Cloudaware Documentation

Leverage Workflows

Cloudaware workflows (flows) is a technology for automating processes based on changes detected in CMDB. Using flows, customers can quickly adopt automation in all domains of digital infrastructure operations at scale.


Architecture

The Flow Builder provides an easy-to-use point-and-click user interface to create automation flows.

Flows consist of entry criteria and actions. Entry criteria is a specific configuration state of an entity in CMDB. Action is the process an operator would like to initiate once entry criteria have been met. 

image5.png

Use Cases

Infrastructure operators leverage flows to address configuration changes, spending spikes, and security compliance violations. Here are sample use cases:


Asset Management

Problem: Expired certificate causes business disruption

Solution: Create a time-based flow that will notify you to update the certificate 30 days before expiration

Asset: ACM Certificate


Criteria: Expiration Date < 30 from Current Date

Action: Send an email and create a JIRA ticket

flow builder - asset management.png


Cost Management

Problem: AWS Forecasted Spend exceeds the preset budget value

Solution: Deploy a flow to send an email and Slack notifications to cost center owner

Asset: AWS Account


Criteria: Forecasted EoM or EoY Spend > Budget

Action: Trigger Email and Webhook for Slack

CMDB - Leverage Workflows - Cost management.png


Compliance

Problem: AWS S3 Bucket allows non-encrypted traffic

Solution: Create a flow that will perform an auto-remediation process if the bucket owner has not addressed the issue within 7 days

Asset: Compliance Policy Violation


Criteria: Compliance Policy Violation Age > 7 days

Action: Webhook to trigger AWS Lambda auto-remediation function


flow builder - compliance.png


Incident Management

Problem: Publicly facing instance has critical vulnerabilities

Solution: Create a ticket for the SecOps engineer in charge

Asset: EC2 Instance


Criteria: Public IP Is Not Null AND Critical Vulnerabilities > 0

Action: Webhook to create ServiceNow or PagerDuty Incident

flow builder - incident management_2.png



Advantages


No code: simple low-key UI to let you play around with no programming skills required

Time-conditioned actions: set up a sequence for flow actions according to your business logic

Multi-source triggers: trigger flows using data from supported integrations