CfnLogAnomalyDetectorProps

class aws_cdk.aws_logs.CfnLogAnomalyDetectorProps(*, account_id=None, anomaly_visibility_time=None, detector_name=None, evaluation_frequency=None, filter_pattern=None, kms_key_id=None, log_group_arn_list=None)

Bases: object

Properties for defining a CfnLogAnomalyDetector.

Parameters:

  • account_id (Optional[str]) – The ID of the account to create the anomaly detector in.

  • anomaly_visibility_time (Union[int, float, None]) – The number of days to have visibility on an anomaly. After this time period has elapsed for an anomaly, it will be automatically baselined and the anomaly detector will treat new occurrences of a similar anomaly as normal. Therefore, if you do not correct the cause of an anomaly during the time period specified in AnomalyVisibilityTime , it will be considered normal going forward and will not be detected as an anomaly.

  • detector_name (Optional[str]) – A name for this anomaly detector.

  • evaluation_frequency (Optional[str]) – Specifies how often the anomaly detector is to run and look for anomalies. Set this value according to the frequency that the log group receives new logs. For example, if the log group receives new log events every 10 minutes, then 15 minutes might be a good setting for EvaluationFrequency .

  • filter_pattern (Optional[str]) – You can use this parameter to limit the anomaly detection model to examine only log events that match the pattern you specify here. For more information, see Filter and Pattern Syntax .

  • kms_key_id (Optional[str]) – Optionally assigns a AWS KMS key to secure this anomaly detector and its findings. If a key is assigned, the anomalies found and the model used by this detector are encrypted at rest with the key. If a key is assigned to an anomaly detector, a user must have permissions for both this key and for the anomaly detector to retrieve information about the anomalies that it finds. For more information about using a AWS KMS key and to see the required IAM policy, see Use a AWS KMS key with an anomaly detector .

  • log_group_arn_list (Optional[Sequence[str]]) – The ARN of the log group that is associated with this anomaly detector. You can specify only one log group ARN.

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-logs-loganomalydetector.html

ExampleMetadata:

fixture=_generated

Example:

# The code below shows an example of how to instantiate this type.
# The values are placeholders you should change.
from aws_cdk import aws_logs as logs

cfn_log_anomaly_detector_props = logs.CfnLogAnomalyDetectorProps(
    account_id="accountId",
    anomaly_visibility_time=123,
    detector_name="detectorName",
    evaluation_frequency="evaluationFrequency",
    filter_pattern="filterPattern",
    kms_key_id="kmsKeyId",
    log_group_arn_list=["logGroupArnList"]
)

Attributes

account_id

The ID of the account to create the anomaly detector in.

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-logs-loganomalydetector.html#cfn-logs-loganomalydetector-accountid

anomaly_visibility_time

The number of days to have visibility on an anomaly.

After this time period has elapsed for an anomaly, it will be automatically baselined and the anomaly detector will treat new occurrences of a similar anomaly as normal. Therefore, if you do not correct the cause of an anomaly during the time period specified in AnomalyVisibilityTime , it will be considered normal going forward and will not be detected as an anomaly.

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-logs-loganomalydetector.html#cfn-logs-loganomalydetector-anomalyvisibilitytime

detector_name

A name for this anomaly detector.

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-logs-loganomalydetector.html#cfn-logs-loganomalydetector-detectorname

evaluation_frequency

Specifies how often the anomaly detector is to run and look for anomalies.

Set this value according to the frequency that the log group receives new logs. For example, if the log group receives new log events every 10 minutes, then 15 minutes might be a good setting for EvaluationFrequency .

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-logs-loganomalydetector.html#cfn-logs-loganomalydetector-evaluationfrequency

filter_pattern

You can use this parameter to limit the anomaly detection model to examine only log events that match the pattern you specify here.

For more information, see Filter and Pattern Syntax .

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-logs-loganomalydetector.html#cfn-logs-loganomalydetector-filterpattern

kms_key_id

Optionally assigns a AWS KMS key to secure this anomaly detector and its findings.

If a key is assigned, the anomalies found and the model used by this detector are encrypted at rest with the key. If a key is assigned to an anomaly detector, a user must have permissions for both this key and for the anomaly detector to retrieve information about the anomalies that it finds.

For more information about using a AWS KMS key and to see the required IAM policy, see Use a AWS KMS key with an anomaly detector .

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-logs-loganomalydetector.html#cfn-logs-loganomalydetector-kmskeyid

log_group_arn_list

The ARN of the log group that is associated with this anomaly detector.

You can specify only one log group ARN.

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-logs-loganomalydetector.html#cfn-logs-loganomalydetector-loggrouparnlist