Maestro Insights: Best Practices in a Couple of Clicks




Cloud usage patterns, as well as the request for the specific types of cloud-related expertise, develop in cycles.

Initially, the core aim of the cloud management tools was to provide the possibility to perform the basic infrastructure management operations. The ability to create, change and remove resources was enough to meet the majority of technical and business tasks.

Still, the more the cloud technology developed, the more complicated the infrastructures became. Additional services arose, bringing more value to the customers, and needing more effort to track them properly.
 

Does wisdom come extra effort?

Eventually, effective infrastructure setup, analytics, management, and optimization turned out to be not a scope for a typical IT department expert, but a set of separate specializations within the Cloud-related community.

To be able to perform these operations successfully, and to take best of the cloud-native offerings, you need to spend plenty of time and effort for respective education and certification – and do this on a regular basis, because the changes in the area are faster than ever.

To balance between the services usability and the necessary skill levels, cloud providers started creating simple tools that would allow less skilled users perform the standard tasks properly. This especially applies to the services focusing on infrastructure issues detection and cost optimization. Thus, such services as AWS Trusted Advisor or Azure Advisor arose, along with less sophisticated native tools and services.

However, these tools are good once you focus a single cloud provider. If you use multiple clouds, and provider-native tools, respectively, the amount of sources, data and recommendations may need lots of effort to deal with.

And that’s where Maestro Insights come in.


What is Maestro Insights - Briefly?

Maestro Insights is a compliance monitoring tool, which allows to quickly review if your virtual machines meet the basic industry-standard compliance requirements.

Unlike deep-dive native services (which are still available for you through Maestro Console wizard), Maestro Insights highlights the main issues in infrastructure from the point of view of security, usage and cost optimization, and all you have to do is a quick review of the key findings.

In fact, you can do only several clicks and a few steps to make sure that your infrastructure is ok:

    A. Review the main idea of the finding

    B. Check level of its criticality

    C. Check recommendation ranking based on industry best practices.

    D. Click the Fix It button leading to the Maestro functionality that can be used for issue elimination (for example, opens the Schedules wizard for unscheduled instances)




Maestro Insights – What’s Inside?

Maestro Insights allows its users to have a panoramic view of each of their instance state and status, helps to identify and fix issues in several dimensions.

The Insights view, available on the Management tab, includes the information on the most important findings (ranging from “minimum” to “critical”) in the following aspects:
  • Vulnerability scan results. The status is based on the results of the Qualys and/or Nessus vulnerability scanning.

  • Instance tags. Proper tagging is a necessary condition for effective cost optimization and infrastructure transparency. Untagged resources cannot be tracked and analyzed properly, that’s why the absence of tags is considered a critical issue.

  • Instance cost. Maestro tracks the costs of all virtual resources in close to real-life mode. Identifying the most expensive virtual instances provides an extra point for investigation and further usage and cost optimization. Thus, the instances which are within the top 10 by cost are marked as critical. Those that are the most expensive, get the minimum criticality status.

  • Instance lifetime. The recommended lifetime of a standard instance is 1 month. The instances existing for too long are considered ineffective, as they can either be forgotten and underutilized, or, if they are regularly used, migration to a newer instance types could bring cost-performance benefit. Thus, the older the instance is, the higher is its risk status.

  • Instance schedules. Scheduling is one of the cornerstones for effective infrastructure usage and cost optimization, as may bring up to 70% of costs reducing. The instances that are not stopped and started automatically according to their workload rhythms, should be reviewed for schedules creation.

  • Ownership. Maestro introduced the ownership concept in order to make every resource covered by a specific person, responsible for it. An owner is the main contact point for any questions or issues related to the instance, that’s why it is critically important that each resource is assigned to someone from the project team. The absence of owner or the issues with the owner’s SSH access to the instance, raise the ownership issue criticality.
The section displays the top issues by criticality for each area. Once you click “Fix it” and perform the respective actions (for example, configure a schedule for a non-scheduled virtual instance), Maestro re-calculates the risk factor.

How does it work?

Although from the user’s point of view, the Insights functionality might look quite simple, the mechanism behind it is quite interesting and complex.

Actually, the information in Insights is not new – Maestro already had had it before and shared in a set of reports, including the Instance Detailed report, Vulnerabilities report, and other.

What Maestro Insights does is aggregating the information from different engines and tools (security, billing, scheduling, instances meta information) – and then processing it to define the level of the instance compliance with Cloud usage best practices.

For each Insight, Maestro has its own rules and approaches – but at the end of the day, you can see a unified result, recommendations and the single Fix it button – not for all the findings (which may be overwhelming and time-consuming), but for the most critical ones – those that need immediate action.

To sum up

Maestro Insights is not aimed to replace the deep dive analytics and the capacities of native tools in compliance assessment and remediation recommendations. Instead, it provides a simplified quick path to fixing critical issues across the core aspects of the instance security and optimization-related configuration.

The current functionality is based on Maestro own built-in mechanisms. However, in the nearest future we also plan to integrate the recommendations from the native Cloud provider’s advisors.





Comments

Post a Comment

Popular posts from this blog

Maestro Analytics: Essentials at the Fingertips

Image
Infrastructure analytics is one of the cornerstones for effective cloud management. Each cloud provider offers its own set of features and services for such purpose. We can say that AWS QuickSight, Google Data Studio, and Microsoft BI are among the top of the native analytics and BI offerings. They are deeply integrated into their native infrastructures, provide the detailed review of the infrastructure state, events and cost, and allow to take a deep dive into details, being powered by strong internal mechanisms and AI/ML engines. However, in many cases they provide a huge volume of data which needs a BI expert to cope with, as well as may have limited customization possibilities in terms of the covered data scope. Also, if you use more than one cloud, or have private datacenters, the fact that each of these tools is limited to its vendor, may be a reason for you to find a third-party analytics tool. Here is where you may consider solutions such as CloudHealth, AppOptics, or IBM C
Read more

Maestro: Greeting the Green Dragon

Image
The year is coming to the end, and it's high time for our traditional lookback on Maestro evolution, changes, and important events. The year of 2023 has been dynamic and full of updates, both technical and strategic.  We kept to our previous commitments , meanwhile adjusting to the new trends in Cloud and technologies in general.  We met our user's expectation and need for  cross-cloud FinOps, automated infrastructure analytics, security assessment and the "Fix it" button , aimed to simplify issues remediation. We also took into account the rising demand for  Open Stack-based resources, Cloud Native approaches,  AI/ML integrations .  As a result, we came up with our standard "six release per year" cycle, highlighted with the following milestones: Maestro Insights With the ML technologies growth, the amount of services offering infrastructure recommendations and analytics, grow. This is true for the public cloud providers' native services, as well as thir
Read more

Maestro Orchestrator: Product? SaaS? Framework!

Image
In 2012, EPAM Cloud Orchestrator was created as a cloud solution for the EPAM Systems community. It appeared when the issue of redesigning the growing infrastructure of more than 500 projects became critical. After a thorough analysis of the existing solutions, EPAM experts had to admit that none of them fit the company needs. However, that was not a problem but a challenge. If no perfect solution existed, EPAM created its own from scratch. In six years, EPAM Cloud Orchestrator evolved into a true hybrid cloud with over 8000 virtual machines in hundreds of projects. In addition to its basic function - hosting virtual resources - it supports a number of related components helping the users to be in full control of their virtual infrastructures, such as audit, monitoring, billing, reporting. Meanwhile, a time has come to go out of the box of an enterprise solution and meet the market. This is how the new generation of EPAM Cloud Orchestrator - Maestro was born. Maestro is
Read more