{"id":3031,"date":"2019-08-31T11:22:37","date_gmt":"2019-08-31T11:22:37","guid":{"rendered":"https:\/\/www.testpreptraining.com\/tutorial\/?page_id=3031"},"modified":"2020-05-01T11:09:48","modified_gmt":"2020-05-01T11:09:48","slug":"s3-logs","status":"publish","type":"page","link":"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-security-specialty\/s3-logs\/","title":{"rendered":"S3 Logs"},"content":{"rendered":"\n<ul class=\"wp-block-list\"><li>can record actions taken by users, roles, or AWS services on S3 <\/li><li>maintain log records for auditing and compliance <\/li><li>Logging can be done by <ul><li>S3 Server Access Logging<\/li><\/ul><ul><li>AWS CloudTrail logs<\/li><\/ul><ul><li>combination of both above<\/li><\/ul><\/li><\/ul>\n\n\n\n<p>AWS CloudTrail based logging features<\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>Can be forwarded to other systems (CloudWatch\nLogs, CloudWatch Events)<\/li><li>Deliver logs to more than one destination (send\nto 2 buckets)<\/li><li>Turn on logs for a subset of objects <\/li><li>Cross-account log delivery <\/li><li>Validate the integrity of the log file by usage\nof hashing or digital signature<\/li><li>Default\/choice of encryption for log files<\/li><li>Searchable UI for logs<\/li><li>Provides fields for lock parameters of the\nobjects<\/li><li>For S3 can select properties for log records<\/li><li>Management events (first delivery) are free;\ndata events incur a fee, also storage of logs<\/li><li>Log delivery for data events every 5 mins;\nmanagement events every 15 mins<\/li><li>JSON based log format<\/li><\/ul>\n\n\n\n<p>S3 Server Logs based logging features<\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>Object and Bucket operations (using Amazon S3\nAPIs)<\/li><li>Has fields for <ul><li>Object\nSize<\/li><\/ul><ul><li>Total\nTime<\/li><\/ul><ul><li>Turn-Around\nTime<\/li><\/ul><ul><li>HTTP\nReferrer for log records<\/li><\/ul><\/li><li>Lifecycle transitions, expirations, restores<\/li><li>During batch delete operation, keys are logged <\/li><li>Authentication failures<\/li><li>Only storage of logs&nbsp; is charged and no extra cost for usage <\/li><li>Within a few hours logs are delivered<\/li><li>Log format of log file with space-separated, newline-delimited\nrecords<\/li><\/ul>\n\n\n\n<p><strong>S3 Server Access Logging<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>By default, server logging is disabled<\/li><li>If set to enabled, logs are saved to bucket in same AWS Region as source bucket. <\/li><li>To enable access logging<ul><li>Turn on log delivery by adding logging configuration on bucket for which S3 to deliver access logs or source bucket.<\/li><\/ul><ul><li>Grant S3 Log Delivery group write permission on bucket to save access logs to, or target bucket.<ul><li>S3 supports permission granting for access logs delivery through bucket ACL only. <\/li><\/ul><ul><li>Default bucket encryption on destination bucket can be used if AES256 (SSE-S3) is selected. <\/li><\/ul><ul><li>SSE-KMS encryption is not supported.<\/li><\/ul><ul><li>log destination bucket cannot have S3 object lock<\/li><\/ul><\/li><\/ul><ul><li>Logging configuration information, needed is<ul><li>name of the target bucket <\/li><\/ul><ul><li>prefix for Amazon S3 to assign to all log object keys (optional)<\/li><\/ul><ul><li>Permissions to access generated logs.(optional)<\/li><\/ul><\/li><\/ul><\/li><li>S3 object key format for log objects &#8211; TargetPrefixYYYY-mm-DD-HH-MM-SS-UniqueString where,<ul><li>YYYY, mm, DD, HH, MM, and SS are digits of year, month, day, hour, minute, and seconds (respectively) when the log file was delivered as per UTC.<\/li><\/ul><\/li><li>log records for server access are sent on best effort basis, only. <\/li><li>No guarantee for completeness and timeliness of server logging and is only best effort basis<\/li><li>Enabling Logging Using <ul><li>the Console<\/li><\/ul><ul><li>S3 API&nbsp; <\/li><\/ul><ul><li>AWS SDKs<\/li><\/ul><\/li><li>The log record fields consists of<ul><li>Bucket Owner &#8211; user ID of owner of source bucket. <\/li><\/ul><ul><li>Bucket &#8211; name of bucket that the request was processed against. <\/li><\/ul><ul><li>Time &#8211; time at which request was received; <\/li><\/ul><ul><li>Remote IP &#8211; IP of requester. <\/li><\/ul><ul><li>Requester &#8211; user ID of requester<\/li><\/ul><ul><li>Request ID &#8211; string generated by S3 to uniquely identify each request.<\/li><\/ul><ul><li>Operation \u2013 Can be declared as <ul><li>SOAP.operation<\/li><\/ul><ul><li>REST.HTTP_method.resource_type<\/li><\/ul><ul><li>WEBSITE.HTTP_method.resource_type<\/li><\/ul><ul><li>BATCH.DELETE.OBJECT<\/li><\/ul><\/li><\/ul><ul><li>Request-URI <\/li><\/ul><ul><li>HTTP status<\/li><\/ul><ul><li>Error Code &#8211; S3 Error Code<\/li><\/ul><ul><li>Bytes Sent<\/li><\/ul><ul><li>Object Size<\/li><\/ul><ul><li>Total Time &#8211; milliseconds request was in flight from server&#8217;s perspective. <\/li><\/ul><ul><li>Turn-Around Time &#8211; milliseconds that S3 spent processing request.<\/li><\/ul><\/li><li>use Amazon S3 lifecycle configuration<\/li><\/ul>\n\n\n\n<figure class=\"wp-block-image\"><img loading=\"lazy\" decoding=\"async\" width=\"511\" height=\"400\" src=\"https:\/\/www.testpreptraining.ai\/tutorial\/wp-content\/uploads\/2019\/09\/image-136-511x400.png\" alt=\"\" class=\"wp-image-3706\" srcset=\"https:\/\/www.testpreptraining.ai\/tutorial\/wp-content\/uploads\/2019\/09\/image-136-511x400.png 511w, https:\/\/www.testpreptraining.ai\/tutorial\/wp-content\/uploads\/2019\/09\/image-136.png 584w\" sizes=\"auto, (max-width: 511px) 100vw, 511px\" \/><\/figure>\n","protected":false},"excerpt":{"rendered":"<p>can record actions taken by users, roles, or AWS services on S3 maintain log records for auditing and compliance Logging can be done by S3 Server Access Logging AWS CloudTrail logs combination of both above AWS CloudTrail based logging features Can be forwarded to other systems (CloudWatch Logs, CloudWatch Events) Deliver logs to more than&#8230;<\/p>\n","protected":false},"author":1,"featured_media":0,"parent":2474,"menu_order":18,"comment_status":"closed","ping_status":"closed","template":"","meta":{"_acf_changed":false,"footnotes":""},"categories":[2],"tags":[7,525],"class_list":["post-3031","page","type-page","status-publish","hentry","category-amazon-aws","tag-aws","tag-s3-logs"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v22.1 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>S3 Logs - Testprep Training Tutorials<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-security-specialty\/s3-logs\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"S3 Logs - Testprep Training Tutorials\" \/>\n<meta property=\"og:description\" content=\"can record actions taken by users, roles, or AWS services on S3 maintain log records for auditing and compliance Logging can be done by S3 Server Access Logging AWS CloudTrail logs combination of both above AWS CloudTrail based logging features Can be forwarded to other systems (CloudWatch Logs, CloudWatch Events) Deliver logs to more than...\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-security-specialty\/s3-logs\/\" \/>\n<meta property=\"og:site_name\" content=\"Testprep Training Tutorials\" \/>\n<meta property=\"article:modified_time\" content=\"2020-05-01T11:09:48+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.testpreptraining.ai\/tutorial\/wp-content\/uploads\/2019\/09\/image-136-511x400.png\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data1\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-security-specialty\/s3-logs\/\",\"url\":\"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-security-specialty\/s3-logs\/\",\"name\":\"S3 Logs - Testprep Training Tutorials\",\"isPartOf\":{\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/#website\"},\"datePublished\":\"2019-08-31T11:22:37+00:00\",\"dateModified\":\"2020-05-01T11:09:48+00:00\",\"breadcrumb\":{\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-security-specialty\/s3-logs\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-security-specialty\/s3-logs\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-security-specialty\/s3-logs\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.testpreptraining.ai\/tutorial\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"AWS Certified Security Specialty\",\"item\":\"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-security-specialty\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"S3 Logs\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/#website\",\"url\":\"https:\/\/www.testpreptraining.ai\/tutorial\/\",\"name\":\"Testprep Training Tutorials\",\"description\":\"\",\"publisher\":{\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.testpreptraining.ai\/tutorial\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/#organization\",\"name\":\"Testprep Training\",\"url\":\"https:\/\/www.testpreptraining.ai\/tutorial\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.testpreptraining.com\/tutorial\/wp-content\/uploads\/2020\/07\/tpt-logo-6.png\",\"contentUrl\":\"https:\/\/www.testpreptraining.com\/tutorial\/wp-content\/uploads\/2020\/07\/tpt-logo-6.png\",\"width\":583,\"height\":153,\"caption\":\"Testprep Training\"},\"image\":{\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/#\/schema\/logo\/image\/\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"S3 Logs - Testprep Training Tutorials","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-security-specialty\/s3-logs\/","og_locale":"en_US","og_type":"article","og_title":"S3 Logs - Testprep Training Tutorials","og_description":"can record actions taken by users, roles, or AWS services on S3 maintain log records for auditing and compliance Logging can be done by S3 Server Access Logging AWS CloudTrail logs combination of both above AWS CloudTrail based logging features Can be forwarded to other systems (CloudWatch Logs, CloudWatch Events) Deliver logs to more than...","og_url":"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-security-specialty\/s3-logs\/","og_site_name":"Testprep Training Tutorials","article_modified_time":"2020-05-01T11:09:48+00:00","og_image":[{"url":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-content\/uploads\/2019\/09\/image-136-511x400.png"}],"twitter_card":"summary_large_image","twitter_misc":{"Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-security-specialty\/s3-logs\/","url":"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-security-specialty\/s3-logs\/","name":"S3 Logs - Testprep Training Tutorials","isPartOf":{"@id":"https:\/\/www.testpreptraining.ai\/tutorial\/#website"},"datePublished":"2019-08-31T11:22:37+00:00","dateModified":"2020-05-01T11:09:48+00:00","breadcrumb":{"@id":"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-security-specialty\/s3-logs\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-security-specialty\/s3-logs\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-security-specialty\/s3-logs\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.testpreptraining.ai\/tutorial\/"},{"@type":"ListItem","position":2,"name":"AWS Certified Security Specialty","item":"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-security-specialty\/"},{"@type":"ListItem","position":3,"name":"S3 Logs"}]},{"@type":"WebSite","@id":"https:\/\/www.testpreptraining.ai\/tutorial\/#website","url":"https:\/\/www.testpreptraining.ai\/tutorial\/","name":"Testprep Training Tutorials","description":"","publisher":{"@id":"https:\/\/www.testpreptraining.ai\/tutorial\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.testpreptraining.ai\/tutorial\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.testpreptraining.ai\/tutorial\/#organization","name":"Testprep Training","url":"https:\/\/www.testpreptraining.ai\/tutorial\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.testpreptraining.ai\/tutorial\/#\/schema\/logo\/image\/","url":"https:\/\/www.testpreptraining.com\/tutorial\/wp-content\/uploads\/2020\/07\/tpt-logo-6.png","contentUrl":"https:\/\/www.testpreptraining.com\/tutorial\/wp-content\/uploads\/2020\/07\/tpt-logo-6.png","width":583,"height":153,"caption":"Testprep Training"},"image":{"@id":"https:\/\/www.testpreptraining.ai\/tutorial\/#\/schema\/logo\/image\/"}}]}},"_links":{"self":[{"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/pages\/3031","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/comments?post=3031"}],"version-history":[{"count":4,"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/pages\/3031\/revisions"}],"predecessor-version":[{"id":5135,"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/pages\/3031\/revisions\/5135"}],"up":[{"embeddable":true,"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/pages\/2474"}],"wp:attachment":[{"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/media?parent=3031"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/categories?post=3031"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/tags?post=3031"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}