AWS Management Tools
Comprehensive guides and cheat sheets for aws management tools. Perfect for developers, architects, and cloud professionals.
Specifying Triggers for AWS Config Rules
## 1. Triggered by Configuration Changes This is the most common and immediate type of trigger. It operates on an event-driven basis. * **How it Works**: The Config rule is automatically eva...
Setting Up AWS EventBridge for Cross-Region IAM Event Notifications
-- ## The Architecture The solution involves two EventBridge rules working together: 1. **Rule in `us-east-1`**: Captures the `CreateUser` event from CloudTrail. Its target is the defa...
Managing Non-EC2 Servers using AWS Systems Manager
-- ## Step-by-Step Guide to Registering a Non-EC2 Server This example uses a generic Linux server as the target. The commands for installing the SSM Agent may vary slightly based on your spe...
Managing AWS Organizations and Accounts with AWS Control Tower
AWS Control Tower provides a streamlined and user-friendly interface for setting up and governing a secure, multi-account AWS environment. While it uses AWS Organizations, IAM Identity Center, and AWS...
How to Implement CloudFormation Creation Policy on Ubuntu
-- ## Step-by-Step Implementation The entire process is orchestrated within your CloudFormation template, primarily in the `UserData` and `CreationPolicy` sections of your EC2 instance resou...
Different Ways of Passing Parameters Securely in CloudFormation
-- ## Part 1: Performing a Manual Key Rotation This process will replace the contents of the `authorized_keys` file on a target instance with a new public key, instantly revoking access for ...
Default Host Management Configuration on AWS Systems Manager
-- ## Method 1: The `NoEcho` Attribute The simplest way to prevent a parameter from being displayed in plain text is to use the `NoEcho` property. * **How it works**: When you set the...
AWS CloudFormation StackSets and Nested Stacks
## Nested Stacks: For Modularity and Reuse A **Nested Stack** is a stack that is created as part of another stack. You can think of it as breaking down a large, complex CloudFormation template in...
AWS CloudFormation Deletion Policy
-- ## How to Apply the DeletionPolicy You add the `DeletionPolicy` attribute directly to the resource definition in your CloudFormation template. ### Example 1: `Retain` policy for an S...
Adding Logs Insights Queries To Your CloudWatch Dashboard
Amazon CloudWatch Dashboards provide a powerful way to create a single-pane-of-glass view for monitoring your applications. While they are often used for visualizing metrics, a key feature is the abil...
AWS Well-Architected Tool
The AWS Well-Architected Tool is a service in the AWS Console that helps you review the state of your applications and workloads against the latest AWS architectural best practices. It provides a cons...
AWS Trusted Advisor
AWS Trusted Advisor is an online tool that acts as your personalized cloud expert. It inspects your AWS environment against best practices and provides real-time guidance to help you optimize your res...
AWS Service Catalog
AWS Service Catalog allows organizations to create and manage catalogs of IT services that are approved for use on AWS. It simplifies governance and helps organizations achieve consistent standards wh...
AWS Outposts
AWS Outposts is a fully managed service that extends AWS infrastructure, services, APIs, and tools to customer on-premises data centers and edge locations. It allows you to run AWS services locally wh...
AWS OpsWorks
## 1. AWS OpsWorks for Chef Automate * **Core Function**: Provides a fully managed, single-tenant Chef Automate server on an EC2 instance. Chef Automate is a comprehensive suite that includes too...
AWS Management Console
The AWS Management Console is the primary web-based graphical user interface (GUI) for accessing and managing the full suite of Amazon Web Services. It provides a centralized platform to perform a wid...
AWS License Manager
AWS License Manager is a service that simplifies the management of your software licenses from various vendors (such as Microsoft, SAP, Oracle, and IBM) across AWS and your on-premises environments. I...
AWS Health
AWS Health provides ongoing visibility into the state of your AWS resources, services, and accounts. It is the authoritative source for events and changes that might affect your AWS environment, offer...
AWS Control Tower
AWS Control Tower is a service designed to set up and govern a secure, compliant, and well-architected multi-account AWS environment, also known as a "landing zone." It automates the process of creati...
AWS Config
AWS Config is a service that enables you to assess, audit, and evaluate the configurations of your AWS resources. It continuously monitors and records your resource configurations and allows you to au...
AWS CloudTrail
AWS CloudTrail is a service that provides event history of your AWS account activity, including actions taken through the AWS Management Console, AWS SDKs, command-line tools, and other AWS services. ...
AWS CloudShell
AWS CloudShell is a browser-based shell, accessible directly from the AWS Management Console. It provides command-line access to your AWS resources, with a pre-configured environment that includes com...
AWS CloudFormation
## Template Structure A CloudFormation template is composed of several major sections. While only `Resources` is required, a typical template is organized as follows: 1. **`AWSTemplateForma...
AWS Cloud Development Kit (CDK)
## The CDK Toolkit (CLI) - Common Commands The `cdk` command-line interface is used to interact with your CDK apps. * `cdk init`: Initializes a new CDK project in a specified language. * `...
AWS Compute Optimizer
AWS Compute Optimizer is a service that analyzes the configuration and utilization metrics of your AWS resources to recommend optimal configurations that can reduce costs and improve performance for y...
AWS Auto Scaling
AWS Auto Scaling monitors your applications and automatically adjusts capacity to maintain steady, predictable performance at the lowest possible cost. It allows you to build applications that have hi...
Amazon CloudWatch
Amazon CloudWatch is a monitoring and observability service for AWS cloud resources and the applications you run on AWS. It enables you to collect and track metrics, collect and monitor log files, set...
Amazon Managed Service for Prometheus
Amazon Managed Service for Prometheus is a fully managed, Prometheus-compatible monitoring and alerting service that makes it easy to monitor containerized applications and infrastructure at scale. ...
AWS Proton
AWS Proton is a fully managed application delivery service designed to streamline and standardize the deployment workflow for container and serverless applications. It provides a way for platform engi...