AWS CloudWatch integration with Elastic using Elastic Agent

zmoog · June 30, 2022, 1:49pm

Hey @JypraGroup, if you're going to use CloudWatch metrics and logs. here's the IAM policy tailored to support both CloudWatch Metrics and Logs:

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Sid": "VisualEditor0",
            "Effect": "Allow",
            "Action": [
                "cloudwatch:GetMetricData",
                "cloudwatch:ListMetrics",
                "iam:ListAccountAliases",
                "ec2:DescribeRegions",
                "tag:GetResources",
                "logs:FilterLogEvents",
                "logs:DescribeLogGroups",
                "sts:GetCallerIdentity"
            ],
            "Resource": "*"
        }
    ]
}

I forgot to mention that Filebeat and Metricbeat ^[1] documentation lists the permissions required for each module (and then integration):

The current version of the Elastic Agent orchestrates both Metricbeat and Filebeat behind the scenes to get its job done. This is going to change in future releases. ↩︎

Topic		Replies	Views
Collect logs from Amazon CloudWatch with Elastic Agent Beats elastic-stack-monitoring , elastic-stack-security , fleet , elastic-agent	3	1213	May 16, 2022
How to integrate AWS Lambda with plugin Elastic Beats functionbeat	34	3149	July 21, 2022
AWS integration with Elasticsearch Beats filebeat , integrations	6	619	June 22, 2022
Elastic Agent : AWS CloudWatch Fleet Integration Fail with RequestCanceledError Beats fleet	3	994	August 19, 2022
Metricbeat AWS module Beats metricbeat	4	373	January 26, 2021

AWS CloudWatch integration with Elastic using Elastic Agent

Related topics