circle-info
Welcome to the new Logpoint documentation portal! Can’t find what you’re looking for?
Logpoint Documentationarrow-up-right
search

Troubleshooting Cloud Trail

hashtag
Installation Issues

Issue: Integration fails to install

  • Solution: Verify Logpoint version compatibility (v7.4.0 or later required)

  • Solution: Check available disk space and system resources

  • Solution: Ensure proper administrative privileges

Issue: Integration not visible after installation

  • Solution: Refresh the browser and check under Settings >> System Settings >> Plugins

  • Solution: Restart Logpoint if necessary

hashtag
Configuration Issues

Issue: AWS authentication failures

  • Solution: Verify AWS Access Key ID and Secret Access Key are correct

  • Solution: Ensure AWS credentials have appropriate S3 read permissions

  • Solution: Check if AWS credentials have expired

Issue: Cannot access S3 bucket

  • Solution: Verify bucket name is correct and exists

  • Solution: Confirm AWS region selection matches bucket region

  • Solution: Check bucket permissions and policies

Issue: Proxy connection failures

  • Solution: Verify proxy server configuration (IP, port, protocol)

  • Solution: Ensure proxy server has access to AWS S3 endpoints

  • Solution: Test network connectivity from Logpoint to proxy server

hashtag
Data Ingestion Issues

Issue: No logs being ingested

  • Solution: Verify CloudTrail is enabled in your AWS account

  • Solution: Check if CloudTrail is configured to write to the specified S3 bucket

  • Solution: Confirm fetch interval settings and wait for next collection cycle

Issue: Incomplete log ingestion

  • Solution: Check base path configuration - ensure it matches your CloudTrail log structure

  • Solution: Verify "Logs From" date setting doesn't exclude recent logs

  • Solution: Monitor fetcher logs for errors or warnings

Issue: High memory usage during ingestion

  • Solution: Adjust fetch interval to reduce batch sizes

  • Solution: Implement log filtering using base path settings

  • Solution: Monitor system resources and scale if necessary

hashtag
Dashboard and Analytics Issues

Issue: Dashboard widgets not displaying data

  • Solution: Verify repository selection matches where CloudTrail logs are stored

  • Solution: Check time range settings on dashboard

  • Solution: Confirm normalization is working correctly

Issue: "Top 10 Countries" widget not working

  • Solution: Install and configure GEOIP enrichment in Logpoint

  • Solution: Verify GEOIP data is available and updated

Issue: Alerts not triggering

  • Solution: Review alert queries and ensure they match your log format

  • Solution: Check alert policy configuration and notification settings

  • Solution: Verify log normalization is producing expected field names

hashtag
Performance Issues

Issue: Slow query performance

  • Solution: Optimize queries by adding time range constraints

  • Solution: Use indexed fields in search queries where possible

  • Solution: Consider data retention policies to manage repository size

Issue: High resource usage

  • Solution: Adjust fetch intervals to balance timeliness with resource usage

  • Solution: Implement log filtering to reduce unnecessary data ingestion

  • Solution: Monitor and tune normalization policies

Last updated

Was this helpful?