SlideShare a Scribd company logo

Nirav Kothari: Well-Architected - Operational Excellence Instructor Led Lab.pdf

Amazon Web Services
Amazon Web Services

This hands-on, instructor-led lab will use the AWS Management Console to deploy a new workload, and set up estate and patch management. In this lab we will demonstrate the importance of tagging and the ways in which it can support you operations activities. You will leverage the benefits of infrastructure as code for development and deployment of your environment. You will also perform Operations as Code to gain insights to your workload status, and to maintain your environment.

Related slideshows

Container Scheduling
Container SchedulingContainer Scheduling
Container Scheduling
 
How Enterprises Are Modernizing Their Security, Risk Management, & Compliance...
How Enterprises Are Modernizing Their Security, Risk Management, & Compliance...How Enterprises Are Modernizing Their Security, Risk Management, & Compliance...
How Enterprises Are Modernizing Their Security, Risk Management, & Compliance...
 
Too Many Tools - How AWS Systems Manager Bridges Operational Models
Too Many Tools - How AWS Systems Manager Bridges Operational ModelsToo Many Tools - How AWS Systems Manager Bridges Operational Models
Too Many Tools - How AWS Systems Manager Bridges Operational Models
 
1 of 23
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved Estate and Patch Management Infrastructure and Operations as Code Nirav Kothari, Principal Consultant
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved What is the Operational Excellence Pillar? “The operational excellence pillar includes the ability to run and monitor systems to deliver business value and to continually improve supporting processes and procedures. The operational excellence pillar provides an overview of design principles, best practices, and questions.”
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved Design Principles • Perform operations as code • Annotated documentation • Make frequent, small, reversible changes • Refine operations procedures frequently • Anticipate failure • Learn from all operational failures
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved What is the Operational Excellence Pillar? PREPARE EVOLVEOPERATE
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved How do you design your workload to enable operability? • Shared design standards • Design for cloud operations • Mitigate deployment risks PREPARE
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved How do you know that you are ready to support a workload? • Documented accessible governance and guidance • Runbooks PREPARE
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved Why are we here? • The increased speed and agility of the cloud is best supported using the same engineering discipline and practices that you apply to code. • Dynamic and elastic access to resources increases the speed and agility of your organization and benefits from equally dynamic operations.
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved Setting Up Your Lab Environment
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved Requirements 1. Your own device for console access 2. An AWS account that you are able to use for testing, that is not used for production or other purposes. 3. An available region within your account with capacity to add 2 additional VPCs 4. Download the Lab Guide at https://bit.ly/2rnSUdi • https://s3-us-west-2.amazonaws.com/aws-well-architected- labs/Operations/100+-+Estate+&+Patch+management+Lab+guide.html Amazon VPC*
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved Lab Setup 1. Create an Administrator IAM user and group 2. Log in with your IAM Administrator user 3. Create an EC2 Key Pair IAM Amazon EC2
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved Deploying an Environment using Infrastructure as Code
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved Deploy the lab environment 1. Deploy the Lab CloudFormation template • https://s3-us-west-2.amazonaws.com/aws-well-architected- labs/Operations/OE_Single_VPC+_2-Tier_Application_Lab.json 2. Examine the environment in CloudFormation Designer 3. Deploy your stack template AWS CloudFormation stack
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved Estate Management Systems Manager
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved Understanding the Resources in your Environment 1. Set up Systems Manager 2. Create a second CloudFormation stack 2. Track your resources using Inventory 3. Review associations with State Manager Amazon EC2 Systems Manager stack Inventory State Manager
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved Patch Management Systems Manager Patch Manager
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved Patch Management 1. Create a Patch Baseline 2. Assign a Patch Group 3. Scan your instances 4. Patch your instances Patch Manager documents
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved Removing lab resources
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved Removing lab resources 1. Delete your CloudFormation stacks 2. Delete your State Manager association • If you created a… • S3 bucket, delete it • SNS Topic, delete it • Maintenance window, delete it • If you don’t plan to use your Administrator user, delete it • If you do plan to use your Administrator user, we recommend you enable MFA stack Maintenance Windows bucket State Manager IAM topic
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved Thank you!
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved Bonus Content: Creating Maintenance Windows and Scheduling Automated Operations Activities
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved Automating Patching with Maintenance Windows 1. Set up Maintenance Windows 2. Create a Patch Maintenance Window 3. Assign Targets 4. Assign Tasks 5. After the maintenance window review the results Maintenance Windows Patch Manager Amazon EC2

More Related Content

Nirav Kothari: Well-Architected - Operational Excellence Instructor Led Lab.pdf

  • 1. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved Estate and Patch Management Infrastructure and Operations as Code Nirav Kothari, Principal Consultant
  • 2. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved What is the Operational Excellence Pillar? “The operational excellence pillar includes the ability to run and monitor systems to deliver business value and to continually improve supporting processes and procedures. The operational excellence pillar provides an overview of design principles, best practices, and questions.”
  • 3. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved Design Principles • Perform operations as code • Annotated documentation • Make frequent, small, reversible changes • Refine operations procedures frequently • Anticipate failure • Learn from all operational failures
  • 4. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved What is the Operational Excellence Pillar? PREPARE EVOLVEOPERATE
  • 5. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved How do you design your workload to enable operability? • Shared design standards • Design for cloud operations • Mitigate deployment risks PREPARE
  • 6. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved How do you know that you are ready to support a workload? • Documented accessible governance and guidance • Runbooks PREPARE
  • 7. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved
  • 8. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved Why are we here? • The increased speed and agility of the cloud is best supported using the same engineering discipline and practices that you apply to code. • Dynamic and elastic access to resources increases the speed and agility of your organization and benefits from equally dynamic operations.
  • 9. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved Setting Up Your Lab Environment
  • 10. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved Requirements 1. Your own device for console access 2. An AWS account that you are able to use for testing, that is not used for production or other purposes. 3. An available region within your account with capacity to add 2 additional VPCs 4. Download the Lab Guide at https://bit.ly/2rnSUdi • https://s3-us-west-2.amazonaws.com/aws-well-architected- labs/Operations/100+-+Estate+&+Patch+management+Lab+guide.html Amazon VPC*
  • 11. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved Lab Setup 1. Create an Administrator IAM user and group 2. Log in with your IAM Administrator user 3. Create an EC2 Key Pair IAM Amazon EC2
  • 12. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved Deploying an Environment using Infrastructure as Code
  • 13. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved Deploy the lab environment 1. Deploy the Lab CloudFormation template • https://s3-us-west-2.amazonaws.com/aws-well-architected- labs/Operations/OE_Single_VPC+_2-Tier_Application_Lab.json 2. Examine the environment in CloudFormation Designer 3. Deploy your stack template AWS CloudFormation stack
  • 14. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved Estate Management Systems Manager
  • 15. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved Understanding the Resources in your Environment 1. Set up Systems Manager 2. Create a second CloudFormation stack 2. Track your resources using Inventory 3. Review associations with State Manager Amazon EC2 Systems Manager stack Inventory State Manager
  • 16. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved
  • 17. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved Patch Management Systems Manager Patch Manager
  • 18. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved Patch Management 1. Create a Patch Baseline 2. Assign a Patch Group 3. Scan your instances 4. Patch your instances Patch Manager documents
  • 19. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved Removing lab resources
  • 20. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved Removing lab resources 1. Delete your CloudFormation stacks 2. Delete your State Manager association • If you created a… • S3 bucket, delete it • SNS Topic, delete it • Maintenance window, delete it • If you don’t plan to use your Administrator user, delete it • If you do plan to use your Administrator user, we recommend you enable MFA stack Maintenance Windows bucket State Manager IAM topic
  • 21. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved Thank you!
  • 22. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved Bonus Content: Creating Maintenance Windows and Scheduling Automated Operations Activities
  • 23. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved Automating Patching with Maintenance Windows 1. Set up Maintenance Windows 2. Create a Patch Maintenance Window 3. Assign Targets 4. Assign Tasks 5. After the maintenance window review the results Maintenance Windows Patch Manager Amazon EC2