Help
Lacework
Access helpful articles and other FAQs on Lacework
Kate_M
Community Manager
Community Manager

Created on ‎08-19-2024 02:41 AM

Article Id 334283

'Permission Denied' erorrs on CloudTrail Integration

Description You have set up a CloudTrail integration and are receiving 'permission denied' errors in the Lacework settings page
Scope  
Solution

 

Example Environment: AWS with CloudTrail configured 

Bucket resides in another account where the Lacework cross account role resides 

To check this go to the cloudtrail page.

 

The issue here is that the permission denied errors are likely coming from getBucketLocation calls made by Lacework 

https://docs.aws.amazon.com/AmazonS3/latest/API/API_GetBucketLocation.html

 

The call fails as the account calling is not the bucket owner account.
To remedy this, please ensure that the CloudTrail log bucket is in  the same account in which the Lacework Cross account role resides  

 Please reach out to Lacework support for some further guidance if needed.
69
0 Kudos
Suggest New Article
Article Feedback
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.