DAY 11 – Hybrid Cloud- AWS LogAgent for CloudWachLogs
☁️100 days of Cloud- Day Eleven
✅Connect with me on Twitter
🤝🏽Connect with me on Linkedin
Tweet This Blog – 100 days of Cloud on GitHub – Read On iCTPro.co.nz
CloudWatch Logs agent – Helps to send Logs automatically flow from the instance to the log stream. The agent confirms that it has started and it stays running until you disable it.
IAM User – Programmatic access
Create a IAM user with programmatic access to CloudWatch. Make sure you give least privilege. We need access to deliver logs, create a log group & create log stream. Use the Policy shown below. Note down the AWS Programmatic access Key . Consider adding as IAM Role if its an EC2.
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": [
"logs:CreateLogGroup",
"logs:CreateLogStream",
"logs:PutLogEvents",
"logs:DescribeLogStreams"
],
"Resource": [
"*"
]
}
]
}
Installing AWS Log Agent
- SSH into your System , use PuTTY
- once you log in update OS, here for demo purpose am using a server which is Debian based.
sudo apt-get update -y
- Install python if your server does not have Python.
sudo apt-get install python
- Download log Agent
curl https://s3.amazonaws.com/aws-cloudwatch/downloads/latest/awslogs-agent-setup.py -O
- Install agent , make sure you add your ec2 region
sudo python ./awslogs-agent-setup.py --region ap-southeast-2
- Once installation Start, it will prompt you to enter AWS CLI access
![Image awskey](https://res.cloudinary.com/practicaldev/image/fetch/s--q5NipF6A--/c_limit%2Cf_auto%2Cfl_progressive%2Cq_auto%2Cw_880/https://dev-to-uploads.s3.amazonaws.com/uploads/articles/s9uo5ni0ikkn2oced45o.png)
- Configuring the CloudWatch Logs Agent
![Image AgentConfig](https://res.cloudinary.com/practicaldev/image/fetch/s--94Dh6jCQ--/c_limit%2Cf_auto%2Cfl_progressive%2Cq_auto%2Cw_880/https://dev-to-uploads.s3.amazonaws.com/uploads/articles/zur16bwchi8d0vstyenn.png)
Verify Logs
- Goto Cloud watch dashboard from your console Click on to Log groups.
- You will be able to your log group, here for instance we named it as Ec2-Log-Group.Click on name.
- if you scroll down you will be able to see the log stream with your AMI ID. Click to view the Logs.
![Image logs](https://res.cloudinary.com/practicaldev/image/fetch/s--a_P8q70R--/c_limit%2Cf_auto%2Cfl_progressive%2Cq_auto%2Cw_880/https://dev-to-uploads.s3.amazonaws.com/uploads/articles/w1uqai8bv15r1incq1ve.png)
Now you can create specific metric according to your requirement and create alarm or deliver it to your dashboard to view events.
🎉Congratulations🎉 you have successfully configured CloudWatch Log Agent to deliver logs to Log Stream.