Question 1

How to integrate AWS ClickOps Notifier with Slack?

Accepted Answer

Use the webhooks_for_slack_notifications input variable in Terraform to map custom names to Slack webhook URLs. The module automatically configures the Lambda to send alerts to these webhooks via SNS notifications.

Question 2

AWS ClickOps Notifier vs AWS Config for monitoring manual changes?

Accepted Answer

ClickOps Notifier specifically detects console-originated actions with real-time alerts, while AWS Config focuses on broader configuration compliance and drift detection without distinguishing console vs automated changes as granularly. Choose ClickOps for targeted ClickOps monitoring and AWS Config for overall compliance.

Question 3

How to exclude specific users from ClickOps alerts?

Accepted Answer

Set the excluded_users Terraform variable to a list of email addresses that should not trigger alerts. This overrides the default behavior and helps filter out trusted users or service accounts from notifications.

Question 4

What are the costs of running ClickOps Notifier?

Accepted Answer

Costs include AWS services like S3 for CloudTrail logs, SQS for event queuing, Lambda for processing, and CloudWatch for logs. Pricing depends on usage volume, but the module's batching and filtering can help control expenses by reducing unnecessary events.

Question 5

How to deploy ClickOps Notifier in a standalone AWS account?

Accepted Answer

Enable CloudTrail in your account to write logs to a CloudWatch Log Group, then set the standalone input variable to true and specify the cloudtrail_log_group in the Terraform module. Ensure IAM permissions are configured for the Lambda function.

Question 6

Can ClickOps Notifier work with multi-region CloudTrail?

Accepted Answer

Yes, but it depends on your CloudTrail setup. For organizational mode, use a centralized S3 bucket with multi-region logs. For standalone mode, configure CloudWatch Log Groups per region or use a centralized approach, though the module's documentation doesn't explicitly detail multi-region configurations.

Question 7

How to customize the excluded actions list?

Accepted Answer

Override the default by setting the excluded_scoped_actions variable with a list of service-scoped actions (e.g., 's3.amazonaws.com:PutObject') and use excluded_scoped_actions_effect to append or replace the built-in list, as per the Terraform inputs.

terraform-aws-clickops-notifier

What is terraform-aws-clickops-notifier?

Overview

Use Cases

Best For

Related Projects

Found a gem we're missing?

Not Ideal For

Pros & Cons

Pros

Cons

Frequently Asked Questions