Integration & Automation

Manage permission sets and account assignments in AWS IAM Identity Center with a CI/CD pipeline

Have you created permission sets and assigned them to AWS Identity and Access Management (IAM) groups in AWS Organizations? Have you used existing corporate identities with AWS IAM Identity Center (successor to AWS Single Sign-On) to grant Active Directory groups access to AWS accounts and applications? Save time and minimize errors by managing permission sets automatically with a continuous integration and continuous deployment (CI/CD) pipeline built with AWS developer tools.

Read More

Reduce security risks from IaC drift in multi-Region AWS deployments with Terraform

Are your infrastructure as code (IaC) Terraform deployments on the Amazon Web Services (AWS) Cloud protected against drift? IaC drift, which can leave your data and resources exposed to security risks, is especially difficult to track down and remove in an environment that spans multiple AWS accounts and AWS Regions. You can do it though, and in this post we show you how.

Read More

Automate sports data polling with AWS Step Functions

AWS collaborated with the Pacific Science Center (PacSci) in Seattle to build a customized light display in the iconic arches of PacSci’s Seattle Center campus. This post will show you how to deploy the PacSci automated sports data polling system for your use.

Read More

Keep your AWS resources when you rename an AWS CloudFormation stack

Learn how to change the name of a CloudFormation stack without deleting the resources that it manages. In the walkthrough, which uses a simple architecture with a single resource, a virtual private cloud (VPC), you add a Retain attribute to the resource’s deletion policy so that the resource isn’t lost when that stack is deleted.

Read More

Save time and reduce errors by automating AWS Lambda code updates

Learn a simpler, faster method for updating your Lambda code that doesn’t require manual updates to Amazon S3. We provide a fully configured AWS CloudFormation template with Lambda code on AWS CodeCommit.

Read More
post title

Create a more secure LAMP stack with AWS WAF (web application firewall)

Learn how to create a more secure LAMP stack with AWS WAF, Route 53 domain, and AWS Certificate Manager. This post walks you through automation steps to deploy a highly available LAMP-stack application with a web application firewall.

Read More

Reduce log-storage costs by automating retention settings in Amazon CloudWatch

Learn how to reduce log-storage costs by automating retention settings in Amazon CloudWatch. By default, CloudWatch Logs stores log data indefinitely, which is helpful. But as AWS workload logging grows, so do your log-storage costs. To reduce costs, establish a log-retention policy and apply it across all your log groups, ideally automatically.

Read More
title image

Disaster recovery: 3 failover scenarios for your Amazon Aurora global database with Terraform (Part 2)

Simulate recovering an Amazon Aurora global database after a disaster. Walk through three failover scenarios, observe their effect on Terraform state, and learn how to maintain the global database topology and configuration using Terraform.

Read More

Collect custom metrics with Amazon CloudWatch strategic tagging

Learn how to use an Amazon CloudWatch agent to automate the collection of custom metrics for two Amazon EC2 instances. The solution is based on a tagging strategy combined with AWS Systems Manager State Manager to enforce specific CloudWatch agent configurations for EC2 instances that are tagged appropriately.

Read More