nakajiak
commented
1 year ago Hello, you can check the logs in your SIEM dashboard on CloudWatch Dashboard. Are there any errors or something? And can you share your user.ini?
Closed bhenry999 closed 1 year ago
nakajiak
commented
1 year ago Hello, you can check the logs in your SIEM dashboard on CloudWatch Dashboard. Are there any errors or something? And can you share your user.ini?
bhenry999
commented
1 year ago Issue on our end. Thank you.
We attempted to manually export some custom app logs from CW into the created S3 bucket, but those logs are not being ingested, or at least not visible, in OpenSearch dashboard. Can you please advise what we may be doing wrong and how to resolve the issue?
We have attempted to ingest the logs into the top-level (no prefix), and within the opensearch prefix. Not sure if what affect prefixes have on the rest of the workflow, but tried different options anyway.
"Regular" CW logs from native AWS services seem to work just fine.