# Challenges

# FinOps

  • TerraCost
    • TerraCost automatically provides you with insight into the prior cost and planner cost of your TerraForm-based infrastructure.
    • It allows you to see the impact of your change or changes on the price before deploying it.
    • Offering visibility, transparency, and governance, it’s a feature that helps devs as much as it does managers.
    • TerraCost uses your Terraform plan to automatically output the cost of resources and how that cost evolves from one deployment to the next.

# Governance

A holistic and permeating understanding and management of risk in your organization. Each member of your tech team needs to be able to evaluate the possible impact of their actions on the project, tools, or cloud.

  • Organizations

    • If you manage multiple organizations that are completely siloed, Managed Services/Business Unit View is the tool you need. A single, centralized hub allows you to structure these multiple units in the way that makes the most sense for your team, then manage them from an efficient and streamlined console.
  • Permissions and policies

    • Ensure everyone's rights are directly related to their job. These features pre-define minimal privilege, ensuring governance but allowing exactly the right amount of flexibility individuals need to do their job.
    • Those actions can be creating a project, deleting a credential, reading roles, ... moreover policies that are narrowed to specific entities.
    • Multiple credentials support allowing role creation containing policies for a specific subset all based on industry-standard Open Policy Agent.
  • Teams + custom roles

    • As you delve deeper into Cycloid’s tools and features, you’ll see that we’ve made it easy for you to establish the principle of least privilege throughout everything your tech team does. Cycloid allows you to set the limits and standards (in terms of teams, roles, and policies) you expect your techs to maintain throughout their dealings with the project.
  • InfraPolicies, policy as code

    • Policies respecting the best practices for all cloud resources such as tagging.
    • InfraPolicies are a TerraForm-based implementation
    • The implementation of InfraPolicies is an OPA and Terraform combo that is written in rego which is a language provided by OPA.
    • Policies are used to validate infra changes during terraform plan command. Terraform is not part of the implementation, it's just the target of the policies.
    • Policies can be applied on TerraFrom code across your organization
    • Policy as Code that provides fine-grained control over changes to an organization's infrastructures while simultaneously defining validation rules. Later on, tools like StackForms and TerraCost will allow you to define limits that are automatically deployed, freeing your ops from watchdog duties and preventing inadvertent problems.
  • Enterprise organization + SAAS + on-premises

    • Cycloid’s tools work for any organization, but offer specific features that make them particularly efficient for the enterprise level. The platform can be used as a SAAS or on-premise, depending on the governance requirements of your organization.
  • Connectivity with identity providers

    • Cycloid supports OpenID, SAMLv2, and AzureAD

# Deployment

  • Stack

    • Ensure flexible deployments while maintaining governance.
    • A stack is a generic definition that covers infrastructure, configuration management, and pipeline: Terraform, Ansible, and Concourse. Ensure best practice by creating a catalog of stacks that fit your needs and using them consistently across projects and teams.
    • Store collections of stacks - called catalog repositories - on your git repository. This gives you version control and enables reusability and factorization.
    • Since catalog repositories live within a git repository, they get all the benefits of version control. You can collaborate with your team during stack creation, have change history and easily improve upon existing stacks
  • StackForms

    • Allow users to choose environment variables from a pre-approved list.
    • Conceals brains and beauty. Behind an attractive, easy-to-use dropdown menu is a powerful tool offering environment configuration variables that have already been chosen and approved by your DevOps engineers and systems architects.
    • Users are free to create environments independently, but DevOps retains governance and compliance at all times.
  • TerraCognita

    • The reverse Terraform, lets you accelerate the adoption of best practice Infra as Code.
    • Allows you to automatically generate Terraform files from your manually-created infrastructures.
    • Save time and maintain best practice when generating infrastructure as code for your existing infrastructures.
  • StackCraft

    • Is a cloud designer that lets you drag and drop cloud services and generate infra as code on the fly. Whether you want to draft a solution from scratch or reuse/modify an existing one.
    • The cloud designer simplifies Infrastructure as Code generation and helps ensure best practice.
    • Seeds up Infrastructure as Code adoption by making the process easier while maintaining best practice.

# Management

  • StackForms

    • Allow users to safely edit running environments.
    • Conceals brains and beauty. Behind an attractive, easy-to-use dropdown menu is a powerful tool offering environment configuration variables that have already been chosen and approved by your DevOps engineers and systems architects.
    • Users are free to edit their running environments, but only ever within the limits allowed by your organization.
  • InfraView

    • Provides up-to-date visibility into your infrastructure. Your whole team can see exactly what's going on.
    • Get a visual representation of the infrastructure deployed on your project's different environments and inspect the Terraform state information for each resource.
    • The goal is simple: build bridges between teams by providing maintenance-free and up-to-date diagrams that everyone can understand.
    • Centralizes most of the information usually available on the cloud provider console.
  • TerraCost

    • Estimates the cost of any Terraform-defined infrastructure.
    • TerraCost automatically gives you insight into the total cost of your deployments - before you actually deploy them and without having to add them up manually.
    • Offering visibility, transparency, and governance, it’s a feature that helps devs as much as it does managers.
    • TerraCost uses your Terraform plan to automatically output the cost of resources and how that cost evolves from one deployment to the next.
  • CI/CD Pipelines management

    • Allows you to centralize all deployments in one tool, easily see the pipeline and every task it contains to help you design your workflow for everything you want.
    • Continuous thing-doer which offers a flexible and cross-compatible CI/CD pipeline.
    • Pipelines are designed to be self-contained to minimize server-wide configuration. Maximizing portability also mitigates risk, making it easier for projects to recover from CI disasters.
    • It is an orchestrator from your code to the infrastructure creation and the deployment, taking into account all dependencies like notifications, a configuration of third party monitoring, backup, automatic rollback and so on
  • Logs

    • Display logs within existing projects of all your environments.
    • A filter on log groups can be applied to display only the relevant ones based on the project and environment names of your stack.
    • Allows you to expose a particular pattern or server.
    • A single interface to track multiple environments
    • Technical details on running projects are directly fetched from AWS Cloudwatch Logs (opens new window) or ElasticSearch (opens new window).
  • Events

    • Track all activity in your organization with Cycloid Events.
    • Cycloid automatically produces events like project creation and pipeline triggers, but if your organization needs more, you can use our API to create and send your events.
    • Our API allows you to extend this feature and connect third party software like your monitoring.
  • Credentials

    • To handle and access secrets, credentials, and more.
    • Vault helps you write infrastructure as code and use "secrets" stored within Cycloid credentials. This is to avoid having to specify any credential inside the source code.
    • Secrets provide transparent and secure handling and allow you to centralize your valuable information and secrets - like API keys, cloud credentials/access key, X.509 certificates and SSH credentials - while providing projects with secure access through HashiCorp's managed, open-source Vault.