ELK: AWS CloudTrail PowerPack Release Notes, version 101

Version 101 of the ELK: AWS CloudTrail PowerPack includes several updates to the "ELK: AWS CloudTrail" and "ELK: AWS CloudTrail EC2 Stats" Dynamic Applications.

  • Minimum Required SL1 Version: 8.7.1.2

Before You Install or Upgrade

Ensure that you are running version 8.7.1.2 or later of SL1 before installing "ELK: AWS CloudTrail PowerPack version 101.

For details on upgrading SL1, see the relevant SL1 Platform Release Notes.

Installation or Upgrade Process

To install version 101 of the ELK: AWS CloudTrail PowerPack, perform the following steps:

To install this PowerPack:

  1. Familiarize yourself with the Known Issues for this release.
  2. See the Before You Install or Upgrade section. If you have not done so already, upgrade your system to the 8.7.1.2 or later release.
  3. Download the "ELK: AWS CloudTrail " version 101PowerPack from the Support Site to a local computer.
  4. Go to the PowerPack Manager page (System > Manage > PowerPacks). Click the Actions menu and choose Import PowerPack. When prompted, import "ELK: AWS CloudTrail " version 101.
  5. Click the Install button. For details on installing PowerPacks, see the chapter on Installing a PowerPack in the PowerPacks manual.

See the manual Monitoring AWS ELK Stacks for instructions on using the new PowerPack.

Features

This release includes the following features:

  • Dynamic Applications that align to AWS component devices in ELK stacks and then monitor CloudTrail logs and states changes on EC2 instances

  • An Event Policy that notifies users when the ELK Dynamic Applications have aligned to AWS components
  • A sample Credential that you can use to create Basic/Snippet credentials to monitor AWS ELK stacks.
  • Run Book Policies/Actions that align the ELK Dynamic Applications to AWS components and update the alignment status on the ScienceLogicData Collector or All-In-One Appliance.

Enhancements and Issues Addressed

The following enhancements and addressed issues are included in version 101 of the "ELK: AWS CloudTrail " PowerPack:

  • The following updates were made to the "ELK: AWS CloudTrail" and "ELK: AWS CloudTrail EC2 Stats" Dynamic Applications:
  • Headers were added to the Dynamic Applications' snippets.
  • The Dynamic Applications were updated to ensure that request errors appear in the Device Log.
  • The Dynamic Applications' Performance reports were updated to ensure that the correct number of events are reported for all virtual machines.
  • The cache mechanism was improved to ensure that entries are created per region.
  • The "ELK: AWS CloudTrail EC2 Stats" Dynamic Application was also updated to check for data from the previous hour to avoid potential lost or double events.

Known Issues

This release has no known issues.