AWS Cloud Fundamentals

Deployment, Monitoring, Optimization,

and Serverless Architecture
 A Day in the Life of a Cloud Consultant

You are working as a junior cloud specialist at XYZ Enterprises. Your organization
is contemplating adopting cloud technologies for several applications and desires
an assessment of their viability. Their prerequisites are detailed below:

• Ensure the integrity and robustness of their AWS tools and data
• Oversee their applications and adjust capacity autonomously to guarantee
stable, consistent performance while optimizing costs
• Gain a spectrum of cost and utilization monitoring capabilities, from basic to
intricate
• Create a tool that facilitates developers' seamless amalgamation of AWS and
external resource suites, streamlining their provisioning and governance
• Develop a utility to supervise and log activities across their AWS ecosystem,
offering granular control over data storage, evaluation, and consequent
actions
 A Day in the Life of a Cloud Consultant

Furthermore, the XYZ organization needs:

• A comprehensive monitoring solution offering insights into AWS, hybrid, and

local applications and infrastructure
• An efficient mechanism to review, scrutinize, and gauge the configuration of
AWS tools
• An avenue to design and operationalize applications and services devoid of
direct infrastructure management
• A pertinent solution in alignment with the specifications

This guide will immerse you in a selection of concepts vital to resolving the
scenario at hand, augmented with some additional perks.
 Learning Objectives

By the end of this lesson, you will be able to:

Analyze the various steps of successful AWS resource monitoring

Identify the core concepts of management, monitoring, and

governance

Assess the concepts of optimization, optimization of the cloud

ecosystem, and cloud optimizer

Analyze the features of the AWS Systems Manager Inventory

Monitoring in AWS
 Monitoring in AWS

Monitoring AWS resources methodically entails observing, inspecting, and measuring progress
and quality over time.

It involves monitoring dynamic situations on AWS in real time.

Monitoring in AWS

• Creating, measuring, logging, and querying various

metrics are all part of AWS resource monitoring.
• Implementing, monitoring, and logging with confidence
and success takes skill, time, and money.
 AWS CloudWatch

Amazon CloudWatch monitors Amazon Web Services (AWS) resources and applications in real
time.

CloudWatch can be used to gather and track metrics, which are variables that can be measured
for resources and applications.
AWS CloudWatch

• All AWS services that you use are immediately visible on

the CloudWatch home page.
• You can also develop dashboards to display data from
your customized applications.
• When a threshold is exceeded, you can set alerts that
send messages or adjust the resources you're
monitoring automatically.
AWS CloudWatch

• Metrics enable the computation of statistics, which are

then visually represented in the CloudWatch console.
• Alarm actions can be set up to stop, start, or terminate
an Amazon EC2 instance when conditions are satisfied.
• Amazon CloudWatch Logs can monitor, store, and
retrieve log files from EC2 instances, AWS CloudTrail,
Route 53, and other sources.
Monitor with CloudWatch

• Amazon EC2 Auto Scaling sends data points about your

Auto Scaling groups to CloudWatch.
• Users can have continuous visibility into the activities of
auto-scaling groups, allowing them to respond swiftly to
changes in workloads.
• These metrics can be enabled and disabled using the
AWS Management Console, the AWS CLI, or an SDK.
Assisted Practice

AWS CloudWatch Duration: 20 Min.

Problem Statement:

You have been assigned a task to demonstrate the process of setting up and using AWS CloudWatch to
monitor the EC2 instances.
Assisted Practice: Guidelines

Steps to be followed:

1. Create a custom alarm using CloudWatch

 Successful AWS Resource Monitoring

The following are the requirements for AWS monitoring:

• Before introducing monitoring into the pipeline or making changes to the existing workflow,
assess the existing infrastructure, tooling, and resources
• Take the time to assess situations to help develop a strategy that suits your needs
 Successful AWS Resource Monitoring

When assessing your AWS monitoring requirements, consider the following questions:

Infrastructure

• Where is your network located?

• Is it on-premise?
• Do you want to use a separate monitoring system for each environment, or do you want to
combine on-premises and cloud monitoring into one tool?
 Successful AWS Resource Monitoring

After determining the requirements and establishing a tagging system for AWS resources,
you can search for a solution that meets your requirements.

If you'll need a lot of features in advance, choose a solution that satisfies the requirements,
is easily scalable, or meets all the criteria.
 Capturing Logs

Pick the logs you want to capture and how to set this up once you've set up your monitoring
solution or stack

Logs are quite useful for keeping track of compliance requirements and troubleshooting
issues.
Capturing Logs

• The majority of monitoring systems are either designed

for metrics or logs rather than focusing on both of
these tasks equally.
• You should either utilize a stack or find a solution to
capture metrics and logs from AWS to ensure complete
coverage.
AWS Monitoring Best Practices

Use automation wherever possible

• AWS production deployments are often large and

dynamic to be manually monitored.
• Most of the monitoring operations should be
automated to guarantee that crucial data is not missed.
AWS Monitoring Best Practices

Create policies to outline priority levels

• Prioritizing monitoring duties ensures that key services

remain operational and sensitive data is safeguarded.

• Prioritizing alerts or alert categories also aids IT staff in

effectively allocating their time and resources.
 AWS Systems Manager Inventory

It gives a comprehensive view of Amazon EC2 and on-premises computing environments.

Inventory can gather metadata from the managed nodes.

 AWS Systems Manager Inventory

AWS Systems Manager Inventory offers features such as:

• A single-click approach allows you to configure inventory

on all the managed nodes.
• You can also monitor and configure inventory data
across several AWS Regions and accounts.
 AWS Systems Manager Inventory

AWS Systems Manager Inventory offers features such as:

• You can develop a custom inventory if the pre-

configured information types collected by Systems
Manager Inventory do not satisfy your needs.
• A custom inventory is a JSON file containing information
that you place in a specified directory for the managed
node.
 AWS Systems Manager Inventory

AWS Systems Manager Inventory offers features such as:

• This custom inventory data is captured when Systems

Manager Inventory collects data.
• You can then view the rack space data when viewing
other inventory data.
Management and Governance
 AWS Auto Scaling

It continuously analyzes your applications and adjusts capacity to ensure consistent, predictable
performance at the lowest feasible cost.

AWS Auto Scaling assists users in setting up application scaling for multiple resources across
various services, ensuring optimal resource utilization.
 AWS Budgets

It allows you to create custom budgets to track your spending and usage, from basic to complex
scenarios.

You can choose to be notified by email or SNS when actual or predicted expenditures and usage
exceed your budget.
 AWS Budgets

AWS Budgets integrates with multiple other AWS services, such as:

• The AWS Cost Explorer

• The AWS Chatbot

• The AWS Service Catalog

 AWS CloudFormation

It aids in designing and configuring your AWS resources, allowing you to spend less time
maintaining them and more time on your AWS-based apps.

Users can construct a template that outlines all the AWS resources that are needed, and
CloudFormation handles the provisioning and configuration.
Benefits of AWS CloudFormation

AWS CloudFormation helps you:

• Simplify infrastructure management

• Replicate your infrastructure quickly
• Easily control and monitor changes to your infrastructure
 AWS CloudTrail

It is an AWS service that allows you to manage governance, compliance, operation,

and risk auditing of the AWS account.

In CloudTrail, actions done by a user, role, or AWS service are recorded as events.
 AWS CloudTrail

Some of the AWS CloudTrail features are:

• It is automatically provided when an AWS account is

created.
• A CloudTrail event is created whenever something
happens in your AWS account.
• In the CloudTrail console, you can browse Event History
to quickly view recent events.
 AWS Config

It is a service that allows you to inspect, audit, and review your AWS resource setups.

Config monitors and records your AWS resource configurations in real time, enabling automated
comparisons between recorded and desired configurations.
 AWS Config

Some of the AWS Config’s features are:

• Config allows you to inspect changes to AWS resource

configurations and relationships.
• It examines resource configuration histories to assess your
overall adherence to the configurations given in internal policies.
• Compliance auditing, security analysis, and change management
are made easier.
 AWS Cost and Usage Report

AWS CUR provides the most detailed cost and usage information possible.

You can publish your AWS billing reports to an Amazon Simple Storage Service (Amazon S3)
bucket that you maintain with Cost and Usage Reports.
AWS Cost and Usage Report

• You can get reports that break down your expenditures

regularly by product or by the tags you designate.
• The report in your bucket is updated once a day in
Comma-Separated Value (CSV) format by AWS.
• You may examine the reports in spreadsheet software
like Microsoft Excel or use the Amazon S3 API to access
them from an application.
 Amazon EventBridge

EventBridge is a serverless event bus that makes it easy to develop large-scale event-driven
systems using events provided by your apps and AWS services.

It is a serverless event bus that makes it simple to build large-scale event-driven architectures
that use events from your apps and AWS services.
Features of Amazon EventBridge

The features of Amazon EventBridge are:

• It makes the process of creating event-driven

architectures easier.
• It helps in integrating your SaaS apps or using events
from your SaaS apps to initiate workflows for customer
service and business functions.
• It does not require you to write custom code to ingest,
filter, alter, or distribute events.
 AWS License Manager

It simplifies the management of software licenses from Microsoft, SAP, Oracle, and IBM across
AWS and on-premises settings.

It allows administrators to define customized licensing rules that align with their
license agreements' requirements.
Features of AWS License Manager

The features of AWS License Manager are:

• It decreases the risk of licensing overheads and fines with

inventory tracking linked directly with AWS services.
• It has built-in dashboards that enable continuous visibility into
license usage and help with vendor audits.
• It helps monitor any software licensed based on virtual CPUs,
physical cores, sockets, licenses, or several machines.
 AWS Managed Services

AMS makes it easier to manage and secure your AWS infrastructure. It may complement and
maximize your operating capabilities in new and existing AWS environments.
Features of AWS Managed Services

The features of AWS Managed Services are:

• It gives you the freedom to choose the appropriate level of

operational support.
• It creates and maintains a repository of compliance,
operations, and security safeguards to help you stay on track
with your controls.
• It aids in financial and capacity optimization throughout your
AWS estate, and any savings found lower your AMS price
without compromising operational outcomes or security.
 AWS Systems Manager

AWS Systems Manager (previously known as SSM) is an AWS product that allows you to manage
and monitor your AWS infrastructure.

You can examine operational data from numerous AWS services and automate operational
activities across your AWS resources using the Systems Manager console.
 AWS Systems Manager

The features of AWS Systems Manager are:

• It offers an interface that allows you to create your

management tasks and then select resources to manage.
• It makes it simple to understand and manage the current
condition of your EC2 instance and OS parameters.
• It helps ensure the compliance of your systems with your
stated configuration policies.
 AWS Systems Manager Parameter Store

AWS Systems Manager has a feature called Parameter Store that allows safe, hierarchical
storage for data configuration and secret administration.

Passwords, database strings, Amazon Machine Image (AMI) IDs, and licensing codes can all be
stored as parameter values.
Features of AWS Systems Manager Parameter Store

The features of AWS Systems Manager Parameter Store are:

• It uses the hosted secret management solution that is secure,

scalable, and requires no server management.
• It enhances your overall security by separating your data from
your code.
• It tracks versions and stores configuration data and encrypted
strings in hierarchies.
Service Health Dashboard
 What Is Service Health Dashboard?

The Service Health Dashboard displays the overall health of Amazon Web Services (AWS).

It gives you instant access to the current status and historical statistics for any Amazon Web Service.
Personal Health Dashboard
 What Is Personal Health Dashboard?

The AWS Personal Health Dashboard sends users notifications and advice about AWS events that may
have an impact on their environment.

It notifies users about their personal AWS setup proactively and openly.
 Benefits

Personalized view of service health:

• Provides users with a customized view of the status of the
AWS services that support their operations

Proactive notifications:
• Utilize the Personal Health Dashboard to set up notifications
for certain occurrences that could have an impact on the
user's account
 Benefits

Detailed troubleshooting guidance:

• When a user receives an alert, it will offer corrective
information and detailed instructions so that the user can
respond to events that affect their resources.

Integration and automation:

• Amazon CloudWatch Events can be used to create custom
rules and select targets.
Optimization
 Optimization

It is an iterative process that includes several cycles of making changes, analyzing results, and
repeating until you get a suitable result.

You must know the specifics of your workload, including how it uses server resources like CPU,
RAM, disc I/O, and network bandwidth.
 Optimize Your Cloud Ecosystem

Cloud resources are scalable, manageable, advanced, secure, cost-effective, and

highly available.

To handle a few traffic surges early on, you don't need to set up and pay for high-
performance virtual machines.
Compute Optimizer

• It is a service that analyzes the configuration and utilization

of your AWS resources.
• It determines if your resources are optimally configured and
offers recommendations for cost-saving optimizations.
• It also shows graphs with historical data on utilization
metrics.
 Key Takeaways

Monitoring AWS resources involves systematically observing,

inspecting, and measuring progress and quality over time.

AWS Auto Scaling continuously analyzes applications and adjusts capacity

to ensure consistent performance at the lowest cost.

AWS Budgets allow you to create custom budgets to track spending

and usage for the simplest to the most complicated use cases.

Optimization is an iterative process that includes several cycles of making

changes, analyzing results, and repeating until you get a suitable result.
 Create a CPU Usage Alarm

Duration: 30 Minutes.
Project Agenda: To establish a CloudWatch alarm that sends a notification
through Amazon SNS when the alarm transitions from OK to ALARM due to
CPU usage exceeding a set threshold on an EC2 instance.

Description:
The project involves setting up an EC2 instance, creating a CloudWatch alarm
to monitor its average CPU utilization, and triggering an SNS notification
when the CPU usage crosses the threshold, indicating high resource usage.

Perform the following:

1. Launch an Amazon EC2 instance
2. Create a CloudWatch alarm
Thank You