Cross-account Amazon CloudWatch Configure workload-specific notifications Deployment of a serverless monitoring and alarm system configured to send workload-specific notifications. AWS Cloud 1 2 3 Amazon CloudWatch Alarm Amazon SNS Amazon SQS 4 5 Parameter Store AWS Lambda alarms are created in central monitoring account. CloudWatch alarms can be tagged with resource identifiers. 2 3 4 5 Central Amazon Simple Notification Service (Amazon SNS) topic is configured to receive alarm events. (Optional) Use intermediary Amazon Simple Queue Service (Amazon SQS) to buffer AWS Lambda invocations if concurrency issues occur. Workload-specific configuration is stored in central monitoring account containing details on connected workload Amazon SNS topics. Serverless function receives alarm event, and queries parameter store for account and workload Amazon SNS delivery topics. Validation occurs to check for configured topics. The function cycles through configured Amazon SNS topics and sends payload. 6 7 6 Messages where no workload Amazon SQS Reviewed for technical accuracy January 10, 2022 Amazon SQS AWS Lambda Amazon SQS AWS Lambda Amazon SQS AWS Lambda AWS Reference Architecture 8 configuration exists are sent to monitoring Amazon SQS dead letter queue (DLQ). 7 Amazon SNStopics configured to receive the message invoke an associated AWS Lambda function to process the message. 8 Each AWSLambdafunction performs a unique action (for example, send email).
