How FinOps for Cloud Works

FinOps for Cloud supports three major cloud service providers, including Amazon Web Services (AWS), Google Cloud Platform (GCP), and Microsoft Azure.

To use FinOps, you only need to provide read-only access to your connected cloud account. This allows FinOps to view and retrieve data without making any changes. It also that FinOps does not interfere with any processes in your environment.

When the read-only access has been granted, the following data is used:

• Billing information, including all details related to your cloud expenses.

• For actively discoverable types, the current state of resources is collected. This is essential for implementing constraints like Time to Live (TTL), expense limits, and recommendations.

• Monitoring data from the cloud is used to identify underutilized instances.

The following sections explain how FinOps for Cloud obtains these details for each of the supported cloud platforms.

Amazon Web Services

For AWS accounts:

• The billing information is retrieved from the Data Exports located in a designated S3 bucket in the cloud. For details, see GetObject in the AWS S3 API Reference Guide.

• Amazon CloudWatch is the source of monitoring data.

• Resource discovery is done using the Discovery API. For reference, see the following pages in the Amazon EC2 API Reference:

  • DescribeInstances - Describes the specified instances or all instances.

  • DescribeVolumes - Describes the specified EBS volumes or all of your EBS volumes.

  • DescribeSnapshots - Describes the specified EBS snapshots available to you or all of the EBS snapshots available to you.

  • ListBuckets - Returns a list of all buckets owned by the authenticated sender of the request.

Microsoft Azure

For Azure cloud accounts:

• The billing information is retrieved from the Billing API. For details, see Usage Details - List in the Microsoft documentation.

• Cloud's monitoring service is used as the source of all monitoring data.

• Resource discovery is done using the Discovery API. For reference, see the following pages in Microsoft documentation:

  • Virtual Machines - List All - Lists all of the virtual machines in the specified subscription.

  • Disks - List - Lists all the disks under a subscription.

  • Snapshots - List - Lists snapshots under a subscription.

  • Storage Accounts - List - Lists all the storage accounts available under the subscription.

Google Cloud Platform

For Google Cloud accounts:

• The billing information is retrieved from the BigQuery Service.

• Cloud's monitoring service is used as the source of all monitoring data.

• Resource discovery is done using the Discovery API. For reference, see the following pages in Google Cloud documentation:

  • Method: instances.list - Retrieves the list of instances contained within the specified zone.

  • Method: disks.list - Retrieves a list of persistent disks contained within the specified zone.

  • Method: snapshots.list - Retrieves the list of Snapshot resources contained within the specified project.

  • Buckets: list - Retrieves a list of buckets for a given project, ordered in the list lexicographically by name.

  • Method: addresses.list - Retrieves a list of addresses contained within the specified region.