Cloudwatch Logs Output

Sending Dash Compliance Events To Cloudwatch

Dash allows teams to extend compliance by connecting Dash compliance events into audit logging and SIEM solutions. Dash customers can collect compliance logs for further analysis in Cloudwatch or solutions such as Elasticssearch and Splunk.  Users can also trigger Lambda functions and other AWS functions using Dash’s output to Cloudwatch Events. 

What Will You Need?

Instructions

  1. In the Dash Compliance Automation Platform,  navigate to Settings→ Notification Settings
  2. The page should look like this:
dash cloudwatch hipaa

3. Under the Logging Configuration section of the page, make sure “Send Compliance Events to Cloudwatch Logs” is enabled like shown below.

dash audit logging cloudwatch

Viewing Dash Compliance Issues In Cloudwatch

4. After enabling this option, compliance events from Dash will stream into Cloudwatch Logs on a daily basis.

5. To access Dash logs, login to the AWS Console -> Click the Services tab -> Navigate to Cloudwatch

aws cloudwatch

6. Click “Logs” in the left sidebar.

7. In the Filter Box, type “/dash” and press enter. You should see Dash Log Groups based on your AWS account ID, similar to the image below.

 
dash cloudwatch logs

8. You can click on an individual Log Group to view Log Streams and see compliance event types like below.

dash cloudwatch log streams

9. Users can view individual logs by clicking on an individual event type.

aws hipaa compliance cloudwatch logs

Connecting Cloudwatch Logs To Other Logging Solutions

Once you have enabled sending Dash Compliance logs to Cloudwatch, your team can connect Dash compliance data into other logging solutions and SIEMs such as AWS Elasticsearch, Logstash and Splunk. 

Read Our Other Tutorials For Sending Dash Compliance Events to:

AWS Elasticsearch