elastic · chemamartinez · Jan 3, 2025 · Dec 18, 2024 · Dec 18, 2024 · Dec 24, 2024
@@ -61,7 +61,7 @@ The Amazon Security Lake integration collects logs from both [Third-party servic
       ![Role ARN and External ID](../img/role_arn_and_external_id.png)
 
 6. If you want to collect logs via AWS S3, then you have to put the following details:
-    - bucket arn
+    - bucket ARN or access point ARN
     - role ARN
     - external id
 

@@ -1,4 +1,9 @@
 # newer versions go on top
+- version: "2.3.0"
+  changes:
+    - description: Add support for Access Point ARN when collecting logs via the AWS S3 Bucket.
+      type: enhancement
+      link: https://github.com/elastic/integrations/pull/12154
 - version: "2.2.0"
   changes:
     - description: Add "preserve_original_event" tag to documents with `event.kind` manually set to "pipeline_error".

@@ -2,6 +2,8 @@
 
 {{#if bucket_arn}}
 bucket_arn: {{bucket_arn}}
+{{else if access_point_arn}}
+access_point_arn: {{access_point_arn}}
 {{/if}}
 {{#if number_of_workers}}
 number_of_workers: {{number_of_workers}}

@@ -61,7 +61,14 @@ streams:
         multi: false
         required: false
         show_user: true
-        description: ARN of the AWS S3 bucket that will be polled for list operation. It is a required parameter for collecting logs via the AWS S3 Bucket.
+        description: ARN of the AWS S3 bucket that will be polled for list operation. It is a required parameter for collecting logs via the AWS S3 Bucket unless you set an Access Point ARN.
+      - name: access_point_arn
+        type: text
+        title: "[S3] Access Point ARN"
+        multi: false
+        required: false
+        show_user: true
+        description: ARN of the AWS S3 Access Point that will be polled for list operation. This is an alternative to the Bucket ARN, one of them is required for collecting logs via the AWS S3 Bucket.
       - name: bucket_list_prefix
         type: text
         title: "[S3] Bucket Prefix"

@@ -61,7 +61,7 @@ The Amazon Security Lake integration collects logs from both [Third-party servic
       ![Role ARN and External ID](../img/role_arn_and_external_id.png)
 
 6. If you want to collect logs via AWS S3, then you have to put the following details:
-    - bucket arn
+    - bucket ARN or access point ARN
     - role ARN
     - external id
 

@@ -1,13 +1,13 @@
 format_version: "3.0.3"
 name: amazon_security_lake
 title: Amazon Security Lake
-version: "2.2.0"
+version: "2.3.0"
 description: Collect logs from Amazon Security Lake with Elastic Agent.
 type: integration
 categories: ["aws", "security"]
 conditions:
   kibana:
-    version: "^8.13.0"
+    version: "^8.16.2"
   elastic:
     subscription: basic
 screenshots:

@@ -1,4 +1,9 @@
 # newer versions go on top
+- version: "2.37.0"
+  changes:
+    - description: Add support for Access Point ARN when collecting logs via the AWS S3 Bucket.
+      type: enhancement
+      link: https://github.com/elastic/integrations/pull/12154
 - version: "2.36.2"
   changes:
     - description: Include pipeline test examples to accommodate the new Cloudtrail format for the `CreateGroup` and `UpdateGroup` event types.

@@ -2,6 +2,8 @@
 
 {{#if bucket_arn}}
 bucket_arn: {{bucket_arn}}
+{{else if access_point_arn}}
+access_point_arn: {{access_point_arn}}
 {{/if}}
 {{#if number_of_workers}}
 number_of_workers: {{number_of_workers}}

@@ -21,7 +21,14 @@ streams:
         multi: false
         required: false
         show_user: true
-        description: Mandatory if the "Collect logs via S3 Bucket" switch is on. It is a required parameter for collecting logs via the AWS S3 Bucket.
+        description: Mandatory if the "Collect logs via S3 Bucket" switch is on. It is a required parameter for collecting logs via the AWS S3 Bucket unless you set an Access Point ARN.
+      - name: access_point_arn
+        type: text
+        title: "[S3] Access Point ARN"
+        multi: false
+        required: false
+        show_user: true
+        description: This is an alternative to the Bucket ARN, one of them is required for collecting logs via the AWS S3 Bucket.
       - name: queue_url
         type: text
         title: "[SQS] Queue URL"

@@ -2,6 +2,8 @@
 
 {{#if bucket_arn}}
 bucket_arn: {{bucket_arn}}
+{{else if access_point_arn}}
+access_point_arn: {{access_point_arn}}
 {{/if}}
 {{#if number_of_workers}}
 number_of_workers: {{number_of_workers}}

@@ -20,7 +20,14 @@ streams:
         multi: false
         required: false
         show_user: true
-        description: Mandatory if the "Collect logs via S3 Bucket" switch is on. It is a required parameter for collecting logs via the AWS S3 Bucket.
+        description: Mandatory if the "Collect logs via S3 Bucket" switch is on. It is a required parameter for collecting logs via the AWS S3 Bucket unless you set an Access Point ARN.
+      - name: access_point_arn
+        type: text
+        title: "[S3] Access Point ARN"
+        multi: false
+        required: false
+        show_user: true
+        description: This is an alternative to the Bucket ARN, one of them is required for collecting logs via the AWS S3 Bucket.
       - name: bucket_list_prefix
         type: text
         title: "[S3] Bucket Prefix"

@@ -2,6 +2,8 @@
 
 {{#if bucket_arn}}
 bucket_arn: {{bucket_arn}}
+{{else if access_point_arn}}
+access_point_arn: {{access_point_arn}}
 {{/if}}
 {{#if number_of_workers}}
 number_of_workers: {{number_of_workers}}

@@ -20,7 +20,14 @@ streams:
         multi: false
         required: false
         show_user: true
-        description: Mandatory if the "Collect logs via S3 Bucket" switch is on. It is a required parameter for collecting logs via the AWS S3 Bucket.
+        description: Mandatory if the "Collect logs via S3 Bucket" switch is on. It is a required parameter for collecting logs via the AWS S3 Bucket unless you set an Access Point ARN.
+      - name: access_point_arn
+        type: text
+        title: "[S3] Access Point ARN"
+        multi: false
+        required: false
+        show_user: true
+        description: This is an alternative to the Bucket ARN, one of them is required for collecting logs via the AWS S3 Bucket.
       - name: queue_url
         type: text
         title: "[SQS] Queue URL"

@@ -2,6 +2,8 @@
 
 {{#if bucket_arn}}
 bucket_arn: {{bucket_arn}}
+{{else if access_point_arn}}
+access_point_arn: {{access_point_arn}}
 {{/if}}
 {{#if number_of_workers}}
 number_of_workers: {{number_of_workers}}

@@ -21,7 +21,14 @@ streams:
         multi: false
         required: false
         show_user: true
-        description: Mandatory if the "Collect logs via S3 Bucket" switch is on. It is a required parameter for collecting logs via the AWS S3 Bucket.
+        description: Mandatory if the "Collect logs via S3 Bucket" switch is on. It is a required parameter for collecting logs via the AWS S3 Bucket unless you set an Access Point ARN.
+      - name: access_point_arn
+        type: text
+        title: "[S3] Access Point ARN"
+        multi: false
+        required: false
+        show_user: true
+        description: This is an alternative to the Bucket ARN, one of them is required for collecting logs via the AWS S3 Bucket.
       - name: bucket_list_prefix
         type: text
         title: "[S3] Bucket Prefix"

@@ -2,6 +2,8 @@
 
 {{#if bucket_arn}}
 bucket_arn: {{bucket_arn}}
+{{else if access_point_arn}}
+access_point_arn: {{access_point_arn}}
 {{/if}}
 {{#if number_of_workers}}
 number_of_workers: {{number_of_workers}}

@@ -20,7 +20,14 @@ streams:
         multi: false
         required: false
         show_user: true
-        description: Mandatory if the "Collect logs via S3 Bucket" switch is on. It is a required parameter for collecting logs via the AWS S3 Bucket.
+        description: Mandatory if the "Collect logs via S3 Bucket" switch is on. It is a required parameter for collecting logs via the AWS S3 Bucket unless you set an Access Point ARN.
+      - name: access_point_arn
+        type: text
+        title: "[S3] Access Point ARN"
+        multi: false
+        required: false
+        show_user: true
+        description: This is an alternative to the Bucket ARN, one of them is required for collecting logs via the AWS S3 Bucket.
       - name: bucket_list_prefix
         type: text
         title: "[S3] Bucket Prefix"

@@ -2,6 +2,8 @@
 
 {{#if bucket_arn}}
 bucket_arn: {{bucket_arn}}
+{{else if access_point_arn}}
+access_point_arn: {{access_point_arn}}
 {{/if}}
 {{#if number_of_workers}}
 number_of_workers: {{number_of_workers}}

@@ -21,7 +21,14 @@ streams:
         multi: false
         required: false
         show_user: true
-        description: Mandatory if the "Collect logs via S3 Bucket" switch is on. It is a required parameter for collecting logs via the AWS S3 Bucket.
+        description: Mandatory if the "Collect logs via S3 Bucket" switch is on. It is a required parameter for collecting logs via the AWS S3 Bucket unless you set an Access Point ARN.
+      - name: access_point_arn
+        type: text
+        title: "[S3] Access Point ARN"
+        multi: false
+        required: false
+        show_user: true
+        description: This is an alternative to the Bucket ARN, one of them is required for collecting logs via the AWS S3 Bucket.
       - name: queue_url
         type: text
         title: "[SQS] Queue URL"

@@ -2,6 +2,8 @@
 
 {{#if bucket_arn}}
 bucket_arn: {{bucket_arn}}
+{{else if access_point_arn}}
+access_point_arn: {{access_point_arn}}
 {{/if}}
 {{#if number_of_workers}}
 number_of_workers: {{number_of_workers}}

@@ -20,7 +20,14 @@ streams:
         multi: false
         required: false
         show_user: true
-        description: Mandatory if the "Collect logs via S3 Bucket" switch is on. It is a required parameter for collecting logs via the AWS S3 Bucket.
+        description: Mandatory if the "Collect logs via S3 Bucket" switch is on. It is a required parameter for collecting logs via the AWS S3 Bucket unless you set an Access Point ARN.
+      - name: access_point_arn
+        type: text
+        title: "[S3] Access Point ARN"
+        multi: false
+        required: false
+        show_user: true
+        description: This is an alternative to the Bucket ARN, one of them is required for collecting logs via the AWS S3 Bucket.
       - name: bucket_list_prefix
         type: text
         title: "[S3] Bucket Prefix"

@@ -2,6 +2,8 @@
 
 {{#if bucket_arn}}
 bucket_arn: {{bucket_arn}}
+{{else if access_point_arn}}
+access_point_arn: {{access_point_arn}}
 {{/if}}
 {{#if number_of_workers}}
 number_of_workers: {{number_of_workers}}

@@ -136,7 +136,14 @@ streams:
         multi: false
         required: false
         show_user: true
-        description: It is a required parameter for collecting logs via the AWS S3 Bucket.
+        description: Mandatory if the "Collect logs via S3 Bucket" switch is on. It is a required parameter for collecting logs via the AWS S3 Bucket unless you set an Access Point ARN.
+      - name: access_point_arn
+        type: text
+        title: "[S3] Access Point ARN"
+        multi: false
+        required: false
+        show_user: true
+        description: This is an alternative to the Bucket ARN, one of them is required for collecting logs via the AWS S3 Bucket.
       - name: bucket_list_prefix
         type: text
         title: "[S3] Bucket Prefix"

@@ -2,6 +2,8 @@
 
 {{#if bucket_arn}}
 bucket_arn: {{bucket_arn}}
+{{else if access_point_arn}}
+access_point_arn: {{access_point_arn}}
 {{/if}}
 {{#if number_of_workers}}
 number_of_workers: {{number_of_workers}}

@@ -143,7 +143,14 @@ streams:
         multi: false
         required: false
         show_user: true
-        description: Mandatory if the "Collect logs via S3 Bucket" switch is on. It is a required parameter for collecting logs via the AWS S3 Bucket.
+        description: Mandatory if the "Collect logs via S3 Bucket" switch is on. It is a required parameter for collecting logs via the AWS S3 Bucket unless you set an Access Point ARN.
+      - name: access_point_arn
+        type: text
+        title: "[S3] Access Point ARN"
+        multi: false
+        required: false
+        show_user: true
+        description: This is an alternative to the Bucket ARN, one of them is required for collecting logs via the AWS S3 Bucket.
       - name: bucket_list_prefix
         type: text
         title: "[S3] Bucket Prefix"

@@ -2,6 +2,8 @@
 
 {{#if bucket_arn}}
 bucket_arn: {{bucket_arn}}
+{{else if access_point_arn}}
+access_point_arn: {{access_point_arn}}
 {{/if}}
 {{#if number_of_workers}}
 number_of_workers: {{number_of_workers}}

@@ -20,7 +20,14 @@ streams:
         multi: false
         required: false
         show_user: true
-        description: Mandatory if the "Collect logs via S3 Bucket" switch is on. It is a required parameter for collecting logs via the AWS S3 Bucket.
+        description: Mandatory if the "Collect logs via S3 Bucket" switch is on. It is a required parameter for collecting logs via the AWS S3 Bucket unless you set an Access Point ARN.
+      - name: access_point_arn
+        type: text
+        title: "[S3] Access Point ARN"
+        multi: false
+        required: false
+        show_user: true
+        description: This is an alternative to the Bucket ARN, one of them is required for collecting logs via the AWS S3 Bucket.
       - name: bucket_list_prefix
         type: text
         title: "[S3] Bucket Prefix"

@@ -2,6 +2,8 @@
 
 {{#if bucket_arn}}
 bucket_arn: {{bucket_arn}}
+{{else if access_point_arn}}
+access_point_arn: {{access_point_arn}}
 {{/if}}
 {{#if number_of_workers}}
 number_of_workers: {{number_of_workers}}

@@ -21,7 +21,14 @@ streams:
         multi: false
         required: false
         show_user: true
-        description: Mandatory if the "Collect logs via S3 Bucket" switch is on. It is a required parameter for collecting logs via the AWS S3 Bucket.
+        description: Mandatory if the "Collect logs via S3 Bucket" switch is on. It is a required parameter for collecting logs via the AWS S3 Bucket unless you set an Access Point ARN.
+      - name: access_point_arn
+        type: text
+        title: "[S3] Access Point ARN"
+        multi: false
+        required: false
+        show_user: true
+        description: This is an alternative to the Bucket ARN, one of them is required for collecting logs via the AWS S3 Bucket.
       - name: queue_url
         type: text
         title: "[SQS] Queue URL"

@@ -2,6 +2,8 @@
 
 {{#if bucket_arn}}
 bucket_arn: {{bucket_arn}}
+{{else if access_point_arn}}
+access_point_arn: {{access_point_arn}}
 {{/if}}
 {{#if number_of_workers}}
 number_of_workers: {{number_of_workers}}

@@ -20,7 +20,14 @@ streams:
         multi: false
         required: false
         show_user: true
-        description: Mandatory if the "Collect logs via S3 Bucket" switch is on. It is a required parameter for collecting logs via the AWS S3 Bucket.
+        description: Mandatory if the "Collect logs via S3 Bucket" switch is on. It is a required parameter for collecting logs via the AWS S3 Bucket unless you set an Access Point ARN.
+      - name: access_point_arn
+        type: text
+        title: "[S3] Access Point ARN"
+        multi: false
+        required: false
+        show_user: true
+        description: This is an alternative to the Bucket ARN, one of them is required for collecting logs via the AWS S3 Bucket.
       - name: bucket_list_prefix
         type: text
         title: "[S3] Bucket Prefix"

@@ -1,7 +1,7 @@
 format_version: 3.0.0
 name: aws
 title: AWS
-version: 2.36.2
+version: 2.37.0
 description: Collect logs and metrics from Amazon Web Services (AWS) with Elastic Agent.
 type: integration
 categories:
@@ -10,7 +10,7 @@ conditions:
   elastic:
     subscription: basic
   kibana:
-    version: "^8.16.0"
+    version: "^8.16.2"
 screenshots:
   - src: /img/metricbeat-aws-overview.png
     title: metricbeat aws overview