Overview

AWS CloudHSM is a service that provides hardware security modules for use in the AWS Cloud.

Enable this integration to see all of your CloudHSM metrics in Datadog.

Setup

Installation

If you haven’t already, set up the Amazon Web Services integration first.

Metric collection

1. In the AWS integration page, ensure that CloudHSM is enabled under the Metric Collection tab.
2. Install the Datadog - AWS CloudHSM integration.

Log collection

Enable logging

Configure AWS CloudHSM to send logs either to a S3 bucket or to CloudWatch.

Note: If you log to a S3 bucket, make sure that amazon_cloudhsm is set as Target prefix.

Send logs to Datadog

1. If you haven’t already, set up the Datadog Forwarder Lambda function.

2. Once the Lambda function is installed, manually add a trigger on the S3 bucket or CloudWatch log group that contains your AWS CloudHSM logs in the AWS console:

   • Add a manual trigger on the S3 bucket
   • Add a manual trigger on the CloudWatch Log Group

Data Collected

Metrics

See metric-spec.yaml for a list of metrics provided by this integration.

Events

The AWS CloudHSM integration does not include any events.

Service Checks

The AWS CloudHSM integration does not include any service checks.

Troubleshooting

Need help? Contact Datadog support.