...
| Code Block |
|---|
"Action": [
"autoscaling:DescribeAutoScalingGroups",
"acm:ListCertificates",
"acm:ListTagsForCertificate",
"apigateway:GET",
"athena:ListWorkGroups",
"athena:ListTagsForResource",
"autoscaling:DescribeAutoScalingGroups",
"cloudwatch:ListMetrics",
"cloudwatch:GetMetricStatistics",
"dynamodb:ListTables",
"dynamodb:DescribeTable",
"dynamodb:ListTagsOfResource",
"ec2:DescribeInstances",
"ec2:DescribeInstanceStatus",
"ec2:DescribeSecurityGroups",
"ec2:DescribeNatGateways",
"ec2:DescribeVolumes",
"ecs:ListClusters",
"ecs:ListContainerInstances",
"ecs:ListServices",
"ecs:DescribeContainerInstances",
"ecs:DescribeServices",
"ecs:ListTagsForResource",
"elasticache:DescribeCacheClusters",
"elasticache:ListTagsForResource",
"elasticfilesystem:DescribeFileSystems",
"elasticfilesystem:DescribeBackupPolicy",
"elasticloadbalancing:DescribeTags",
"elasticloadbalancing:DescribeLoadBalancers",
"es:ListDomainNames",
"es:DescribeDomains",
"es:ListTags",
"events:ListRules",
"events:ListTagsForResource",
"events:ListEventBuses",
"firehose:DescribeDeliveryStream",
"firehose:ListDeliveryStreams",
"firehose:ListTagsForDeliveryStream",
"fsx:DescribeFileSystems",
"fsx:ListTagsForResource",
"glue:ListJobs",
"glue:GetTags",
"kafka:ListTagsForResource",
"kafka:ListClustersV2",
"kinesis:ListStreams",
"kinesis:ListTagsForStream",
"kinesis:DescribeStream",
"lambda:GetPolicy",
"lambda:List*",
"lambda:ListTags",
"logs:DescribeLogGroups",
"logs:ListTagsForResource",
"mq:ListBrokers",
"mq:DescribeBroker",
"rds:DescribeDBInstances",
"rds:ListTagsForResource",
"rds:DescribeEvents",
"redshift:DescribeClusters",
"redshift:DescribeTags",
"route53:ListHealthChecks",
"route53:ListTagsForResource",
"s3:ListAllMyBuckets",
"s3:GetBucketTagging",
"sns:ListTagsForResource",
"sns:ListTopics",
"sqs:ListQueues",
"sqs:ListQueueTags",
"wafv2:ListWebACLs",
"wafv2:ListRuleGroups",
"wafv2:ListTagsForResource"
] |
...
There is an option to get the Cloudtrail events as logs and ingested by Kloudfuse. Please refer to https://docs.aws.amazon.com/awscloudtrail/latest/userguide/send-cloudtrail-events-to-cloudwatch-logs.html and you can add a CloudWatch logs subscription for the log group as described above.
Supported AWS Component
Component
Namespace
Component | Namespace | Dashboards | Alerts | ||||||
|---|---|---|---|---|---|---|---|---|---|
Autoscaling Group | AWS/AutoScaling | Yes | |||||||
AmazonMQ (ActiveMQ) | AWS/AmazonMQ | Yes | |||||||
AmazonMQ (RabbitMQ) | AWS/AmazonMQ | Coming soon | |||||||
ApplicationELB | AWS/ELBV2 | Yes | |||||||
ACM | AWS/CertificateManager | Yes | |||||||
Route53 | AWS/Route53 | No | |||||||
EBS | AWS/EBS | Yes | |||||||
EC2 | AWS/EC2 | Yes | Yes | ||||||
EFS | Yes | ElastiCache (Memcache) | Yes | ElasticCache (Redis) | Coming soon | ELB | Yes | Firehose | Yes |
Lambda | Yes | Yes | NetworkELB | Yes | |||||
RDS | Yes | Yes | Redshift | Yes | S3 | Yes | SNS | Yes | |
SQS | Yes | Yes | OpenSearch | Yes | DynamoDB | Yes | API Gateway | Yes | Glue | Yes | Athena | Yes | ECS | Yes | EventBridge | Yes | Kafka | Yes | Log Groups | NA | WAF | Yes |
AWS Namespaces
AWS/EFS | Yes | |
ElastiCache (Memcache) | AWS/ |
ElastiCache |
ApplicationELB
AWS/ApplicationELB
Yes | |
ElasticCache (Redis) | AWS/ |
ElastiCache |
Coming soon | |
AWS/ |
EBS
AWS/EBS
EC2
AWS/EC2
EFS
AWS/EFS
NATGateway | AWS/ |
EC2 | No | ||
ELB | AWS/ELB | Yes | |
Firehose | AWS/Firehose | Yes | |
Lambda | AWS/Lambda | Yes | Yes |
NetworkELB | AWS/ |
ELBV2 | Yes | ||
RDS | AWS/RDS | Yes | Yes |
Redshift | AWS/Redshift | Yes | |
S3 | AWS/S3 | Yes | |
SNS | AWS/SNS | Yes | |
SQS | AWS/SQS | Yes | Yes |
OpenSearch | AWS/ES | Yes | |
DynamoDB | AWS/DynamoDB | Yes | |
API Gateway | AWS/ApiGateway | Yes | |
Glue | AWS/Glue | Yes | |
Athena | AWS/Athena | Yes | |
ECS | AWS/ECS | Yes | |
EventBridge | AWS/Events | Yes | |
Kafka | AWS/Kafka |
Yes | |
Log Groups | AWS/ |
Logs | NA | |
WAF | AWS/ |
WAFV2 | Yes |
See also Collecting AWS Events with EventBridge.