Remediation
To remediate this issue, you must configure at least one action for your CloudWatch alarm. The most common action is to send a notification to an Amazon SNS topic.
Configure an Actionβ
From Command Lineβ
Each action is specified as an Amazon Resource Name (ARN).
aws cloudwatch put-metric-alarm
--alarm-name cpu-mon
--alarm-description "{{alarm-description}}"
--actions-enabled
[--ok-actions {{list-of-actions}}]
[--alarm-actions {{list-of-actions}}]
[--insufficient-data-actions {{list-of-actions}}]
--evaluation-periods 2
--comparison-operator {{GreaterThanOrEqualToThreshold | LessThanLowerOrGreaterThanUpperThreshold }}
Valid Actionsβ
EC2 actionsβ
arn:aws:automate:*region* :ec2:stoparn:aws:automate:*region* :ec2:terminatearn:aws:automate:*region* :ec2:rebootarn:aws:automate:*region* :ec2:recoverarn:aws:swf:*region* :*account-id* :action/actions/AWS_EC2.InstanceId.Stop/1.0arn:aws:swf:*region* :*account-id* :action/actions/AWS_EC2.InstanceId.Terminate/1.0arn:aws:swf:*region* :*account-id* :action/actions/AWS_EC2.InstanceId.Reboot/1.0arn:aws:swf:*region* :*account-id* :action/actions/AWS_EC2.InstanceId.Recover/1.0
Autoscaling actionβ
arn:aws:autoscaling:region :account-id :scalingPolicy:policy-id :autoScalingGroupName/group-friendly-name :policyName/policy-friendly-name
Lambda actionsβ
- Invoke the latest version of a Lambda function:
arn:aws:lambda:region :account-id :function:function-name - Invoke a specific version of a Lambda function:
arn:aws:lambda:region :account-id :function:function-name :version-number - Invoke a function by using an alias Lambda function:
arn:aws:lambda:region :account-id :function:function-name :alias-name
SNS notification actionβ
arn:aws:sns:region :account-id :sns-topic-name
SSM integration actionsβ
arn:aws:ssm:region :account-id :opsitem:severity #CATEGORY=*category-name*arn:aws:ssm-incidents::account-id :responseplan/response-plan-name