AWS Service Catalog .com

AWS Service Catalog

Administrator Guide

AWS Service Catalog Administrator Guide

AWS Service Catalog: Administrator Guide

Copyright ? 2022 Amazon Web Services, Inc. and/or its affiliates. All rights reserved. Amazon's trademarks and trade dress may not be used in connection with any product or service that is not Amazon's, in any manner that is likely to cause confusion among customers, or in any manner that disparages or discredits Amazon. All other trademarks not owned by Amazon are the property of their respective owners, who may or may not be affiliated with, connected to, or sponsored by Amazon.

AWS Service Catalog Administrator Guide

Table of Contents

What Is AWS Service Catalog? ............................................................................................................. 1 Video: Introduction to AWS Service Catalog .................................................................................. 1 Overview ................................................................................................................................... 1 Users ................................................................................................................................ 2 Products ........................................................................................................................... 2 Provisioned Products .......................................................................................................... 2 Portfolios .......................................................................................................................... 2 Versioning ......................................................................................................................... 2 Permissions ....................................................................................................................... 3 Constraints ........................................................................................................................ 3 Initial Administrator Workflow ............................................................................................. 3 Initial End User Workflow ................................................................................................... 4 Quotas ...................................................................................................................................... 4 AWS Organizations ............................................................................................................. 4 Constraint quotas ............................................................................................................... 4 Portfolio quotas ................................................................................................................. 4 Product quotas .................................................................................................................. 4 Provisioned product quotas ................................................................................................. 5 Regional quotas ................................................................................................................. 5 Service action quotas ......................................................................................................... 5 TagOptions quotas ............................................................................................................. 5

Setting Up ........................................................................................................................................ 6 Sign Up for Amazon Web Services ............................................................................................... 6 Grant Permissions to Administrators and End Users ........................................................................ 6 Grant Permissions to Administrators ............................................................................................. 6 Grant Permissions to End Users ................................................................................................... 8

Getting Started .................................................................................................................................. 9 Step 1: Download the Template ................................................................................................... 9 Template Download ........................................................................................................... 9 Template Overview ............................................................................................................ 9 Step 2: Create a Key Pair .......................................................................................................... 12 Step 3: Create a Portfolio .......................................................................................................... 13 Step 4: Create a Product ........................................................................................................... 13 Step 5: Add a Template Constraint ............................................................................................. 14 Step 6: Add a Launch Constraint ................................................................................................ 14 Step 7: Grant End Users Access to the Portfolio ........................................................................... 16 Step 8: Test the End User Experience .......................................................................................... 16

Getting Started Library ..................................................................................................................... 18 Prerequisites ............................................................................................................................ 18 Learn More .............................................................................................................................. 18

Security ........................................................................................................................................... 19 Data Protection ........................................................................................................................ 19 Protecting Data with Encryption ........................................................................................ 20 Identity and Access Management ............................................................................................... 20 Audience ......................................................................................................................... 21 Identity-based policy examples for AWS Service Catalog ...................................................... 21 AWS managed policies ...................................................................................................... 24 Using service-linked roles .................................................................................................. 34 Troubleshooting AWS Service Catalog identity and access ...................................................... 36 Controlling Access ............................................................................................................ 38 Logging and Monitoring ............................................................................................................ 38 Compliance Validation .............................................................................................................. 39 Resilience ................................................................................................................................ 39 Infrastructure Security .............................................................................................................. 40

iii

AWS Service Catalog Administrator Guide

Security Best Practices .............................................................................................................. 40 Managing Catalogs ........................................................................................................................... 41

Managing Portfolios ................................................................................................................. 41 Creating, Viewing, and Deleting Portfolios ........................................................................... 41 Viewing Portfolio Details ................................................................................................... 42 Creating and Deleting Portfolios ........................................................................................ 42 Adding products ............................................................................................................... 42 Adding Constraints ........................................................................................................... 44 Granting Access to Users ................................................................................................... 45 Sharing a Portfolio ........................................................................................................... 45 Sharing and Importing Portfolios ....................................................................................... 49

Managing Products ................................................................................................................... 52 Viewing the Products Page ................................................................................................ 52 Creating Products ............................................................................................................. 52 Adding Products to Portfolios ............................................................................................ 53 Updating Products ............................................................................................................ 53 Syncing AWS Service Catalog products to template files from Git ........................................... 54 Deleting Products ............................................................................................................. 59 Managing Versions ........................................................................................................... 59

Using Constraints ..................................................................................................................... 60 Launch Constraints ........................................................................................................... 60 Notification Constraints ..................................................................................................... 63 Tag Update Constraints ..................................................................................................... 64 Stack Set Constraints ........................................................................................................ 64 Template Constraints ........................................................................................................ 65

Using Service Actions ................................................................................................................ 68 Prerequisites .................................................................................................................... 68 Step 1: Configure end user permissions ............................................................................... 68 Step 2: Create a service action ........................................................................................... 69 Step 3: Associate the service action with a product version .................................................... 70 Step 4: Test the end user experience .................................................................................. 70 Step 5: Troubleshooting .................................................................................................... 70

Adding AWS Marketplace Products to Your Portfolio ..................................................................... 72 Managing AWS Marketplace Products Using AWS Service Catalog ........................................... 72 Managing and Adding AWS Marketplace Products Manually ................................................... 72

Using AWS CloudFormation StackSets ......................................................................................... 77 Stack sets vs. stack instances ............................................................................................. 77 Stack set constraints ......................................................................................................... 77

Managing Budgets .................................................................................................................... 77 Prerequisites .................................................................................................................... 78 Creating a Budget ............................................................................................................ 79 Associating a Budget ........................................................................................................ 79 Viewing a Budget ............................................................................................................. 80 Disassociating a Budget .................................................................................................... 80

Managing Provisioned Products .......................................................................................................... 81 Managing All Provisioned Products as Administrator ..................................................................... 81 Changing Provisioned Product Owner ......................................................................................... 81 See Also .......................................................................................................................... 82 Updating templates for provisioned products .............................................................................. 82 Tutorial: Identifying User Resource Allocation .............................................................................. 82

Managing Tags ................................................................................................................................. 86 AutoTags ................................................................................................................................. 86 TagOption Library .................................................................................................................... 87 Launching a Product with TagOptions ................................................................................. 88 Managing TagOptions ....................................................................................................... 90 Using TagOptions with AWS Organizations tag policies ......................................................... 91

Monitoring ....................................................................................................................................... 94

iv

AWS Service Catalog Administrator Guide Monitoring Tools ...................................................................................................................... 94

Automated Tools .............................................................................................................. 94 CloudWatch Metrics .................................................................................................................. 94

Enabling CloudWatch Metrics ............................................................................................. 95 Available Metrics and Dimensions ....................................................................................... 95 Viewing AWS Service Catalog Metrics ................................................................................. 95 CloudTrail logs ......................................................................................................................... 96 AWS Service Catalog information in CloudTrail ..................................................................... 96 Understanding AWS Service Catalog log file entries .............................................................. 97 Document History ............................................................................................................................ 98

v

................
................

In order to avoid copyright disputes, this page is only a partial summary.

Google Online Preview   Download

To fulfill the demand for quickly locating and searching documents.

It is intelligent file search solution for home and business.

Literature Lottery

Related download
Related searches

©2024 5y1.org, Inc. All rights reserved.