Overview
AWS Service Catalog allows organizations to create and manage catalogs of IT services that are approved for use on AWS. These IT services can include everything from virtual machine images, servers, software, and databases to complete multi-tier application architectures. AWS Service Catalog enables central management of deployed IT services and applications, resources, and metadata to improve governance and compliance.
Benefits
- Ensure compliance with corporate standards by setting permissions by individual, group, department or cost centre
- Help employees quickly find and deploy approved IT services (both AWS and marketplace) using a self-service portal
- Centrally manage IT service lifecycle (update management)
- Connect with ITSM/ITOM software (Jira Service Desk and ServiceNow)
- Manage all of your application information on AWS in a single repository (the AWS Service Catalog AppRegistry)
AWS Service Catalog Features
- Products – comprise one or more AWS resources or packaged AWS Marketplace products
- Portfolios – comprise one or more products with configuration information. These can be shared with other AWS accounts
- Versioning – makes it easy to update products and have the update automatically distributed to users
- Granular access control – uses IAM permissions to control access to IAM users, groups and roles. Each product can have its own IAM role
- Constraints – allow application of limits to products for purposes of governance or cost control. Template constraints restrict the configuration parameters that are available for the user when launching the product; launch constraints allow you to specify a role for a product in a portfolio, that has the permission to create the resources but does not allow the user to create these resources directly.
- Stack – each AWS Service Catalog product is launched as an AWS CloudFormation stack., which is a set of resources provisioned for that instance of the product.
- Service actions – enable end users to perform operational tasks, troubleshoot issues, run approved commands, or request permissions in AWS Service Catalog on your provisioned products, without needing to grant end users full access to AWS services
AWS Service Catalog AppRegistry Features
- Applications within the Service Catalog AppRegistry have a name, description, associations to application metadata, and associations to CloudFormation stacks.
- Attribute Groups collect application attributes such as the application security classification, organizational ownership, application type, cost center, and support information