By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

About Run Command Response to Failure Notification, In a multi-account environment

0

Hi,

In a multi-account environment with about 100 accounts, various processes are automatically executed by Run Command in each account.

When an error occurs, we are notified via EventBridge and take appropriate action, but this requires logging in to each account and checking the target resource. This has become a significant burden as the number of accounts increases, and we are wondering if there is a better way to handle this issue.

In addition, we are also considering notifications for things that do not have to succeed every time, such as patching by Run Command. Is there any room for a way to do this, such as notifying if the process fails a certain number of times?

Best Regards,

Topics
Management & Governance
Tags
AWS Systems Manager Incident Manager
Language
English
rePost-User-20221103
asked a month ago64 views
1 Answer
1

You should consider setting up AWS Organizations for centralized management, using Amazon EventBridge for cross-account event routing, and implementing AWS Systems Manager Automation for automated remediation. Additionally, for processes like patching that don't need to succeed every time, you can create custom metric filters in CloudWatch Logs to track errors and set alarms to notify you only when the error count exceeds a certain threshold. This approach reduces the need to manually log into each account and allows for more targeted notifications.

profile picture
EXPERT
Osvaldo Marte
answered a month ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content