My Saved Presets
You must be logged in to view saved presets

Loading Library ...

Log Publishing to CloudWatch Logs for OpenSearch

Sets up log publishing from an OpenSearch domain to CloudWatch Logs with appropriate IAM permissions.

example

aws_cloudwatch_log_group




depends_on


lifecycle

ignore_changes

replace_triggered_by

precondition


postcondition



example

aws_cloudwatch_log_resource_policy



depends_on


lifecycle

ignore_changes

replace_triggered_by

precondition


postcondition



example

aws_opensearch_domain


advanced_security_options
master_user_options



auto_tune_options
maintenance_schedule

duration

cluster_config
cold_storage_options


zone_awareness_config
cognito_options



domain_endpoint_options



ebs_options


encrypt_at_rest

log_publishing_options

node_to_node_encryption
snapshot_options
software_update_options
vpc_options

security_group_ids

subnet_ids

off_peak_window_options
off_peak_window
window_start_time

depends_on


lifecycle

ignore_changes

replace_triggered_by

precondition


postcondition



example

aws_iam_policy_document

override_policy_documents


source_policy_documents

statement

actions

condition


values


not_actions

not_principals

identifiers

not_resources

principals

identifiers

resources


depends_on


lifecycle

ignore_changes

replace_triggered_by

precondition


postcondition



Terraform Template

data "aws_iam_policy_document" "example" {

  statement {
    actions = ["logs:PutLogEvents", "logs:PutLogEventsBatch", "logs:CreateLogStream"]
    effect = "Allow"

    principals {
      identifiers = ["es.amazonaws.com"]
      type = "Service"
    }
    resources = ["arn:aws:logs:*"]
  }
}

resource "aws_cloudwatch_log_group" "example" {
  name = "example"
}

resource "aws_cloudwatch_log_resource_policy" "example" {
  policy_document = data.aws_iam_policy_document.example.json
  policy_name = "example"
}

resource "aws_opensearch_domain" "example" {

  log_publishing_options {
    cloudwatch_log_group_arn = aws_cloudwatch_log_group.example.arn
    log_type = "INDEX_SLOW_LOGS"
  }
}

© 2024 asecurecloud. All rights reserved.