AWS Cloud Operations & Migrations Blog
Category: Management Tools
Automating IAM Roles For Cross-Account Access Series Overview
The AWS Partner Network Blog has recently published a series describing a method to automate the creation of an IAM role for cross-account access, and how to collect the information needed for a partner to assume the role after creation. This post gives readers an overview of the series, summarizing each of the individual posts […]
Gain Visibility into the Execution of Your AWS Lambda functions with AWS CloudTrail
Today, we are happy to announce that AWS CloudTrail now supports the Lambda Invoke API as a new data event type with the launch of CloudTrail Lambda data events. Previously, AWS CloudTrail supported management events for AWS Lambda, which allowed you to capture when and by whom a function was created, modified, or deleted. With […]
Monitoring Service Limits with Trusted Advisor and Amazon CloudWatch
Understanding your service limits (and how close you are to them) is an important part of managing your AWS deployments – continuous monitoring allows you to request limit increases or shut down resources before the limit is reached. One of the easiest ways to do this is via AWS Trusted Advisor’s Service Limit Dashboard, which […]
Automate IIS and HttpErr Logs to Amazon CloudWatch Using EC2 Systems Manager
When you have workloads or applications hosted on IIS Web Server, it’s important to monitor and analyze both IIS and HttpErr logs for abnormalities. IIS logs contain an entry for every request to the site. However, at times, you might not find the requests in IIS logs, even though IIS logging is enabled. There is […]
Take Microsoft VSS-Enabled Snapshots Using Amazon EC2 Systems Manager
We are happy to announce the support for Microsoft Volume Shadow Copy Service (VSS) on Amazon EC2 instances running Windows AMIs. VSS is a popular volume backup technology in the Microsoft Windows ecosystem (compatible with most Microsoft applications, including SQL Server and Exchange Server). VSS manages disk operations, such as file writes, when a backup […]
Query for the Latest Windows AMI Using Systems Manager Parameter Store
AWS has introduced a simpler way for you to query for the latest Windows Amazon Machine Image (AMI). You can now use Amazon EC2 Systems Manager Parameter Store. Prior to this release, finding the latest regional ImageID for an Amazon-provided AMI involved a three-step process. First, use an API call to search the list of […]
FINRA Gatekeeper: Amazon EC2 Access Management System Using Amazon EC2 Systems Manager
By Daniel Koo, Senior Director at FINRA, and Stephen Mele, Software Developer at FINRA Introduction Moving from a traditional data center to the cloud can impose many questions around compliance and security. FINRA took these concerns very seriously with our cloud migration journey to AWS. As a regulatory organization, overseeing up to 75 billion market […]
How to Export EC2 Instance Execution Logs to an S3 Bucket Using CloudWatch Logs, Lambda, and CloudFormation
This blog was updated on December, 6, 2023. The updates included updating the AWS CloudFormation template to use Python 3.11 instead of Python 2.7. Other minor changes were made to AWS Lambda, to accommodate Python version changes. “We want to get execution logs from our EC2 instances into S3,” my customer said. “Then we can […]
The Virtues of YAML CloudFormation and Using CloudFormation Designer to Convert JSON to YAML
AWS CloudFormation provides the framework to define infrastructure-as-code in AWS and, until last year, this could only be written in JSON. However, in 2016, AWS added YAML 1.1 support for CloudFormation. Let’s take a look at some of the advantages of using YAML over JSON, as well as how to overcome some of the challenges […]
Controlling Projected User Costs Through Monthly Budget Policies
Introduction With the announcement of our new AWS Price List Query APIs, let’s discuss a use-case that you can deploy directly to your AWS account. Customers often ask for ways to proactively control costs while having the flexibility to experiment with different AWS resource sizes and types. The solution we’ll discuss in this blog post […]