AWS Logging Accounts

To ingest the VPC flow logs from Amazon S3 buckets to Prisma Cloud, you need an AWS logging account. If you need flow logs ingestion, after onboarding your AWS account, you must onboard the logging account which has the S3 bucket storing VPC flow logs for the monitored account. The APIs in this category can be used to configure and manage these logging accounts.

📄️ Get all AWS Logging Accounts

Get the list of all the AWS Logging accounts and its details.

📄️ Add AWS Logging Account

Add new AWS logging account.

📄️ Generate a New CFT Template

Dynamically generate a CFT for the AWS Logging Account.

📄️ Get Logging Account Status

Get the status of the AWS logging account based on filter criteria such as, ID, name, RoleRN, and bucket.

📄️ Get Logging Account By ID

Get details of a logging account by ID.

📄️ Delete an S3 bucket

Delete an S3 bucket in a logging account.

📄️ Regenerate CFT for an Existing Account

Dynamically generate a CFT for an existing Log Account.

📄️ Regenerate CFT for New RoleName

Regenerate a new CFT for an existing logging account if roleName changes.

📄️ Get External ID of an Account

Get external ID of an AWS Logging Accountby account ID and rolename.

📄️ Update Logging Account

Update details of the logging account.

📄️ Delete a Logging Account by ID

Delete an AWS logging account based on account ID.

📄️ List S3 Bucket Names

Get a list of all the S3 bucket names associated to a logging account.

📄️ Add an S3 bucket

Add an S3 bucket to the existing logging account.

📄️ Get all S3 Buckets

Get the list of all S3 bucket and its details associated with a logging account.

📄️ Update S3 Bucket Details

Update details of an S3 bucket associated to a specific logging account.

📄️ Get Logging Account Status - GET

Get status of a logging account based on ID.

📄️ Get Logging Account Status - POST

Get detailed status of a logging account based on ID, name, roleRN or bucket name.