Saturday, 5 August 2017

Learn how CloudFormation StackSet can be used to provision resources on AWS accounts

aws services


AWS CloudFormation can help the AWS customers to apply infrastructure as a code model. Infrastructure as a code (IaC) is a method of handling and providing computer data centers via machine-readable definition files instead of interactive configuration tools and physical hardware.

The AWS customers can build a template to create all necessary resources instead of setting up the applications and environment by hand is known as CloudFormation Stack. By implementing this method it eradicates the possibilities of manual error, ensure consistent configuration over time and increases efficiency. Amazon has added a new feature that will make CloudFormation more useful by helping you to identify the challenges that most of the AWS customers face when they use the infrastructure as a code where it includes multiple AWS Regions or accounts.

AWS Account:-

An organization that uses multiple AWS accounts by using AWS organizations to allocate the accounts into a hierarchy and then group them into Organizational Units. Many AWS clients and customers use multiple accounts for applications, developers, and business units. Separate accounts are created for testing, staging, production, and development on a per-application basis.

AWS Regions:-

AWS customers make optimum use of the large set of AWS Regions by building global applications that span two or more regions by applying refined multi-region disaster recovery models by replicating Aurora, MySQL, S3 data in real time and select locations for processing and storing sensitive data in accord with regional and national regulations.
By expanding multiple accounts and regions many face challenges with consistency and governance. The customers want their new AWS account to be set up to their internal standards. They also want to set up VPCs and VPC subnets, security groups, logging, IAM users and roles, Config Rules and AWS Lambda functions in a reliable manner and Consistent. 



Amazon CloudFormation StackSet:-

As the rising customer needs Amazon has come with a remedy by launching CloudFormation StackSet. AWS resource configuration can be categorized in a CloudFormation template and then spread it to various multiple AWS Regions and accounts with just a few clicks. This can be used to deploy a standard level of AWS functionality that acknowledges the cross region and accounts scenarios that are listed above. After you have done the setup procedure you can then easily enlarge the coverage to additional regions and accounts.

With the newly added feature, it works well with the cross-account basis. The Administrator accounts that own one or more Stack sets can control the deployment to one or more targeted accounts. Administrator account presumably must have an IAM role and the target accounts must envoy trust to the administrator account.

There is a list of regions and accounts in each StackSet which reference a CloudFormation template. Cross Product of the regions and accounts in the StackSet are applied with the operations.

Setting up a template begins with the creation of a CloudFormation Stack in a region or account. Templates are set up gradually to accounts and regions which under your control in the order that you want to set and also control the amount of parallelism. You can also use the existing CloudFormation templates, sample templates or you can create new ones.



Learn how to create a StackSet:-

1.    From the CloudFormation console, you can deploy and create StackSet through the CloudFormation APIs or from the command line. First, Click on the icon of Create StackSet and then select a sample template from the following templates that are listed below.

2.    View the template to learn more about the template and the rules. Under specifying the details you can give a name to the StackSet and select the Optional Parameter or select the parameter according to your preference.

3.    Under Set Deployment options you can enter the account number directly, upload a list of account number or reference an AWS organizational unit. After that, you set up the particular regions to control the deployment order.

4.    There is also deployment options that u can set and then click next to proceed.

5.    You can also add tags to your StackSet which will be applied to the AWS resources that are created during the deployment process.

6.    After setting up the tag the deployment process begins and then you can track the status from the AWS console. You can then open the stack option to view each stack to see their progress. At the first, the status of the stack will show outdated which means that the deployment still has to be initiated. After a while, the status will change to current when it is successfully deployed. When the stack cannot be deleted the status will change to inoperable.

7.    Click on the Manage StackSet after the initial deployment to add the additional regions, accounts or both while creating additional stacks.


There is no extra charge for this new feature you just have to pay only for the AWS resources that you have created.


About Cloud.in:

Cloud.in is an AWS Advanced Consulting Partner that delivers AWS managed services that cater every business need and aims in simplifying the AWS Cloud Journey. Our Team is the driving force behind Cloud.in with the experience, knowledge, and the skills that they behold in making cloud computing and AWS Cloud a pleasant experience. 

No comments:

Post a Comment

AWS CodeGuru Elevating Code Security

  Security and code quality are paramount in today’s fast-paced software development landscape. As the cornerstone of DevSecOps, Static Appl...