Click here for the most updated version of this documentation.
Before configuring AWS Security Logging for Blumira, we recommend reviewing Blumira’s Getting Started Guide for AWS.
In order to enable broad Blumira coverage for AWS, you will want to follow these configurations steps:
The following guidance will help avoid dependency conflicts in an AWS environment that has not been configured for monitoring. If your environment has already been configured for monitoring and you wish to avoid duplicate roles, groups, or resources; feel free to use those instead so long as your environment meets the above reference architecture to correctly permission and route log flows into a AWS Kinesis Data Stream.
Get your free account with Blumira and secure your Microsoft 365 environment in minutes. No credit card required.
To configure the Kinesis Data Stream:
After you configure the Kinesis data stream, you must configure the Identity and Access Management (IAM) policy to allow Blumira to ingest your log data from the stream. You will need the ARN value gathered in the previous step.
To configure the IAM policy for Blumira:
Cloud Connectors automate the configuration of your integrations without requiring you to use a sensor. After you obtain your integration’s configuration parameters, you can then enable Blumira to collect your logs.
To configure your integration with Blumira Cloud Connector:
After you integrate with AWS Kinesis Data Stream and IAM, go to the following sections to continue integrating with AWS: