This topic describes the AWS (CloudTrail) event source configuration parameters.
To access the AWS Collection Configuration Parameters:
- In the Security Analytics menu, select Administration > Services
- In the Services grid, select a Log Collector service.
- Click
under Actions and select View > Config.
- In the Log Collector Event Sources tab, select Plugins/Config from the drop-down menu.
The Plugins/Config view in the Event Sources tab has two panels: Event Categories and Sources.
Event Categories Panel
In the Event Categories panel, you can add or delete the appropriate event source types.
Available Event Sources Types Dialog
The Available Event Source Types dialog displays the list of supported event source types.
Sources Panel
The AWS (CloudTrail) Sources panel displays a list of existing AWS (CloudTrail) firewall event sources. Use this section to add or delete event sources and associated communication parameters.
Toolbar
The following table provides descriptions of the toolbar options.
Add or Edit Source Dialog
The Add Source dialog and the Edit Source dialog contain the same information.
Validates the connection to Event Source Address.
Tasks
Step 1. Configure AWS (CloudTrail) Event Sources in Security Analytics