Amazon Web Services - Receive Customized Notification for a Specific AWS Service Event Types Trigger
Last Updated :
28 Mar, 2023
Sometimes users need to receive an email response with a custom notification for a specific AWS service event type trigger. In this article we are going to look into how can you receive customized notifications using an input transformer in AWS CloudWatch.
To do so follow the below steps:
Step 1: After logging into the AWS management console navigate to the Amazon CloudWatch Console.
Step 2: In the navigation pane choose Rules and then choose Create rule.
Step 3: From the service name menu choose GuardDuty from the event type menu, choose GuardDuty finding.
In this article, we are configuring the trigger for unauthorized access EC2 TorIPCallar finding type as an example.
Step 4: For this, we need to edit the event pattern as shown below:
Step 5: In Targets choose to Add target and in select target choose SNS topic.
Step 6: Then in Topic choose your SNS topic. Here we have an SNS topic pre-configured so we are choosing the same. The expand Configure input and then choose Input Transformer.
Step 7: Copy the below code and then paste it into input path.
{
"severity": "$.detail.severity",
"Account_ID": "$.detail.accountId",
"Finding_ID": "$.detail.id",
"Finding_Type": "$.detail.type",
"region": "$.region",
"Finding_description": "$.detail.description"
}
Step 8: Further copy the below code and then paste it into input template.
"AWS <Account_ID> has a severity <severity> GuardDuty finding type <Finding_Type>.
in the <region> region."
"Finding Description:"
"<Finding_description>. "
"For more details open the GuardDuty console at
https://console.aws.amazon.com/guardduty/home?region=<region>#/findings?search=id=<Finding_ID>"
Step 9: Then choose Configure details. In configure rule details enter a Name and Description for the rule and then choose Create rule.
From now on you will receive an Amazon Simple Notification Service email notification with the custom fields populated from what you configured in input template earlier for the unauthorized access EC2 TorIPCaller type guardian findings.
Similar Reads
Amazon Web Services - Simple Notification Service(SNS): Complete Setup,Pricing,Features Amazon Web Services Simple Notification Service (AWS SNS) is a web service that automates the process of sending notifications to the subscribers attached to it. SNS provides this service to both application-to-person and application-to-application. It uses the publishers/subscribers paradigm for th
9 min read
Amazon Web Services - Simple Notification Service(SNS): Complete Setup,Pricing,Features Amazon Web Services Simple Notification Service (AWS SNS) is a web service that automates the process of sending notifications to the subscribers attached to it. SNS provides this service to both application-to-person and application-to-application. It uses the publishers/subscribers paradigm for th
9 min read
Amazon Web Services - Simple Queue Service(SQS): Complete Setup,Pricing,Features SQS enables web service applications that help to quickly and reliably queue messages. These messages have one component in their application that generates only when to be consumed by another component. Therefore, the queue is a temporary repository for messages and these messages are awaiting proc
10 min read
Amazon Web Services - Configuring Amazon S3 Event Notifications The Amazon S3 notification feature enables you to receive notifications when a certain event occurs inside your bucket. To get notifications, first, add a notification configuration that reads the event you want Amazon S3 to publish and the destinations where Amazon S3 will send the notifications. T
5 min read
Amazon Web Services - Amazon S3 Notifications to SNS In this article, we will see how the Amazon S3 bucket publishes notifications to SNS topics on object creation events. An object that creates an event is of four types. They are Put, Post, Copy, Multipart Upload, Remove, Replicate and Restore. Thus, whenever any of the event occur in our S3 bucket,
3 min read
How To Install AWS CLI - Amazon Simple Notification Service (SNS)? Amazon Simple Notification Service (SNS) is used for the Application to Application (A2A) and Application to Person (A2P) communication. It provides developers with a highly scalable, flexible, and cost-effective capability to publish messages from an application and immediately deliver them to subs
2 min read