Skip to main content
Sumo Logic

Install the Amazon S3 Audit App and view the Dashboards

Install the Sumo Logic App

Now that you have configured log collection for Amazon S3 Audit, install the Sumo Logic App for Amazon S3, and take advantage of predefined Searches and Dashboards. The Sumo Logic App for Amazon S3 Audit presents details from access logs that contain information about the request type, the average response time, and the inbound and outbound data volume.

To install the app:

  1. Select App Catalog, search for and select the app, and click Add to Library. (In the classic UI, click Library, click Apps, select the app, and click Install. If you don't find the app under Apps, it might be a preview app. Try clicking Preview to find the app.)
  2. Click Preview Dashboards if you'd like to see a preview of the dashboards included with the app before installing.
  3. In the Install Application dialog box, select the installation path (the default is the Personal folder in the library), or click New Folder to add a new folder.
  4. Select either of these options for the log data source.
  • Choose Select from Existing Source Categories, and select the source catalog from the Source Category list.
  • Choose Enter a Custom Data Filter and enter a custom source category beginning with an underscore. Example: (_sourceCategory=MyCategory).
  1. Click Add to Library.

Once an app is installed, it will appear in your Personal folder, or other folder that you specified. From here, you can share it with your organization. See Welcome to the New Library for information on working with the library in the new UI.

Panels will start to fill automatically. It's important to note that each Panel slowly fills with data matching the time range query and received since the Panel was created. Results won't immediately be available, but with a bit of time, you'll see full graphs and maps. 

Dashboards

Overview

Geolocation of Clients. Performs a geo lookup operation and displays the location of S3 bucket clients and the number of requests per bucket on a map of the world for the last three hours.

Requests by Operation. Displays the requests performed for the S3 bucket in a pie chart listed by operation type in a legend for the last three hours.

Data Volume Sent in MB by S3 Bucket. Shows the data volume per S3 bucket in megabytes, displayed in an bar chart for the last three hours.

Total Requests by S3 Bucket. Shows the total requests per S3 bucket, displayed in an bar chart for the last three hours.

Details

Geolocation of Clients. Performs a geo lookup operation and displays the location of S3 bucket clients and the number of requests per bucket on a map of the world for the last three hours.

Data Volume Sent in MB by S3 Bucket. Shows the data volume per S3 bucket in megabytes, displayed in an area chart on a timeline for the last three hours.

Total Requests by S3 Bucket. Shows the total requests per S3 bucket, displayed in an area chart on a timeline for the last three hours.

Data Added to S3 Bucket. Lists the connected S3 bucket name and displays the amount of data loaded per bucket in megabytes in an aggregation table for the last three hours.

Requests by Operation. Displays the requests performed for the S3 bucket in a pie chart listed by operation type in a legend for the last three hours.

Total 4xx/5xx Status codes by S3 Bucket. Lists the total 4xx or 5xx error status codes by S3 bucket in a stacked column chart on a timeline for the last three hours.

Average Latency in Milliseconds by S3 Bucket. Displays the average latency time per S3 bucket in milliseconds in an area chart on a timeline for the last three hours.