Support Athena querying for CloudTrail data #93
Comments
|
Hey! |
|
Awesome!! Please join us in our Gitter channel: https://gitter.im/netflix-repokid/Lobby . I look forward to speaking with you! |
|
@mcpeak It is my understanding that currently aardvark is utilizing access advisor to determine which services a iam role hasn't used in some time. Is the idea here that with trail logs it would allow repokid to look more granularly at this and go down to which permission in a given role that hasn't been used in some time rather than just the high level service? |
|
@cByst yes, exactly. So even if parts of a service have been used we can take away the actions within the service that haven't been. |
|
Thats really cool is this done or has it been started? If not or if someone needs help I wouldn't mind jumping in, that data would be really useful. |
|
Hi @cByst. Hope you are doing great. Yes, we have started working on it. Soon it will be in place and Sure, when we will need help, we will call out for you. :D |
|
Hi folks, what's the status of this enhancement? It's been 9 months since the last comment about WIP... thanks. |
Athena can be used to query the S3 buckets where CloudTrail data is stored directly. This would be useful for organizations without some other storage (such as ElasticSearch) set up. It should be reasonably easy to develop a hook that makes Athena queries to determine which actions have been used for a role in the last n days.
The text was updated successfully, but these errors were encountered: