Amazon Web Services (AWS) – 4 – Major AWS services – Part 2

Continued from the previous post..

More key AWS services are listed below:

STORAGE

Amazon Simple Storage Service (Amazon S3)

• object storage service that offers scalability, data availability, security, and performance
• can use it to store and protect any amount of data for a range of use cases, such as websites, mobile applications, backup and restore, archive, enterprise applications, IoT devices, and big data analytics.
• designed for 99.999999999% (11 9’s) of durability, and stores data for millions of applications for companies all around the world.

Amazon Elastic Block Store

• provides persistent block storage volumes for use with Amazon EC2 instances in the AWS Cloud.
• Each Amazon EBS volume is automatically replicated within its Availability Zone to protect you from component failure, offering high availability and durability.

Amazon Elastic File System (Amazon EFS)

• provides a simple, scalable, elastic file system for Linux-based workloads for use with AWS Cloud services and on-premises resources.
• Amazon EFS is a regional service storing data within and across multiple Availability Zones (AZs) for high availability and durability.
• You can access your file systems across AZs and regions and share files between thousands of Amazon EC2 instances and on-premises servers via AWS Direct Connect or AWS VPN.
• Use cases such as lift-and-shift enterprise applications, big data analytics, web serving and content management, application development and testing, media and entertainment workflows, database backups, and container storage.

Amazon FSx for Lustre

• fully managed file system that is optimized for compute-intensive workloads, such as high performance computing, machine learning, and media data processing workflows
• you can launch and run a Lustre file system that can process massive data sets at up to hundreds of gigabytes per second of throughput, millions of IOPS, and sub-millisecond latencies.

Amazon FSx for Windows File Server

• provides a fully managed native Microsoft Windows file system so you can easily move your Windows-based applications that require file storage to AWS.
• uses SSD storage to provide the fast performance your Windows applications and users expect

Amazon S3 Glacier

• a secure, durable, and extremely low-cost storage service for data archiving and long-term backup.
•  It is designed to deliver 99.999999999% durability, and provides comprehensive security and compliance capabilities that can help meet even the most stringent regulatory requirements.
• provides query-in-place functionality, allowing you to run powerful analytics directly on your archive data at rest
• can store data for as little as $0.004 per gigabyte per month, a significant savings compared to on-premises solutions.
• Amazon S3 Glacier provides three options for access to archives, from a few minutes to several hours

AWS Storage Gateway

• hybrid storage service that enables your on-premises applications to seamlessly use AWS cloud storage
• You can use the service for backup and archiving, disaster recovery, cloud data processing, storage tiering, and migration.
• Your applications connect to the service through a virtual machine or hardware gateway appliance using standard storage protocols, such as NFS, SMB and iSCSI. The gateway connects to AWS storage services, such as Amazon S3, Amazon Glacier, and Amazon EBS, providing storage for files, volumes, and virtual tapes in AWS
• service includes a highly-optimized data transfer mechanism, with bandwidth management, automated network resilience, and efficient data transfer, along with a local cache for low-latency on-premises access to your most active data

MIGRATION AND TRASFER

AWS Migration Hub

• provides a single location to track the progress of application migrations across multiple AWS and partner solutions
• allows you to choose the AWS and partner migration tools that best fit your needs,
• also provides key metrics and progress for individual applications, regardless of which tools are being used to migrate them.
• For example, you might use AWS Database Migration Service, AWS Server Migration Service, and partner migration tools such as ATADATA ATAmotion, CloudEndure Live Migration, or RiverMeadow Server Migration Saas to migrate an application comprised of a database, virtualized web servers, and a bare metal server.

AWS Application Discovery Service

• helps enterprise customers plan migration projects by gathering information about their on-premises data centers.
• collects and presents configuration, usage, and behavior data from your servers to help you better understand your workloads.
• You can export the data as a CSV file and use it to estimate the Total Cost of Ownership (TCO) of running on AWS and to plan your migration to AWS.

AWS Database Migration Service

• helps you migrate databases to AWS
• can migrate your data to and from most widely used commercial and open-source databases
• supports homogeneous migrations such as Oracle to Oracle, as well as heterogeneous migrations between different database platforms, such as Oracle to Amazon Aurora or Microsoft SQL Server to MySQL.
• also allows you to stream data to Amazon Redshift from any of the supported sources including Amazon Aurora, PostgreSQL, MySQL, MariaDB, Oracle, SAP ASE, and SQL Server, enabling consolidation and easy analysis of data in the petabyte-scale data warehouse
• can also be used for continuous data replication with high availability.

AWS Server Migration Service (SMS)

• an agentless service which makes it easier and faster for you to migrate thousands of on-premises workloads to AWS.
• AWS SMS allows you to automate, schedule, and track incremental replications of live server volumes, making it easier for you to coordinate large-scale server migrations.

AWS Snowball

• petabyte-scale data transport solution that uses secure appliances to transfer large amounts of data into and out of AWS
• Snowball addresses common challenges with large- scale data transfers including high network costs, long transfer times, and security concerns
• you don’t need to write any code or purchase any hardware to transfer your data.
• attach the appliance to your local network, download and run the Snowball client to establish a connection, and then use the client to select the file directories that you want to transfer to the appliance.
• uses multiple layers of security designed to protect your data including tamper-resistant enclosures, 256-bit encryption, and an industry-standard Trusted Platform Module (TPM) designed to ensure both security and full chain of custody of your data.

AWS Snowball Edge

• is a data migration and edge computing device that comes in two options. Snowball Edge Storage Optimized provides 100 TB of capacity and 24 vCPUs and is well suited for local storage and large scale data transfer. Snowball Edge Compute Optimized provides 52 vCPUs and an optional GPU for use cases such as advanced machine learning and full motion video analysis in disconnected environments
• can use these two options for data collection, machine learning and processing, and storage in environments with intermittent connectivity (such as manufacturing, industrial, and transportation) or in extremely remote locations (such as military or maritime operations) before shipping it back to AWS.

AWS Snowmobile

• exabyte-scale data transfer service used to move extremely large amounts of data to AWS. You can transfer up to 100 PB per Snowmobile, a 45-foot long ruggedized shipping container, pulled by a semi-trailer truck.
• makes it easy to move massive volumes of data to the cloud, including video libraries, image repositories, or even a complete data center migration.

AWS DataSync

• data transfer service that makes it easy for you to automate moving data between on-premises storage and Amazon S3 or Amazon Elastic File System (Amazon EFS).
• You can use DataSync to copy data over AWS Direct Connect or internet links to AWS.
• service enables one-time data migrations, recurring data processing workflows, and automated replication for data protection and recovery.
• Getting started with DataSync is easy: Deploy the DataSync agent on premises, connect it to a file system or storage array, select Amazon EFS or S3 as your AWS storage, and start moving data. You pay only for the data you copy.

AWS Transfer for SFTP

• fully managed service that enables the transfer of files directly into and out of Amazon S3 using the Secure File Transfer Protocol (SFTP)—also known as Secure Shell (SSH) File Transfer Protocol

NETWORK AND CONTENT DELIVERY

Amazon Virtual Private Cloud (Amazon VPC)

• lets you provision a logically isolated section of the AWS Cloud where you can launch AWS resources in a virtual network that you define.
• You have complete control over your virtual networking environment, including selection of your own IP address range, creation of subnets, and configuration of route tables and network gateways.
• can use both IPv4 and IPv6
• can create a public- facing subnet for your web servers that has access to the Internet, and place your backend systems, such as databases or application servers, in a private-facing subnet with no Internet access.
• can leverage multiple layers of security (including security groups and network access control lists) to help control access to EC2 instances in each subnet

Amazon CloudFront

• fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds, all within a developer-friendly environment

Amazon Route 53

• cloud Domain Name System (DNS) web service.
• way to route end users to Internet applications by translating human readable names, such as www.example.com, into the numeric IP addresses, such as 192.0.2.1
• fully compliant with IPv6 as well.
• Using Amazon Route 53 traffic flow’s simple visual editor, you can easily manage how your end users are routed to your application’s endpoints—whether in a single AWS Region or distributed around the globe.
• Amazon Route 53 also offers Domain Name Registration—you can purchase and manage domain names such as example.com and Amazon Route 53 will automatically configure DNS settings for your domains.

AWS PrivateLink

• provides private connectivity between VPCs, AWS services, and on-premises applications, securely on the Amazon network
• simplifies the security of data shared with cloud-based applications by eliminating the exposure of data to the public Internet.

AWS Direct Connect

• to establish a dedicated network connection from your premises to AWS
• you can establish private connectivity between AWS and your data center, office, or co-location environment, which in many cases can reduce your network costs, increase bandwidth throughput, and provide a more consistent network experience than Internet-based connections.

AWS Global Accelerator

• networking service that improves the availability and performance of the applications that you offer to your global users.
• uses the highly available and congestion-free AWS global network to direct internet traffic from your users to your applications on AWS

Amazon API Gateway

• fully managed service that makes it easy for developers to create, publish, maintain, monitor, and secure APIs at any scale.
• handles all the tasks involved in accepting and processing up to hundreds of thousands of concurrent API calls, including traffic management, authorization and access control, monitoring, and API version management.

AWS Transit Gateway

• service that enables customers to connect their Amazon Virtual Private Clouds (VPCs) and their on-premises networks to a single gateway.
• Transit Gateway acts as a hub that controls how traffic is routed among all the connected VPC networks which act like spokes.
• Any new VPC is simply connected to the Transit Gateway and is then automatically available to every other network that is connected to the Transit Gateway

AWS App Mesh

• uses the open source Envoy proxy, making it compatible with a wide range of AWS partner and open source tools for monitoring microservices.
• App Mesh standardizes how your microservices communicate, giving you end-to-end visibility and helping to ensure high-availability for your applications
• makes it easy to run microservices by providing consistent visibility and network traffic controls for every microservice in an application

AWS Cloud Map

• cloud resource discovery service
• you can define custom names for your application resources, and it maintains the updated location of these dynamically changing resources.
• allows you to register any application resources such as databases, queues, microservices, and other cloud resources with custom names

Elastic Load Balancing

• automatically distributes incoming application traffic across multiple targets, such as Amazon EC2 instances, containers, and IP addresses.
• can handle the varying load of your application traffic in a single Availability Zone or across multiple Availability Zones
• offers three types of load balancers:

1. Application Load Balancer is best suited for load balancing of HTTP and HTTPS traffic and provides advanced request routing targeted at the delivery of modern application architectures, including microservices and containers.
2. Network Load Balancer is best suited for load balancing of TCP traffic where extreme performance is required. Operating at the connection level (Layer 4), Network Load Balancer routes traffic to targets within Amazon Virtual Private Cloud (Amazon VPC)
3. Classic Load Balancer provides basic load balancing across multiple Amazon EC2 instances and operates at both the request level and connection level. Classic Load Balancer is intended for applications that were built within the EC2-Classic network.

SECURITY, IDENTITY AND COMPLIANCE

AWS Security Hub

• gives you a comprehensive view of your high-priority security alerts and compliance status across AWS accounts.
• a single place that aggregates, organizes, and prioritizes your security alerts, or findings, from multiple AWS services, such as Amazon GuardDuty, Amazon Inspector, and Amazon Macie, as well as from AWS Partner solutions.

Amazon Cloud Directory

• to build flexible, cloud-native directories for organizing hierarchies of data along multiple dimensions.
• you can create directories for a variety of use cases, such as organizational charts, course catalogs, and device registries.

AWS Identity and Access Management

• enables you to securely control access to AWS services and resources for your users. Using IAM, you can create and manage AWS users and groups, and use permissions to allow and deny their access to AWS resources.
• IAM allows you to do the following:

1. Manage IAM users and their access: You can create users in IAM, assign them individual security credentials
2. Manage IAM roles and their permissions: You can create roles in IAM and manage permissions to control which operations can be performed by the entity, or AWS service, that assumes the role.
3. Manage federated users and their permissions: You can enable identity federation to allow existing identities (users, groups, and roles) in your enterprise to access the AWS Management Console, call AWS APIs, and access

Amazon GuardDuty

• threat detection service that continuously monitors for malicious or unauthorized behavior to help you protect your AWS accounts and workloads.
• monitors for activity such as unusual API calls or potentially unauthorized deployments that indicate a possible account compromise.
• identifies suspected attackers through integrated threat intelligence feeds and uses machine learning to detect anomalies in account and workload activity

Amazon Inspector

• Amazon Inspector automatically assesses applications for exposure, vulnerabilities, and deviations from best practices.
• produces a detailed list of security findings prioritized by level of severity. These findings can be reviewed directly or as part of detailed assessment reports which are available via the Amazon Inspector console or API.
• Amazon Inspector assessments are offered to you as pre-defined rules packages mapped to common security best practices and vulnerability definitions.

Amazon Macie

• security service that uses machine learning to automatically discover, classify, and protect sensitive data in AWS.
• recognizes sensitive data such as personally identifiable information (PII) or intellectual property, and provides you with dashboards and alerts that give visibility into how this data is being accessed or moved

AWS Artifact

• your go-to, central resource for compliance-related information that matters to you.
• on-demand access to AWS’ security and compliance reports and select online agreements.

AWS Certificate Manager

• service that lets you easily provision, manage, and deploy Secure Sockets Layer/Transport Layer Security (SSL/TLS) certificates for use with AWS services and your internal connected resources.
• AWS Certificate Manager removes the time-consuming manual process of purchasing, uploading, and renewing SSL/TLS certificates
• With AWS Certificate Manager, you can quickly request a certificate, deploy it on ACM-integrated AWS resources, such as Elastic Load Balancers, Amazon CloudFront distributions, and APIs on API Gateway, and let AWS Certificate Manager handle certificate renewals.

AWS CloudHSM

• cloud-based hardware security module (HSM) that enables you to easily generate and use your own encryption keys on the AWS Cloud. With CloudHSM, you can manage your own encryption keys using FIPS 140-2 Level 3 validated HSMs.
• standards-compliant and enables you to export all of your keys to most other commercially-available HSMs

AWS Directory Service

• AWS Directory Service for Microsoft Active Directory, also known as AWS Managed Microsoft AD, enables your directory-aware workloads and AWS resources to use managed Active Directory in the AWS Cloud.
• With AWS Managed Microsoft AD, you can easily join Amazon EC2 and Amazon RDS for SQL Server instances to a domain, and use AWS Enterprise IT applications such as Amazon WorkSpaces with Active Directory users and groups.

AWS WAF

• a web application firewall that helps protect your web applications from common web exploits that could affect application availability, compromise security, or consume excessive resources.
• You can use AWS WAF to create custom rules that block common attack patterns, such as SQL injection or cross-site scripting, and rules that are designed for your specific application.

AWS Firewall Manager

• security management service that makes it easier to centrally configure and manage AWS WAF rules across your accounts and applications.
• Using Firewall Manager, you can easily roll out AWS WAF rules for your Application Load Balancers and Amazon CloudFront distributions across accounts in AWS Organizations.

AWS Key Management Service

• makes it easy for you to create and manage keys and control the use of encryption across a wide range of AWS services and in your applications
• secure and resilient service that uses FIPS 140-2 validated hardware security modules to protect your keys

AWS Organizations

• offers policy-based management for multiple AWS accounts.
• you can create groups of accounts, automate account creation, apply and manage policies for those groups. Organizations enables you to centrally manage policies across multiple accounts, without requiring custom scripts and manual processes
• helps simplify the billing for multiple accounts by enabling you to setup a single payment method for all the accounts in your organization through consolidated billing.

AWS Secrets Manager

• helps you protect secrets needed to access your applications, services, and IT resources
• enables you to easily rotate, manage, and retrieve database credentials, API keys, and other secrets throughout their lifecycle.
• Secrets Manager offers secret rotation with built-in integration for Amazon RDS for MySQL, PostgreSQL, and Amazon Aurora. Also, the service is extensible to other types of secrets, including API keys and OAuth tokens.

AWS Shield

• managed Distributed Denial of Service (DDoS) protection service that safeguards web applications running on AWS
• provides always-on detection and automatic inline mitigations that minimize application downtime and latency
• There are two tiers of AWS Shield: Standard and Advanced.
• AWS Shield Standard (free version) defends against most common, frequently occurring network and transport layer DDoS attacks that target your website or applications.
• For higher levels of protection against attacks targeting your applications running on Amazon Elastic Compute Cloud (EC2), Elastic Load Balancing (ELB), Amazon CloudFront, and Amazon Route 53 resources, you can subscribe to AWS Shield Advanced.
• In addition to the network and transport layer protections that come with Standard, AWS Shield Advanced provides additional detection and mitigation against large and sophisticated DDoS attacks, near real-time visibility into attacks, and integration with AWS WAF, a web application firewall

AWS Single Sign-On (SSO)

• cloud SSO service that makes it easy to centrally manage SSO access to multiple AWS accounts and business applications.
• you can easily manage SSO access and user permissions to all of your accounts in AWS Organizations centrally.
• also includes built-in SAML integrations to many business applications, such as Salesforce, Box, and Office 365.

DEVELOPER TOOLS

AWS CodeCommit

• source control service that hosts secure Git-based repositories
• eliminates the need to operate your own source control system
• Can store anything from source code to binaries

AWS CodeBuild

• fully managed build service that compiles source code, runs tests, and produces software packages that are ready to deploy.

AWS CodeDeploy

• automates code deployments to any instance, including EC2 instances and instances running on premises.
• to automate software deployments, eliminating the need for error-prone manual operations

AWS CodePipeline

• continuous delivery service that helps you automate your release pipelines
• automates the build, test, and deploy phases of your release process every time there is a code change
• can easily integrate AWS CodePipeline with third-party services such as GitHub

AWS CodeStar

• provides a unified user interface, enabling you to easily manage your software development activities in one place
• comes with a project management dashboard, including an integrated issue tracking capability powered by Atlassian JIRA Software

Amazon Corretto

• no-cost, multiplatform, production-ready distribution of the Open Java Development Kit (OpenJDK).

AWS Cloud9

• cloud-based integrated development environment (IDE) that lets you write, run, and debug your code with just a browser
• includes a code editor, debugger, and terminal.

AWS X-Ray

• helps developers analyze and debug distributed applications in production or under development, such as those built using a microservices architecture.

IoT

AWS IoT Core

• managed cloud service that lets connected devices interact with cloud applications and other devices
• can process and route  messages to AWS endpoints

Amazon FreeRTOS

• operating system for microcontrollers that makes small, low-power edge devices easy to program, deploy, secure, connect, and manage.
• extends the FreeRTOS kernel, a popular open source operating system for microcontrollers

AWS IoT Greengrass

• extends AWS to devices so they can act locally on the data they generate, while still using the cloud for management, analytics, and durable storage
• can be programmed to filter device data and only transmit necessary information back to the cloud

AWS IoT 1-Click

• service that enables simple devices to trigger AWS Lambda functions that can execute an action.
• enable you to easily perform actions such as notifying technical support, tracking assets, and replenishing goods or services.

AWS IoT Analytics

• to run and operationalize sophisticated analytics on massive volumes of IoT data
• filters, transforms, and enriches IoT data before storing it in a time-series data store for analysis.

AWS IoT Button

• programmable button based on the Amazon Dash Button hardware.
• You can code the button’s logic in the cloud to configure button clicks to count or track items, call or alert someone, start or stop something, order services, or even provide feedback.

AWS IoT Device Defender

• fully managed service that helps you secure your fleet of IoT devices
• continuously audits your IoT configurations to make sure that they aren’t deviating from security best practices
• AWS IoT Device Defender can send alerts to the AWS IoT Console, Amazon CloudWatch, and Amazon SNS.

AWS IoT Device Management

• to track, monitor, and manage connected device fleets
• securely onboard, organize, monitor, and remotely manage IoT devices at scale.
• you can register your connected devices individually or in bulk, and easily manage permissions
• You can also organize your devices, monitor and troubleshoot device functionality, query the state of any IoT device in your fleet, and send firmware updates over-the-air (OTA). AWS

AWS IoT Events

• fully managed IoT service that makes it easy to detect and respond to events from IoT sensors and applications
• continuously monitors data from multiple IoT sensors and applications, and it integrates with other services, such as AWS IoT Core and AWS IoT Analytics, to enable early detection and unique insights into events.

AWS IoT SiteWise

• managed service that makes it easy to collect and organize data from industrial equipment at scale

AWS IoT Things Graph

• service that makes it easy to visually connect different devices and web services to build IoT applications
• provides a visual drag-and-drop interface for connecting and coordinating devices and web services, so you can build IoT applications quickly.

MACHINE LEARNING

Amazon SageMaker

• fully-managed platform to build, train, and deploy machine learning models at any scale
• includes modules that can be used together or independently to build, train, and deploy your machine learning models.

Amazon SageMaker Ground Truth

• helps you build highly accurate training datasets for machine learning quickly.
• using machine learning to automatically label data
• offers easy access to public and private human labelers and provides them with built-in workflows and interfaces for common labeling tasks

Amazon Comprehend

• natural language processing (NLP) service that uses machine learning to find insights and relationships in text
• uses machine learning to help you uncover the insights and relationships in your unstructured data
• identifies the language of the text; extracts key phrases, places, people, brands, or events; understands how positive or negative the text is; analyzes text using tokenization and parts of speech; and automatically organizes a collection of text files by topic.
• For extracting complex medical information from unstructured text, you can use Amazon Comprehend Medical

Amazon Lex

• service for building conversational interfaces into any application using voice and text.
• advanced deep learning functionalities of automatic speech recognition (ASR) for converting speech to text, and natural language understanding (NLU) to recognize the intent of the text, to enable you to build applications with highly engaging user experiences and lifelike conversational interactions.
• the same deep learning technologies that power Amazon Alexa

Amazon Polly

• Polly is an Amazon artificial intelligence (AI) service that uses advanced deep learning technologies to synthesize speech that sounds like a human voice.
• service that turns text into lifelike speech
• lets you create applications that talk, enabling you to build entirely new categories of speech-enabled products.

Amazon Rekognition

• a service that makes it easy to add image analysis to your applications.
• With Rekognition, you can detect objects, scenes, and faces in images. You can also search and compare faces.
• The Amazon Rekognition API enables you to quickly add sophisticated deep-learning-based visual search and image classification to your applications.

Amazon Translate

• neural machine translation service that delivers fast, high-quality, and affordable language translation
• language translation automation that uses deep learning models to deliver more accurate and more natural sounding translation than traditional statistical and rule-based translation algorithms.

Amazon Transcribe

• automatic speech recognition (ASR) service that makes it easy for developers to add speech-to-text capability to their applications.
• Using the Amazon Transcribe API, you can analyze audio files stored in Amazon S3 and have the service return a text file of the transcribed speech.

Amazon Elastic Inference

• allows you to attach low-cost GPU-powered acceleration to Amazon EC2 and Amazon SageMaker instances to reduce the cost of running deep learning inference by up to 75%.

Amazon Forecast

• fully managed service that uses machine learning to deliver highly accurate forecasts.
• Based on the same technology used at Amazon.com, Amazon Forecast uses machine learning to combine time series data with additional variables to build forecasts.

Amazon Textract

• service that automatically extracts text and data from scanned documents.
• Textract goes beyond simple optical character recognition (OCR) to also identify the contents of fields in forms and information stored in tables.

Amazon Personalize

• machine learning service that makes it easy for developers to create individualized recommendations for customers using their applications.
• allows developers with no prior machine learning experience to easily build sophisticated personalization capabilities into their applications, using machine learning technology perfected from years of use on Amazon.com

Amazon Deep Learning AMIs

• provide machine learning practitioners and researchers with the infrastructure and tools to accelerate deep learning in the cloud, at any scale.

AWS DeepLens

• helps put deep learning in the hands of developers, literally, with a fully programmable video camera, tutorials, code, and pre-trained models designed to expand deep learning skills.

MANAGEMENT AND GOVERNANCE

Amazon CloudWatch

• monitoring and management service built for developers, system operators, site reliability engineers (SRE), and IT managers.
• provides you with data and actionable insights to monitor your applications, understand and respond to system-wide performance changes, optimize resource utilization, and get a unified view of operational health.
• collects monitoring and operational data in the form of logs, metrics, and events, providing you with a unified view of AWS resources, applications and services that run on AWS, and on-premises servers.
• You can set high resolution alarms, visualize logs and metrics side by side, take automated actions, troubleshoot issues, and discover insights to optimize your applications, and ensure they are running smoothly.

AWS Auto Scaling

• monitors your applications and automatically adjusts capacity to maintain steady, predictable performance at the lowest possible cost.
• user interface that lets you build scaling plans for resources including Amazon EC2 instances and Spot Fleets, Amazon ECS tasks, Amazon DynamoDB tables and indexes, and Amazon Aurora Replicas

AWS Control Tower

• automates the set-up of a baseline environment, or landing zone, that is a secure, well-architected multi-account AWS environmen
• Distributed teams are able to provision new AWS accounts quickly, while central teams have the peace of mind knowing that new accounts are aligned with centrally established, company-wide compliance policies.

AWS Systems Manager

• gives you visibility and control of your infrastructure on AWS.
• provides a unified user interface so you can view operational data from multiple AWS services and allows you to automate operational tasks across your AWS resources
• you can group resources, like Amazon EC2 instances, Amazon S3 buckets, or Amazon RDS instances, by application, view operational data for monitoring and troubleshooting, and take action on your groups of resources.
• contains the various tools like: Resource groups, Insights Dashboard, Run Command, State Manager, Inventory, Maintenance Window, Patch Manager, Automation, Parameter Store, Distributor, Session Manager

AWS CloudFormation

• Service/method to create and manage a collection of related AWS resources, provisioning and updating them in an orderly and predictable fashion.
• You can use the AWS CloudFormation sample templates or create your own templates to describe your AWS resources, and any associated dependencies or runtime parameters, required to run your application.
• You can also visualize your templates as diagrams and edit them using a drag-and-drop interface with the AWS CloudFormation Designer.

AWS CloudTrail

• web service that records AWS API calls for your account and delivers log files to you. The recorded information includes the identity of the API caller, the time of the API call, the source IP address of the API caller, the request parameters, and the response elements returned by the AWS service.
• The AWS API call history produced by CloudTrail enables security analysis, resource change tracking, and compliance auditing.

AWS Config

• fully managed service that provides you with an AWS resource inventory, configuration history, and configuration change notifications to enable security and governance.
• The Config Rules feature enables you to create rules that automatically check the configuration of AWS resources recorded by AWS Config.
• you can discover existing and deleted AWS resources, determine your overall compliance against rules

AWS OpsWorks

• provides managed instances of Chef and Puppet. Chef and Puppet are automation platforms that allow you to use code to automate the configurations of your servers.
• OpsWorks has three offerings, AWS Opsworks for Chef Automate, AWS OpsWorks for Puppet Enterprise, and AWS OpsWorks Stacks.

AWS Service Catalog

• allows organizations to create and manage catalogs of IT services that are approved for use on AWS.
• allows you to centrally manage commonly deployed IT services and helps you achieve consistent governance and meet your compliance requirements, while enabling users to quickly deploy only the approved IT services they need.

AWS Trusted Advisor

• Trusted Advisor provides real-time guidance to help you provision your resources following AWS best practices

AWS Personal Health Dashboard

• provides alerts and remediation guidance when AWS is experiencing events that might affect you.
• While the Service Health Dashboard displays the general status of AWS services, Personal Health Dashboard gives you a personalized view into the performance and availability of the AWS services underlying your AWS resources

AWS Managed Services

• provides ongoing management of your AWS infrastructure so you can focus on your applications
• AWS Managed Services automates common activities such as change requests, monitoring, patch management, security, and backup services, and provides full-lifecycle services to provision, run, and support your infrastructure

AWS Console Mobile Application

• lets customers view and manage a select set of resources to support incident response while on-the-go.
• The Console Mobile Application allows AWS customers to monitor resources through a dedicated dashboard and view configuration details, metrics, and alarms for select AWS services
• In addition, customers can check on the status of specific AWS services, view detailed resource screens, and perform select actions.

AWS License Manager

• to manage licenses in AWS and on-premises servers from software vendors such as Microsoft, SAP, Oracle, and IBM. AWS
• lets administrators create customized licensing rules that emulate the terms of their licensing agreements, and then enforces these rules when an instance of EC2 gets launched
• Administrators can use these rules to limit licensing violations, such as using more licenses than an agreement stipulates or reassigning licenses to different servers on a short-term basis.
• integrates with AWS services to simplify the management of licenses across multiple AWS accounts, IT catalogs, and on-premises, through a single AWS account

AWS Well-Architected Tool

• helps you review the state of your workloads and compares them to the latest AWS architectural best practices
• based on the AWS Well-Architected Framework, developed to help cloud architects build secure, high-performing, resilient, and efficient application infrastructure.
• To use this free tool, available in the AWS Management Console, just define your workload and answer a set of questions regarding operational excellence, security, reliability, performance efficiency, and cost optimization.

MEDIA SERVICES

Amazon Elastic Transcoder

• to convert (or transcode) media files from their source format into versions that will play back on devices like smartphones, tablets, and PCs

AWS Elemental MediaConnect

• transport service for live video
• You can use MediaConnect to ingest live video from a remote event site (like a stadium), share video with a partner (like a cable TV distributor), or replicate a video stream for processing (like an over-the-top service).

AWS Elemental MediaConvert

• allows you to easily create video-on-demand (VOD) content for broadcast and multiscreen delivery at scale

AWS Elemental MediaLive

• broadcast-grade live video processing service
• The service works by encoding your live video streams in real-time, taking a larger-sized live video source and compressing it into smaller versions for distribution to your viewers.

AWS Elemental Media Package

• prepares and protects your video for delivery over the Internet.
• can also protect your content using Digital Rights Management (DRM)

AWS Elemental MediaStore

• AWS storage service optimized for media
• acts as the origin store in your video workflow

AWS Elemental MediaTailor

• lets video providers insert individually targeted advertising into their video streams
• delivers automated reporting based on both client and server-side ad delivery metrics, making it easy to accurately measure ad impressions and viewer behavior.

MOBILE

AWS Amplify

• to create, configure, and implement scalable mobile applications powered by AWS
• provisions and manages your mobile backend and integrate your backend with your iOS, Android, Web, and React Native frontends

Amazon Cognito

• lets you add user sign-up, sign-in, and access control to your web and mobile apps quickly and easily.
• option to authenticate users through social identity providers such as Facebook, Twitter, or Amazon, with SAML identity solutions, or by using your own identity system.
• enables you to save data locally on users’ devices, allowing your applications to work even when the devices are offline.

Amazon Pinpoint

• to send targeted messages to your customers through multiple engagement channels.
• You can integrate Amazon Pinpoint into your mobile and web apps to capture usage data to provide you with insight into how customers interact with your apps.

AWS Device Farm

• an app testing service that lets you test and interact with your Android, iOS, and web apps on many devices at once, or reproduce issues on a device in real time

AWS AppSync

• serverless back-end for mobile, web, and enterprise applications.
• to build data driven mobile and web applications by handling securely all the application data management tasks like online and offline data access, data synchronization, and data manipulation across multiple data sources.
• uses GraphQL, an API query language designed to build client applications

MISCELLANEOUS

Amazon Managed Blockchain

• a fully managed service that makes it easy to create and manage scalable blockchain networks using the popular open source frameworks Hyperledger Fabric and Ethereum

Source : AWS Whitepapers

• Author
• Recent Posts

Brijesh Gogia

I’m an experienced Cloud/Oracle Applications/DBA Architect with more than 15 years of full-time DBA/Architect experience. I have gained wide knowledge on Oracle and Non-Oracle software stack running on-prem and on Cloud and have worked on several big projects for multi-national companies. I enjoy working with leading-edge technology and have a passion for Cloud architecture, automation, database performance, and stability. Thankfully my work allows me time for researching new technologies (and to write about them).

Latest posts by Brijesh Gogia (see all)

• Oracle Multitenant DB 4 : Parameters/SGA/PGA management in CDB-PDB - July 18, 2021
• Oracle Multitenant DB 3 : Data Dictionary Architecture in CDB-PDB - March 20, 2021
• Oracle Multitenant DB 2 : Benefits of the Multitenant Architecture - March 19, 2021