AWS IAM Access Analyzer
Overview
Use AWS Identity and Access Management (IAM) Access Analyzer across your Amazon account to continuously analyze IAM permissions granted with any of your account policies. Datadog integrates with Amazon IAM Access Analyzer using a Lambda function that ships its logs to Datadog.
Setup
Log collection
If you haven’t already, set up the Datadog Forwarder Lambda function.
Create a new rule in AWS EventBridge.
Define a custom event pattern with the following:
{
"source": ["aws.access-analyzer"]
}
Select an event bus and define the Datadog Lambda function as the target.
Save your rule.
See the Log Explorer to start exploring your logs.
Data Collected
Metrics
This integration does not not collect metrics
Service Checks
This integration does not include any service checks.
Logs
This integration can be configured to send Logs.
Events
This integration does not send events
Troubleshooting
Need help? Contact Datadog support.