Integration & Automation
Category: AWS CloudFormation
Automate IAM credential reports for large AWS Organizations
Learn how to manage credentials with many accounts, automate IAM credential reports, and consolidate the results.
Automate prework to save time deploying an Amazon EKS Kubernetes cluster
Discover a solution for automating Amazon EKS cluster prework using a sample AWS CloudFormation template. We combine this template with a Kubernetes cluster created with the Modular and Scalable Amazon EKS Architecture on AWS solution.
Reduce costs with an ephemeral Amazon FSx for Lustre file system
Create an ephemeral Amazon FSx for Lustre file system that’s active on an as-needed basis, allowing you to pay for services only when the system is used. With the file system running only when needed, you can still benefit from a powerful system with fast processing speeds without the high costs associated with a continuously running implementation.
Manage permission sets and account assignments in AWS IAM Identity Center with a CI/CD pipeline
Have you created permission sets and assigned them to AWS Identity and Access Management (IAM) groups in AWS Organizations? Have you used existing corporate identities with AWS IAM Identity Center (successor to AWS Single Sign-On) to grant Active Directory groups access to AWS accounts and applications? Save time and minimize errors by managing permission sets automatically with a continuous integration and continuous deployment (CI/CD) pipeline built with AWS developer tools.
Keep your AWS resources when you rename an AWS CloudFormation stack
Learn how to change the name of a CloudFormation stack without deleting the resources that it manages. In the walkthrough, which uses a simple architecture with a single resource, a virtual private cloud (VPC), you add a Retain attribute to the resource’s deletion policy so that the resource isn’t lost when that stack is deleted.
Create a more secure LAMP stack with AWS WAF (web application firewall)
Learn how to create a more secure LAMP stack with AWS WAF, Route 53 domain, and AWS Certificate Manager. This post walks you through automation steps to deploy a highly available LAMP-stack application with a web application firewall.
Reduce log-storage costs by automating retention settings in Amazon CloudWatch
Learn how to reduce log-storage costs by automating retention settings in Amazon CloudWatch. By default, CloudWatch Logs stores log data indefinitely, which is helpful. But as AWS workload logging grows, so do your log-storage costs. To reduce costs, establish a log-retention policy and apply it across all your log groups, ideally automatically.
Collect custom metrics with Amazon CloudWatch strategic tagging
Learn how to use an Amazon CloudWatch agent to automate the collection of custom metrics for two Amazon EC2 instances. The solution is based on a tagging strategy combined with AWS Systems Manager State Manager to enforce specific CloudWatch agent configurations for EC2 instances that are tagged appropriately.
Deploy bastion hosts into private subnets with AWS CDK
Learn how to use AWS CDK to deploy bastion hosts into private subnets of a VPC.
Emulate your test environment using a service virtualization on AWS
Learn how to create a service virtualization using AWS CloudFormation and Amazon API Gateway to test an application that uses an external API that’s not always available.