E L V E N W O R K S

Loading

Clouds

1º Go to AWS Console in IAM Service on LINK

2º Go to Policies on LINK

3º Create new policie with bellow content

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Sid": "VisualEditor0",
            "Effect": "Allow",
            "Action": [
                "ec2:RebootInstances",
                "ec2:AuthorizeSecurityGroupEgress",
                "ec2:AuthorizeSecurityGroupIngress",
                "ec2:TerminateInstances",
                "ec2:StartInstances",
                "ec2:CreateSecurityGroup",
                "ec2:CreateTags",
                "ec2:DeleteSecurityGroup",
                "ec2:RunInstances",
                "ec2:StopInstances",
                "iam:get*",
                "iam:list*",
                "ec2:Describe*",
                "rds:Describe*",
                "s3:*",
                "cloudwatch:GetMetricStatistics",
                "eks:*",
                "cloudwatch:ListMetrics",
                "elasticache:Describe*"
            ],
            "Resource": "*"
        }
    ]
}

#About

This policy Allows:

  • EC2 Provisioning, control and manage instances with TAG “1P”. Our agent doesn’t use Key pair.
  • RDS, Elasticache, EC2, IAM, Cloudwatch and S3 in list and get requests types
  • EKS Full Access (Optionally)

1º Vá no serviço de Active Directory do Azure – LINK

( https://portal.azure.com/#blade/Microsoft_AAD_IAM/ActiveDirectoryMenuBlade/Overview )

Obs.: É necessário que tenha um active directory existente

2º Em criar, selecione a opção de Registro do aplicativo

3º Defina um nome como por exemplo: 1P-Agent (a sua escolha), e selecione a opção “Contas somente neste diretório organizacional (somente Default Directory – Único locatário)”

4º Pressione “registrar” ao final da página. Pronto usuário criado.

Obtendo os dados para autenticar

5º Pegue o ID do campo: “ID do aplicativo (cliente)”.

6º Pegue o tenantid no campo “ID do diretório”

7º Para obter o secretID, vá em “Certificados e segredos”

8º Vá em “Novo segredo”

9º Defina um nome e período de expiração, clique em “adicionar”

10º Agora copie o conteúdo do campo “Valor” e você terá sua secretID

11º Para pegar o ID da sua subscrição vá em Subscriptions no link: https://portal.azure.com/#blade/Microsoft_Azure_Billing/SubscriptionsBlade

12º Entre na subscription

13º Vá em IAM

14º Vá em “+Add” e depois “Add role assignment”

15º Selecione as permissões abaixo

“Role” = “Owner”

“Assign access to” = “User, group, or service principal”

“Select” = “1P-agent” (Ou equivalente ao APP registration name)

Liberando o permissionamento

16º Vá em “Permissões de API”

17º Vá em “Adicionar permissão”

18º Selecione o “Azure Service Management”

19º Selecione a permissão e clique em “Adicionar permissões”

Agora o permissionamento ficará conforme a imagem abaixo

OK, agora cadastre os dados no 1P do usuário criado.

First, you need to set cloud providers.

Click on “Clouds” in the sidebar.

A “NEW” button will appear, almost in the page header. Click this button.

Set the cloud by:

  • AWS
  • AZURE
  • Custom

(selecting the cloud)

 

When selecting the cloud you want to configure, more settings will appear according to your need.

(configuration for AWS Cloud)

(configuration for Azure Cloud)

 

Then, name the cloud you are configuring. (It doesn’t necessarily have to be the name associated with your product’s cloud).

You can register cloud providers according to the amount available in your plan. To learn more about plans, click here.

Environment

After setup the cloud provider, we have to configure the environments.

Click on “Environments” in the sidebar.

A “NEW” button will appear, almost in the page header. Click this button.

In this step, you will need:

  • Set a name for the environment
  • Assign to a cloud provider registered in the step above
  • Designate a tag

(new environment registration)

 

When assigning one of the registered clouds, new configurations will appear according to the need of the designated cloud.

(configuration for AWS Cloud)

(configuration for Azure Cloud)

 

Tip: ideally, the registered name and tag should be used as in your environment, for association and communication with One Platform.

You can register environments according to the amount available in your plan. To learn more about plans, click here.

Plans & Pricing

Product

This is where we find the Resilience Matrix with the information generated by One Platform (1P).

Click on “Products” in the sidebar.

A “NEW” button will appear, almost in the page header. Click this button.

In this step, you will need:

  • Enter a name
  • Description field
  • Select the teams that will manage the product

Tip: the registration of Teams can be done in the product registration.

After creating a product, you will be directed to the application registration page.

In this step, you will need:

  • Choose an environment
  • Enter a name for the application
  • Enable / Disable external monitoring
  • Insert healthcheck URL
  • Select the method
  • Set the interval and timeout (they are with default setting, can be changed if necessary)

Only with these settings is it available to create an application for the registered product. They are mandatory information.

Non-mandatory information:

  • Insert headers
  • Fill ‘validations string’

When selecting the method field, more settings may appear according to your need.

(POST needs to configure headers and post body)

You can register applications according to the amount available in your plan. To learn more about plans, click here.

After configuring the previous steps, One Platform will insert an agent in your cloud provider that does the internal monitoring and generates the resilience matrix for your product.

The external monitoring function acts by monitoring through an external agent (as if it were a user without access to the cloud provider) to generate the data and the resilience matrix.

If the function is activated (in green), external monitoring will be performed. If you disable the function (in gray) the monitoring will be done by the internal agent.

You can register applications according to the amount available in your plan. To learn more about plans, click here.

Services

With the registered clouds, environment and services, monitoring begins!

Click on “Services” in the sidebar.

A “NEW” button will appear, almost in the page header. Click this button.

In this step, you will need:

  • Enter a name.
  • Select the cloud
  • Choose the technology in the check type field
  • Depending on the technology chosen in the check type field, options to configure in the method will appear
  • Enter the health-check URL

When selecting the check type field, more settings may appear according to your need.

(Check type HTTP > method GET needs to configure headers)

(Check type HTTP> POST needs to configure headers and post body)

You can register services according to the amount available in your plan. To learn more about plans, click here.

Setup

After signing up on the platform and setting the organization you want to manage, we will configure the cloud and the environment.

Every time you access the One Platform login page, you will see the Product page. To proceed with the configuration, you will need to access the menu in the sidebar.

 

First, you need to set cloud providers.

Click on “Clouds” in the sidebar.

A “NEW” button will appear, almost in the page header. Click this button.

Set the cloud by:

  • AWS
  • AZURE
  • Custom

(selecting the cloud)

 

When selecting the cloud you want to configure, more settings will appear according to your need.

(configuration for AWS Cloud)

(configuration for Azure Cloud)

 

Then, name the cloud you are configuring. (It doesn’t necessarily have to be the name associated with your product’s cloud).

You can register cloud providers according to the amount available in your plan. To learn more about plans, click here.

After setup the cloud provider, we have to configure the environments.

Click on “Environments” in the sidebar.

A “NEW” button will appear, almost in the page header. Click this button.

In this step, you will need:

  • Set a name for the environment
  • Assign to a cloud provider registered in the step above
  • Designate a tag

(new environment registration)

 

When assigning one of the registered clouds, new configurations will appear according to the need of the designated cloud.

(configuration for AWS Cloud)

(configuration for Azure Cloud)

 

Tip: ideally, the registered name and tag should be used as in your environment, for association and communication with One Platform.

You can register environments according to the amount available in your plan. To learn more about plans, click here.

With the registered clouds, environment and services, monitoring begins!

Click on “Services” in the sidebar.

A “NEW” button will appear, almost in the page header. Click this button.

In this step, you will need:

  • Enter a name.
  • Select the cloud
  • Choose the technology in the check type field
  • Depending on the technology chosen in the check type field, options to configure in the method will appear
  • Enter the health-check URL

When selecting the check type field, more settings may appear according to your need.

(Check type HTTP > method GET needs to configure headers)

(Check type HTTP> POST needs to configure headers and post body)

You can register services according to the amount available in your plan. To learn more about plans, click here.

This is where we find the Resilience Matrix with the information generated by One Platform (1P).

Click on “Products” in the sidebar.

A “NEW” button will appear, almost in the page header. Click this button.

In this step, you will need:

  • Enter a name
  • Description field
  • Select the teams that will manage the product

Tip: the registration of Teams can be done in the product registration.

After creating a product, you will be directed to the application registration page.

In this step, you will need:

  • Choose an environment
  • Enter a name for the application
  • Enable / Disable external monitoring
  • Insert healthcheck URL
  • Select the method
  • Set the interval and timeout (they are with default setting, can be changed if necessary)

Only with these settings is it available to create an application for the registered product. They are mandatory information.

Non-mandatory information:

  • Insert headers
  • Fill ‘validations string’

When selecting the method field, more settings may appear according to your need.

(POST needs to configure headers and post body)

You can register applications according to the amount available in your plan. To learn more about plans, click here.

Click on “Teams” in the sidebar.

A “NEW” button will appear, almost in the page header. Click this button.

In this step, you will need:

  • Enter a name
  • Choose the forms of notification for the selected team (call rotation/escalation will be included)

How to add work team members to One Platform (1P)

Click on “Users” in the sidebar.

A “NEW” button will appear, almost in the page header. Click this button.

In this step, you will need:

  • Email address
  • Name
  • Role

After adding a user, you can add them to a team to manage the product. You can register users according to the amount available in your plan. To learn more about plans, click here.

Teams

Click on “Teams” in the sidebar.

A “NEW” button will appear, almost in the page header. Click this button.

In this step, you will need:

  • Enter a name
  • Choose the forms of notification for the selected team (call rotation/escalation will be included)

In the Teams field in the platform, there are options of communication channels in which they want to receive the related notifications that may vary from time to time.

With that in mind, we also developed notifications via Telegram, for a private chat or a group.

Click on “Teams” in the sidebar.

If you want to create a new team, just click on the “new” button that will appear in the upper left corner of the screen.

For teams already registered, just access the team and go to the notifications tab, in the upper bar.

Select the option that has the Telegram icon, and enter the ID of the private chat or group you want to notify.

Each team can have only one telegram ID for notifications, however, the same telegram ID can be used on other teams to centralize notifications according to the needs of its internal team.

If you need help finding your telegram ID, click here.

Telegram ID is different for each private chat and also for groups. To find out where to get this information, follow below:

In a private chat

Access the telegram app on your smartphone.

Search for “GlorfindelBot” in the search field:

Select the option with the name “1P” and the 1P logo as shown in the image above, then start a chat.

Type the command: / mychatid

You will receive a similar response to this.

Example template: the chat_id is: XYZQKHRT

In which, XYZQKHRT is the chat_id, it is with this code that OnePlatform will be able to identify which chat you want to receive notifications.

In a group

You can create or use an existing group

Access the telegram app on your smartphone.

Search for “GlorfindelBot” and add it to the desired group

Type the command: /mychatid

You will receive a similar response to this.

Example template:  the chat_id is: -XYZQKHRT

-XYZQKHRT is the chat_id, it is with this code that OnePlatform will be able to identify where you want to receive notifications.

The group’s chat_id starts with a dash, and you can’t forget when adding it to OnePlatform.

Users

How to add work team members to One Platform (1P)

Click on “Users” in the sidebar.

A “NEW” button will appear, almost in the page header. Click this button.

In this step, you will need:

  • Email address
  • Name
  • Role

After adding a user, you can add them to a team to manage the product. You can register users according to the amount available in your plan. To learn more about plans, click here.

Cloud | DevOps | Product Management

Links

Follow Us

Email: contact@elven.works

en_USEnglish