AWS Partner Network (APN) Blog
Benefits of Productizing Camunda BPM on AWS
By Tim Ellison, Director, Systems Integration – CapTech
By Prabodh Deshmukh, Senior Solutions Architect – AWS
By Prasad Shetty, Senior Solutions Architect – AWS
By AnneMarie Richter, Partner Development Manager – AWS
For many organizations, the ability to execute, measure and improve high frequency transactions is essential. Central to business process management (BPM) is the implementation of repeatable processes, significantly automated to achieve a high rate of throughput, centralized management of errors as they occur and reduction of otherwise time-intensive manual labor.
Camunda as an AWS Partner is looking strategically into enabling business orchestration at scale by leveraging AWS’s cloud services. The collaboration focuses on key areas like AWS Marketplace listing, the AWS Partner Network, co-selling and more to come. By combining Camunda’s expertise in automation with AWS’s cloud capabilities, the partnership aims to accelerate digital transformation, optimize operations, and enhance competitive advantage for customers.
CapTech, an AWS Advanced Tier Services Partner, drives strong outcomes by pursuing what’s possible. As a forward-thinking technology consulting firm, they deliver what’s next for organizations. Their expertise and status as a Platinum Tier Camunda partner enables them to optimize processes, leverage cutting-edge cloud solutions, and accelerate digital transformation for their clients.
What is Camunda BPM and its benefits?
Camunda provides the foundational elements of a modern-day business process management system. Its process management engine (Zeebe pronounced ‘Zee-Bee’) combined with Process Management Dashboard (Operate), Human Tasks Management (Tasklist), Optimization and Reporting (Optimize) and finally Identity Server (Identity Management) provides full coverage for visualizing, automating, managing and optimizing business processes.
Camunda Platform 8 supports both fully managed Software as a Service (SaaS) and self-managed models. Their SaaS model provides a fully managed experience. For many organizations, it is preferable to manage vendors and service level agreements (SLAs) thereby leaving the overall management of infrastructure and software to the vendor. According to Phil Alves in his article, “103 SaaS Statistics and Trends for 2024 ”, 99% of businesses in 2024 use at least one SaaS product.
Organizations in Insurance, Health, Financial Services and Banking, Logistics and Distribution use business process management tools today to execute data-intensive business processes that allow their organization to efficiently operate at scale. Any organization with business processes and rules that need to scale and evolve over time can benefit from the use of BPM software.
Camunda Platform 8 is containerized and can run on any docker compatible platform. For development purposes, Camunda supports both Docker and Kubernetes. For production purposes, Camunda Platform 8 needs to run on Kubernetes.
Inquisitive enterprises need to consider how their software teams will integrate with Camunda. While Camunda’s roots are embedded in Java, the software itself is platform-agnostic. Support for Java, Go, Node.js, Python and .NET is readily available either natively or through Camunda’s rich Open-Source Community.
Camunda in the AWS Marketplace
Camunda Platform 8 Self-Managed is available in the AWS Marketplace, providing centralized invoicing via AWS Marketplace’s subscription model. Online guidance is offered describing how to provision Amazon Elastic Kubernetes Service (EKS) as well as instructions on how to install Camunda Platform 8.
Bettering Business Outcomes
One of the key benefits of implementing workloads on AWS is improving time to market. Implementing a productized instance of Camunda quickly and efficiently on AWS requires a harden early strategy.
Applying information security and systems reliability engineering (SRE) practices earlier in the process yields a Camunda instance that snaps into an organization’s system architecture. This means that an organization’s users can log in to Camunda’s sub-systems with their organization identity, network operations can start observing system health earlier, and all data is encrypted over the wire as well as at rest. Shifting productization left is a practice that smooths the transition to production and empowers an organization to focus on the primary objective – focusing on building and improving their business processes.
Solution Overview
Camunda BPM supports Amazon Relational Database Service (Amazon RDS) and Amazon OpenSearch Service, which helps offset maintenance tasks associated with running complete applications solely within Kubernetes. Backup, point-in-time restore, as well as managed cluster resizing are key advantages to including them in the architecture.
Key features of the Camunda Productized Architecture, shown in Figure 1 below, include the Certificate Manager Add-on that provides automatic certificate renewal and issuance. With AWS Certificate Manager, the manual management of certificates can be offloaded to services. Amazon OpenSearch service makes it easy to perform interactive log analytics, real-time application monitoring, website search, and more. Amazon RDS automates the undifferentiated database management tasks, such as provisioning, configuring, backups, and patching. Amazon Route 53 provides DNS management
Figure 1: Camunda Productized Architecture
For Configuration Options, Camunda supports a range of deployment options for multi-region and high availability. Camunda’s additional guidance found provides insights into defining a multi-region instance. Camunda’s deployment may be configured to enable CRON jobs for backing up Elasticsearch indices and Postgres database, or Camunda’s default architecture may be altered by incorporating AWS services to take advantage of point-in-time backups. Data in transit and data at rest encryption is supported by Camunda off the shelf, and it must be enabled.
To automatically manage certificates, consider the certificate management add-on for EKS. This provides automatic certificate renewal and issuance. Combined with AWS Certificate Manager (ACM), the people-intensive activity of manually managing certificates (and renewal) can be offloaded to services. Human users and service principals in Camunda Platform 8 are managed using Keycloak, an identity provider created by Bitnami. The default identity setup is Basic authentication however, with additional configuration, Keycloak supports single sign-on (SSO). Some infrastructure-as-code (IaC) tools have ready-made providers available to simplify SSO setup. Camunda Platform 8 emits Prometheus events. The out-of-box Grafana dashboard is very detailed and well suited for monitoring the overall health of a Camunda Platform 8 installation. It does, however, need to be enabled and Prometheus must be deployed and configured on your EKS cluster.
Conclusion
Camunda Platform 8 is a well-designed business process management/decision management system, has a healthy and thriving open-source community, and is very well suited to help drive organizations’ processes. CapTech’s Camunda Deployment Accelerator (CDA) will rapidly stand up a production-hardened Camunda 8 Self-Managed instance. The CDA is based on AWS’ Experience Based Acceleration (EBA) events and can be applied to organizations holding Camunda 8 Enterprise Licenses as well as organizations evaluating Camunda 8 Self-Managed or upgrading from Camunda 7 (Camunda 7 is nearing end of life with its Community Edition archival occurring October 2025. Camunda 7 Enterprise Edition full support ends April 2027 and extended support will be available through April 2030).
.
Camunda – AWS Partner Spotlight
Camunda is an AWS Global Startup Partner that provides software and services for business process automation.