Skip to content

AWS Infrastructure Explorer

The Coralogix AWS Infrastructure Explorer integration connects your AWS account to Coralogix and periodically collects resource metadata for AWS EC2 instances and EC2 network interfaces. The collected metadata enriches logs, traces, and dashboards with cloud context so you can correlate telemetry against the resources it came from.

Overview

AWS Infrastructure Explorer authenticates as an AWS IAM Role that you create in your account, which grants Coralogix read-only access to the resources you want to scan. The integration polls the AWS API on a configurable schedule and sends a metadata record to Coralogix for every discovered resource.

The default poll interval is 10 minutes.

Supported resources

The integration collects metadata for the following AWS resource types:

  • EC2 instances
  • EC2 network interfaces

For other AWS signals such as CloudWatch metrics, CloudTrail logs, or VPC flow logs, see the relevant entries under AWS integrations.

Note

Multiple AWS accounts require the integration to be set up separately per account.

Prerequisites

This integration needs an IAM Role in your AWS account with the necessary permissions and trust relationship to allow Coralogix to access your AWS resources.

To create the role:

  1. Download the template.yaml. See the CloudFormation project for possible values of parameters.

  2. Run the following command in a terminal with installed AWS CLI and configured credentials, or in AWS CloudShell, replacing the necessary values:

    aws cloudformation deploy --capabilities CAPABILITY_IAM CAPABILITY_NAMED_IAM --template-file <path to template.yaml> --stack-name <stack name> --parameter-overrides CoralogixRegion=<coralogix account region> RoleName=<role name> ExternalIdSecret=<external id secret part> CoralogixCompanyId=<coralogix company id>

  3. The command produces output similar to the following:

    ------------------------------------------------------------------------------------------------------------------------------------------------------------
|                                                                      DescribeStacks                                                                      |
+----------------------------------------------------+-----------------------------+-----------------------------------------------------------------------+
|                     Description                    |          OutputKey          |                              OutputValue                              |
+----------------------------------------------------+-----------------------------+-----------------------------------------------------------------------+
|  The ExternalId of the Coralogix AWS Metrics role. |  ExternalId                 |  foo@123456                                                           |
|  The ARN of the Coralogix AWS Metrics role.        |  CoralogixAwsMetricsRoleArn |  arn:aws:iam::123456:role/my-role                                     |
+----------------------------------------------------+-----------------------------+-----------------------------------------------------------------------+

    Note the ExternalId and CoralogixAwsMetricsRoleArn values for the next step.

Integration deployment

  1. From the Coralogix UI, go to Data Flow, then Integrations.
  2. In the Integrations section, select AWS Infrastructure Explorer.
  3. Select Add New to add a new AWS Infrastructure Explorer integration.
  4. Enter configuration parameters according to your requirements:
    • Integration name — a meaningful name for this integration instance.
    • AWS Role ARN — the role ARN created in the Prerequisites section above.
    • ExternalId — the ExternalId created in the Prerequisites section above. Starting from version 1.1.0, the ExternalId must end with @<your_company_id> (for example, my_secret@12345) to bind the IAM role to your Coralogix team. Use the value from the CloudFormation stack output.
    • Select AWS Regions — the regions of the AWS account to scan.
  5. Pick at least one of the following options:
    • Scan EC2 Instances
    • Scan EC2 Network Interfaces
  6. Select Save to create the integration.

Support

Need help?

Our world-class customer success team is available 24/7 to walk you through your setup and answer any questions that may come up.

Feel free to contact us via our in-app chat or by emailing [email protected].

Need help? Contact Support.
What's new? Find out here.
LLM? Read llms.txt.
Previous AWS VPC flow logs Terraform module
Next AWS resource metadata collection