Book Image

Implementing AWS: Design, Build, and Manage your Infrastructure

By : Yohan Wadia, Rowan Udell, Lucas Chan, Udita Gupta
Book Image

Implementing AWS: Design, Build, and Manage your Infrastructure

By: Yohan Wadia, Rowan Udell, Lucas Chan, Udita Gupta

Overview of this book

With this Learning Path, you’ll explore techniques to easily manage applications on the AWS cloud. You’ll begin with an introduction to serverless computing, its advantages, and the fundamentals of AWS. The following chapters will guide you on how to manage multiple accounts by setting up consolidated billing, enhancing your application delivery skills, with the latest AWS services such as CodeCommit, CodeDeploy, and CodePipeline to provide continuous delivery and deployment, while also securing and monitoring your environment's workflow. It’ll also add to your understanding of the services AWS Lambda provides to developers. To refine your skills further, it demonstrates how to design, write, test, monitor, and troubleshoot Lambda functions. By the end of this Learning Path, you’ll be able to create a highly secure, fault-tolerant, and scalable environment for your applications. This Learning Path includes content from the following Packt products: • AWS Administration: The Definitive Guide, Second Edition by Yohan Wadia • AWS Administration Cookbook by Rowan Udell, Lucas Chan • Mastering AWS Lambda by Yohan Wadia, Udita Gupta

Related Content you might be interested in

Current Title:

Small book image
Implementing AWS: Design, Build, and Manage your Infrastructure
Yohan Wadia | Rowan Udell | Lucas Chan | Udita Gupta
Jan, 2019 | 11 hours 30 minutes
No titles found
Table of Contents (29 chapters)
Title Page
Title Page
Copyright and Credits
Copyright and Credits
About Packt
About Packt
Contributors
Contributors
Preface
Preface
Free Chapter
1
What is New in AWS?
What is New in AWS?
Improvements in existing services
Introduction of newer services
2
Managing EC2 with Systems Manager
Managing EC2 with Systems Manager
Introducing EC2 Systems Manager
Getting started with the SSM agent
Introducing Run Command
Working with State Manager
Simplifying instance maintenance using System Manager Automation
Managing instance patches using patch baseline and compliance
Getting started with Inventory Management
3
Introducing Elastic Beanstalk and Elastic File System
Introducing Elastic Beanstalk and Elastic File System
Introducing Amazon Elastic Beanstalk
Getting started with Elastic Beanstalk
Introducing Amazon Elastic File System
4
Securing Workloads Using AWS WAF
Securing Workloads Using AWS WAF
Introducing AWS Web Application Firewall
Getting started with WAF
5
Governing Your Environments Using AWS CloudTrail and AWS Config
Governing Your Environments Using AWS CloudTrail and AWS Config
Introducing AWS CloudTrail
Working with AWS CloudTrail
Introducing AWS Config
Tips and best practices
6
Access Control Using AWS IAM and AWS Organizations
Access Control Using AWS IAM and AWS Organizations
What's new with AWS IAM
Introducing AWS Organizations
7
Transforming Application Development Using the AWS Code Suite
Transforming Application Development Using the AWS Code Suite
Understanding the AWS Code Suite
Getting Started with AWS CodeCommit
Introducing AWS CodeDeploy
Introducing AWS CodePipeline
8
Powering Analytics Using Amazon EMR and Amazon Redshift
Powering Analytics Using Amazon EMR and Amazon Redshift
Understanding the AWS analytics suite of services
Introducing Amazon EMR
Introducing Amazon Redshift
9
Orchestrating Data using AWS Data Pipeline
Orchestrating Data using AWS Data Pipeline
Introducing AWS Data Pipeline
Getting started with AWS Data Pipeline
10
Managing AWS Accounts
Managing AWS Accounts
Introduction
Setting up a master account
Creating a member account
Inviting an account
Managing your accounts
Adding a service control policy
11
Using AWS Compute
Using AWS Compute
Introduction
Creating a key pair
Launching an instance
Attaching storage
Securely accessing private instances
Auto scaling an application server
Creating machine images
Creating security groups
Creating a load balancer
12
Management Tools
Management Tools
Introduction
Auditing your AWS account
Recommendations with Trusted Advisor
Creating e-mail alarms
Publishing custom metrics in CloudWatch
Creating monitoring dashboards
Creating a budget
Feeding log files into CloudWatch logs
13
Database Services
Database Services
Introduction
Creating a database with automatic failover
Creating a NAT gateway
Creating a database read-replica
Promoting a read-replica to master
Creating a one-time database backup
Restoring a database from a snapshot
Migrating a database
Calculating DyanmoDB performance
14
Introducing AWS Lambda
Introducing AWS Lambda
What is serverless computing?
Introducing AWS Lambda
Getting started with AWS Lambda
15
Writing Lambda Functions
Writing Lambda Functions
The Lambda programming model
Versioning and aliases
Packaging and deploying
16
Testing Lambda Functions
Testing Lambda Functions
The need for testing Lambda function
Testing with a simple serverless test harness
17
Event-Driven Model
Event-Driven Model
Introducing event-driven architectures
Understanding events and AWS Lambda
Exploring Lambda and event mapping
18
Extending AWS Lambda with External Services
Extending AWS Lambda with External Services
Introducing Webhooks
Integrating GitHub with AWS Lambda
Integrating Slack with AWS Lambda
Invoking Lambda using an external application
19
Build and Deploy Serverless Applications with AWS Lambda
Build and Deploy Serverless Applications with AWS Lambda
Introducing SAM
Introducing AWS step functions
20
Monitoring and Troubleshooting AWS Lambda
Monitoring and Troubleshooting AWS Lambda
Monitoring Lambda functions using CloudWatch
Introducing AWS X-Ray
Monitoring Lambda functions using Datadog
Logging your functions with Loggly
21
AWS Lambda - Use Cases
AWS Lambda - Use Cases
Infrastructure management
Data transformation
22
Next Steps with AWS Lambda
Next Steps with AWS Lambda
Processing content at the edge with Lambda@Edge
Building next generation chatbots with Lambda and Lex
Processing data at the edge with Greengrass and Lambda
Other Books You May Enjoy
Other Books You May Enjoy
Leave a review - let other readers know what you think
Index
Index

Auditing your AWS account

We're now going to show you how to set up CloudTrail in your AWS account. Once CloudTrail has been enabled, it will start to record all of the API calls made in your account to the AWS service and then deliver them to you as log files in an S3 bucket. When we talk about API calls we mean things like:

  • Actions performed in the AWS console.
  • Calls made to AWS APIs using the CLI or SDKs.
  • Calls made on your behalf by AWS services. Think CloudFormation or the auto scaling service.

Each entry in the log will contain useful information, such as:

  • The service that was called
  • The action that was requested
  • The parameters sent with the request
  • The response that was returned by AWS
  • The identity of the caller (including IP address)
  • The date and time of the request

How to do it...

  1. Create a new CloudFormation template file; we're going to define the following Resources:
    • An S3 bucket for our CloudTrail log files to be stored in
    • A policy for our S3 bucket that allows the CloudTrail service to write...
Previous Section
End of Section 3
Next Section