AWS Management and Governance Tools

On top of the services AWS provide to help you build and deploy applications and virtual networks on AWS detailed in our recent AWS Services List post, AWS also provide a ton of tools and services to monitor the activity and performance of the applications and networks you build on AWS.

The following is a summary of the AWS management and governance tools you can use to keep track of the activity, alerts and performance of your applications and AWS network infrastructure

Amazon Cloudwatch

Cloudwatch natively integrates with more than 70 AWS services such as Amazon EC2, Amazon DynamoDB, Amazon S3, Amazon ECS, Amazon EKS, and AWS Lambda, and automatically publishes detailed one minute metrics and custom metrics with up to one second granularity so you can dive deep into your logs for additional context.

AWS Auto Scaling

AWS Auto Scaling lets you set target utilization levels for multiple resources in a single, interface. This lets you quickly see the average utilization of all of your scalable resources without having to navigate to other consoles.

Amazon EC2 Auto Scaling helps you maintain application availability and allows you to automatically add or remove EC2 instances according to conditions you define. You can use the fleet management features of EC2 Auto Scaling to maintain the health and availability of your fleet. You can also use the dynamic and predictive scaling features of EC2 Auto Scaling to add or remove EC2 instances.

AWS Chatbot

AWS Chatbot sends pre-selected, event-triggered alerts to your Slack channels or Amazon Chime chat rooms, keeping your team informed and aware of the operational incidents or other events that they need to know about.

AWS CloudFormation

A CloudFormation template describes your desired resources and their dependencies so you can launch and configure them together as a stack. You can use a template to create, update, and delete an entire stack as a single unit, as often as you need to, instead of managing resources individually. You can provision and/or manage stacks across multiple AWS accounts and AWS Regions using Cloudformation templates..

With CloudFormation, you can apply DevOps and GitOps best practices using widely adopted processes such as starting with a git repository and deploying through a CI/CD pipeline. With CloudFormation, you can apply DevOps and GitOps best practices using widely adopted processes such as starting with a git repository and deploying through a CI/CD pipeline. You can also manage resource scaling by sharing CloudFormation templates to be used across your organization, to meet safety, compliance, and configuration standards across all your AWS accounts and regions.

AWS CloudTrail

CloudTrail captures event history of your AWS account activity, including actions taken through multiple AWS interfaces including the AWS Management Console, AWS SDKs, command line tools, and other AWS services. This event history helps with security analysis, resource change tracking, and troubleshooting. You can also use AWS CloudTrail to detect unusual activity in your AWS accounts.


The AWS CLI v2 offers several new features including improved installers, new configuration options such as AWS Single Sign-On (SSO), and various interactive features.

AWS Compute Optimizer

By applying the knowledge drawn from Amazon’s own experience running diverse workloads in the cloud, Compute Optimizer identifies workload patterns and recommends optimal AWS resources for those workloads.

AWS Config

With Config, you can review changes in configurations and relationships between AWS resources, dive into detailed resource configuration histories, and determine your overall compliance against the configurations specified in your internal guidelines.

AWS Control Tower

AWS Control Tower creates your landing zone using AWS Organizations. With AWS Control Tower, builders can provision new AWS accounts in a few clicks, while maintaining peace of mind knowing that the new accounts conform to company-wide policies.

AWS Console Mobile App

The Console Mobile Application allows you to monitor resources through a dedicated dashboard and view configuration details, metrics, and alarms for select AWS services. The Dashboard provides permitted users with an overview of the account status, with real-time data on Amazon CloudWatch, Personal Health Dashboard, and AWS Billing and Cost Management.

You can find the app download on the amazon app store, google play and the apple app store.

AWS License Manager

AWS Management Console

AWS Managed Services

Once your business objectives are defined, the AMS team will assign a designated cloud architect and service delivery manager to deliver automated infrastructure for your domain that encapsulates resource provisioning, patch and backup compliance, monitoring and alerting, security and service integration amongst other things

The AMS service team will liase with your business and provision agreed resources that are required to deliver your business outcomes via safe, secure and highly available application infrastructure.

AWS OpsWorks

AWS Organizations

AWS Organizations is integrated with other AWS services so you can define central configurations, security mechanisms, audit requirements, and resource sharing across accounts in your organization.

AWS Personal Health Dashboard

AWS Service Catalog

AWS Systems Manager

With Systems Manager, you can group resources, like Amazon EC2 instances, Amazon EKS clusters, Amazon S3 buckets, or Amazon RDS instances, by application, view operational data for monitoring and troubleshooting, implement pre-approved change work flows, and audit operational changes for your groups of resources.

AWS Trusted Advisor

Whether establishing new workloads, developing applications, or as part of ongoing improvement, you can take advantage of the recommendations provided by Trusted Advisor on a regular basis to help keep your solutions and infrastructure provisioned optimally.

AWS Well-Architected Tool

This Framework provides a consistent approach for customers and partners to evaluate architectures, has been used in tens of thousands of workload reviews conducted by the AWS solutions architecture team, and provides guidance to help implement designs that scale with application needs over time.

Well architected advice can also be viewed in the AWS Compliance report found in the reporting module of Hava.

The reporting module is an addition to the automated network topology diagrams that are generated when you connect your AWS account to the Hava application, which is available as a SaaS or self-hosted enterprise solution.

Diagrams display interactive network infrastructure which also displays resource metadata when resources on the diagram are selected. A separate diagram displays security groups and visualizes the open ports and traffic flow through your AWS VPCs

Interested in seeing your network in AWS infrastructure diagram form? You can try Hava for free here:

Originally published at

Tech Writer, Developer, Marketer and Generator of Leads.