AWS Managed PrometheusΒΆ
Configure Robusta to use Amazon Managed Prometheus (AMP).
PrerequisitesΒΆ
An Amazon Managed Prometheus workspace
AWS access credentials (Access Key and Secret Key)
Quick StartΒΆ
Create AWS credentials if you don't have them:
Follow the AWS guide to create an access key.
Store credentials in Kubernetes:
kubectl create secret generic aws-secret-key -n robusta \ --from-literal=access-key=YOUR_ACCESS_KEY \ --from-literal=secret-key=YOUR_SECRET_ACCESS_KEYConfigure Robusta - add to
generated_values.yaml:globalConfig: prometheus_url: "https://aps-workspaces.us-east-1.amazonaws.com/workspaces/ws-12345678" check_prometheus_flags: false # Required for AWS runner: additional_env_vars: - name: PROMETHEUS_SSL_ENABLED value: "true" - name: AWS_ACCESS_KEY valueFrom: secretKeyRef: name: aws-secret-key key: access-key - name: AWS_SECRET_ACCESS_KEY valueFrom: secretKeyRef: name: aws-secret-key key: secret-key - name: AWS_SERVICE_NAME value: "aps" - name: AWS_REGION value: "us-east-1" # Your workspace region
Finding Your Workspace URLΒΆ
Open the AWS Console
Navigate to Amazon Managed Service for Prometheus
Select your workspace
Copy the Workspace endpoint URL
Your prometheus_url is:
<endpoint-url>
Configuration DetailsΒΆ
Required Environment Variables:
PROMETHEUS_SSL_ENABLED: Always"true"for AMPAWS_SERVICE_NAME: Always"aps"for Amazon Prometheus ServiceAWS_REGION: The AWS region where your workspace is located
Important NotesΒΆ
Warning
AWS Managed Prometheus does not support the Prometheus flags API. Always set check_prometheus_flags: false.
AlertManager URL is not needed (AWS handles alerting separately)
Ensure your AWS credentials have permissions to query the AMP workspace
The workspace must be in the same region specified in AWS_REGION
Next StepsΒΆ
Configure alert routing
Set up ingestion from your cluster to AMP
Learn about common configuration options