Description:
Amazon Relational Database Service (RDS) Enhanced Monitoring, which provides visibility into the health of your Amazon RDS instances, reports physical storage device metrics and secondary instance host metrics. When the Amazon RDS storage is using more than one underlying physical device, Enhanced Monitoring collects the data for each device. In addition, when the DB instance is running in a Multi-AZ configuration, the data for each device on the secondary host has collected as well secondary host metrics.
Rational:
With Enhanced Monitoring, you can monitor the operating system of your DB instance in real-time. When you want to see how different processes or threads use the CPU, Enhanced Monitoring metrics are useful.
Impact:
Enhanced Monitoring gives you deeper visibility into the health of your Amazon RDS instances in real-time.
Note: Enhanced Monitoring is available for all RDS for Oracle instances across all supported instance types except t1.micro and m1.small.
Default Value:
By default, Enhanced Monitor By default, Enhanced Monitoring will be enabled while creating the database.ring will be enabled while creating the database.
Pre-requisites:
Need to sign in as admin or IAM user with the required permission
Remediation:
Test Plan:
Sign in to AWS Management Console
Navigate to RDS service at https://console.aws.amazon.com/rds
Click on Databases in the left navigation pane
Click on the database that you want to examine and select the Monitoring tab
Click on the Monitoring drop-down to see the options available
If you notice Enhanced monitoring is not enabled follow the Implementation steps.
Implementation Steps:
Sign in to AWS Management Console
Navigate to RDS service at https://console.aws.amazon.com/rds
Click on Databases in the left navigation pane
Select the database that you want to edit and click on Modify
Go to Additional configuration in the bottom and under Monitoring section make sure Enable Enhanced Monitoring checkBox is Checked
Set the Monitoring Role property to the IAM role that you created to permit Amazon RDS to communicate with Amazon CloudWatch Logs for you, or choose Default to have RDS create a role for you named
rds-monitoring-role
.Set the Granularity property to the interval, in seconds, between points when metrics are collected for your DB instance or read replica. The Granularity property can be set to one of the following values:
1
,5
,10
,15
,30
, or60
.
- Click on Continue
- In the Scheduling of modifications section, perform one of the following actions based on your requirements:
Select Apply during the next scheduled maintenance window to apply the changes automatically during the next scheduled maintenance window.
Select Apply immediately to apply the changes right away.
Click on Modify DB Instance
Via CLI:
aws rds modify-db-instance \
--db-instance-identifier mydbinstance \
--monitoring-interval 30 \
--monitoring-role-arn arn:aws:iam::123456789012:role/emaccess
Backout plan:
To revoke the changes made, follow the same steps in the Implementation section, but in step5 uncheck the Enable Enhanced Monitoring Check Box.
Reference:
https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_Monitoring.OS.ht