7 years ago

AWS - Top API calls by User

MZMPR6

Every 5 minutes, this datasource will query ElasticSearch for a list of the top 20 API callers as identified by the "userIdentity.sessionContext.sessionIssuer.userName" identity. This should return a list of users that are running under automation as opposed to user accounts. This will also return the number of calls that are being throttled by AWS as outlined here: http://docs.aws.amazon.com/AWSEC2/latest/APIReference/query-api-troubleshooting.html

Use this datasource to improve any code you have running in AWS that relies on API calls outside of cloudwatch. Suggestions on how to improve this datasource are welcome! We've already used it to find a number of issues and identify code that was not adhering to AWS's API request guidelines.

To Apply this datasource, assign the property "CloudTrailES.URL" to your Elasticsearch instance that services cloudtrail log requests. The value of this property should be the search URL endpoint for that Elasticsearch instance (e.g. "https://search-cloudtraillogs-ABCDEFGHIJK12345.us-east-1.es.amazonaws.com/_search")

api

aws

Forum Discussion

AWS - Top API calls by User

Related Content

Does anyone aware where I can find AWS cloud watch API call logs in AWS account or from LM?

Powershell: Expanding a variable inside single quotes to make an API call

public ip addresses used for API calls to my Meraki enviroment?

Letting non-admin users make and manage their own dynamic groups

AWS EC2 cloud collector vs local collector

Recent Discussions

Dashboard Sharing – An Inline Framing Method

2021-12-15 US Office Hours

Live Training - Tuning Datapoints and Alerts - 15th JUNE 2022 - APAC

Live Training - Introduction to Dashboards - 18th MAY 2022 - APAC

2022-05-11- APAC Product Overview -Collectors, Resources/Groups, Dashboards