Questions tagged with AWS CloudTrail
Content language: English
Select up to 5 tags to filter
Sort by most recent
Browse through the questions and answers listed below or filter and sort to narrow down your results.
Hello,
We just setup AWS Tower on our organization. Everything ran smoothly but we detected a strange policy applied by AWS Tower on the bucket responsible to aggregate Cloudtrail trails from all of...
1
answers
2
votes
243
views
asked a year agolg...
I tried to generate a policy using access analyzer. The generated policy is always empty and I cannot figure out why. Moreover, the events I can see in the cloudtrail event logs do not include data...
1
answers
0
votes
627
views
asked a year agolg...
As I am trying to fetch the audit events of the last 90 days through the Lookup API of CloudTrail with java SDK V2.
Currently, I am fetching the audit events for 2 regions: **ap-south-1** and...
0
answers
0
votes
75
views
asked 2 years agolg...
Hi,
How can I determine which AWS KMS keys are commonly used in resources? We want to find the most frequently used kms keys and delete them.
Please assist in determining this.
1
answers
0
votes
1599
views
asked 2 years agolg...
Hi everyone!
I recently struggled with some CloudTrail costs in my account, to give some context, I enabled DynamoDB Global tables for two regions, using encryption with a CMK in the primary region...
1
answers
0
votes
696
views
asked 2 years agolg...
Hi, i am trying to customize my output using input transformer, but I am getting this error at **'targets.1.member.inputTransformer.inputPathsMap' failed to satisfy constraint: Map keys must satisfy...
0
answers
0
votes
114
views
asked 2 years agolg...
Using IaC in our accounts, we want to set up alerts for manual resource changes. We tried the EventBridge option. It does not suit us because the "anything-but" option only supports one prefix (in our...
2
answers
0
votes
298
views
asked 2 years agolg...
In the AWS Managment account `1111111` I have enabled `CloudTrail`. All `CloudTrail` logs are sent to the `S3` bucket `XXXX` in the Audit Account `2222222`. This part of the configuration works...
1
answers
1
votes
409
views
asked 2 years agolg...
Is there a way to find which account in the organization has cloudtrail disabled ? Is there any central location which shows the accounts with cloudtrail enabled and disabled ?
1
answers
0
votes
374
views
asked 2 years agolg...
Looking at the user guide, it seems to imply you can only create the datalake in the management account; which seems counter-intutive since using Control Tower they used to create the combined...
4
answers
1
votes
938
views
asked 2 years agolg...
Only just starting on my AWS journey but had a refusal at the first fence.
I have a new account that only holds KMS keys. These are eventually going to be under control of a third party. I have...
1
answers
0
votes
361
views
asked 2 years agolg...
Hello,
Can someone please help?
I set up a trail to audit all TLS calls in the account and saved all logs in S3. I tried to query the logs from S3 with Athena. This is the query I...
4
answers
0
votes
2142
views
asked 2 years agolg...