StreamAlert is a serverless, realtime data analysis framework which empowers you to ingest, analyze, and alert on data from any environment, using datasources and alerting logic you define.
When deploying for first time the manage script fails when it tries to create Log Groups for Cloudwatch via Terraform but it says resource already exists due to the Lambda automatically creating it. The Lambda terraform uses AWS default IAM Role so it has createLogGroup permission. This only seems to happen to the alerts merger log group and not others.
rsavjani
commented
1 year ago
Background
Version 1.4
Description
When deploying for first time the manage script fails when it tries to create Log Groups for Cloudwatch via Terraform but it says resource already exists due to the Lambda automatically creating it. The Lambda terraform uses AWS default IAM Role so it has createLogGroup permission. This only seems to happen to the alerts merger log group and not others.
Steps to Reproduce
Run manage.py deploy
Desired Change
Fix the issue