knowledge shared from working in the cloud
In a very small blog post released on Oct 25th, the AWS Organizations team released a key new feature: the ability to update the primary contact information for your member accounts. This is a huge improvement and takes away one more thing that you previously could only do logged in as root. Login in to…
Cloud Inventory is a Challenge Anyone who has worked with AWS for a while will be quite familiar with the difficulties of getting a complete picture of the inventory of resources in your accounts. While AWS has made some limited strides in this area with tools like the EC2 Global View and the ability to…
Introduction At my day job, we first started using public cloud back in 2015, and at the time we were really just starting to crawl with cloud financials. Our finance department was not a fan of chargeback and as a result we ended up partnering with a third party reseller to help us with…
Recently (May 16th, 2022), AWS made a small announcement related to AWS Control Tower that will be huge for my AWS environment and probably for many others as well. Namely, that you can now use customer provided core accounts when implementing Control Tower. Background AWS Control Tower is a great solution if you are setting…
Introduction One constant topic that comes up whenever discussing cloud costs with my counterparts in Finance is the notion of forecasting. Finance people love to forecast and it’s a big part of their job. However, forecasting AWS spend is notoriously difficult for several reasons: The fact that cloud costs are consumption based and thus highly…
Introduction In my first post on the CUDOS solution, I showed you how you can implement implement SSO access to CUDOS using AWS Single Sign-on service. Leveraging this capability you can enable users to sign in to QuickSight using their corporate credentials and avoid having to give them full access to the AWS console. Now…
Part 1 – Deployment and SSO Integration At my day job I recently led a project to move away from CloudHealth for cost reporting and implement some new tools to replace the functionality of CloudHealth. CloudHealth is a great tool but my company no longer wanted to pay a percentage of our spend just to…
In my last post, I showed you how to setup an automated, enterprise wide deployment of AWS Config. That post assumed you were starting from scratch with no existing setup of AWS Config in your AWS accounts. However, what if you have already enabled AWS Config in one or more of your AWS accounts, with…
AWS Config – powerful tool but a deployment headache Seasoned users of AWS will be familiar with the AWS Config service. Config is a powerful tool that lets you continuously monitor and record the configuration of AWS resources in your account. Using Config, you can easily see changes to configuration of a given AWS resource…