Skip to main content Link Search Menu Expand Document (external link)

Fluency Interface Configuration

Table of contents
  1. Fluency Web interface
    1. AWS CloudTrail
    2. AWS CloudWatch

The previous pages in this section guides the user to set up the required components of the AWS integrations on AWS’s web console. With that set-up complete, and the required information in hand, the user can then log into Fluency to complete the integration ‘plugin’ configuration.

Links

Please refer to the other pages in this section for specifics on cofiguring AWS services:

CloudTrail: Setup Guide for AWS Cloudtrail

CloudWatch: Setup Guide for AWS CloudWatch

Billing Report: Integration Guide to AWS Billing Reports

Simple Queue Service (SQS): Setup Guide for AWS SQS

CloudFormation: Setup Guide via CloudFormation.

Fluency Web interface

Login to the Fluency Cloud portal: https://companyname.cloud.fluencysecurity.com.

Open the main dropdown menu and choose the “Integrations” option under the “Ingress” section.

On the following page, navigate to the “Cloud Infrastructure as a Service” section.

To Add an integration for AWS CloudWatch/CloudTrail, choose the AWS icon from the group on the left side of the page to create a new AWS integration endpoint.

NOTE: If an integration endpoint was setup previously, you can also select and modify it from the rigt side of the page.

In the pop-up window, give the integration a short name (or choose default), and choose the “Save” button to add the integration endpoint. The value will be used within Fluency interface only to distinguish the different integrations. It is suggested to avoid using spaces in this field.

Select the AWS integration endpoint from the list on the right side of the page, in the same “Cloud Infrastructure as a Service” section. Choose the pencil icon to edit/configure the connector.

On the plugin configuration page, select the “+ New User” button in the upper left.

Using the IAM credentials from the previous step, fill out the required information. Click “Save” to add the IAM User.

AWS CloudTrail

Select the “+ New CloudTrails” button, under the Users section.

Fill out the required information, using the information from the previous steps. Provide the Queue URL and select the IAM User created above.

Make use of the “Test Connection” button, to test the IAM configurations prior to saving.

If an error is encountered, like the one shown below, please verify the IAM user has the proper Access policy.

A successful test will return the following message:

Click “Save” to add the CloudTrail.

This completes the procedures to export AWS CloudTrail logs to Fluency. Your data will be available in Fluency’s Events Search shortly.

AWS CloudWatch

Select the “+ New CloudWatch” button, under the Users/CloudTrail section.

Fill out the required information, using the information from the previous steps.

Provide a Name for this integration. Choose the AWS region for this CloudWatch, and select the IAM User (with CloudWatch Read permissions) created above.

Once these fields are populated, the Log Groups field should become a dropdown populated with your available CloudWatch log groups. Select the group(s) you would like to ingress data from.

Page last updated: 2022 Apr 23