Apparently the solution to getting this CloudFormation stack to deploy was to make coffee.

Janky-ass tech.

☁️ Stairway to Heaven’s Edge: What’s Beyond the Cloud Line? 🚀

Ever felt like you’re climbing towards an impossible dream? ✨

This captivating shot—with its imposing concrete steps leading up to that epic, explosive cloud formation 💥—perfectly captures the feeling of reaching for the sublime, where the mundane meets the magnificent. It’s the journey up, past the urban clutter (streetlights and wires), towards something vast and breathtaking.

If this view sparks a sense of adventure or nostalgia in your soul, you’re not alone. We’ve compiled a collection of images and stories that explore this exact feeling of urban-meets-ethereal beauty.

Ready to step into the clouds? Click here to find more breathtaking ‘Liminal Space’ and 'Sky-Gazer’ inspiration! 👇 Explore the View 🔭

Don’t just look up, click the link and explore the unseen! 🤫

Fuck CloudFormation. There, I said it.

IaC Generator To Import SCPs And RCPs Into CloudFormation

Import SCPs and RCPs from current AWS organisations into Cloud Formation architecture as a code generator.

AWS Organisations customers often manually set up resource control policies (RCPs) and service control policies (SCPs) using the AWS Management Console or AWS CLI.

This manual process may become onerous as the company grows and adds policies. It may limit visibility into all SCPs and RCPs, their targets, and update efficiency. Without visibility and access limits, it’s hard to track who’s making changes and how.

CloudFormation can simplify rule management with rollback, policy validation via Hooks, and history preserving. Git sync may also synchronise stacks with Git repository source code. Git sync lets you deploy, configure, and update CloudFormation stacks using pull requests and version tracking. When you alter the deployment file or template, CloudFormation updates the stack.

CloudFormation IaC generator

This article shows how to import SCPs and RCPs into AWS CloudFormation templates using the CloudFormation infrastructure as a code generator (IaC generator). The IaC generator automates SCP and RCP administration at scale.

Important: CloudFormation imports current policies, not recreates them.

Solution overview

This article provides a command-line tool to locate SCPs and RCPs in your firm and automate policy import into CloudFormation templates.

The end-to-end flow is shown in the previous graphic:

Start the tool: Both the management account and the administrator account can run the software, automating following steps.
Determine corporate SCPs and RCPs: The tool initially requests policies from the Organisations service via API. Total SCPs and RCPs are tallied.

Determine AWS Control Tower RCPs, SCPs, and targetless policies:

The utility finds AWS Control Tower SCPs and RCPs and outputs a list.

Their policy titles begin with “aws-guardrails-” to identify SCPs.

AWS Control Tower-Controls- prefixes RCP policy names identify them.

Policies without targets: The tool lists SCPs and RCPs without accounts, roots, or OUs. These policies may be duplicates or reallocated.
IaC generator scan: You will be asked if you want to import policies into CloudFormation templates using the resource scan. If you click “yes,” the tool will utilise the IaC generator to launch a CloudFormation resource scan to retrieve policy name, targets, tags, etc.

Use scanned policy resources to construct a template: The program creates CloudFormation templates from policy resources. Any policies without objectives will be in the template.

Review procedure: Use the CloudFormation IaC generator to preview the template after generation.

Create CloudFormation stacks using templates: After reviewing templates, import them into CloudFormation stacks to deploy. Remember that CloudFormation policies are imported, not rebuilt. Templates reflect current policies and qualities.

Thinking before applying the solution

Consider these factors before applying the solution.

If you have enabled policy management delegation for AWS Organisations, execute this solution with the delegated administrator account. If not, execute the solution using the management account.

Note: Delegated administrator member accounts should handle organisation policies.

The CloudFormation templates will not import SCPs and RCPs (with or without targets) since they should be managed by AWS Control Tower. Changes to AWS Control Tower resources outside of AWS Control Tower might cause drift and unanticipated effects.

Fully access SCP and RCP on AWSCloudFormation stacks cannot import AWS managed policies like FullAWSAccess RCP.

If you surpass CloudFormation template size limitations, several templates may be produced. The program automatically divides material into many templates as needed, making it easy to meet quotas and import content.

Note that templates automatically set the following properties.

Maintain deletion policy. This allows policies to remain even if the stack is deleted.

Change Replace to Delete. Revisions to the policy allow removal of the physical ID.

Recommended next steps

The figure shows two possible future steps.

After integrating rules into a CloudFormation stack, experts recommend retaining templates in a private Git repository. Manage imported policies with a continuous integration and delivery (CI/CD) pipeline and the Policies folder the tool automatically generates in the current local directory where the created templates were downloaded.

Git repository version control allows pull requests, branch management, and history tracking. This process helps your team examine, update, and apply policies with better cooperation and control. Set up a CI/CD pipeline to automate CloudFormation stack updates to ensure regular and reliable updates.


One suggestion is to install CloudFormation Hooks. CloudFormation Hooks can verify policies’ syntax, security, and vulnerability reduction.

In conclusion

By integrating your AWS Organization’s RCPs and SCPs into CloudFormation, you can manage and automate AWS governance efficiently. After import, you can maintain and change policies in CloudFormation to ensure company-wide consistency and version control. The program also creates a Policies folder in your current directory with downloaded templates for use as a central repository and with a continuous integration/continuous delivery pipeline.


CloudFormation Hooks can test SCPs and RCPs against policy language and best practices to improve policy management. Centralising policy changes reduces misconfiguration and improves governance automation.

Cloudformation

Why Are Rain Clouds Dark?

Everyone has seen and knows that threatening thunderclouds that hang dark and heavy in the sky. When you see these dark clouds, you already know that rain is coming. Because rain clouds are known to be much darker than other clouds. But, is this really true? Let’s briefly sit in the plane and look down at a thick cloud cover. Underneath, it can storm, snow or rain: through the small window high up in the sky, the clouds during the day, of course, are always bright and white.

Also read: https://rapidleaks.com/science/why-rain-clouds-dark/

Why are rain clouds dark? Do dark clouds always mean rain?

Why Are Rain Clouds Dark?

AWS CloudFormation Templates and AWS Lambda Custom Resources for Associating AWS Certificate Manager, Lambda@Edge, and AWS WAF with a Websit

Deploy AWS Cloudformation Stack Cross-Region with AWS Lambda Custom Resources | hidekazu-konishi.com

In the realm of cloud computing, the management of resources can be a daunting task, especially as applications and infrastructure grow in…Continue reading on AWS in Plain English »

Summary of AWS CloudFormation StackSets Focusing on the Relationship between the Management Console and API, Account Filter, and the Role of

What is Amazon CloudFormation?

Juggling numerous services for the IT infrastructure can be quite a challenge. Dealing with multiple AWS resources might eat up valuable time that could be spent on developing applications. The solution is AWS CloudFormation.

It’s not CGI or aliens invading - this is a super rare cloud formation ☁

Known as a ‘lenticular cloud’, this particular example was spotted in Bursa, #Turkey.

#Bursa lies at the base of a mountain range - which makes this phenomenon more likely.

Tap the link in @bbcnews bio to see video footage of the extraordinary sight.

(📸 Getty)

#LenticularCloud #CloudFormation #BBCNews #scholarshipjamaica (at ScholarshipJamaica.com)
https://www.instagram.com/p/CnqMu5dOs5N/?igshid=NGJjMDIxMWI=

A great way to gain practical experience with Amazon Web Services (AWS)

Hands-on Labs for AWS are a great way to gain practical experience with Amazon Web Services (AWS) and learn how to use the various services offered by the platform. These labs provide a step-by-step guide for completing specific tasks and are designed to be completed in a short amount of time.

There are a wide variety of labs available, covering topics such as AWS CloudFormation, Amazon Elastic Compute Cloud (EC2), Amazon Simple Storage Service (S3), and many more. Each lab includes detailed instructions and screenshots to help you complete the task at hand.

One of the benefits of Hands-on Labs for AWS is that they allow you to experiment with different services and configurations without the need to spend money on actual resources. This is especially useful for those who are new to AWS and want to learn the basics without incurring any costs. Additionally, the labs provide a safe environment to test and experiment with various AWS services without affecting production systems.

In addition to being a great learning tool, Hands-on Labs for AWS can also be used as a reference for completing specific tasks. For example, if you need to set up a new EC2 instance, you can refer to the Hands-on Lab for EC2 to ensure that you are following the correct steps.

Overall, Hands-on Labs for AWS are an excellent resource for anyone looking to learn about or gain hands-on experience with the platform. They provide a convenient, cost-effective way to experiment with different services and configurations, and can be used as both a learning tool and a reference for completing specific tasks.

Sunrise in November …

I disagree with the popular opinion that November is the worst month of the year. Though its lack of light and energy compared to the summer months is very noticeable, it has a calm, almost grief-like feeling to it. We need that sometimes, to charge our batteries. There’s nothing wrong with feeling a little gloomy.

10. November 2022

Beautiful clouds ☁️ Took this picture a couple years ago, just found it as I was looking through my photos 😍
.
.
.
#clouds #cloud #cloudformations #cloudformation #nubes #nube #nubes☁ #☁️ #sunset #atardecer #myphotography #mifoto
https://www.instagram.com/p/CiDoIgkO_Q0/?igshid=NGJjMDIxMWI=

Fun in the sun. Happy birthday Mona!

We had a tube cloud in northern Sampson County last week. By the time I got to a good camera, it was gone. #tubecloud #clouds #cloudformation # (at Clement, North Carolina)
https://www.instagram.com/p/CfIqgN7uXT2/?igshid=NGJjMDIxMWI=