Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 15 Current »

Cloudaware workflows (flows) is a technology for automating processes based on changes detected in CMDB. Using flows, customers can quickly adopt automation in all domains of digital infrastructure operations at scale.

Architecture

The Flow Builder provides an easy-to-use point-and-click user interface to create automation flows.

Flows consist of entry criteria and actions. Entry criteria is a specific configuration state of an entity in CMDB. Action is the process an operator would like to initiate once entry criteria have been met. 

Use Cases

Infrastructure operators leverage flows to address configuration changes, spending spikes, and security compliance violations. Here are sample use cases:

Asset Management

Problem: Expired certificate causes business disruption

Solution: Create a time-based flow that will notify you to update the certificate 30 days before expiration

Asset: ACM Certificate

Criteria: Expiration Date < 30 from Current Date

Action: Send an email and create a JIRA ticket

Cost Management

Problem: AWS Forecasted Spend exceeds the preset budget value

Solution: Deploy a flow to send an email and Slack notifications to cost center owner

Asset: AWS Account

Criteria: Forecasted EoM or EoY Spend > Budget

Action: Trigger Email and Webhook for Slack

Compliance

Problem: AWS S3 Bucket allows non-encrypted traffic

Solution: Create a flow that will perform an auto-remediation process if the bucket owner has not addressed the issue within 7 days

Asset: Compliance Policy Violation

Criteria: Compliance Policy Violation Age > 7 days

Action: Webhook to trigger AWS Lambda auto-remediation function

Incident Management

Problem: Publicly facing instance has critical vulnerabilities

Solution: Create a ticket for the SecOps engineer in charge

Asset: EC2 Instance

Criteria: Public IP Is Not Null AND Critical Vulnerabilities > 0

Action: Webhook to create ServiceNow or PagerDuty Incident

Advantages

No code: simple low-key UI to let you play around with no programming skills required

Time-conditioned actions: set up a sequence for flow actions according to your business logic

Multi-source triggers: trigger flows using data from supported integrations

  • No labels