Hi team,
I've tried to run filebeat with the cisco module (umbrella) in the ECS task. The umbrella module is configured without access_key_id and secret_access_key. I think I can now achieve filebeat using the IAM role for ECS task, but it doesn't work. please let me know if I can use filebeat with the ECS task role?
umbrella module setting
- module: cisco
umbrella:
enabled: true
var.input: aws-s3
var.queue_url: ${SQS_URL:?SQS_URL is empty}
log
2022-07-05T02:14:14.372Z ERROR [input.aws-s3] awss3/collector.go:106 SQS ReceiveMessageRequest failed: IncompleteSignature: 'value>/20220705/ap-northeast-1/sqs/aws4_request' not a valid key=value pair (missing equal-sign) in Authorization header: 'AWS4-HMAC-SHA256 Credential=<no value>/20220705/ap-northeast-1/sqs/aws4_request, SignedHeaders=content-length;content-type;host;x-amz-date, Signature=XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX'.
filebeat version: 7.14.2