AWS provides a broad set of services that help IT administrators, systems administrators, and developers more easily manage and monitor their hybrid infrastructure resources. Using these fully-managed services, you can automatically provision, configure, and manage your AWS or on-premises resources at scale. You can also monitor infrastructure logs and metrics using real-time dashboards and alarms. AWS also helps you monitor, track, and enforce compliance and security.
|If You Need:
Managed Chef Server for package installation, software and resource configuration, system patching, and admin task execution
Collection of EC2 tools for package installation, software and resource configuration, system patching, and admin task execution
|If You Need:
Monitoring, alarms, and dashboards for metrics, logs, and events generated by your AWS resources and applications
|If You Need:
Automated recommendations to reduce costs, increase performance, and improve security
|AWS Trusted Advisor
AWS CloudFormation gives developers and systems administrators an easy way to create and manage a collection of related AWS resources, provisioning and updating them in an orderly and predictable fashion. You can use AWS CloudFormation’s sample templates or create your own templates to describe the AWS resources, and any associated dependencies or runtime parameters, required to run your application.
For more information visit the AWS CloudFormation product page.
AWS OpsWorks is a configuration management service that helps you configure and operate applications of all shapes and sizes using Chef. You can define the application’s architecture and the specification of each component including package installation, software configuration and resources such as storage. Start from templates for common technologies like application servers and databases or build your own to perform any task that can be scripted. AWS OpsWorks includes automation to scale your application based on time or load and dynamic configuration to orchestrate changes as your environment scales.
For more information visit the AWS OpsWorks product page.
Amazon EC2 Systems Manager, helps you easily automate key management tasks such as collecting system inventory, applying OS patches, automating image creation, and configuring OS and applications at scale. These capabilities help you define and track system configurations, establish maintenance windows, and maintain software compliance. EC2 Systems Manager contains the following tools:
Run Command - Automate script executions
State Manager - Define and automate OS configurations
Patch Manager - Select and deploy software patches
Automation - Automate common maintenance and deployment tasks
Parameter Store - Store important admin information and database strings
Inventory - Collect and query configuration and inventory information
Maintenance Window - Define maintenance windows for recurring tasks
For more information visit the Amazon EC2 Systems Manager page.
Amazon CloudWatch is a monitoring service for AWS cloud resources and the applications you run on AWS. You can use Amazon CloudWatch to collect and track metrics, collect and monitor log files, set alarms, and automatically react to changes in your AWS resources. Amazon CloudWatch can monitor AWS resources such as Amazon EC2 instances, Amazon DynamoDB tables, and Amazon RDS DB instances, as well as custom metrics generated by your applications and services, and any log files your applications generate. You can use Amazon CloudWatch to gain system-wide visibility into resource utilization, application performance, and operational health. You can use these insights to react and keep your application running smoothly.
For more information visit the Amazon CloudWatch product page.
AWS Config is a fully managed service that provides you with an AWS resource inventory, configuration history, and configuration change notifications to enable security and governance. Config Rules enables you to create rules that automatically check the configuration of AWS resources recorded by AWS Config.
With AWS Config, you can discover existing and deleted AWS resources, determine your overall compliance against rules, and dive into configuration details of a resource at any point in time. These capabilities enable compliance auditing, security analysis, resource change tracking, and troubleshooting.
For more information visit the AWS Config product page.
AWS CloudTrail is a web service that records AWS API calls for your account and delivers log files to you. The recorded information includes the identity of the API caller, the time of the API call, the source IP address of the API caller, the request parameters, and the response elements returned by the AWS service.
With CloudTrail, you can get a history of AWS API calls for your account, including API calls made via the AWS Management Console, AWS SDKs, command line tools, and higher-level AWS services (such as AWS CloudFormation). The AWS API call history produced by CloudTrail enables security analysis, resource change tracking, and compliance auditing.
For more information visit the AWS CloudTrail product page.
AWS Service Catalog allows organizations to create and manage catalogs of IT services that are approved for use on AWS. These IT services can include everything from virtual machine images, servers, software, and databases to complete multi-tier application architectures. AWS Service Catalog allows you to centrally manage commonly deployed IT services, and helps you achieve consistent governance and meet your compliance requirements, while enabling users to quickly deploy only the approved IT services they need.
For more information visit the AWS Service Catalog product page.
AWS Trusted Advisor is an online resource to help you reduce cost, increase performance, and improve security by optimizing your AWS environment, Trusted Advisor provides real time guidance to help you provision your resources following AWS best practices.
For more information visit the AWS Trusted Advisor page.
The Globe and Mail is Canada’s most read newspaper with a national weekly digital readership of 4.7 million. The Globe adopted a DevOps approach for infrastructure automation. Management of The Globe's production, staging, and development environments on AWS was made easier with AWS CloudFormation and AWS OpsWorks. With these tools in place, conditions such as CPU and memory utilization are automatically monitored, eliminating the need to manually add servers. It used Amazon CloudWatch to monitor the performance of the system.