Logging and monitoring in AWS Diagnostic Tools

AWS Diagnostic Tools provides logging and monitoring capabilities to help users track and analyze the actions taken within the service. This includes integrating with AWS CloudTrail to log API calls, and using Amazon CloudWatch to collect and analyze service metrics. The service also retains tool output data for up to 30 days.

CloudTrail

AWS Diagnostic Tools integrates with AWS CloudTrail, which is a service that provides a record of actions that were taken in Diagnostic Tools by a user, a role, or another AWS service. This includes actions from the Diagnostic Tools console and programmatic calls to Diagnostic Tools API operations. By using the information collected by CloudTrail, you can determine which requests were made to Diagnostic Tools. For each request, you can identify when it was made, the IP address from which it was made, who made it, and additional details. For more information, see Logging Diagnostic Tools API calls with AWS CloudTrail.

CloudWatch

You can use Amazon CloudWatch to collect, view, and analyze several Service Quotas metrics related to the Diagnostic Tools service running on your account. You can use Amazon CloudWatch to create alarms that notify you if the value for Service Quotas metrics captured by CloudWatch meet or exceed certain conditions or is within or exceeds a threshold that you define. If you create an alarm, you can configure CloudWatch to send a notification to an Amazon Simple Notification Service (Amazon SNS) topic that you specify.

Tool output data retention

Tool output generated by the Diagnostic Tools service is stored in the Output destination you select at the time of running a tool. All tool output is retained for up to 30 days since the tool was run and cannot be restored.