AWS CloudWatch Collector (Beta)
Legal
The AWS CloudWatch collector is provided by ScienceLogic with the following terms:
You may use, modify, reproduce, and distribute this freely and without restriction, provided as a condition of our provision to use the software you acknowledge that the software is provided as-is, and ScienceLogic will not have any monetary liability in association with the distribution of this software.
Overview
The Skylar Automated RCA CloudWatch collector ze-cloudwatch (Lambda function for Amazon Web Services) sends logs to Skylar Automated RCA for automated anomaly detection. The Skylar Automated RCA GitHub repository is located here: https://github.com/zebrium/ze-cloudwatch.
This feature is currently Beta. For access to this collector, contact Skylar Automated RCA at support@sciencelogic.com.
Preparation
- Download the Skylar Automated RCA CloudWatch Lambda function package from https://github.com/zebrium/ze-cloudwatch/releases/download/1.47.0/zebrium_cloudwatch-1.47.0.zip.
- If you have an existing Lambda function associated with the log group to be set up, you must go to AWS CloudWatch page and delete the existing subscription filter. If not, you will get the following error message: "An error occurred when creating the trigger: The log group host-log already has an enabled subscription filter associated with it."
- If you do not have an existing role with Lambda execution permission, you should got to the AWS IAM service to create a role for running Lambda functions.
Installation
You will need to create a new Lambda function and then edit the function details.
- Create a new Lambda function by going to the to AWS Lambda page.
- Select Author from scratch.
- Provide the following base information:
- Function Name: zebrium-cloudwatch
- Runtime: Node.js.12.x
- Click Create function.
- To edit the function details, go to the Code entry type drop-down menu and choose Upload a .zip file.
- Upload the Skylar Automated RCA Lambda function package file that you just downloaded.
- Enter "index.handler" for Handler setting.
- Choose Node.js.12.x for Runtime.
- For Execution role, choose an existing role with Lambda execution permission.
- Click on Designer and click on Add a trigger.
- Type CloudWatch Logs and choose your log group.
- Set the following environment variables:
- ZE_DEPLOYMENT_NAME: Deployment name (Required)
- ZE_HOST: Alternative Host Name (Optional)
- ZE_LOG_COLLECTOR_URL: ZAPI URL
- ZE_LOG_COLLECTOR_TOKEN: Auth token
- Click Skylar Automated RCA web portal in a couple of minutes. to save your new Lambda function. New logs should appear on the
Configuration
No additional configuration is required.
Setup
No additional setup is required.
Testing Your Installation
After the collector has been deployed in your CloudWatch environment, your logs and anomaly detection will be available in the Skylar Automated RCA user interface.