Hi Everyone!!,
I went through the documentation for setting up the Cloudtrail plugin for
US-WEST-1, but I am getting the following error.
I have done all the AWS settings/configuration as described at
"https://marketplace.graylog.org/addons/3f132fab-50f0-4c88-b63d-9ac99aa6c20e";,
the only diffrence is I have set the Queue name to fluidcm-notifiaction
insted of cloudtrail-notification.
2016-04-16 21:11:25,899 ERROR:
com.graylog2.input.cloudtrail.CloudTrailSubscriber - Could not read
messages from SNS. This is most likely a misconfiguration of the plugin.
Going into sleep loop and retrying.
java.lang.RuntimeException: Could not parse SNS notification: hi
at
com.graylog2.input.cloudtrail.notifications.CloudtrailSNSNotificationParser.parse(CloudtrailSNSNotificationParser.java:36)
at
com.graylog2.input.cloudtrail.notifications.CloudtrailSQSClient.getNotifications(CloudtrailSQSClient.java:48)
at
com.graylog2.input.cloudtrail.CloudTrailSubscriber.run(CloudTrailSubscriber.java:80)
Caused by: com.fasterxml.jackson.core.JsonParseException: Unrecognized
token 'hi': was expecting ('true', 'false' or 'null')
at [Source: hi; line: 1, column: 5]
at
com.fasterxml.jackson.core.JsonParser._constructError(JsonParser.java:1487)
at
com.fasterxml.jackson.core.base.ParserMinimalBase._reportError(ParserMinimalBase.java:518)
at
com.fasterxml.jackson.core.json.ReaderBasedJsonParser._reportInvalidToken(ReaderBasedJsonParser.java:2299)
at
com.fasterxml.jackson.core.json.ReaderBasedJsonParser._handleOddValue(ReaderBasedJsonParser.java:1458)
at
com.fasterxml.jackson.core.json.ReaderBasedJsonParser.nextToken(ReaderBasedJsonParser.java:683)
at
com.fasterxml.jackson.databind.ObjectMapper._initForReading(ObjectMapper.java:3602)
at
com.fasterxml.jackson.databind.ObjectMapper._readMapAndClose(ObjectMapper.java:3547)
at
com.fasterxml.jackson.databind.ObjectMapper.readValue(ObjectMapper.java:2578)
at
com.graylog2.input.cloudtrail.notifications.CloudtrailSNSNotificationParser.parse(CloudtrailSNSNotificationParser.java:24)
... 2 more
I'm not that knowledgeable about AWS, but I can't see how it's not working.
It's dumping to the S3 bucket correctly within the AWS console. I have
given full access to the user.
Can anyone please tell me what wrong I have done?
--
You received this message because you are subscribed to the Google Groups
"Graylog Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
To view this discussion on the web visit
https://groups.google.com/d/msgid/graylog2/ff126254-37bf-4895-8a52-80b30e8ebc06%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
