How Do I Configure Access to Distil Daily Logs?

Distil publishes batches of daily logs to S3 on a daily basis. This document explains how to configure this service. 

Step 1: Find Your User's Amazon Resource Name

Distil Support needs to know your Amazon Resource Name (ARN) for the user that will access daily logs. You can access this value in the Amazon Identity and Access Management (IAM) console. 

Carry out the following steps to retrieve your user ARN:

  1. Log in to the Amazon Web Services (AWS) console.
  2. Select the IAM Management Console.
  3. Click Users.
  4. Select the appropriate user name.
  5. Under the Summary tab, locate the User ARN.
    EXAMPLE: arn:aws:iam::YOURACCOUNT#:user/
  6. Copy and send that full ARN back to Distil.

Step 2: Grant User Access to S3

In order to fetch logs from S3, your user will need permissions to read from the S3 service. 

  1. Log into the AWS console.
  2. Select the IAM Management Console.
  3. Click Users.
  4. Select the appropriate user name.
  5. Click Attach User Policy.
  6. Control-F (find) for "S3 Full Access."
  7. Click Select and Apply policy.

Step 3: Pull logs from S3 via API

Once Distil provisions access to the log bucket, you will need to set up a way to download the files. There are a couple of options here:

First, the easiest, is to use a tool like S3 Browser to access a shared bucket.

The second, more involved option, is to use the Amazon CLI:

  1. Install the Amazon CLI tools, setup access credentials.
  2. Once that is done, you can iterate the contents of the shared bucket using the list-objects command:
    aws s3api list-objects --bucket distilLogsCustomername

  3. Once you have gotten that, you can then download any of the objects listed using the get-object command:
    aws s3api get-object --bucket distilLogsCustomername --key 2014_09_02_somecustomer_com/a0cc80fe-ae18-4f1a-b863-039c2b757fd8_000000 ./2014_09_02_somecustomer_com


Was this article helpful?
0 out of 0 found this helpful
Have more questions? Submit a request