AWS Cloud Operations Blog
Category: Expert (400)
Configuring machine to machine Authentication with Amazon Cognito and Amazon API Gateway – Part 2
This blog is the second part to a 2 part series on how to secure your Amazon API Gateway with Amazon Cognito, in machine to machine (M2M) communication use cases. In the previous blog post, we dove deep into the different use cases involving M2M communication and how it contributes to business modernization, and why […]
Configuring machine to machine Authentication with Amazon Cognito and Amazon API Gateway – Part 1
Introduction When we think about modernization, we’re used to think about the process of breaking down a monolithic application, or moving to a microservices architecture. But let’s think for a moment on the business side. For example, think about the challenges and risks involved in moving information over phone calls or emails. We want to […]
Schedule automated operations for your Terraform managed resources on AWS
Introduction Do you have AWS resources deployed with Terraform where you would like to perform specific operations on schedule while avoiding drift in state? Terraform is an infrastructure as code tool that helps you build, change, and version cloud and on-premise resources safely and efficiently. This post describes a pattern that can be used to […]
Using Curated Packages and AWS managed Open Source services to observe your On Premises Kubernetes environment
Customers who run containerized workloads on Kubernetes clusters on their hardware use Amazon EKS Anywhere (Amazon EKS-A). Customers look for prescriptive guidance for the observability of their modern applications running on EKS-A. Using AWS-managed open-source services such as AWS Distro for OpenTelemetry (ADOT), Amazon Managed Service for Prometheus, and Amazon Managed Grafana helps customers to offload […]
Using Open Source Grafana Operator on your Kubernetes cluster to manage Amazon Managed Grafana
Introduction Kubernetes APIs are robust and its control loop mechanism allows us to control the state of resources that are even outside of Kubernetes environments. Customers have shifted their focus towards workload gravity and rely on Kubernetes-native controllers to deploy and manage the lifecycle of external resources such as Cloud resources. We have seen customers […]
View multi-account Service Quotas Increase using AWS CloudTrail Lake
In this post, you’ll learn how to find all of the Service Quotas that were modified across all accounts and regions using AWS CloudTrail Lake. The solution uses AWS CloudTrail’s new feature CloudTrail Lake to analyze CloudTrail events. This solution can help customers be proactive in scenarios including: Workload promotion from lower environment to Production […]
Centrally track Oracle database licenses in AWS Organizations using AWS License Manager and AWS Systems Manager
As you continue to run your business-critical workloads in hybrid environments, you’ll most likely face the challenges of license management of products, such as Microsoft, SAP, Oracle, and IBM due to limited visibility and governance. You’ll most likely eventually over-provision licenses to avoid the headache with third-party license providers or under-provisioning licenses, only to face […]
Monitoring Amazon RDS and Amazon Aurora using Amazon Managed Grafana
Organizations running critical applications on AWS using fully managed database services such as Amazon Relational Database Service (Amazon RDS) and Amazon Aurora rely on robust monitoring to ensure that their databases are performant, and cause no service disruptions to their customers. Amazon Managed Grafana is a fully managed and secure data visualization service that you […]
Using Amazon IPAM to enhance AWS Control Tower governance for Networking resources
Many of our customers are scaling their AWS environment to meet the growing needs of their businesses. They are building multi-VPC environments and interconnecting them with on-premises through AWS Site-to-Site VPN connection or AWS Direct Connect. As the number of projects grow customers have also adopted multi-account strategy using AWS Control Tower. This has helped […]
Enhance Evidence Collection with AWS Config and Audit Manager
AWS Audit Manager is a fully-managed service that provides prebuilt frameworks for common industry standards and regulations, and that automates the continual collection of evidence to help you prepare for an audit. The continuous and automated gathering of evidence related to your AWS resource usage helps simplify risk assessment and compliance with regulations and industry […]