Publishing database logs to Amazon CloudWatch Logs
In addition to viewing and downloading DB instance logs, you can publish logs to Amazon CloudWatch Logs. With CloudWatch Logs, you can perform real-time analysis of the log data, store the data in highly durable storage, and manage the data with the CloudWatch Logs Agent. AWS retains log data published to CloudWatch Logs for an indefinite time period unless you specify a retention period. For more information, see Change log data retention in CloudWatch Logs.
Configuring CloudWatch log integration
Before you enable log data publishing, make sure that you have a service-linked role in AWS Identity and Access Management (IAM). For more information about service-linked roles, see Using service-linked roles for Amazon Aurora.
To publish your database log files to CloudWatch Logs, choose which logs to publish. Make this choice in the Advanced Settings section when you create a new DB instance. You can also modify an existing DB instance to begin publishing.
After you have enabled publishing, Amazon Aurora continuously streams all of the DB instance log records to a log group. For example, you
have a log group /aws/rds/cluster/
for each type of log that you publish. This log group is in the same AWS Region as the database instance that
generates the log.cluster_name/log_type
After you have published log records, you can use CloudWatch Logs to search and filter the records. For more
information about searching and filtering logs, see Searching and filtering log data. For a
tutorial explaining how to monitor RDS logs, see Build proactive database monitoring for Amazon RDS with Amazon CloudWatch Logs, AWS Lambda, and Amazon
SNS
Engine-specific log information
For engine-specific information, see the following:
