Category: AWS CloudFormation

Developers can rely on AWS CloudFormation to update or add new resources to an application, as CloudFormation provides two methods for updating the stack: direct update or change set. Learn how to update the value and add new resources to your running Amazon RDS deployment, and explore architecture diagrams to help you see how the system behaves when you apply the changes via CloudFormation template.

Dive deep on AWS Identity and Access Management (IAM) permissions and how the principle of least privilege can be best achieved when using AWS CloudFormation, and more specifically CloudFormation Modules, to provision resources on AWS. CloudFormation Modules are a way to package resource configurations for inclusion across stack templates, in a transparent, manageable, and repeatable way.

Scanning for misconfigurations as part of your CI/CD pipeline helps maintain a solid security posture for all changed resources before provisioning them to a running environment. Learn how to integrate infrastructure as code security and compliance scanning using AWS CodeBuild and Bridgecrew, a cloud security platform for developers. Bridgecrew is generally used to find security misconfigurations and policy violations across Amazon Web Services (AWS) and in configuration frameworks.

Data lakes have evolved into the single store-platform for all enterprise data managed. On AWS, an integrated set of services are available to engineer and automate data lakes. A data lake on AWS is able to group all of the previously mentioned services of relational and non-relational data and allow you to query results faster and at a lower cost. Learn how nClouds used code automation via AWS CloudFormation to create a dynamic data lake stack to visualize and analyze the financial market data.

AWS Partners in the AWS Quick Start program can help their customers automate the deployment of their solutions, increasing customer engagements and improving the customer experience. The AWS Quick Start team has had considerable experience working with a variety of partner products, and has identified best practices to follow when developing a Quick Start and common missteps to avoid. By following these steps, you can efficiently and effectively develop Quick Starts using the AWS platform.

Infrastructure as code is one of the most important concepts used with cloud solutions, and AWS CloudFormation enables IaC by deploying stacks and provisioning resources on AWS using JSON or YAML files called templates. APN Ambassador Francois Rouxel from Slalom will show you how to create a hundred VPCs in one AWS region without providing any parameters, and how to easily establish a peering connection between two of them within a single line of code.

Shift-Left is increasingly being employed within DevOps organizations to ensure companies minimize risk early in their infrastructure as code (IaC) deployment cycle. This post explains how to combine two of the technologies that make Shift-Left possible. The first is AWS CloudFormation, which represents IaC, and the second is Trend Micro’s Template Scanner, which checks your IaC to make sure it conforms to the AWS Well-Architected Framework.

Terraform and AWS CloudFormation allow you to express infrastructure resources as code and manage them programmatically. Each has its advantages, but some enterprises already have expertise in Terraform and prefer using it to manage their AWS resources. To accommodate that preference, CloudFormation allows you to use non-AWS resources to manage AWS infrastructure. Learn the steps to create a CloudFormation registry resource type for Terraform and deploy it as an AWS Service Catalog product.

By using serverless applications alongside existing Amazon Machine Images, ISVs can provide customers with solutions that are easier to use, more elastic, and more scalable. AWS Marketplace recently announced a feature that enables sellers to publish solutions comprised of AMIs and serverless applications that customers can deploy AWS CloudFormation. This makes it easier for customers to deploy software solutions, rather than ISVs packaging AWS Lambda code into an AMI or referencing their own Amazon S3 bucket.

As teams begin to build their architecture on AWS, the question often arises about how to manage access control to all of their instances. Userify solves this problem quickly and easily by providing Userify Cloud or, for self-hosting, a single instance or multi-Availability Zone cluster that runs in your Amazon VPC. Userify Cloud is a fully managed service that can be used across your VPCs and AWS accounts with no installation needed.