Amazon Web Services MOC

[[🍀 Home]] ➤ [[🗺️ Maps of Content]] --- [Amazon Web Services In Plain English](https://expeditedsecurity.com/aws-in-plain-english/). [Mistakes I've Made in AWS](https://laravel-news.com/aws-mistakes). Can use [[Terraform]], [[Pulumi]] or [[AWS CloudFormation]] to manage [[Infrastructure as code]]. ## Learning resources - [AWS Whitepapers & Guides](https://aws.amazon.com/whitepapers). - [Aidan Steele’s blog (usually about AWS)](https://awsteele.com/) ## Administration - [[AWS Identity and Access Management]] ([[AWS Identity and Access Management|IAM]]) - [trackiam](https://github.com/glassechidna/trackiam) - [[AWS Organizations]] - [[Service control policies]] - Organization [[AWS CloudTrail]] for all accounts ## Networking - [[Amazon Virtual Private Cloud]] ([[Amazon Virtual Private Cloud|VPC]]) - Emits flow _logs_ - [[Amazon Route 53]] - Emits DNS _logs_ - [[AWS Certificate Manager]] ([[AWS Certificate Manager|ACM]]) ## Run and compute - [[Amazon Elastic Compute Cloud]] ([[Amazon Elastic Compute Cloud|EC2]]) - [[Amazon Elastic Container Service]] ([[Amazon Elastic Container Service|ECS]]) - [[Amazon Elastic Kubernetes Service]] ([[Amazon Elastic Kubernetes Service|EKS]]) - [[AWS Fargate]] ## Monitoring Monitoring is a part of the [[#Operational Excellence Pillar]] of [[AWS Well-Architected]]. [[Grafana]] can run as a container with [[Amazon Elastic Container Service]]. There is also [[Amazon Managed Grafana]] ([launched 31. august 2021](https://aws.amazon.com/blogs/aws/amazon-managed-grafana-is-now-generally-available-with-many-new-features/)) - [[Amazon CloudWatch]] ([[Grafana]] _[[AWS Identity and Access Management#Principal|principal]]_ needs `CloudWatchReadyOnlyAccess`) - CloudWatch logs - CloudWatch _events_ ([[Amazon CloudWatch Events]]) - [[AWS CloudTrail]] - Emits _logs_ - [[Amazon GuardDuty]] is a threat detection service - Emits _events_ - [[Amazon Managed Grafana]] for [[Grafana]] - [[Amazon Managed Service for Prometheus]] for [[Prometheus]] - [[Amazon Timestream]] is a [[Time series database]] - [[AWS X-Ray]] for [[Tracing]] - [[AWS Distro for OpenTelemetry]] which I have no idea about ## Data things - [[Amazon Simple Storage Service]] - [[Amazon Simple Notification Service]] - [[Amazon Simple Queue Service]] - [[Amazon Kinesis Data Streams]] - [[Amazon Kinesis Data Firehose]] ## [[AWS Well-Architected]] and the Five Pillars ### Operational Excellence Pillar https://docs.aws.amazon.com/wellarchitected/latest/operational-excellence-pillar/welcome.html > The operational excellence pillar focuses on running and [[Monitoring]] systems to deliver business value, and continually improving processes and procedures. Key topics include automating changes, responding to events, and defining standards to manage daily operations. ### Reliability Pillar https://docs.aws.amazon.com/wellarchitected/latest/reliability-pillar/welcome.html