This message was deleted.
# generals
sparse-intern-71089
10/31/2022, 7:45 PMThis message was deleted.
s
salmon-motherboard-78006
10/31/2022, 9:07 PMlooked into my sg outbound rules and looks like all ports are enabled:
salmon-motherboard-78006
10/31/2022, 11:57 PMlooks like creating log groups was failing
salmon-motherboard-78006
10/31/2022, 11:57 PMwas missing this in the kms key:
Copy code
{
"Effect": "Allow",
"Principal": {
"Service": "<http://logs.us-west-2.amazonaws.com|logs.us-west-2.amazonaws.com>"
},
"Action": [
"kms:Encrypt*",
"kms:Decrypt*",
"kms:ReEncrypt*",
"kms:GenerateDataKey*",
"kms:Describe*"
],
"Resource": "*",
"Condition": {
"ArnLike": {
"kms:EncryptionContext:aws:logs:arn": "arn:aws:logs:us-west-2:*:*"
}
}
}13 Views