stackoom
  简体   繁体   中英

How to enable AWS EMR CloudTrail logging?

 原文  2018-06-06 01:46:21       amazon-web-services/ elastic-map-reduce/ amazon-cloudtrail

Question

We have a team shared AWS account, that sometimes things are hard to debug. Especially, for EMR APIs, throttling happens regularly, that it'll be nice to have CloudTrail logs tell people who is not being nice when using EMR. I think our CloudTrail logging is enabled, that I can see these API events with EMR as event source--

AddJobFlowSteps
RunJobFlow
TerminateJobFlows

I'm pretty sure that I'm calling DescribeCluster for plenty times and caused some throttling, but not sure why they are not showing up in my CloudTrail logs...

Can someone help understand --

  • Is there additional setting needed for DescribeCluster EMR API, in order to log events to CloudTrail?
  • And what about other EMR APIs? Can they be configured to log events to CloudTrails, without using SDK explicitly writing to CloudTrails?

I have read these articles, feels like much can be done in CloudTrails...

Appreciate any help!

1 answers

solution1
 0  2018-11-27 08:24:52

A quick summary of AWS cloudtrail: The events recorded by AWS cloudtrail are of two types: Management events and Data events. Management events include actions like: stopping an instance, deleting a bucket etc. Data events are only available for two services (S3 and lambda), which include actions like: object 'abc.txt' was read from the S3 bucket.

Under management events, we again have 4 types:

  1. Write-only

  2. Read-only

  3. All (both reads and writes)

  4. None

The DescribeCluster event that you are looking for comes under the management event 'Read-only' type. DescribeCluster - cloudtrail image:
DescribeCluster-cloudtrail图像

Please ensure that you have selected "All" or "ReadOnly" management event type in your cloudtrail trail. Selecting "WriteOnly" in management event type in your cloudtrail trail will not record 'DescribeCluster'. There is no other AWS service specific setting that you can enable in cloudtrail.

Also note that the 'Event history' tab in AWS Cloudtrail console records all types of logs (including ReadOnly) for a period of 90 days. You can see the DescribeCluster event there too.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question How To Create a CloudTrail for DynamoDb in AWS? How do I connect bitnami CouchDB with Cloudwatch or Cloudtrail AWS for obtaining audit level logging? How to see AWS KMS events on AWS cloudtrail? How Can I enable SSO login to Apache Zeppelin on AWS EMR AWS CloudTrail not logging CloudFront distribution ID after deployment Enable debugging/logging on running EMR cluster How to import existing CloudTrail in AWS CDK How to manage AWS CloudTrail logs events to CloudWatch? How to convert AWS CloudTrail JSON output time How to make sense out of AWS CloudTrail costs
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM