Features
Integrations
Dashboards
Log Management
APM
Continuous Profiler
Security Monitoring
Network Monitoring
Synthetic Monitoring
Real User Monitoring
Serverless
Alerts
API
AWS Cloudhsm
Overview
When an HSM in your account receives a command from the AWS CloudHSM command line tools or software libraries, it records its execution of the command in audit log form. The HSM audit logs include all client-initiated management commands, including those that create and delete the HSM, log into and out of the HSM, and manage users and keys. These logs provide a reliable record of actions that have changed the state of the HSM.
Datadog integrates with AWS CloudHSM via a Lambda function that ships CloudHSM logs to Datadog’s Log Management solution.
Setup
Log Collection
Enable CloudHSM logs
Audit logs are enabled by default for CloudHSM.
Send your logs to Datadog
- If you haven’t already, set up the Datadog log collection AWS Lambda function.
- Once the lambda function is installed, manually add a trigger on the Cloudwatch Log group that contains your CloudHSM logs in the AWS console:Select the corresponding CloudWatch Log group, add a filter name (but feel free to leave the filter empty) and add the trigger.
Once done, go in your Datadog Log section to start exploring your logs!
Troubleshooting
Need help? Contact Datadog Support.
On this Page