Questions tagged with AWS CloudTrail
Content language: English
Select up to 5 tags to filter
Sort by most recent
Browse through the questions and answers listed below or filter and sort to narrow down your results.
I tried to generate a policy using access analyzer. The generated policy is always empty and I cannot figure out why. Moreover, the events I can see in the cloudtrail event logs do not include data...
1
answers
0
votes
617
views
asked a year agolg...
As I am trying to fetch the audit events of the last 90 days through the Lookup API of CloudTrail with java SDK V2.
Currently, I am fetching the audit events for 2 regions: **ap-south-1** and...
0
answers
0
votes
74
views
asked 2 years agolg...
Hi,
How can I determine which AWS KMS keys are commonly used in resources? We want to find the most frequently used kms keys and delete them.
Please assist in determining this.
1
answers
0
votes
1567
views
asked 2 years agolg...
Hi everyone!
I recently struggled with some CloudTrail costs in my account, to give some context, I enabled DynamoDB Global tables for two regions, using encryption with a CMK in the primary region...
1
answers
0
votes
686
views
asked 2 years agolg...
Hi, i am trying to customize my output using input transformer, but I am getting this error at **'targets.1.member.inputTransformer.inputPathsMap' failed to satisfy constraint: Map keys must satisfy...
0
answers
0
votes
109
views
asked 2 years agolg...
Using IaC in our accounts, we want to set up alerts for manual resource changes. We tried the EventBridge option. It does not suit us because the "anything-but" option only supports one prefix (in our...
2
answers
0
votes
295
views
asked 2 years agolg...
In the AWS Managment account `1111111` I have enabled `CloudTrail`. All `CloudTrail` logs are sent to the `S3` bucket `XXXX` in the Audit Account `2222222`. This part of the configuration works...
1
answers
1
votes
401
views
asked 2 years agolg...
Is there a way to find which account in the organization has cloudtrail disabled ? Is there any central location which shows the accounts with cloudtrail enabled and disabled ?
1
answers
0
votes
366
views
asked 2 years agolg...
Looking at the user guide, it seems to imply you can only create the datalake in the management account; which seems counter-intutive since using Control Tower they used to create the combined...
4
answers
1
votes
925
views
asked 2 years agolg...
Only just starting on my AWS journey but had a refusal at the first fence.
I have a new account that only holds KMS keys. These are eventually going to be under control of a third party. I have...
1
answers
0
votes
356
views
asked 2 years agolg...
Hello,
Can someone please help?
I set up a trail to audit all TLS calls in the account and saved all logs in S3. I tried to query the logs from S3 with Athena. This is the query I...
4
answers
0
votes
2124
views
asked 2 years agolg...
In many of the CloudTrail events, we are not getting the 'Resources' field which indicates which resources are being accessed in this particular event. However, If I look at that event in the...
1
answers
1
votes
686
views
asked 2 years agolg...