Sample POC Use Cases
This guide covers sample POC use сases.
CMDB
Discover CSP* assets using API.
Create workflows to take action, e.g., send a Slack notification when an asset meets specific criteria such as a missing tag.
Create list views to show publicly accessible resources, e.g., S3 Buckets.
Add a custom field on a CSP asset to store customer-specific attributes, e.g., Cost Center.
Propagate a custom field (e.g., Department) from a CSP Account object to every other asset under that account.
Associate all CSP assets with resource groups based on asset name or tag values.
Create a custom object (e.g., Cluster) and associate all assets with it based on name or tag values.
Display details about assets that were terminated over a specific period, e.g., more than 24 hours ago.
Create dependency maps between assets.
Create tickets in external issue management systems (e.g., Jira) when an asset meets certain criteria, such as CSP usage reaching 90% of a limit.
Integrate CMDB with cloud monitoring services to show CPU, disk, and network activity for each asset.
Import OS-level data into CMDB, such as running services, users, and installed software.
Build a report showing CSP asset counts and trends.
Create a dashboard showing infrastructure deployment across CSP regions/locations.
Show tagging coverage across different CSP assets.
Tag CSP assets from the Cloudaware UI.
Create reports that break down assets by customer tags.
Build and schedule reports to identify assets with missing tags.
*Cloud Service Provider, e.g., AWS, Azure, GCP, Heroku, etc.
Change Management
Create approval processes when a CSP asset meets specific criteria, e.g., a new user without MFA..
Show timelines of changes for CSP assets..
Cost Management
Show the cost of individual CSP assets.
Show the cost of applications and resource groups.
Create dashboards to explore costs by CSP attributes (standard and custom), e.g., product, service, application, and department tags.
Show expenditures not associated with any application.
Demonstrate the ability to optimize cost, e.g. using rightsizing and policies that detect idle or underutilized resources.
Show optimal reservations based on current instances.
Demonstrate the ability to forecast spending for 1, 3, and 6 months.
Create workflows to take an action, e.g., send an email alert when asset costs exceed thresholds, such as MTD spend reaching 75% of the previous month.
Security
Identify deviations from CSP security best practices, e.g., public AWS S3 Buckets or users without MFA.
Deploy vulnerability scanning agents, e.g., Nessus, and perform scans.
Display missing, pending, and installed patches on Linux and Windows hosts.
Deploy host-based intrusion detection agents.
Identify the most vulnerable hosts based on scans, patching status, exposed ports, and running software.
Create workflows to send notifications (email/SNS/Slack) when non-standard ports are open to the internet.
Compliance Engine
Demonstrate the Templates Library and deploy compliance policies from built-in templates.
Use the Policy List to review all deployed policies.
Show how to interpret policy results.
Clone and edit policies in Policy Editor, or create new custom policies.
Create reports showing Compliance Engine policy violations.
Create workflows to send alerts (email/Jira/Slack) when a new violation is detected.
Deploy CIS Benchmarks.
Show how how to handle policy results (tabs 'Related Objects' and 'Statistic History').
Create dashboards to view compliance by attributes such as account, policy type, non-compliance lifetime, and historical trend.
Create workflows to send alerts (email/Jira/Slack) when a new non-compliant benchmark check is detected.
Monitoring
integrate with monitoring tools (New Relic, AppDynamics, Datadog, Zabbix, Pingdom, SolarWinds, Sensu, Nagios):
Display monitored assets.
Retrieve monitoring telemetry.
Map incidents to assets.
Show assets with the highest number of incidents.
Group incidents into cases based on specific criteria, e.g., Zabbix Condition ID.
Create alerts (SNS/Slack/email) for newly created incidents meeting certain criteria, e.g., high severity.
Log Management
Automatically discover, store, and display different types of logs (cloud and host level).
Provide sample queries for searching logs.
Detect log anomalies.
Send alerts based on log conditions (optional).
Backup and Replication
Configure backup policies for AWS EC2, RDS, RDS clusters, S3 buckets, and Google disks.
Display backup health on dashboards and CIs.
Configure backup retention periods.
Explain how to replicate EC2 images using tags.
Create workflows to send alerts on failed backups.