AWS Cloud Operations & Migrations Blog

Category: Management Tools

Introducing new language extensions in AWS CloudFormation

AWS CloudFormation, an Infrastructure as Code (IaC) service that lets you model, provision, and manage AWS and third-party resources, recently released a new language transform that enhances the core CloudFormation language. For our first release, these enhancements are new intrinsic functions for JSON string conversion (Fn::ToJsonString), length (Fn::Length), and support for intrinsic functions and pseudo-parameter […]

Monitoring Data Ingestion Tasks with Amazon CloudWatch Metrics and Alarms

Data is produced every day in increasing volumes and varieties in on-premises and cloud environments. Data ingestion into AWS is a common task and there are many services and architecture patterns that customers use to bring in data. In this post, we provide a guide for establishing monitoring and alerting on a data ingestion workload […]

Integrating Kubecost with Amazon Managed Service for Prometheus

This blog post was co-written by Linh Lam, Solution Architect, Kubecost Customers can track their Kubernetes control plane and Amazon Elastic Compute Cloud (Amazon EC2) costs using AWS Cost and Usage Reports. However, they often need deeper insights to accurately track Kubernetes costs across namespaces, clusters, pods, and more. We recently announced that AWS and […]

Announcing AWS Config Compliance Scores for conformance pack

Back in November 2019, we announced AWS Config Conformance Packs, which is a collection of AWS Config rules and remediation actions that can be easily deployed as a single entity in an account and a region or across an organization in AWS Organizations. Conformance Packs have helped AWS customers to manage and enforce compliance of […]

Copy existing AWS CloudTrail trails events to a AWS CloudTrail Lake event data store

AWS announced the general availability of AWS CloudTrail Lake on 5th Jan 2022, a managed audit and security lake that lets you aggregate, immutably store, and query activity logs for auditing, security investigation, and operational troubleshooting. Since launch, customers have adopted this feature, and it’s an integral part of customer operational and security operational processes. […]

How to get a daily report for your resources configuration changes

AWS allows customers to build, experience, and innovate in their AWS accounts, resulting in dynamic environments. You can manage your resources changes using different controls, such as: Preventive controls with AWS Identity and Access Management (IAM) policies Detective controls with AWS Config Rules Preventive and Detective controls with continuous integration and continuous delivery (CI/CD) pipelines […]

Migrating AIX workloads to AWS: How to get started

Customers are asking us how to migrate their AIX workloads to Amazon Web Services (AWS).  Customers have questions regarding assessing the current AIX portfolio, estimating the total cost of ownership (TCO) on AWS, and guidance in determining migration patterns and target state architectures for specific workloads.  To accelerate your AIX migrations to the cloud you’ll […]

AWS Control Tower releases API, pre-defined controls to your organizational units

AWS Control Tower offers a direct way to set up and govern an AWS multi-account environment following prescriptive guidance and best practices. It orchestrates the capabilities of several other AWS services, including AWS Organizations, AWS Service Catalog, and AWS IAM Identity Center (successor to AWS Single Sign-On), to build a landing zone in less than […]

Prepare for an Audit in AWS Part 2 – General Best Practices

In Part 1 of this blog series, I discussed how you can use purpose-built services, such as AWS Audit Manager, AWS Config, and AWS Artifact, to help with almost any audit that you may be preparing for, with features geared specifically to what is required by an audit. But the story shouldn’t start there. Instead, […]