Coursera Flash Sale
40% Off Coursera Plus for 3 Months!
Grab it
Course Description
In this challenge-based lab, where the step-by-step instructions are originally hidden, you will learn how to leverage Amazon Kinesis and Amazon Cloudwatch logs to monitor for abnormal account activity.
Objectives
By the end of this lab, you should be able to do the following:
- Install the Amazon CloudWatch Logs agent on a Linux-based EC2 instance.
- Send system authentication logs to Amazon CloudWatch Logs.
- Configure an Amazon CloudWatch alarm to send notifications after authentication failures.
- Create VPC flow logs to capture network traffic.
- Create Kinesis data streams to store logs from CloudWatch Logs.
- Create a Lambda function to process CloudWatch log data in a Kinesis data stream.
- Analyze logs with Amazon Managed Service for Apache Flink using SQL queries.
Prerequisites
- A basic knowledge of AWS services as defined in the AWS Cloud Practitioner Essentials course
- Be comfortable with navigating the AWS Management Console
Outline
Task 1: Installing and configuring the Amazon CloudWatch Logs agentTask 2: Creating an Amazon CloudWatch alarm to monitor for failed login attempts
Task 3: Configuring VPC flow logs to send network traffic data to Amazon CloudWatch Logs
Task 4: Sending log messages from CloudWatch Logs to Kinesis Data Streams
Task 5: Processing the CloudWatch Logs data
Task 6: Analyzing the log data with Amazon Managed Service for Apache Flink
