成本按IAM角色拆分

huangapple go评论60阅读模式
英文:

Cost Breakdown by IAM Role

问题

我们正在使用多项服务,这些服务通过IAM角色和凭据从AWS S3访问数据。我们希望能够按IAM角色对数据传输的成本进行详细分解。是否有一种方法可以按IAM角色来获取成本分解?或者,如何找到由AWS计费的数据传输的API调用的最佳方法是什么。

尝试的方法
我们尝试使用成本资源管理器,但没有按IAM角色/API密钥分解的选项。
查看了GET请求的服务器日志,但不清楚哪些调用会计费。
查看了使用报告。可以大致了解计费金额,但无法确定是哪个服务发出了这些请求。

英文:

We are using a number of services which are accessing data from AWS S3 via IAM Roles and Credentials. We are looking to get a breakdown of the costs by each IAM role for the data transfer. Is there a way to get a breakdown of costs by the IAM role? Alternatively, what would be the best way to find the API calls that are billed by AWS for data transfer.

Methods Tried
We have tried to use Cost Explorer but no options for breakdown by IAM Role/API Key
Looked at Server logs for GET requests but unclear as to which calls are being billed
Looked at Usage reports. Can figure out ~how much is billed but again can't tell which service is issuing the requests.

答案1

得分: 0

AWS中的资源与AWS帐户相关联。

当启动资源时,IAM将确认IAM用户/IAM角色是否具有启动资源的权限。但是,一旦资源启动,它将与AWS帐户相关联,而不是启动资源的实体。

因此,无法跟踪由启动资源的实体或使用资源的实体产生的费用。

最接近的选项是为资源添加标签,然后按标签拆分计费记录。

英文:

Resources in AWS are associated with an AWS Account.

When a resource is launched, IAM will confirm whether the IAM User / IAM Role has permission to launch the resource. However, once the resource is launched it is associated with the AWS Account, not the entity that launched the resource.

Therefore, it is not possible to track charges by the entity that launched the resources, or used the resources.

The closest option is to add tags to resources and split the billing records by Tag.

huangapple
  • 本文由 发表于 2023年3月7日 04:42:14
  • 转载请务必保留本文链接:https://go.coder-hub.com/75655635.html
匿名

发表评论

匿名网友

:?: :razz: :sad: :evil: :!: :smile: :oops: :grin: :eek: :shock: :???: :cool: :lol: :mad: :twisted: :roll: :wink: :idea: :arrow: :neutral: :cry: :mrgreen:

确定