Track licenses across multiple AWS Regions using AWS License Manager
Are you a license administrator who wants to manage software licenses from different vendors as you build your cloud infrastructure across multiple AWS Regions? If so, you can use AWS License Manager to gain control and visibility into license usage. In this blog post, we discuss a solution that integrates AWS License Manager with AWS Lambda to manage licenses used across different AWS Regions.
In each of the AWS Regions, you create a license configuration that contains licensing rules based on the terms of your enterprise agreements.
A Lambda function is used to call License Manager API operations, GetLicenseConfiguration and ListUsageForLicenseConfiguration, which provide license consumption details. This Lambda function is triggered at regular intervals based on your administration policy by an Amazon EventBridge rule. That interval can be weekly, daily, or at any given time intervals. The result of the Lambda function is then stored in an Amazon Simple Storage Service (Amazon S3) bucket. The following figure shows the solution design.
Figure 1: Architecture diagram of multi-Region license tracking solution
To deploy the solution described in this post, you need the following:
- License configurations created in the AWS Regions you want to monitor licenses. Follow the steps in create a license configuration in the AWS License Manager User Guide, and then copy the Amazon Resource Names (ARNs) of these license configurations. You need them in the deployment section of this post.
- Permissions required to deploy the AWS CloudFormation template that automates the multi-Region license tracking solution.
Use the AWS CloudFormation template to deploy the solution.
1. In the AWS CloudFormation console, choose Create stack, and then choose the With new resources (standard) option.
Figure 2: Stacks page in the AWS CloudFormation console
2. Save the code snippet from aws-samples repo as a YAML file on your local computer.
3. On the Create stack page, choose Template is ready, choose Upload a template file, and then choose Next.
4. On the Specify stack details page, provide the following details, and then choose Next:
- Stack name: Enter a stack name for your AWS CloudFormation stack. In this post, we used MultiRegionLicenseTracking.
- LambdaTriggerSchedule: Enter the schedule expression for the EventBridge rule based on your administration policy. We chose rate(1 day), which triggers the Lambda function daily. For more information, check Cron Expressions in the Amazon EventBridge documentation.
- LicenseConfigArns: Enter the list of license configuration ARNs, separated by comma.
Figure 3: Specify stack details page
5. (Optional) Configure the fields for tags, permissions, and other advanced options. If no changes are required, use the defaults, and then choose Next.
Figure 4: Stack creation options
6. Review the stack details and in the Capabilities section, select I acknowledge that AWS CloudFormation might create IAM resources, and then choose Create stack.
Figure 5: IAM check box
7. On the stack details page, you can check the status of your stack. When all the resources defined in the CloudFormation template have been created, CREATE_COMPLETE is displayed under Status.
Figure 6: CREATE_COMPLETE
8. Under Resources, you should find the following four resources have been created.
- LicenseTrackingLambdaFunction: The Lambda function that calls License Manager to fetch the license consumption of license configurations whose ARNs were provided as input to the CloudFormation parameter.
- LicenseManagerLambdaEventRule: The Amazon EventBridge rule that triggers the Lambda function on a periodic schedule.
- LambdaRole: The IAM role with the permissions required for the Lambda function to make License Manager API calls and store the function results in an S3 bucket.
- LicenseConsumptionBucket: The S3 bucket used for storing multi-Region license consumption details.
Figure 7: Resources created by the AWS CloudFormation stack
Now that the solution is deployed, let us discuss the data that is sent to the Amazon S3 bucket on every Lambda function run. When the EventBridge Rule triggers the Lambda function, the Lambda function creates the following folder structure and files in the S3 bucket.
- A folder structure in the format YYYY/MM/DD/Timestamp for each run, as shown here:
Figure 8: License consumption report folder structure
- A license consumption summary file with details of all the license configurations that are sent as parameters to the CloudFormation template. In addition to the summary, for each of the license configurations, individual usage files are created that provide information of licenses consumed.
Figure 9: License consumption reports from multiple AWS Regions
You can use these details to track consumption across AWS Regions and assess your license monitoring needs.
To avoid ongoing charges, delete the CloudFormation stack. That deletes the resources deployed by the CloudFormation template. You must empty the S3 bucket before you can delete it.
There is no additional charge for using License Manager. You pay only for the AWS resources that are managed by License Manager, based on the AWS pricing of the resources.
In this blog post, we showed you how to track licenses when your workloads are deployed in multiple AWS Regions. This solution makes it effortless to manage and monitor license administration with less operational overhead. For more information about license management solutions on AWS, check the AWS License Manager documentation.
About the Authors
Harshitha Putta is a Cloud Infrastructure Architect with AWS Professional Services in Seattle, WA. She is passionate about building innovative solutions using AWS services to help customers achieve their business objectives. She enjoys spending time with family and friends, playing board games and hiking.
Kalhan Vundela is a Software Development Engineer with Amazon Braket service. He is passionate about developing solutions that solve customer challenges. Kalhan enjoys hiking, skiing, and cooking.