Reputation: 131
AWS IAM authentication logs
I am looking for authentication activities in the AWS IAM logs; I collected all the logs for this purpose, however, I am not able to locate any logs indicating authentication. I wonder if someone could help me with the search parameters. Also, I checked the API references here (http://docs.aws.amazon.com/IAM/latest/APIReference/Welcome.html); however, I did not see any API which indicates authentication activities. Any help would be highly appreciated.
Thanks!
Upvotes: 0
Views: 387
Answers (3)
Reputation: 401
CloudTrail records authentication activities for both successful and unsuccessful login. The link below should have all the details you need regarding log details:
Upvotes: 0
Reputation: 311
You should enable CloudTrail for monitoring API call https://aws.amazon.com/es/cloudtrail/
Upvotes: 0
Reputation: 269400
Amazon CloudTrail can capture login attempts to the AWS Management Console.
All other types of authentication happen with the actual API calls. For example, if an Amazon EC2 StopInstance API call is made to AWS, the credentials are checked, permissions are checked to confirm that the credentials are permitted to make such a call, then the action is performed. Once again, Amazon CloudTrail keeps an audit trail of this API request and whether it was successful.
The authentication takes place with every API call, rather than authenticating first, then making API calls.
Upvotes: 1
Related Questions
- AWS IAM error : 'Your authentication information is incorrect. Please try again'
- IAM user security credentials not reflected in AWS credentials file
- Query regarding AWS IAM Service
- Login as IAM User using AWS SDK
- EC2 instance launch log deny IAM Policy
- AWS IAM Authentication
- Is there is any way to authenticate IAM User
- AWS IAM requests
- Tracking IAM Access Key Usage Beyond "Last Used"
- AWS IAM Access Management