Questions tagged with AWS CloudTrail
Content language: English
Select up to 5 tags to filter
Sort by most recent
Browse through the questions and answers listed below or filter and sort to narrow down your results.
Hello,
We just setup AWS Tower on our organization. Everything ran smoothly but we detected a strange policy applied by AWS Tower on the bucket responsible to aggregate Cloudtrail trails from all of...
1
answers
2
votes
245
views
asked 2 years agolg...
I tried to generate a policy using access analyzer. The generated policy is always empty and I cannot figure out why. Moreover, the events I can see in the cloudtrail event logs do not include data...
1
answers
0
votes
629
views
asked 2 years agolg...
As I am trying to fetch the audit events of the last 90 days through the Lookup API of CloudTrail with java SDK V2.
Currently, I am fetching the audit events for 2 regions: **ap-south-1** and...
0
answers
0
votes
75
views
asked 2 years agolg...
Hi,
How can I determine which AWS KMS keys are commonly used in resources? We want to find the most frequently used kms keys and delete them.
Please assist in determining this.
1
answers
0
votes
1613
views
asked 2 years agolg...
Hi everyone!
I recently struggled with some CloudTrail costs in my account, to give some context, I enabled DynamoDB Global tables for two regions, using encryption with a CMK in the primary region...
1
answers
0
votes
700
views
asked 2 years agolg...
Hi, i am trying to customize my output using input transformer, but I am getting this error at **'targets.1.member.inputTransformer.inputPathsMap' failed to satisfy constraint: Map keys must satisfy...
0
answers
0
votes
114
views
asked 2 years agolg...
Using IaC in our accounts, we want to set up alerts for manual resource changes. We tried the EventBridge option. It does not suit us because the "anything-but" option only supports one prefix (in our...
2
answers
0
votes
299
views
asked 2 years agolg...
In the AWS Managment account `1111111` I have enabled `CloudTrail`. All `CloudTrail` logs are sent to the `S3` bucket `XXXX` in the Audit Account `2222222`. This part of the configuration works...
1
answers
1
votes
411
views
asked 2 years agolg...
Is there a way to find which account in the organization has cloudtrail disabled ? Is there any central location which shows the accounts with cloudtrail enabled and disabled ?
1
answers
0
votes
376
views
asked 2 years agolg...
Looking at the user guide, it seems to imply you can only create the datalake in the management account; which seems counter-intutive since using Control Tower they used to create the combined...
4
answers
1
votes
943
views
asked 2 years agolg...
Only just starting on my AWS journey but had a refusal at the first fence.
I have a new account that only holds KMS keys. These are eventually going to be under control of a third party. I have...
1
answers
0
votes
363
views
asked 2 years agolg...
Hello,
Can someone please help?
I set up a trail to audit all TLS calls in the account and saved all logs in S3. I tried to query the logs from S3 with Athena. This is the query I...
4
answers
0
votes
2149
views
asked 2 years agolg...