Skip to content

AWS announces preview of AWS Interconnect - multicloud

AWS announces AWS Interconnect – multicloud (preview), providing simple, resilient, high-speed private connections to other cloud service providers. AWS Interconnect - multicloud is easy to configure and provides high-speed, resilient connectivity with dedicated bandwidth, enabling customers to interconnect AWS networking services such as AWS Transit Gateway, AWS Cloud WAN, and Amazon VPC to other cloud service providers with ease.

Is there a way to create a lambda function which track all roles assumed by a user in the last 24 hours ?

0

I want to create a lambda function that sends me an sns alert of the list of all roles assumed by a user over the last 24 hours whenever a role X in account B is assumed by another role from account A .

Topics: Serverless Application Integration Compute Security, Identity, & Compliance
Tags: AWS Identity and Access Management AWS Lambda Amazon EventBridge
Language: English

rePost-User-8971685

asked 3 years ago405 views

1 Answer

Newest
Most votes
Most comments

1

Hi yes.

You can try leveraging CloudTrail to log API calls for assume role: https://docs.aws.amazon.com/IAM/latest/UserGuide/cloudtrail-integration.html

You can combine it with EventBridge rule, which then can trigger a an alert towards SNS, actually without need to use Lambda function.

Hope it helps ;)

EXPERT

Antonio Lagrotteria

answered 3 years ago

EXPERT

reviewed 2 years ago

Relevant content

Failed to create Lambda function simply withe the error message "The role defined for the function cannot be assumed by Lambda"
Accepted Answer
Masa Matsuo
asked a year ago
Cannot create function after giving create function permission to a policy used by a role referenced in the "Create function" workflow
Accepted Answer
DC
asked 5 months ago
Lambda create_function via local python SDK - Error The role defined for the function cannot be assumed by Lambda
Hubert Peters
asked 2 years ago
Create a Lambda Function Triggered by S3 Event, send the event as email using SNS
Accepted Answer
Deepthi J
asked a year ago
How do I configure a Lambda function to assume an IAM role in another AWS account?
AWS OFFICIALUpdated 8 months ago
How do I use a Lambda function to receive SNS alerts when an AWS Glue job fails on retry?
AWS OFFICIALUpdated 9 months ago
How do I troubleshoot the CloudFormation error "The role defined for the function cannot be assumed by Lambda"?
AWS OFFICIALUpdated 2 years ago
How do I resolve the "Lambda could not update the function's execution role" error when attaching Amazon RDS Proxy to a Lambda function?
AWS OFFICIALUpdated 4 years ago
How to get Overall or Total Purchased Spice Capacity of an Amazon Quicksight for a particular region with the help of Lambda function using Boto3/API
EXPERT
siriguppa venkat sai
published a year ago
How do I create an Amazon MSK event source mapping to invoke a Lambda function using a NAT Gateway internet connection?
EXPERT
Hitesh
published a year ago