Centralized Logging Architecture

  • The Centralized Logging solution enables organizations to collect, analyse, and display CloudWatch Logs in a single dashboard.

  • AWS services generate log data, such as audit logs for access, configuration changes, and billing events.

  • In addition to AWS log data; web servers, applications, and operating systems all generate log files in various formats.

  • The Centralized Logging solution contains the following components: log ingestion, log indexing, and visualization.

    • Log ingestion: CloudWatch Logs destinations deploy in the primary account and are created with the required permissions in each of the selected Regions.

    • Log indexing: A centralized Kinesis Data Streams and Kinesis Data Firehose are provisioned to index log events on the centralized Elasticsearch Service (ES) domain.

    • Visualization: ES and Kibana provide data visualization and exploration support.

PreviousVPC Flow LogsNextBastion Hosts

Last updated

Was this helpful?