AWS FAQ
Frequently asked questions about Glean’s AWS deployment options, infrastructure requirements, and feature support
General Information
Is AWS region _____ supported?
Is AWS region _____ supported?
Security
What access to the AWS account is required from Glean?
What access to the AWS account is required from Glean?
- The central Glean project which orchestrates setup and release deployments
- The Glean AWS account which hosts the images
- Glean AWS Account Access and Deployment Model
- Glean Architecture on AWS
Why does Glean request the customer to create an admin role?
Why does Glean request the customer to create an admin role?
Will NAF and WAF be managed by Glean?
Will NAF and WAF be managed by Glean?
Which WAF are you using?
Which WAF are you using?
Does WAF log to CloudWatch?
Does WAF log to CloudWatch?
Do you apply data protection filters on CloudWatch logs?
Do you apply data protection filters on CloudWatch logs?
What's the path of incoming webhooks?
What's the path of incoming webhooks?
- Webhooks first go through the WAF (you can add rules like IP restrictions)
- Then the application load balancer
- Then the k8s cluster
Can we attach custom security groups to one of the managed services?
Can we attach custom security groups to one of the managed services?
Does Glean provide any Intrusion Detection capabilities on AWS?
Does Glean provide any Intrusion Detection capabilities on AWS?
Networking
What are the network requirements?
What are the network requirements?
Compute
What OS are the EC2 instances running on and where do the AMIs come from?
What OS are the EC2 instances running on and where do the AMIs come from?
Will the OS's be patched by Glean or is that a customer responsibility?
Will the OS's be patched by Glean or is that a customer responsibility?
Cost & Resourcing
How do we appropriately size our Glean instance?
How do we appropriately size our Glean instance?
Can you provide estimates for costs and resource usage?
Can you provide estimates for costs and resource usage?
- Number of employees in your organization
- Number of documents in your corpus
- The data sources to be connected, and ideally the number of docs per data source
What GPU instance types are typically needed?
What GPU instance types are typically needed?
How do we minimize egress cost?
How do we minimize egress cost?
Storage - RDS
Which database are you using?
Which database are you using?
How often are SQL backups taken?
How often are SQL backups taken?
Storage - S3
Do buckets have Inventory enabled?
Do buckets have Inventory enabled?
Are S3 buckets accessible publicly or from Glean Central?
Are S3 buckets accessible publicly or from Glean Central?
Is S3 configured for cross-region replication?
Is S3 configured for cross-region replication?
Lambda
What is the purpose of the private lambdas separate from the EKS cluster?
What is the purpose of the private lambdas separate from the EKS cluster?
- Setup & deployment (Bootstrap configuration template)
- Maintenance operations and cron jobs, e.g. restarting or upgrading node pools
Are the lambdas configured to be publicly accessible?
Are the lambdas configured to be publicly accessible?
Do you add layers to lambdas, and if so, are they accessible from outside the organization?
Do you add layers to lambdas, and if so, are they accessible from outside the organization?
Do you use lambda function URLs?
Do you use lambda function URLs?
Disaster Recovery
How does Glean handle Disaster Recovery?
How does Glean handle Disaster Recovery?
Feature Support
Does Glean on AWS support vanity URLs?
Does Glean on AWS support vanity URLs?
Does Glean on AWS have feature parity with other Glean deployment methods?
Does Glean on AWS have feature parity with other Glean deployment methods?