Sysdig Monitor integrates easily with AWS Simple Notification Service (SNS).
On the AWS side:
To automatically push Sysdig Monitor alerts to the SNS topic of your choice:
From the AWS console, open the SNS management console
In the Create topic section, Create a new topic (if needed).
The topic’s Name, ARN, (optional) Display name, and Topic owner’s AWS account ID are displayed in the Details section.
Select the topic on the list.
Expand Access policy - optional.
Select Basic (By default).
Under Define who can publish messages to the topic, select Only the specified AWS accounts and enter the Sysdig Monitor account ID: 273107874544 (US-East Only).
For account IDs corresponding to other regions, see SaaS Regions and IP Ranges.
Click Create topic.
Ensure that you subscribe to the created topic.
On the navigation panel, choose Subscriptions.
On the Create subscription page, enter the Topic ARN of the topic you created earlier.
Specify other details and click Create subscription.
For further information about AWS SNS, refer to the AWS documentation.
For SNS notification, you can click the ‘help’ button for tips on setting up your SNS topic.
You will need to allow publishing rights to the Sysdig Monitor account ID corresponding to your region.
This can be done by creating a new policy on your SNS topic in AWS Console as shown in the below images:
Select “Edit topic policy” as shown below from “Other topic actions.”
In the “Basic view” tab of the “Edit topic policy” dialog, select “Only these AWS users” from the publisher’s list and enter the Sysdig ID.
In the Sysdig Monitor UI:
Complete steps 1-3 in Set Up a Notification Channel to log in to the Sysdig UI and select
Amazon SNS Topic.
Enter the Topic created on the AWS side, along with a Channel Name, Enablement, and Notification toggles as appropriate.
From Shared With: Choose whether to apply this channel globally (All Teams) or to a specific team from the drop-down.