Why Your FSx for ONTAP Audit Logs Deserve Better Than EC2

May 17, 2026 · 9:14 AM UTC ·12 min read · 0 reactions · 0 comments · 13 views

#aws #serverless #observability #cloud-security #log-management

Why Your FSx for ONTAP Audit Logs Deserve Better Than EC2

⚡ TL;DR · AI summary

Amazon FSx for NetApp ONTAP users often rely on EC2-based systems to handle file access audit logs, which introduces operational complexity and vendor lock-in. This article proposes a serverless alternative using managed AWS services like Lambda and EventBridge Scheduler to process audit logs via S3 APIs without requiring EC2 instances. The solution supports forwarding normalized log data to multiple observability platforms in an event-driven, scalable manner.

Key facts

▪FSx for ONTAP generates two types of audit logs: cluster/admin activity logs and file access audit logs, with the latter being the focus of this article.
▪The proposed architecture eliminates EC2 by using an S3 Access Point to expose audit volumes, allowing Lambda functions to read logs via S3 APIs.
▪This serverless pattern supports multiple observability platforms such as Datadog, Splunk, and Grafana Cloud through normalized event processing.
▪The solution uses EventBridge Scheduler to invoke Lambda on a schedule with checkpointing to process only new log files.
▪An open-source pattern library is being developed to support this EC2-free approach across nine observability vendors using Lambda, EventBridge, and ECS Fargate.

Original article

DEV.to (Top)

Read full at DEV.to (Top) →

Opening excerpt (first ~120 words) tap to expand

try { if(localStorage) { let currentUser = localStorage.getItem('current_user'); if (currentUser) { currentUser = JSON.parse(currentUser); if (currentUser.id === 1143688) { document.getElementById('article-show-container').classList.add('current-user-is-article-author'); } } } } catch (e) { console.error(e); } Yoshiki Fujiwara(藤原善基)@AWS Community Builder for AWS Community Builders Posted on May 17 Why Your FSx for ONTAP Audit Logs Deserve Better Than EC2 #aws #serverless #observability #amazonfsxfornetappontap Serverless Observability for Amazon FSx for NetApp ONTAP (3 Part Series) 1 Why Your FSx for ONTAP Audit Logs Deserve Better Than EC2 2 Shipping FSx for ONTAP Logs to Datadog — The Serverless Way 3 Event-Driven Ransomware Detection with ONTAP ARP + Datadog TL;DR FSx for ONTAP file…

Excerpt limited to ~120 words for fair-use compliance. The full article is at DEV.to (Top).

Anonymous · no account needed

Discussion

0 comments

Why Your FSx for ONTAP Audit Logs Deserve Better Than EC2

Discussion

More from DEV.to (Top)