search

aws-samples / aws-health-aware

AHA is an incident management & communication framework to provide real-time alert customers when there are active AWS event(s). For customers with AWS Organizations, customers can get aggregated active account level events of all the accounts in the Organization. Customers not using AWS Organizations still benefit alerting at the account level.
MIT No Attribution
348 stars 143 forks source link

Add support for Splunk ingestion #60

Closed XSchelin closed 3 months ago

XSchelin commented 1 year ago

Add support for ingesting AWS health alerts across organizations into Splunk.

andrewcr7 commented 3 months ago

If you want to send Health events to Splunk, take a look at the direct integration through EventBridge. https://docs.aws.amazon.com/eventbridge/latest/userguide/eb-api-destination-partners.html#api-destination-splunk

Using AWS Health organizational view for EventBridge, you can configure it in one place for all events in the organization (or filter on Eventbridge as well) without AHA's other dependencies (Dynamo, Lambda, etc.) https://aws.amazon.com/about-aws/whats-new/2023/10/aws-health-aggregates-events-organization-eventbridge/