This CloudFormation template creates a CloudWatch Alarm that triggers when the AWS bill reaches the specified threshold. It also creates an SNS topic to send email notifications when the alarm is triggered.

This template creates a subscription filter and associates it with the specified log group. The subscription filter sends log events that are associated with the `Root` user to a Kinesis data stream.

This template creates a metric filter that sends a value of `1` to the `404Count` metric whenever the status code field includes a `404` value. The metric filter is associated with the log group `myLogGroup`.

This template creates an alarm that is based on an anomaly detector. It creates an AWS::CloudWatch::AnomalyDetector resource with the specified properties, including the MetricName, Namespace, and Stat. It then creates an AWS::CloudWatch::Alarm resource with the specified properties, including the AlarmDescription, AlarmName, ComparisonOperator, EvaluationPeriods, Metrics, ThresholdMetricId, and TreatMissingData.

This template creates a metric stream that streams only the metrics in the `AWS/ELB` and `AWS/EC2` namespaces. It specifies the output format as JSON and sets the Firehose ARN and Role ARN.

This template creates a CloudWatch Logs destination. The destination is named 'TestDestination' and is associated with a role named 'LogKinesisRole'. The destination is configured to send log events to an Amazon Kinesis data stream named 'TestStream'. The destination policy allows the 'logs.amazonaws.com' principal to perform the 'logs:PutSubscriptionFilter' action on the destination.

This template creates or updates a resource policy that allows other AWS services to put log events to this account. An account can have up to 10 resource policies per AWS Region.

This template creates a canary that uses an existing script stored in an S3 bucket. The canary is started as soon as it is created.

This template creates a query definition for CloudWatch Logs Insights. The query definition has a name and a query string that specifies the fields to include, the sorting order, and the limit of results.

This template creates a log stream named `MyAppLogStream` in the `exampleLogGroup` log group.

This template creates a log group that uses a data protection policy to mask email addresses, and send audit findings to CloudWatch Logs, Kinesis Data Firehose, and Amazon S3.

This template creates a log group that retains events for 7 days and is encrypted with a new KMS key that is created in the template.

This template creates composite alarms named "HighResourceUsage" and "DeploymentInProgress", and also creates metrics alarms named "HighCPUUsage" and "HighMemoryUsage". "DeploymentInProgress" is an alarm that must be manually set to TRUE or FALSE. The "HighResourceUsage" alarm goes into ALARM state only if both "HighCPUUsage" and "HighMemoryUsage" are in ALARM state, and if "DeploymentInProgress" is FALSE. Only "HighResourceUsage" has the alarm action of notifying SNS. This reduces alarm noise, so that you are alerted only if both CPU usage and memory usage are high, and a deployment is not currently in progress.

This template creates an anomaly detector model for the metric named `JvmMetric` with the dimension value of `UsedMemory`. It excludes a time range from the model training.

This template creates an Application Insights application with DEFAULT mode component configuration. It creates an application and sets `ComponentConfigurationMode` to `DEFAULT` and `Tier` to `SQL_SERVER` for the `my_component` component. The component is configured with the recommended monitoring settings for the `SQL_SERVER` tier.

This template creates an Application Insights application with detailed settings. It enables CloudWatch Events notification and OpsCenter, tags the application with two tags, creates two custom instance group components, and creates two log pattern sets. It also sets `AutoConfigurationEnabled` to `true` to configure all components with the recommended monitoring settings for the `DEFAULT` tier.

This template creates an Application Insights application that includes all of the components in the account. It sets `GroupingType` to `ACCOUNT_BASED` to create an account level-based application that includes all of the supported resources in the account. It also sets `AutoConfigurationEnabled` to `true` to configure all components with the recommended monitoring settings for the `DEFAULT` tier.

This template creates an Application Insights application with all components configured with recommended monitoring settings. It sets `AutoConfigurationEnabled` to `true` to configure all components with the recommended monitoring settings for the `DEFAULT` tier.

This template creates an Application Insights application with CUSTOM mode component configuration. It creates an application and sets `ComponentConfigurationMode` to `CUSTOM` for the `my_component` component. The component is configured with custom settings specified in `CustomComponentConfiguration`.

This template creates an Application Insights application with DEFAULT_WITH_OVERWRITE mode component configuration. It creates an application and sets `ComponentConfigurationMode` to `DEFAULT_WITH_OVERWRITE` and `Tier` to `DOT_NET_CORE` for the `my_component` component. The component is configured with the recommended monitoring settings for the `DOT_NET_CORE` tier, with overwritten configuration settings specified in `DefaultOverwriteComponentConfiguration`.

This template creates a link from the current source account to a sink in another account. Logs and traces are shared over this link, but metrics are not.

This template creates a sink that allows all accounts in a specified organization to create links to share metric and log data.

This template creates a sink that allows the account with the ID `111111111111` to create a link to share metrics, logs, and traces.

This SCP prevents users or roles in any affected account from running any of the CloudWatch commands that could delete or change your dashboards or alarms.

A Config rule that checks whether CloudWatch alarms have at least one alarm action, one INSUFFICIENT_DATA action, or one OK action enabled. Optionally, checks whether any of the actions matches one of the specified ARNs.

A Config rule that checks whether the specified resource type has a CloudWatch alarm for the specified metric. For resource type, you can specify EBS volumes, EC2 instances, RDS clusters, or S3 buckets.

A Config rule that checks whether CloudWatch alarms with the given metric name have the specified settings.

A Config rule that checks whether a log group in Amazon CloudWatch Logs is encrypted. The rule is NON_COMPLIANT if CloudWatch Logs has a log group without encryption enabled

A Config rule that checks whether Amazon CloudWatch LogGroup retention period is set to specific number of days. The rule is NON_COMPLIANT if the retention period is not set or is less than the configured retention period.

Checks if Amazon CloudWatch alarms actions are in enabled state. The rule is NON_COMPLIANT if the CloudWatch alarms actions are not in enabled state.