Alarm Recommendations

Overview

CloudWatch provides out-of-the-box alarm recommendations to help you identify key metrics to monitor based on AWS best practices. These recommendations include suggested metrics, thresholds, and pre-filled alarm settings, making it easier to set up effective monitoring for your AWS infrastructure. These alarms can be utilized within threat detection and hunting for anomalous behavior.

Key Features:

1. Alarm Recommendations:

   • CloudWatch suggests which metrics to monitor (e.g., for Lambda or S3).

   • Recommended alarm thresholds are pre-filled for some metrics.

2. Infrastructure-as-Code Support:

   • Download alarm definitions for AWS CloudFormation, AWS CLI, or Terraform.

   • Bulk download alarm code for all recommended metrics in a namespace (e.g., AWS/Lambda).

3. Integration with the CloudWatch Console:

   • Easily create recommended alarms using the alarm creation wizard.

   • Pre-filled settings include metric name, statistic, and period.

Steps to Create Recommended Alarms:

1. Find Metrics with Recommended Alarms:

   • Open the CloudWatch console > Metrics > Alarm recommendations.

   • Select a namespace (e.g., AWS/S3) to view metrics with recommendations.

   • Choose View details to see the alarm intent and threshold.

2. Create an Alarm:

   • Select a metric, click the Graphed metrics tab, and click the alarm icon.

   • Use the alarm wizard to configure notifications, Auto Scaling, or EC2 actions.

   • Enter a name, confirm settings, and click Create alarm.

3. Download Alarm Code:

   • Download infrastructure-as-code templates for individual alarms or all alarms in a namespace.

   • Choose the format (AWS CloudFormation, AWS CLI, or Terraform) for the code.

Charges and Notifications:

• Alarm creation incurs regular CloudWatch charges.

• Using recommendations incurs no extra cost.

• Notifications can be configured via SNS Topics

Alarm List:

Recommended alarms - Amazon CloudWatchAmazon CloudWatch