amazon cloudwatchlogs - Cloudtrail to Cloudwatch to other account -


i got 4 aws accounts, , want centralise logs single accounts security purposes.

meaning collect cloudwatch logs account prod, dev , perf account called logs. ideally end in cloudwatch in accounts logs, can process them elk.

i read here:

http://docs.aws.amazon.com/amazoncloudwatch/latest/logs/crossaccountsubscriptions.html

but can't find tutorial on how set whole stack.

any suggestions appreciated.

the thing different using cloudwatch logs in account credentials you'll need use.

i this; in logs account, create 3 iam users:

  • prod
  • dev
  • perf

give each of users necessary iam permissions write logs cloudwatch logs. also, create set of aws credentials 3 users use authenticate with.

then in application, depending on stack in, configure code use relevant credentials (i.e. dev, prod) write cloudwatch logs. difference should wherever in code create cloudwatch logs client. should pass client credentials relevant iam user "logs" account.

edit:

if you're using cloudwatch logs client, idea same. create users , instead give client relevant aws credentials. specify creds user logs account in /etc/awslogs/awslogs.conf. credentials use send logs cloudwatch in other account. process need follow documented in aws docs


Comments

Post a Comment

Popular posts from this blog

Command prompt result in label. Python 2.7 -

i want put result(output) of shell command label. command works, label shows "0", however, in command prompt, result shown correctly, need showed in label. doing ubuntu. myg1 = button(root, text="rodyti informacija", command=lambda: gauti()) myg1.pack(side=bottom) def gauti(): imti = tekstas.get("1.0", "end-1c") info = subprocess.call("id '{imti}' ".format(imti=imti), shell=true) w = label(root, text= info) w.pack(side = bottom) subprocess.call() returns exit code of process created (in case 0 success). if want text output of process, should instead call subprocess.check_output() .
Read more

javascript - How do I use URL parameters to change link href on page? -

i change href value of link using url parameters. example: default <a id="dlink" href="link-1">link</a> but, when user goes https://url.com/?dlink=link-2 it swaps out link new link <a id="dlink" href="link-2">link</a> first need value url. if you're not using javascript framework can create function using jquery. please check get url parameter jquery or how query string values in js it. after that, element "a" id , set value there. $("#dlink").attr("href", hreffromparam);
Read more

amazon web services - AWS Route53 Trying To Get Site To Resolve To www -

so have domain nameservers pointed aws route 53. site hosted on ec2 instance , reachable resolves site.com, if input www.site.com. i'm curious how site resolve www.site.com. have under route53 domains hosted zone 2 additional record sets outside of ns , soa: a site.com ec2 elastic ip cname www.site.com ec2 public dns i can reach site using both site.com , www.site.com, resolve site.com. there way make if enter either, resolves www.site.com? at first, both should record set. a site.com ec2 elastic ip www.site.com ec2 elastic ip and need redirect setting in web server (nginx, apache, ..) following. (source: how redirect www non-www nginx on centos 7 ) redirect non-www www if want redirect users plain, non-www domain www domain, add server block: server { server_name example.com; return 301 $scheme://www.example.com$request_uri; } save , exit. configures nginx redirect requests "example.com" "www.example.com". not...
Read more