Closed Bug 1476708 Opened 7 years ago Closed 7 years ago

Update CloudTrail configuration in AWS account mozilla-infra 342958218804

Categories

(Infrastructure & Operations :: SRE, task)

Product:
Infrastructure & Operations
Component:
SRE
Type:
task
Priority:
Not set
Severity:
normal

Tracking

(Not tracked)

Status:
VERIFIED FIXED

People

(Reporter: gene, Assigned: danielh)

Details

Daniel, Would you update the CloudTrail configuration in the mozilla-infra 342958218804 account as it's misconfigured? Please 1. Tear down the "DeployCloudTrailCloudFormationStacks" CloudFormation stack in us-west-2 2. Browse to AWS CloudFormation in any region, for example us-west-2 3. Click Create Stack 4. Under "Choose a template" select Specify an Amazon S3 template URL Enter this URL : https://s3.amazonaws.com/infosec-cloudformation-templates/configure_cloudtrail_to_use_mozilla_secure_storage_globally.json 5. In the "Stack name" field enter MozillaGlobalSecureCloudTrailStorage and click Next 6. On the "Options" screen click Next 7. On the "Review" screen click Create This will continue sending CloudTrail logs to the same bucket, but it will * switch to using the new[1] (Dec 2015) multi region cloudtrail model * switch to sending SNS notifications to the correct topic More information on this system can be round here[2] [1]: https://aws.amazon.com/blogs/aws/aws-cloudtrail-update-turn-on-in-all-regions-use-multiple-trails/ [2]: https://mana.mozilla.org/wiki/display/SECURITY/AWS+Secure+CloudTrail+Storage+System
Hey Gene, MozillaGlobalSecureCloudTrailStorage was created successfully at 2018-07-23 13:06:41 UTC-0700. Let me know if anything looks off on your end.
Status: NEW → RESOLVED
Closed: 7 years ago
Resolution: --- → FIXED
Thanks, looks like you also tore down the DeployCloudTrailCloudFormationStacks stack, I appreciate it.
Status: RESOLVED → VERIFIED
You need to log in before you can comment on or make changes to this bug.