Select Page

AWS Cloudwatch

Welcome Forums Integrations AWS Cloudwatch

This topic contains 0 replies, has 1 voice, and was last updated by Charles Herring Charles Herring 3 months, 2 weeks ago.

Viewing 1 post (of 1 total)
  • Author
    Posts
  • #2122
    Charles Herring
    Charles Herring
    Keymaster

    – To integrate Cloudwatch with Precinct, we need to create Access Keys (see: https://docs.aws.amazon.com/general/latest/gr/aws-sec-cred-types.html)
    – The Access Keys need the following permissions:
    o CloudTrailAgentServerPolicy
    o CloudWatchAgentServerPolicy
    – Plug the Access key into the WitFoo Precinct UI at Admin -> Settings -> Integrations -> AWS Cloudwatch

    As a quick overview, logging follows this workflow:
    – The AWS Network logs communications to Cloudwatch in Cloudtrail format. This is enabled by default.
    – Cloudwatch agents on servers send logs to Cloudwatch (see: https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/install-CloudWatch-Agent-commandline-fleet.html)
    o Be sure to note that if you enable new services (Apache, Mail, etc), the Cloudwatch configuration needs to be enabled for those services.
    – Precinct will make an API call to Cloudwatch using the integration above to ingest and analyze all of those records.

Viewing 1 post (of 1 total)

You must be logged in to reply to this topic.