephrasing the question:
Right now I'm sending SMS messages using SNS, but without using topics, i.e. directly to the destination phone number.
I have SNS set up to log delivery status of SMS messages to cloudwatch.
Problem:
However, the object received in the logs does not include the credential (access key) , is there a way to do so ?
I need it:
I need to know which IAM user credential (access key) was used to have access to send the message SMS via aws-sdk.
Whereas that
: