Chat now with support
Chat with Support

Foglight Hybrid Cloud Manager 6.0.0 - User Guide (for AWS environments)

Using Foglight Hybrid Cloud Manager for AWS Monitoring Tab System Info Tab Tags Tab Report Tab Rule Configuration Tab Administration Tab Optimizer Tab Cost Tab Policy Management Tab

API used to collect Cost metrics

Foglight Hybrid Cloud Manager for AWS uses the AWS Cost and Usage Report to tracks your AWS usage and provides the estimated charges associated with your AWS account. AWS delivers the AWS Cost & Usage Report (in CSV format) for the Amazon Simple Storage Service (S3) bucket you specified, and updates the reports at least once a day. AWS Agent retrieves the reports programmatically using the Amazon S3 APIs.

If you use the consolidated billing feature in AWS Organizations, this report is available only to the master account and includes activity for all the member accounts that are associated with the master account.

Refer to the AWS Cost and Usage Report for more details.

To get Account ID (12-digit number)
1
Log in to the AWS Management Console: https://console.aws.amazon.com.
2
Locate your Account ID
a
Click Support on the navigation bar on the upper-right.
b
Choose Support Center. Your currently signed-in account number (ID) appears in the Support Center title bar.
To create an AWS Cost and Usage Report
1
Sign in to the AWS Management Console and open the Billing and Cost Management console at https://console.aws.amazon.com/billing/.
2
On the navigation pane, choose Reports.
3
Choose Create report.
4
Type the following information, as needed, and then click Next.
a
Report name: enter the name of report.
b
Additional report details: select Include resource IDs.
5
S3 bucket: Enter the name of the Amazon S3 bucket where you want the reports to be delivered and then select Verify. The bucket must have appropriate permissions.
a
Click Sample Policy link and copy and paste the text in this sample policy into the permissions associated with your Amazon S3 bucket.
b
Open a new Page to access your S3 bucket, click Permissions and then Bucket policy. Paste the text in this sample policy into the permissions associated with your Amazon S3 bucket.
c
Below is an example for the S3 bucket policy. Update the following descriptions in bold according to your AWS Account and S3 bucket.
AWS monitoring user ARN (in line 32): "arn:aws:iam::88888888:user/exampleAWSUserTest":
Format: "arn:aws:iam::your AWS Account ID:user/your monitoring AWS username"
To get the AWS user ARN from AWS Console, select IAM, and then click the AWS user which is configured under the Foglight AWS Agent.
S3 bucket ARN (in line 15, 26, and 35): "arn:aws:s3:::exampleBucketNameTest":
Format: arn:aws:s3:::your bucket name
Change the exampleBucketNameTest to your S3 bucket name.
{
"Version": "2008-10-17",
"Id": "PolicyForFoglightAWSCostReport",
"Statement": [
{
"Sid": "StmtForAWSBillingReportGet",
"Effect": "Allow",
"Principal": {
"Service": "billingreports.amazonaws.com"
},
"Action": [
"s3:GetBucketAcl",
"s3:GetBucketPolicy"
],
"Resource": "arn:aws:s3:::exampleBucketNameTest"
},
{
"Sid": "StmtForAWSBillingReportPut",
"Effect": "Allow",
"Principal": {
"Service": "billingreports.amazonaws.com"
},
"Action": [
"s3:PutObject"
],
"Resource": "arn:aws:s3:::exampleBucketNameTest/*"
},
{
"Sid": "StmtForAWSUserGet",
"Effect": "Allow",
"Principal": {
"AWS": "arn:aws:iam::88888888:user/exampleAWSUserTest"
},
"Action": "s3:GetObject",
"Resource": "arn:aws:s3:::exampleBucketNameTest/*"
}
]
}
6
Report path prefix - Optional: Enter the report path prefix that you want to name of your report.
7
Time granularity: Choose Daily.
8
Report versioning: Choose Overwrite existing report.
9
Enable report data integration for: Leave blank.
10
Compression type: Choose GZIP or ZIP
11
Click Next, after you have reviewed the settings for your report, choose Review and Complete.

AWS monitoring setup

A complete setup includes the following two steps:

1
Get the authentication information through AWS Management Console. For more information, see Getting authentication information through console.
2
Create an AWS Agent on the Foglight Management Server. For more information, see Creating an AWS Agent.
3
(Optional) Configure the interval of data collection. For more information, see Configuring data collection interval.

Getting authentication information through console

To create and retrieve a user’s Access Keys through the AWS IAM console:
1
Log in to the AWS IAM console at: https://console.aws.amazon.com/iam/.
2
Click IAM under the Security, Identity & Compliance column.
3
On the left navigation panel, click Users.
The Resource Groups view opens on the right.
4
In the Resource Groups view, click the user which Access Key is to be retrieved.
The User Summary view opens.
5
In the User Summary view, click Security credentials, then the Sign-in credentials view opens.
6
In the Access keys area, click Create access key.
The Create access key dialog box appears and shows the access key and Secret access key.
7
Click Download .csv file to keep the access key and secret access key somewhere safe.
8
(Optional) If you see the Limit exceed message, click the button next to the Status column to delete an access key that is not being used. Then repeat Step 6 to create and retrieve a new access key.

Configuring firewall settings

If your AWS Performance Agent is installed behind the firewall, ensure the following URL addresses and ports are open:
URL address:
*.amazon.com
TCP/UDP port:
80 and 443
Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating