© 2016, Amazon Web Services, Inc. or its Affiliates. All rights reserved.
Kevin Wilmot, Steven Jones
November 29, 2016
ISV Technical: GPSISV1
Tips for Building Successful Solutions
with AWS Marketplace and AWS Quick Start
AWS Marketplace and Quick Start
AWS Marketplace
• Single Vendor Solutions
• Buyer’s AWS bill
• AWS scanned and approved assets
• Low friction, self contained deployments
Quick Start
• “Gold Standard” reference architectures for key workloads
• For Pilot or Production use
• Modular and customizable
• Leverage Marketplace and/or publicly available assets
AWS MarketplaceReducing friction in software deployments for the cloud
AWS Marketplace is:An online store to discover, purchase, and
deploy software on AWS infrastructure
Catalog of 2700+ software solutions
Pre-configured to operate on AWS
Deploys to AWS environment in minutes
Flexible, usage-based billing models
Software charges billed to AWS account
https://aws.amazon.com/marketplace
Preparing for AWS Marketplace
Is your application cloud ready?
Is it running in AWS already?
Do you have customers using it in AWS?
Is the deployment automatic?
Does your application run in a single instance or cluster?
Does it work with AWS CloudFormation?
Do you have a proposed architecture?
Do you have developers assigned to this project?
Do they understand AWS services (VPC, EC2, EBS, IAM) ?
Do they understand the security requirements for AWS Marketplace?
Do you have a launch date in mind?
Software Deployment Options
Elastic Load
Balancing
Amazon S3
bucket
Availability Zone #1
Auto Scaling group
security group
instance
RDS DB
instancesecurity group
root volume
instance
security groupdata volume
Single AMI CloudFormation
Deploying Software to Customer Accounts
Is your AMI AWS Marketplace ready?
Must be self-contained
Must meet security requirements
Must provide admin access
No licensing or registration
Must be “clean”
Validating AWS Marketplace Software
Product Code – Unique GUID
Used to ensure only subscribed customers can launch
instances
Follows the AMI on private/public image creation
You can validate the product code from the instance meta
data
• http://169.254.169.254/latest/meta-data/product-codes
Metering your AMI with AWS Marketplace
Hourly Software Charge
Bring Your Own License - BYOL
Value based via metering API
• AWS Marketplace Metering Service (MMS)
• Hosts, Users, Storage, Bandwidth, Requests
• Software reports usage hourly
Creating your AMI in us-east-1
Amazon AMI
Seller
Software
snapshot
AMI
root volume
instance
security groupdata volume
us-east-1
1 2
Publishing your product
Submit via AWS
Marketplace
Portal
AMI
CFN templateArchitecture
Diagram
Product Load
Form
Attach
Product Code
Clone to
AWS Regions
Create
Product Page
Review CFN
Template
Correct issues
Correct issues
Preview Listing Public Listing
Approve
Marketplace
AMI Scanning
Upload to AWS
Marketplace
Portal
1
2
3
4
5 6
Correct issues
Scan Often and Early
Policy Issues• Auth. Keys
• Default Passwords
• Empty Root Password
Bad OS Username• Unable to login using username
provided
Vulnerability• CVE or KB Reported
AMI Not Reachable• Port 22 or 3389
Disabled EC2 Config Plugins (Windows)
Password Authentication• Password based authentication needs
to be disabled
AWS Marketplace Best Practices
Do include all software in the AMI
Do scan early and often
Do use AWS CloudFormation templates
✗ Don’t create AWS assets from your AMI
✗ Don’t download software and install in the instance
✗ Don’t use secret/access keys
https://aws.amazon.com/quickstart
AWS Quick Starts give customers an easy way to deploy complex
software and services on top of AWS infrastructure using automation
Single-button deployments
Build once, consistently deploy
Best in class, production ready
Easily customizable
Deploy in minutes vs weeks
Broad customer reach
What are AWS Quick Starts?
“Using AWS SAP HANA Quick Start, we
only needed to push a few buttons to get
a functioning SAP HANA solution.”
Philip Miller, Director
• 1 stepSign up, sign in
• 2 stepsChoose region and key pair
• 4 stepsCreate VPC
• 4 stepsCreate Internet gateway
• 24 stepsCreate 12 subnets
• 24 stepsCreate 4 NACLs
• 16 stepsCreate 4 NAT gateways
• 27 stepsCreate 9 route tables
• 2 stepsCreate routes
• Many more stepsAdd more stacks
Sign up, sign in
Choose region and key pair
Launch Quick Start
Manual Deployment Quick Start
Quick Starts Reduce Complexity – VPC Example
Example: Docker Datacenter (DDC)
Single-button deployment
launch stack in 20-30 minutes
CloudFormation Templates
automate setup/deployment on
new or existing AWS infrastructure
Deployment guide explains
architecture, implementation,
best practices, customization
https://aws.amazon.com/quickstart/architecture/docker-ddc/
Example: SAP HANA
SAP HANA ClusterPublic Subnet Private Subnet
CloudWatch Alarm
IAM Role / Instance Profile
security group
EBS VolumesBucket containing SAP
HANA software
NAT Gateway Bastion Host and/or RDP
instance (optional)
AWS CloudFormation
Building Your Own Quick Start
AWS Quick Start provides Your Responsibility
• Technical Program Support
• General design best practices
• Modular templates for common
items like VPC, bastion, etc.
• Automated testing of CF stacks
• Deployment Guide Template
• Web Presence
• Launch Support
• Best practices specific to
deployment of your software
• Committed Engineering resources
• Development of CF
templates/scripts
• Documentation
• Maintenance / Support
• Software Delivery
AWS Quick Start Software Delivery
AWS Marketplace
• Faster deployment
• Metered billing
• AWS hosted software
Bring Your Own License (BYOL)
• Partner-hosted software
• Customer supplied
Publishing your own Quick Start
Step 1
Engage your
PDM or PSA
Step 2
Project Kickoff Call
with Quick Start
Product Manager
Step 3
(usually 4-6 weeks)
• Engineering
• Testing
• Documentation
Step 4
Launch
Support &
Maintenance
Updates
Quick Starts – Best Practices for success
• Commit Engineering Resources
• Invest in training
• Leverage AWS templates for common items like VPC
design, bastion host
• Plan for proactive updates; Plan ahead
• Have a well defined support path/contact for issues
• Obsess over your customers, iterate quickly on feedback
Quick Start
• “Gold Standard” reference
architectures for key workloads
• For pilot or production use
• Modular and customizable
• Leverage Marketplace and/or
publicly available assets
Marketplace
• Single vendor solution
• AWS scanned & approved
assets
• Low friction, self-contained
deployments
• Buyer’s AWS bill
The right tool for the job
Best Solution = Use Marketplace + Quick Start
Useful links
Marketplace:
• Main Page - http://aws.amazon.com/marketplace
• Seller Guide - http://awsmp-loadforms.s3.amazonaws.com/AWS_Marketplace_-
_Seller_Guide.pdf
• Contact - [email protected]
AWS Quick Start:
• Main page - https://aws.amazon.com/quickstart/
• FAQ - https://aws.amazon.com/quickstart/faq/
• Contact - [email protected]