Segregate logs in Opensearch based on accounts
0
Hello, I have implemented a central logging solution with Opensearch. There are multiple AWS accounts for different projects. All logs are sent to Single S3 and then to opensearch. How can I segregate logs (cloudtrail, vpc flow logs, ec3 logs, web server logs) based on accounts, since one project doesnt want to see another project logs.
asked 5 months ago8 views
1 Answers
0
If you follow this process, it will work well and will save you time. We also did the same as you, but kept running into obstacles. So enjoy the process.
https://github.com/aws-samples/siem-on-amazon-opensearch-service
answered 2 months ago
Relevant questions
How to have multiple VPCs in different AWS accounts use the same physical AWS Direct Connect circuit.
Accepted Answerasked 4 years agoLog Subscription Filter To Opensearch
asked 7 months agoFluent Bit Logs, Kinesis vs OpenSearch (ElasticSearch) Directly
asked 7 months agoAppConfig and Multiple Accounts
asked 5 months agoSegregate logs in Opensearch based on accounts
asked 5 months agoCentral ECR for ECS in multiple accounts
Accepted AnswerI want consolidated application logs running on AWS ECS with microservices architecture
asked a month agoAWS CloudWatch metrics to OpenSearch
asked 3 months agoAppSync error: Communication error while executing a request to OpenSearch
asked 6 months agoCan CloudWatch metric filters be created on logs in a different account?
Accepted Answerasked 3 months ago