Skip to main content
Sumo Logic

About the AWS Observability Solution

Learn how the AWS Observability Solution can simplify the monitoring and troubleshooting of your AWS cloud infrastructure.


The feature is available in the following account plans.

Account Type Account Level
Cloud Flex Trial, Professional, and Enterprise
Credits Trial, Essentials, Enterprise Operations, Enterprise Security, and  Enterprise Suite

The AWS Observability Solution provides an established framework to simplify the monitoring and troubleshooting of your AWS cloud infrastructure. The AWS Observability Solution can be deployed across multiple accounts and AWS Regions to:

  • Minimize the time it takes to get operational insights across your AWS infrastructure.
  • Identify elements that are subject to specific operational issues across your AWS infrastructure.
  • Minimize the time it takes to assign operational to the correct business units and functional teams in your AWS infrastructure.
  • Expedite troubleshooting and root cause isolation for incidents in their apps and microservices running on AWS infrastructure via Root Cause Explorer.

Effectively monitor your AWS infrastructure

There are approximately 150 discrete services available in AWS, including compute, network, storage, database, tooling, management, security, developer tools, and analytics to name a few.

All of these services are part of AWS. However, troubleshooting across different services can be problematic when you use separate AWS accounts to manage costs and give teams independent administrative control. Different AWS accounts often have different settings across Availability Zones or Regions that make it difficult to get a clear picture of overall application health.

Likewise, when troubleshooting an operational issue you might get a notification of an issue with a specific instance of a service without being able to determine:

  • What other parts of the application or environment are affected?
  • What other Regions are affected?
  • What is the hierarchy of elements related to the AWS service?
  • What logs are associated with the alerting metric and vice versa?

In short, you are unable to quickly get high-level insights for applications that span multiple AWS services. When you are alerted, it is difficult to trace the alert to the underlying root cause. The Sumo Logic AWS Observability Solution addresses these challenges.

Chart a map of your AWS infrastructure

The Sumo Logic AWS solution pulls in data from all AWS services and accounts in your cloud infrastructure to provide a unified view of your environment. You can navigate from overview dashboards of the infrastructure and drill down into account, AWS Region,  service, or entity views. The intuitive navigation enables you to quickly resolve issues, minimize downtime, and improve system availability.

Expand Namespace.png

Working with AWS account hierarchies

Amazon Web Services (AWS) are available to you through your AWS accounts that you can then use for billing and various aspects of your cloud infrastructure. AWS recommends that you use multiple AWS accounts to manage costs across business units and functional teams. In this way, you can provide different levels of administrative control over various AWS resources. 

In an AWS account, you can choose resources hosted in multiple locations worldwide. These locations are composed of AWS Regions and Availability Zones. Each AWS Region is a separate geographic area (for example, us-west-2 is in Oregon, USA) and has multiple, isolated locations known as Availability Zones. You can provision specified resources (such as databases and load balancers) across multiple Availability Zones, to ensure high availability and failover support. 

Root Cause Explorer

Root Cause Explorer is an add-on to the AWS Observability Solution and relies on AWS CloudWatch metrics to enable on-call staff, DevOps, and infrastructure engineers to expedite troubleshooting and root cause isolation for incidents in their apps and microservices running on AWS infrastructure. 

The Root Cause Explorer helps you correlate unusual spikes which are referred to Events of Interest, in AWS CloudWatch metrics using the context including timeline, AWS account,  AWS region, AWS namespaces, resource identifiers, AWS tags, metric type, metric name and more associated with the incident. For example, If an organization’s microservice in AWS us-west-2 is experiencing unusual user response times, then the on-call user can use Root Cause Explorer to correlate Events of Interest on over 600 AWS CloudWatch metrics over 9 AWS service namespaces (such as AWS EC2, Amazon RDS) to isolate the probable cause to a specific set of AWS EC2 instances, serving the given microservice in AWS us-west-2, that may be overloaded.

Sumo Logic Apps for AWS Observability

The AWS Observability Solution provides an intuitive dashboard framework that mirrors industry-standard AWS hierarchies using a suite of Sumo Logic apps that provide insights into AWS operational and security services across an entire AWS infrastructure. The following Sumo Logic AWS Observability Solution apps provide the ability to quickly isolate and solve problems with their specialized pre-configured dashboards.

  • AWS Observability API Gateway.  The Amazon API Gateway service allows you to create RESTful APIs and WebSocket APIs for real-time two-way communication applications in containerized and serverless environments, as well as web applications.

    Sumo Logic's AWS Observability API Gateway dashboards provide insights into Amazon API Gateway tasks while accepting and processing concurrent API calls throughout your infrastructure, including traffic management, CORS support, authorization, and access control, throttling, monitoring, and API version management.

  • AWS Observability Application Load Balancer. The AWS Application Load Balancer service functions at the application layer receive requests, evaluates the listener rules in priority order to determine which rule to apply, and then selects a target from the target group.

    Sumo Logic's AWS Elastic Load Balancing ULM app is a unified logs and metrics App that gives you visibility into the health of your AWS Application Load Balancer and target groups. The app's preconfigured dashboards provide insights into latency, request and host status, threat intel, and HTTP backend codes by Availability Zone and target group.
  • AWS Observability EC2 Metrics. The Amazon Elastic Compute Cloud (Amazon EC2) service provides secure, resizable compute capacity in the cloud, giving you complete control of your computing resources.

    Sumo Logic's AWS EC2 Metrics ULM app collects local host metrics and displays them using predefined search queries and dashboards. App dashboards provide a visual analysis of local host metrics for CPU, disk, memory, network, and TCP.
  • AWS Observability Lambda. The AWS Lambda service allows you to run code without the burden of provisioning or managing servers.

    Sumo Logic's AWS Observability Lambda is a unified log and metrics app for monitoring operation and performance trends in the AWS Lambda function in your account. The AWS app uses AWS Lambda Logs and Metrics from CloudWatch, as well as CloudTrail AWS Lambda Data Events. Preconfigured dashboards provide insights into executions, such as memory and duration usage by function versions or aliases, as well as performance metrics such as errors, throttles, invocations, and concurrent executions.
  • AWS Observability DynamoDB. The Amazon DynamoDB service is a fast and flexible NoSQL database service that provides consistent, single-digit millisecond latency at any scale. 

    Sumo Logic's AWS Observability DynamoDB is a unified logs and metrics app that provides operational insights into your Amazon DynamoDB solution. The app provides preconfigured dashboards that allow you to monitor key metrics, and to view throttle events, errors, and latency, so you can plan the capacity of your Amazon DynamoDB.
  • AWS Observability RDS Metrics. The Amazon Relational Database Service (RDS) allows you to easily set up, operate, and scale a relational database in your cloud infrastructure.

    Sumo Logic's AWS Observaility RDS Metrics provides visibility into your Amazon Relational Database Service (RDS) metrics collected from the CloudWatch metrics source. Preconfigured dashboards allow you to monitor your Amazon RDS system's overview, CPU, memory, storage, network transmit and receive throughput, read and write operations, database connection count, disk queue depth, and more.

Matching AWS Observability to your business

The AWS Observability Solution provides the flexibility of selecting to install the apps best suited to optimize the monitoring and troubleshooting of your AWS infrastructure. Each business has unique requirements and can customize the apps it installs to meet those needs. That said, AWS Observability Solution is designed to meet the general needs of the following two business models: serverless and infrastructure as a service (IaaS).


Serverless, the native architecture of the cloud, enables you to shift your operational responsibilities to AWS. By eliminating infrastructure management tasks, you can develop your applications with increased agility and lower cost. 

AWS provides a set of managed services that you can use to build and run serverless applications. The Sumo Logic AWS Observability Solution provides apps tailored to monitor the following AWS-managed services across your AWS infrastructure.

  • AWS Lambda is a service that lets you run code without provisioning or managing servers. 
  • Amazon API Gateway is a fully managed service that makes it easy for developers to create, publish, maintain, monitor, and secure APIs at any scale. 

Infrastructure as a Service (IaaS)

Infrastructure as a Service (IaaS) is one of the AWS cloud computing models. IaaS contains the building blocks for cloud IT, typically providing access to networking features, virtual or dedicated hardware computers, and data storage. The IaaS cloud computing model provides flexibility and management control over IT resources.

AWS provides a set of managed services you can use to build and run applications in an IaaS environment. Sumo Logic's AWS Observability Solution provides apps tailored to monitor the following AWS-managed services across your AWS infrastructure.

  • Amazon Elastic Compute Cloud (Amazon EC2) provides secure and scalable compute capacity in the cloud, and gives you complete control of your computing resources.
  • AWS Application Load Balancer (ALB) automatically distributes incoming traffic across multiple targets. ALB is best suited for load balancing of HTTP and HTTPS traffic, with the ability to handle the varying application traffic loads across your AWS infrastructure.
  • Amazon Relational Database Service (RDS) is easy to set up and administer while providing a fast, secure, reliable, and highly scalable relational database.
  • Amazon DynamoDB is a fast and flexible NoSQL database service for all applications that need consistent, single-digit millisecond latency at any scale.