Centralized Logging on AWS
Centralized Logging on AWS

AWS CloudFormation Templates

This solution uses AWS CloudFormation to automate the deployment of a centralized logging solution on the AWS Cloud. It includes the following AWS CloudFormation template, which you can download before deployment:


          Centralized logging view primary template button
        centralized-logging-primary.template: Use this template to launch the centralized logging solution and all associated components. The default configuration deploys an Amazon Elasticsearch Service domain, an Amazon Virtual Private Cloud (Amazon VPC) network topology, Amazon Elastic Compute Cloud (Amazon EC2) instances with Nginx proxy, and an Application Load Balancer. The solution offers three deployment size options based on logging requirements, but you can also customize the template based on your specific needs.


        Centralized logging view spoke template button
      centralized-logging-spoke.template: Use this template to configure permissions for managing logs in secondary accounts. This template launches an AWS Lambda function that assumes the AWS Identity and Access Management (IAM) master role from the primary account to index logs on the Amazon ES domain.


        Centralized logging view demo template button
      centralized-logging-demo.template: Use this template to launch sample logs you can use for testing purposes. The default configuration deploys an Amazon EC2 instance with a reference Apache server in an Amazon VPC, an Amazon Simple Storage Service (Amazon S3) bucket, an AWS CloudTrail trail, and VPC flow logs. You can customize the template based on your specific needs.