Centralized Logging on AWS

Collect, analyze, and display Amazon CloudWatch Logs in a single dashboard

Centralized Logging on AWS will be deprecated on March 1, 2024. It is being superseded by the Centralized Logging with OpenSearch solution. After deprecation, all existing deployments will continue to work but the solution will no longer be supported and maintained. If you’re not using GovCloud region deployments, we highly recommend migrating to version 2.0.0 or newer of the Centralized Logging with OpenSearch solution by following the steps outlined in the Centralized Logging on AWS implementation guide.

Overview

The Centralized Logging on AWS solution helps organizations collect, analyze, and display Amazon CloudWatch Logs in a single dashboard. This solution consolidates, manages, and analyzes log files from various sources, such as such as audit logs for access, configuration changes, and billing events. You can also collect Amazon CloudWatch Logs from multiple accounts and AWS Regions.

This solution uses Amazon OpenSearch Service and Kibana, an analytics and visualization platform that is integrated with Amazon OpenSearch Service, that results in a unified view of all the log events. In combination with other AWS managed services, this solution provides you with a turnkey environment to begin logging and analyzing your AWS environment and applications.

Supported log formats include Amazon VPC Flow Logs, AWS CloudTrail, AWS Lambda, Common Log Format, Space Delimited, JSON, Apache web server logs, and other (user defined) formats.

Benefits

Use this solution out-of-the box, or build and customize

The AWS CloudFormation template automatically launches and configures the components necessary to upload log files from multiple accounts and AWS Regions to Amazon OpenSearch Service for analysis and visualization in a customizable, user-friendly dashboard.

Access to your dashboards using Amazon Cognito

Control access to your dashboards using Amazon Cognito to simplify authentication to Amazon OpenSearch Service.

Logging capabilities beyond default AWS service logs

Extend your logging capabilities beyond default AWS service logs. This flexible solution includes examples for capturing host-level log files and VPC flow logs, and is designed to scale with your growing business.

Data visualization using built-in Amazon OpenSearch Service support

Simplify data visualization using built-in Amazon OpenSearch Service support for Kibana, including a default set of preconfigured dashboards that give you a first glimpse into the customization capabilities of Kibana.

Technical details

The Centralized Logging on AWS solution contains the following components: log ingestion, log indexing, and visualization. You must deploy the AWS CloudFormation template in the AWS account where you intend to store your log data.

Use cases for this AWS Solution
Log Storage Observability
About this deployment
Version
4.0.6
Released
10/2023
Author
AWS
Est. deployment time
30 mins
Estimated cost
Download implementation guide  Source code  CloudFormation templates  Subscribe to RSS feed 
Deployment options
Ready to get started?
Deploy this solution by launching it in your AWS Console

Need help? Deploy with a partner.
Find an AWS Certified third-party expert to assist with this deployment
Did this AWS Solution help you?
Provide feedback