Date post: | 15-Jul-2015 |
Category: |
Technology |
Upload: | amazon-web-services |
View: | 939 times |
Download: | 1 times |
©2015, Amazon Web Services, Inc. or its affiliates. All rights reserved
Managing lifecycle of enterprise workloads as IT Products in AWS
Ashutosh Tiwary, General Manager, AWS Abhishek Lal, Product Manager, AWS
Traditional Lifecycle of IT Products
Stage Who? How?
Define IT Admin Documents
Publish IT Admin Portal, Spreadsheet
Request User Tickets
Provision IT Admin Manual, Scripts
Monitor/Manage IT Admin Traditional tools to monitor, patch, backup
Track/Govern IT Admin Compliance tools, inspections, spreadsheets
What is an IT Product: Server, Database, Desktop, Environment, Application?
Lifecycle of IT Products in the cloud
Stage Who? How?
Define IT Admin
Publish IT Admin
Request
Provision
Monitor/Manage IT Admin
Track/Govern IT Admin
IT Products: Server, Database, Desktop, Environment, Application
Lifecycle of IT Products in AWS
Stage Cloud AWS Define Infrastructure as code CloudFormation
Publish Service catalog Service Catalog
Request Self-Service Portal Service Catalog
Provision Self-Service Portal with automation Service Catalog
Monitor/Manage Metrics, visualizations & automated alerts CloudWatch
Track/Govern Audit logs, change events and alerts Config, CloudTrail
IT Product Lifecycle Management in AWS
CloudFormation template
Admin
Define
AWS Service Catalog
Publish
CloudFormation stack
Users
Browse and Launch
AWS CloudTrail Amazon S3
Monitors
Logs all API calls
AWS CloudWatch alarm
Monitors
Initiates
Notifies
AWS Config
Track changes
Notifies
Changes Changes Provisions
IT Product Lifecycle Management in AWS
CloudFormation template
Admin
Define
AWS Service Catalog
Publish
CloudFormation stack
Users
Browse and Launch
AWS CloudTrail Amazon S3
Monitors
Logs all API calls
AWS CloudWatch alarm
Monitors
Initiates
Notifies
AWS Config
Track changes
Notifies
Changes Changes Provisions
Use cases enabled by CloudFormation • Allows creating templates of your
infrastructure and applications
• Specify resources and their relationships
• Easily version control, replicate or update your environments
• Integrate with other development, CI/CD, and management tools.
Demo: Provision your resources with standardized templates
IT Product Lifecycle Management in AWS
CloudFormation template
Admin
Define
AWS Service Catalog
Publish
CloudFormation stack
Users
Browse and Launch
AWS CloudTrail Amazon S3
Monitors
Logs all API calls
AWS CloudWatch alarm
Monitors
Initiates
Notifies
AWS Config
Track changes
Notifies
Changes Changes Provisions
What is the AWS Service Catalog?
AWS Service Catalog is a personalized portal for end-users in an organization to browse and launch services listed by their IT departments
IT Developers
Control Visibility
Compliance
Agility Self-service
Time to market
Why should I use a Service Catalog?
Use cases
• Development/Test Environments
• Line-of-business applications
Benefits • For organizations
– Promote compliance – Cost Management
• For administrators – Increase standardization – Controlled access – Centralized management
• For end-users (developers & applications users) – Simple personalized portal – Self-service provisioning
Creates portfolio
Adds constraints and grant access
1
4
5
Administrator Portfolio
Users
Browse Products
6Launch Products AWS CloudFormation template
Creates product 3Authors template 2
ProductX ProductY ProductZ
7Deploys stacks
Notifications Notifications
88
Service Catalog flow
Create custom services
and grant access
Use a personalized
portal to find & launch services
AWS Service Catalog Demo
IT Product Lifecycle Management in AWS
CloudFormation template
Admin
Define
AWS Service Catalog
Publish
CloudFormation stack
Users
Browse and Launch
AWS CloudTrail Amazon S3
Monitors
Logs all API calls
AWS CloudWatch alarm
Monitors
Initiates
Notifies
AWS Config
Track changes
Notifies
Changes Changes Provisions
AWS CloudWatch
• Monitoring service in AWS • 300+ built-in metrics • Publish your own custom metrics • Alerts on metrics • Centralized archive & access for logs
Use cases enabled by CloudWatch
• Monitor metrics & logs: errors, exceptions, HTTP responses
• Analyze metrics data: using graphs & Trusted Advisor
• Centralized repository of logs and metrics off-box
• Watching logs without connecting to host
• Correlate system status with change events
Demo: Monitor resources and products on AWS
IT Product Lifecycle Management in AWS
CloudFormation template
Admin
Define
AWS Service Catalog
Publish
CloudFormation stack
Users
Browse and Launch
AWS CloudTrail Amazon S3
Monitors
Logs all API calls
AWS CloudWatch alarm
Monitors
Initiates
Notifies
AWS Config
Track changes
Notifies
Changes Changes Provisions
©2015, Amazon Web Services, Inc. or its affiliates. All rights reserved
Continuous Change Recording Changing Resources
AWS Config History
Stream
Snapshot (ex. 2014-11-05) AWS Config
Why track change events using Config?
• Discovery: What resources exist? • Troubleshooting: What has changed? • Audit Compliance: Where is the evidence? • Change Management: What will this change affect? • Security Analysis: Am I safe?
Demo: Track resource configurations and changes
IT Product Lifecycle Management in AWS
CloudFormation template
Admin
Define
AWS Service Catalog
Publish
CloudFormation stack
Users
Browse and Launch
AWS CloudTrail Amazon S3
Monitors
Logs all API calls
AWS CloudWatch alarm
Monitors
Initiates
Notifies
AWS Config
Track changes
Notifies
Changes Changes Provisions
Introduction to AWS CloudTrail
Customers are making API calls...
On a growing set of services
around the world…
CloudTrail is continuously
recording API calls…
And delivering log files to customers
Use cases enabled by CloudTrail
• Security Analysis – Use log files as an input into log management and analysis solutions to perform security
analysis and to detect user behavior patterns
• Track API calls to AWS Resources – Track creation, modification, and deletion of AWS resources such as Amazon EC2
instances, Amazon VPC security groups and Amazon EBS volumes
• Troubleshoot Operational Issues – Identify the most recent actions made to resources in your AWS account
• Compliance Aid – Easier to demonstrate compliance with internal policies and regulatory standards
Demo: Log API calls for audit
Partner solutions integrated with CloudTrail
IT Product Lifecycle Management in AWS – Wrap up
CloudFormation template
Admin
Define
AWS Service Catalog
Publish
CloudFormation stack
Users
Browse and Launch
AWS CloudTrail Amazon S3
Monitors
Logs all API calls
AWS CloudWatch alarm
Monitors
Initiates
Notifies
AWS Config
Track changes
Notifies
Changes Changes Provisions
Scenario: Evaluate and procure software
What is AWS Marketplace? • Commerce site that enables accelerated
evaluation and procurement of software • Simplifies buying for customers,
eliminates additional contracting and allows customers to purchase software from 685+ vendors
• Consume as needed, without overprovisioning
• One AWS bill • Over 2,100 product listings
More Information
• http://aws.amazon.com/solutions/case-studies/ • http://aws.amazon.com/whitepapers • http://aws.amazon.com/economics/
Thank you!
SAN FRANCISCO
©2015, Amazon Web Services, Inc. or its affiliates. All rights reserved
Enterprise Pre-Day