Breadcrumbs

AWS CloudWatch Alarms API Collection

Amazon CloudWatch is a monitoring service for AWS cloud resources and the applications that run on AWS. Amazon CloudWatch can be used to collect and track metrics, collect and monitor log files, and set alarms. Amazon CloudWatch can monitor AWS resources such as Amazon EC2 instances, Amazon DynamoDB tables, and Amazon RDS DB instances, as well as custom metrics generated by your applications and services. This document explains how to configure the collection of CloudTrail events using the Web Console's cloud-to-cloud functionality and is available only to LRCloud customers.

Prerequisites

Before configuring collection from AWS, do the following:

  • Make sure that the customer is an LRCloud customer and has their environment hosted.

  • Ensure that you have a valid AWS Access Key and Secret Access Key.

Initialize the Logs Source

  1. Log in to the Web Console as a Restricted Administrator User.

  2. On the top navigation bar, click the Administration icon  image2022-8-16_21-7-13.png  and select Cloud Log Collection.

  3. At the top of the Cloud Log Collection page, click New Log Source.
    The New cloud log collection dialog box appears.

  4. Select the AWS CloudWatch Alarms SYSMON AGENT tile.
    The Add AWS CloudWatch Alarms Log Source window appears.
    cloudwatch.png

  5. Enter the following details:

    Setting

    Default Value

    Description

    Name

    Not applicable

    Enter the name for this log source.

    Description (Optional)

    Not applicable

    Enter a description for this log source.

    Region

    Not applicable

    Enter the endpoint region code for the specific AWS CloudTrail S3 bucket (for example, us-east-1). For more information, see CloudTrail Regions and Endpoints.

    Access Key ID

    Not applicable

    Enter the AWS Access Key ID (for example, AKIAIOSFODNN7EXAMPLE).

    Secret Key Access Key

    Not applicable

    Enter the AWS Secret Access Key (for example, wJalrXUtnFEMI/K7MDENG/bPxRfiCYEXAMPLEKEY).

    Collect CloudWatch Alarms

    true

    If you do not want to collect Cloud Watch Alarms data, set this value to false.

    Collect CloudWatch Logs

    true

    If you do not want to collect Cloud Watch Logs data, set this value to false.

    CloudWatchLogGroupPrefix

    all log groups

    Specify which Log Groups you want to collect logs from.


  6. Click Save.

A new active log source is created and accepted in the Client Console with the provided information. Collection should start automatically in few minutes.

The Platform Manager hosts all the log sources. It is recommended to create a new host entity and move the log source to the new host.

For security, the values entered are encrypted using LRCrypt.

Default Configuration Values for AWS CloudWatch Alarms Log Source

Setting

Default Value

APIPollingIntervalInMs

5000

APIRetryCount

3

MaxResultCount

50

MaxResultCountLogs

1000

StartupDelayInSeconds

30