AWS Cloud Engineer milestones #24
Description
Terraform Admin Tasks Checklist
Documentation and Best Practices
- Document Ansible playbooks and roles
- Maintain a README with setup and usage instructions
- Follow Ansible best practices and coding standards
- Conduct regular code reviews and knowledge sharing sessions
Infrastructure as Code (IaC) Management
- Write and update Terraform configuration files #89
- Organize and manage Terraform modules #90
- Use Terraform workspaces for environment isolation #91
- #92
- Gitlab commit commands #31
- Manage state file locking to prevent concurrent operations
- Encrypt sensitive data in state files
Deployment and Provisioning
- Plan and apply infrastructure changes
- Perform Terraform validations (
terraform validate) - Format and lint Terraform code (
terraform fmt,terraform validate) - Destroy infrastructure when no longer needed
- Use Terraform import to bring existing resources into management
- Manage provider plugins and versions
Version Control and Collaboration
- Implement version control for Terraform code
- Use Git branches and pull requests for changes
- Review and merge changes through code reviews
- Tag and release versions of Terraform configurations
Automation and CI/CD
- Integrate Terraform with CI/CD pipelines (e.g., GitHub Actions, Jenkins)
- Automate Terraform runs with CI/CD tools
- Use
terraform planandterraform applyin CI/CD pipelines - Implement approval gates for Terraform changes
Security and Compliance
- Manage secrets securely (e.g., using Vault, AWS Secrets Manager)
- Implement role-based access control (RBAC) for Terraform operations
- Conduct regular security scans of Terraform code
- Ensure compliance with organization policies using Sentinel or similar tools
Monitoring and Troubleshooting
- Enable logging for Terraform operations
- Monitor Terraform runs for errors and performance issues
- Troubleshoot and resolve Terraform configuration issues
- Implement notifications for Terraform run statuses
Documentation and Best Practices
- Document Terraform code and infrastructure architecture
- Maintain a README with setup and usage instructions
- Follow Terraform best practices and coding standards
- Conduct regular code reviews and knowledge sharing sessions
Ansible Admin Tasks Checklist
Playbook and Role Management
- Write and update Ansible playbooks
- Organize and manage Ansible roles
- Use Ansible Galaxy to download and manage roles
- Implement Ansible role dependencies
- Structure Ansible inventories and host files
Configuration Management
- Configure and manage SSH keys for Ansible
- Use Ansible Vault to encrypt sensitive data
- Manage Ansible configurations in
ansible.cfg - Implement dynamic inventories for cloud environments
- Use Ansible tags for selective task execution
Deployment and Provisioning
- Run Ansible playbooks to configure systems
- Perform dry-run checks with
--checkflag - Use
ansible-pullfor pull-based configuration management - Automate playbook runs with cron or systemd timers
- Implement idempotent playbook tasks
Automation and CI/CD
- Integrate Ansible with CI/CD pipelines (e.g., GitHub Actions, Jenkins)
- Automate Ansible runs with CI/CD tools
- Use Ansible Lint in CI/CD pipelines
- Implement approval gates for Ansible changes
Security and Compliance
- Manage secrets securely with Ansible Vault
- Conduct regular security scans of Ansible playbooks
- Ensure compliance with organization policies
- Implement role-based access control (RBAC) for Ansible Tower/AWX
- Monitor and audit Ansible playbook executions
Monitoring and Troubleshooting
- Enable logging for Ansible playbook runs
- Monitor Ansible runs for errors and performance issues
- Troubleshoot and resolve Ansible playbook issues
- Implement notifications for Ansible run statuses
AWS Cloud Engineer Admin Tasks Checklist
Instance Management
- Launch EC2 instances #25
- Stop/start/reboot EC2 instances #26
- Terminate unused EC2 instances #27
- #28
- #29
- #30
Security and Compliance
- #32
- #33
- Set up and manage security groups #34
- #35
- Enable and review CloudTrail logs #36
- Implement multi-factor authentication (MFA) for IAM users #37
- Set up windows patching
Networking
- #38
- #39
- #40
- #41
- #42
- #43
Storage Management
Monitoring and Logging
- Configure and review CloudWatch alarms and metrics #50
- #51
- #52
- #53
- Review and manage AWS Trusted Advisor recommendations #54
Automation and DevOps
- Write and manage AWS CloudFormation templates #55
- #56
- #57
- #58
- #59
Database Management
- Launch and configure RDS instances
- Perform backups and restores of RDS databases
- Monitor RDS performance and metrics
- Manage DynamoDB tables and indexes
- Set up and manage Amazon Redshift clusters
- Manage AWS Database Migration Service (DMS) tasks
Cost Management and Optimization
- Monitor AWS cost and usage reports
- Set up and review AWS Budgets
- Analyze cost optimization recommendations from AWS Cost Explorer
- Implement Reserved Instances and Savings Plans
- Tag resources for cost allocation
Disaster Recovery and High Availability
- Set up and test AWS Elastic Disaster Recovery
- Implement cross-region replication for S3 and RDS
- Configure multi-AZ deployments for RDS
- Implement Route 53 health checks and failover
- Set up Auto Scaling groups for EC2 instances
Miscellaneous
- Stay updated with AWS announcements and new services
- Conduct regular security audits
- Provide training and support for AWS users
- Document AWS architecture and processes
- Participate in AWS Well-Architected reviews
Metadata
Metadata
Assignees
Labels
No labels