All Apps and Add-ons
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question
Solved! Jump to solution

Splunk App for AWS Billing: Is it possible to include multiple AWS accounts for different S3 buckets in the aws.yaml file? Is there a specific format?

gbacs
Explorer
‎01-07-2015 12:20 PM

I need to obtain information from multiple S3 buckets since each is related to a different AWS account. Is it possible to include multiple AWS accounts in the aws.yaml file? if so - is there a specific format? I tried the following format - only the details for the account details for # 2 is getting processed. Any ideas?

s3
account details #1

s3
account details # 2

Reply
1 Solution
Solved! Jump to solution
Solution

monkee
Path Finder
‎05-04-2015 05:51 PM

Hi, I have released a new version that takes multiple accounts , you can download it here:
https://splunkbase.splunk.com/app/1577/#/overview (version 2.0.0)

RELEASE NOTES
- Supports multiple accounts
- events are streamed in json
- file positions are tracked using yaml files, to reduce the likelihood of double ups
- all functions have been moved to classes
- boto has been updated to 2.38.0

View solution in original post

Reply
Solved! Jump to solution
Solution

monkee
Path Finder
‎05-04-2015 05:51 PM

Hi, I have released a new version that takes multiple accounts , you can download it here:
https://splunkbase.splunk.com/app/1577/#/overview (version 2.0.0)

RELEASE NOTES
- Supports multiple accounts
- events are streamed in json
- file positions are tracked using yaml files, to reduce the likelihood of double ups
- all functions have been moved to classes
- boto has been updated to 2.38.0

Reply
Solved! Jump to solution

monkee
Path Finder
‎05-11-2015 05:02 PM

The format is now:

For a single account use the following style of aws.yaml:

 accounts:
   - account_number    : 123456
     billing_bucket    : company-billing
     aws_access_key    : AAAAAAAAAAAA
     aws_secret_key    : AAAAAAAAAAAABBBBBBBBBBBBBBCC

For multiple accounts use the following style of aws.yaml:

  accounts:
    - account_number    : 123456
      billing_bucket    : company-one-billing
      aws_access_key    : AAAAAAAAAAAA
      aws_secret_key    : AAAAAAAAAAAABBBBBBBBBBBBBBCC
   - account_number    : 654321
      billing_bucket    : company-two-billing
      aws_access_key    : AAAAAAAAAAAA
      aws_secret_key    : AAAAAAAAAAAABBBBBBBBBBBBBBCC
Reply
Solved! Jump to solution

monkee
Path Finder
‎01-08-2015 10:57 PM

Hi gbacs, I am rewriting the app to handle this. There is some basic support for this but it is not sufficient and can cause duplicate data. I will let you know when i have released the new version - it is not too far away.

0 Karma
Reply
Solved! Jump to solution

gbacs
Explorer
‎01-09-2015 09:46 AM

Thanks. gbacs

0 Karma
Reply
Solved! Jump to solution

gbacs
Explorer
‎04-29-2015 03:53 PM

Hi there,
Any idea when the new version will be ready? Thanks

0 Karma
Reply
Solved! Jump to solution

monkee
Path Finder
‎05-04-2015 05:52 PM

It is complete and you can download it from here https://splunkbase.splunk.com/app/1577/#/overview

0 Karma
Reply
Get Updates on the Splunk Community!

Introducing Edge Processor: Next Gen Data Transformation

We get it - not only can it take a lot of time, money and resources to get data into Splunk, but it also takes ...

Take the 2021 Splunk Career Survey for $50 in Amazon Cash

Help us learn about how Splunk has impacted your career by taking the 2021 Splunk Career Survey. Last year’s ...

Using Machine Learning for Hunting Security Threats

WATCH NOW Seeing the exponential hike in global cyber threat spectrum, organizations are now striving more for ...