Configuring an S3 Bucket
Amazon Simple Storage Service (Amazon S3) is an object storage service that delivers industry-leading scalability, data availability, security, and performance.
The Wazuh module for AWS requires every supported AWS service except Inspector Classic
, CloudWatch Logs
, and Security Lake
to store their logs in an S3 bucket. However, you can use a single S3 bucket for all these services, eliminating the need to create individual buckets for them. Wazuh retrieves these logs from the bucket for analysis.
In this section we describe how to create an Amazon S3 bucket:
On your AWS console, go to Services > Storage > S3.
Click Create bucket to create a new S3 bucket.
Enter the name of your S3 bucket, then click Create bucket.
Note
Copy the bucket ARN because it will be needed later for some AWS services.