Skip to content

AWS CloudWatch

Cyderes supports the ingestion of AWS CloudWatch logs via an S3 Bucket

CloudWatch collects monitoring and operational data in the form of logs, metrics, and events, providing unified view of AWS resources, applications, and services that run on AWS and on-premises servers.

Chronicle Data Types

  • AWS_CLOUDWATCH

Configuration

  1. Create a new S3 bucket for the CloudTrail logs to be stored in. A pre-existing S3 bucket may also be used. This guide AWS Guide can be followed.
  2. Follow this AWS Guide to set up CloudWatch logging to the S3 bucket
  3. Confirm CloudWatch logs are flowing into the S3 bucket
  4. Follow the AWS S3 Bucket guide to create an IAM user for Cyderes that can access the S3 bucket
  5. Provide the authentication information to Cyderes as directed by the AWS S3 Bucket Guide