Versions Compared

Old Version 3

changes.mady.by.user Jenni Wallin

Saved on

compared with

New Version Current

changes.mady.by.user Jenni Wallin

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

AWS Services

The below table lists mandatory and optional managed AWS services that are used by by Usage Engine

ServiceDocumentationMandatoryPricingBackup MethodIaC
Amazon RDS for PostgreSQLhttps://aws.amazon.com/rds/postgresql/Yeshttps://aws.amazon.com/rds/pricing/Point in Time RecoveryTerraform
Amazon Elastic File Systemhttps://aws.amazon.com/efs/Yeshttps://aws.amazon.com/efs/pricing/AWS Backup SnapshottingTerraform
Amazon Route 53 https://aws.amazon.com/route53/Yeshttps://aws.amazon.com/route53/pricing/IaCTerraform
Amazon Elastic Kubernetes Servicehttps://aws.amazon.com/eks/Yeshttps://aws.amazon.com/eks/pricing/IaCEksctl
AWS Key Management Servicehttps://aws.amazon.com/kms/Yeshttps://aws.amazon.com/kms/pricing/IaCTerraform
Elastic Load Balancinghttps://aws.amazon.com/elasticloadbalancing/Yeshttps://aws.amazon.com/elasticloadbalancing/pricing/IaCTerraform
Amazon Memory DB for Redishttps://aws.amazon.com/memorydb/Nohttps://aws.amazon.com/memorydb/pricing/Multi-AZ transactional logTerraform
AWS Backuphttps://aws.amazon.com/backupNohttps://aws.amazon.com/backup/pricing/-
Amazon S3https://aws.amazon.com/s3/Nohttps://aws.amazon.com/s3/pricing/S3Terraform
Amazon S3 Glacierhttps://aws.amazon.com/s3/glacier/Nohttps://aws.amazon.com/s3/glacier/pricing/S3Terraform

...

Excerpt

When running in AWS, Usage Egnine stores data persistently in RDS, EFS and optionally MemoryDB. All these services support encryption at rest. The default Terraform templates provided as part of the product are configured to use encryption at rest. MemoryDB is configured by the customer. It is recommended to configure it with encryption at rest if sensitive information will be stored in it.

...

Solutions that use disk persisted data is storing this on a mounted EFS disk resource. Using the provided Terraform template, the EFS resource is given the name "[EKS-CLUSTER-ANME]-efs-disk". It is mounted into the  pods pods at the path "/opt/mz/persistent" which is the path where executing workflows can access the storage. 

The following  features features use or can use disk based storage to persist data:

...

MemoryDB Redis database 

Some features in  can can use a Redis compatible database to store state. In AWS the MemoryDB for Redis service can be used for this. Access to this is configured in:

and can be consumed by:

...

The AWS infrastructure should be managed as IaC using Terraform, CloudFormation or similar tool.  Usage Engine comes with templates written in Terraform that will setup a basic environment. The default configuration of these templates setup the following resources, which are sufficient to run a standard  system Usage Engine system with solutions that are not particularly demanding on resources. 

  • EFS Mount Target
  • EFS Security Group
  • KMS Key
  • KMS Alias
  • RDS DB Instance (Postgres)
  • RDS DB Subnet Group
  • RDS DB Access Security Group
  • SSM RDS Parameters
  • DB User
  • DB Password
  • Route53 DNS Zone
  • Route53 DNS NS Record
  • ACM Certificate
  • Route53 Cert Validation Record
  • ACM Certificate Validation
  • EKS Cluster
  • VPC Cluster Endpoint
  • Node Group
    • Minimum three nodes m5.Large
  • CloudWatch cluster logging
  • MZ Platform Application Helm chart
  • MZ ECD Solution Helm charts

...