Documentation forSecurity Event Manager

Deploy SEM to Amazon Web Services

With version 6.7 and later, you can deploy SEM to Amazon Web Services (AWS). To get started, contact your SolarWinds Sales or Customer Support representative to request access to SEM on AWS.

SolarWinds is not responsible for fees incurred when deploying SolarWinds products to AWS.

  1. Download, install, and configure AWS Command Line Interface (CLI) for AWS account access.
  2. In the AWS console, create and download an access key.
    1. In the AWS Console, navigate to user menu > My Security Credentials > Create Access Key.

      Save the access key ID and secret access key to a CSV file on your computer.

Deployment steps for AWS

  1. Contact your SolarWinds Sales (evaluation customers) or Customer Support (existing customers) representative to request access to the AWS Amazon Machine Image (AMI) for SEM.

    You will need to provide your AWS account ID and AWS Region.

  2. When you receive notification that your AMI is available, launch the AMI from the AWS EC2 console.
    1. Select AMIs under Images in the navigation menu.

    2. Select Private images from the dropdown.
    3. Select the SEM AMI, and click Launch.

  3. The Choose an Instance Type page is displayed. Select the instance type, and click Configure Instance Details.

    You will want to select at least "t3.large" as this covers the default specifications for SEM.

    SolarWinds recommends you use an instance type with an SSD if this is going to be a high volume deployment.

  4. The Configure Instance Details page is displayed.

    Here you can adjust CPU allowed. If you are using the recommended baseline 2 CPUs 8GB, do not change to less than this value.

    Click Add Storage to continue.

  5. The Add Storage page is displayed.

    You can adjust the storage space at this point. Use the SSD options as they are needed to keep up with amount of events being received by the SEM.

    Modify the /dev/sdb for more log retention. You can change the disk size in the Size field as shown below.

  6. Click Add Tags to continue.

    The Add Tags page is displayed. This is optional; you can add a tag if this is part of your policy.

    Click Configure Security Group to continue.

  7. The Configure Security Group page is displayed.

    This is going to be the firewall policy for all of your agents and syslog device.

  8. Select Create a new security group, and enter a name.

    For each firewall rule you will need to enter the type, protocol, port range, source, and description.

  9. Click Review and Launch to continue.

    The Review Instance Launch page is displayed.

  10. Review all of the settings and make sure you didn’t miss any steps. If everything is correct, select Launch.
  11. In order to connect via SSH to the SEM, you now need to generate a key pair.

  12. Select Create a new key pair from the first drop-down, and enter "SEM" in the field below.

  13. Click Download Key Pair.
  14. Import the private key into Putty using the following procedure:

    https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/putty.html

  15. Select Choose an existing pair and SEM, check the acknowledgment box, and click Launch Instances.

(All screenshots © 2021, Amazon Web Services, Inc.)