Forward logs to log collector or SIEM

38 votes

It would be nice to have the ability to forward audit logs to a syslog server.

Planned Logging Suggested by: Nick (16 Feb, '21) • Upvoted: 31 Mar • Comments: 2

Comments: 2

25 Oct, '21
Alberto Romero
Having the capability of pushing audit logs to an S3 bucket would consolidate things from a SIEM perspective for all AWS users, as SIEM frameworks normally have flows that continuously ingest data from S3 anyway. A basic implementation of this could just be pushing events to an HTTP listener (webhook), though, which would be very simple to implement.
01 Sep, '22
Jay S.
Any update on when this will be moving forward?