Deployments & Managing Infrastructure at Scale Flashcards
1
Q
AWS CDK (Cloud Development Kit)
A
- Define infrastructure with a familiar language
- Code compiled into a CloudFormation template
- Can deploy infrastructure and application runtime code together
2
Q
CloudFormation
A
- Declarative way of outlining Infrastructure for any resource
- Creates resources, in the right order with the exact configuration specified
- Infrastructure as code
- Repeat any architecture in different environments, regions, accounts
- Supports most AWS resources
3
Q
Elastic Beanstalk
A
- Dev centric view of deploying applications
- Managed PaaS
- Pay for underlying instances
4
Q
AWS CodeDeploy
A
- Deploy applications automatically
- Hybrid service
- Servers/instances provisioned ahead of time with CloudDeploy Agent
5
Q
CodeCommit
A
- Sunset
- Replacement for GitHub
- Code repository
6
Q
AWS CodeBuild
A
- Code building service in the cloud
- Compiles source code, run tests, and produce packages ready to deploy
- Fully manage, serverless
- Pay as you go pricing - only pay for build time
7
Q
AWS CodePipeline
A
Orchestrate steps to have code automatically pushed to prod
- CICD (Continuous Intergration & Continuous Delivery)
- Fully managed
- Fast delivery and rapid updates
- Orchestation of pipeline
8
Q
AWS CodeArtifact
A
- Secure, Scalable, and cost-effective artifact management for SW dev
- Works with common dependency management tools
- Devs and CodeBuild can retrieve dependencies straight from CodeArtifact
9
Q
SSM (Systems Manager)
A
- Manage EC2 and on-prem systems at scale
- Hybrid service
- Operation insights about infrastructure
- Patch automation for compliance
- Run commands across fleet of servers.
- Linux, Windows, Mac, and Raspberry Pi
10
Q
How SSM (Systems Manager) works
A
- Install SSM agent on client systems
- Installed by default on Amz Linux AMI and some Ubuntu AMI
- If an instance can’t be controlled with SSM it is likely an issue with the agent
- Can run commands, patch, & configure our servers
11
Q
SSM Session Manager
A
- Start secure shell on EC2 and on-prem servers
- No SSH access, bastion hosts, or SSH key needed
- No port 22 needed (better sec)
- Linux, Mac, and Windows
- Send session log data to S3 or CloudWatch Logs
12
Q
SSM Parameter Store
A
- Secure storage for config and secrets (pwd, API keys)
- Serverless, scalable, durable, easy SDK
- Control access permission using IAM
- Version tracking & encryption (optional)
13
Q
Elastic Beanstalk
Health Monitoring
A
- Health agnet pushes metrics to CloudWatch
- Checks for app health, publishes health events