Syslog archive allows you to store your logs in your AWS S3 bucket. The setup of the archive has two main parts: the connection of Auvik to your AWS S3 bucket, and the configuration of the logs to archive. This article focuses on how to connect Auvik to store your logs in AWS S3 buckets.
What we need from you:
-
An AWS account.
- You can create one by following the instructions provided by AWS: How do I create and activate a new AWS account?
-
An Amazon S3 bucket
- S3 is a simple but powerful storage service provided by AWS that allows you to create a bucket where Auvik will store your logs. You’ll be the owner of the bucket and you’ll decide for how long you want to keep your logs. To create a bucket you can follow the instructions provided by AWS: Creating a bucket. It’s highly recommended to create the bucket in the same region of Auvik.
How to configure the credentials for AWS S3 bucket
The first time you access Manage Archive in the Syslog tab a form will guide you on the process of connecting Syslog archive with your external storage provider.
This form has two parts, the Canonical ID of AWS Auvik account (point 1), and the AWS Bucket Name you will define and your AWS Account ID (point 2), both to allow us to identify your bucket in AWS.
Note: When a new bucket is added, it becomes the new primary Syslog bucket and all future Syslog messages will be sent to it immediately
Once you have created your S3 bucket in AWS, you need to provide Auvik the permission to send your logs to your bucket. To that end, you first have to give permission to Auvik to send the logs to your bucket by following this procedure:
1. Access to your bucket in the AWS console
2. Go to the Permissions tab
3. Find the Access control list (ACL) section and go to Edit
4. Click Add grantee to create a new grantee for Auvik
5. Insert Auvik Canonical ID (55d8006a43f1f4971c23b75b1387ff56b644e7285eef73e3d14cb9258aaa7ed1) in the grantee field and tick the List, Read and Write checkboxes. You can easily copy the Auvik Canonical ID from the point 1 of the form in Auvik. Finally, click the Save changes button.
Once the permissions are set in AWS, you need to provide the information of your bucket to Auvik so we can validate the connectivity and storage to your bucket.
- Enter the AWS Bucket Name you defined.
- Enter your AWS Account ID. This ID should be a 12-digit number.
- Finally, click Verify and Save to make sure Auvik is able to properly connect to your AWS S3 Bucket.
Now you're ready to configure the logs you want to archive in your AWS S3 bucket as described in:
How to edit Auvik connection with AWS S3
If you want to edit the current configuration to connect Auvik to an AWS S3 bucket, you can do it by following this procedure:
- Click the Edit button
- Enter the new AWS Bucket Name.
- Enter the new AWS Account ID. This ID should be a 12-digit number.
- Finally, click on Verify and Save to make sure Auvik is able to properly connect to your AWS S3 Bucket.
How to reset Auvik connection with AWS S3
By resetting the configuration of the connection of Auvik with AWS S3, it will inherit again the configuration defined at the parent level. To achieve this, you can follow these steps:
- Click the Reset button.
- Confirm the reset by clicking Accept.
The reset button will not be available if there is not a configuration to connect to an AWS S3 bucket to inherit.