Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

AWS Summit - Auckland 2017 - Cloud Ops

383 views

Published on

Cloud Ops: Life after an AWS Migration

A presentation delivered by Paul Dunlop (Principal Cloud Architect, API Talent) at the AWS Summit in Auckland, 2017

Published in: Technology
  • Be the first to comment

AWS Summit - Auckland 2017 - Cloud Ops

  1. 1. AUCKLAND
  2. 2. Cloud Ops Life after an AWS Migration Paul Dunlop – Principal Cloud Architect @pauldunlopnz @apitalent
  3. 3. Somethings Missing!
  4. 4. “Service Delivery Platform” Backups? Monitoring?Logging? Active Directory? Automation? Service Limits? Patch Management? Image Maintenance? Identity & Access? Security? Hybrid / Network Connectivity? Billing?Tagging? Configuration Management?
  5. 5. SDP Exists in Every Account
  6. 6. Review SDP Artefacts
  7. 7. Network Connectivity Did Anyone Think About Routing? Network Register
  8. 8. Identity & Access User Accounts In Each AWS Account Is Like Having Local Users On Every Windows Server. Don’t do it.
  9. 9. RPG
  10. 10. IAM Roles, Policies, Groups (RPG)
  11. 11. Tagging Security Billing Business Automation
  12. 12. Backups How Can I Use Tags To Backup My Instances?
  13. 13. Patch & Image Management HOW DO I KEEP MY EC2 INSTANCES PATCHED HOW DO I PATCH MY GOLD IMAGES?
  14. 14. EC2 Systems Manager
  15. 15. EC2 / PATCHES IS SIMILAR TO WSUS 27
  16. 16. Configuration Management HOW DO WE TRACK AWS RESOURCE STATE AND CONFIGURATION CHANGES IN AWS?
  17. 17. • Config is also Rules based • Rules can be Lambda functions
  18. 18. Enable It On All Accounts
  19. 19. Security Auditing AWS CloudTrail Event Occurs Generating API Activity Cloudtrail Captures And Records The API Activity
  20. 20. Enable It On All Accounts
  21. 21. Pro Tip System Logs And Application Metrics Are Not Logged By Default CloudWatch Amazon CloudWatch collects and tracks metrics, collects and monitors log files, set alarms, and automatically react to changes in your AWS resources.
  22. 22. Bucket Overflow OPS
  23. 23. 38
  24. 24. Centralise Logging
  25. 25. Optimisation & Automation
  26. 26. Service Limits https://aws.amazon.com/answers/account-management/limit-monitor/
  27. 27. • Each AWS account comes with a Service Delivery Platform • Architects should advocate the Cloud Center of Excellence and drive new operational standards • Automate, Centralise & Log everything
  28. 28. IMPORTANT MESSAGE BEFORE YOU GO :)
  29. 29. API Talent Booth Promotions Crazy Cloud Native Idea Migration and Managed Services This might be an API or other type of cloud native app. We will select two best ideas from the jar and implement them. We’ll migrate a lucky customers’ workloads to AWS and provide 12 months managed services! JAR 1 JAR 2
  30. 30. @pauldunlopnz @apitalent Paul Dunlop – Principal Cloud Architect

×