Segregate logs in Opensearch based on accounts

Hello, I have implemented a central logging solution with Opensearch. There are multiple AWS accounts for different projects. All logs are sent to Single S3 and then to opensearch. How can I segregate logs (cloudtrail, vpc flow logs, ec3 logs, web server logs) based on accounts, since one project doesnt want to see another project logs.

主题

管理与治理开发者工具

标签

Amazon CloudWatch 监控和日志记录 AWS CloudTrail

语言

English

AWS-MM

已提问 2 年前332 查看次数

1 回答

最新
投票最多
评论最多

这些答案有用吗？为正确答案投票，以帮助社区从您的知识中受益。

If you follow this process, it will work well and will save you time. We also did the same as you, but kept running into obstacles. So enjoy the process.

https://github.com/aws-samples/siem-on-amazon-opensearch-service

DwayneWhite

已回答 2 年前

Segregate logs in Opensearch based on accounts

相关内容