Abstract: This disclosure describes automatically collecting, analyzing, and remediating operational issues with respect to systems executing within a network. For example, a service provider network may include a monitoring service may generate notifications related to operational issues upon detection of operational issues within a system executing within the service provider network. The monitoring service may provide one or more notifications related to an aggregation service that may aggregate the one or more notifications into a standardized format. Contextual information related to the operational issues may be automatically gathered by an analytics service, which may analyze the contextual information to determine a potential cause of the operational issues. Based on the potential cause, a remediation service may automatically remediate the operational issues.

Abstract: A processing device determines that a parameter in a data store is associated with a parameter policy, wherein the parameter comprises a key-value pair and the parameter policy comprises metadata that affects a behavioral characteristic of the parameter. The processing device determines that a criterion included in the parameter policy is satisfied. The processing device determines one or more operations specified in the parameter policy and performs the one or more operations.

Abstract: A customer submits a request to a virtual computer system service to launch a virtual machine instance and to join this instance to a managed directory. The service may obtain, from the customer, a domain name and Internet Protocol addresses for the selected directory, which is then stored within a systems management server. When launched, the instance may initiate an agent, which may communicate with the systems management server to obtain the configuration information. The agent may use this configuration information to establish a communications channel with the managed directory and create a temporary set of computer credentials that may be used to verify that the customer is authorized to join the virtual machine instance to the managed directory. If the credentials are valid, the managed directory may generate a computer account within the managed directory, which may be used to join the virtual machine instance to the managed directory.

Abstract: A selection of a document that includes a command and a parameter is received, and a user is caused to be associated with a policy that grants permission to execute the document. A request is received, from a requestor, to execute the document, the request including a parameter value, and the requestor is determined to be the user associated with the policy. The user is validated to have access to a resource indicated by the parameter value, and the command is caused to be executed against the resource.

Abstract: Techniques to select and prioritize the application of spam filtering rules in a way that reduces processing time may include receiving an email message for a recipient at a spam filter and extracting email characteristics from the message. Global filtering rule statistics and a profile for the recipient may be retrieved. The technique may include selecting a subset of rules from a set of filtering rules according to the email characteristics, the global filtering rule statistics, and/or the recipient characteristics. The subset of rules may be prioritized and applied to the message from highest priority to lowest until a determination of whether the message is spam is reached. Other embodiments are described and claimed.

Abstract: A customer submits a request to a virtual computer system service to launch a virtual machine instance and to join this instance to a managed directory. The service may obtain, from the customer, a domain name and Internet Protocol addresses for the selected directory, which is then stored within a systems management server. When launched, the instance may initiate an agent, which may communicate with the systems management server to obtain the configuration information. The agent may use this configuration information to establish a communications channel with the managed directory and create a temporary set of computer credentials that may be used to verify that the customer is authorized to join the virtual machine instance to the managed directory. If the credentials are valid, the managed directory may generate a computer account within the managed directory, which may be used to join the virtual machine instance to the managed directory.

Abstract: The present document describes systems and methods that authorize client resources such as computers, servers, computing appliances, and virtual machines to access online services provided by an online service provider. To authorize a client resource, a client submits a registration request on behalf of the client resource to an authorization service provided by the service provider. The authorization service returns an activation code to the client. The activation code may expire after an amount of time, or upon first use. The client provides the activation code to an agent running on the client resource. The agent establishes communication with the authorization service, and upon providing the activation code to the authorization service, receives an authorization token that can be used by the client resource to access online services in accordance with security roles or permissions specified with the registration request.

Abstract: A technology is described for resolving command parameter that are included in command invocations. An example method may include receiving a request to invoke a command that includes a command parameter. The command may be executed by a software agent hosted on a computing resource managed within a service provider environment. In response to the request, a parameter value for the command parameter may be obtained from a parameter data store using a parameter ID. A command message having command instructions to execute the command the parameter value may be generated and the command message may be encrypted using a cryptographic key associated with the software agent. The command message may then be sent to the software agent, enabling the software agent to decrypt the command message and execute the command.

Abstract: The present document describes systems and methods that authorize client resources such as computers, servers, computing appliances, and virtual machines to access online services provided by an online service provider. To authorize a client resource, a client submits a registration request on behalf of the client resource to an authorization service provided by the service provider. The authorization service returns an activation code to the client. The activation code may expire after an amount of time, or upon first use. The client provides the activation code to an agent running on the client resource. The agent establishes communication with the authorization service, and upon providing the activation code to the authorization service, receives an authorization token that can be used by the client resource to access online services in accordance with security roles or permissions specified with the registration request.

Abstract: A service is disclosed that allows configuration, management and deployment of instances. A configuration document can be stored by the service and one or more instance identifiers can be linked to the configuration document. As a result, multiple instances can be launched and configured using a single configuration document allowing for a consistent result across instances. Local agents running on the instances can execute plug-ins in order to effectuate the configuration. As a result, administrators of instances can configure, manage and easily deploy their unique instance configurations. Customers who manage their instances can scale and manage their entire fleet with repeatable configuration tasks that seamlessly integrate into their instance workflow.

Abstract: The present document describes systems and methods that authorize client resources such as computers, servers, computing appliances, and virtual machines to access online services provided by an online service provider. To authorize a client resource, a client submits a registration request on behalf of the client resource to an authorization service provided by the service provider. The authorization service returns an activation code to the client. The activation code may expire after an amount of time, or upon first use. The client provides the activation code to an agent running on the client resource. The agent establishes communication with the authorization service, and upon providing the activation code to the authorization service, receives an authorization token that can be used by the client resource to access online services in accordance with security roles or permissions specified with the registration request.

Abstract: Techniques to select and prioritize the application of spam filtering rules in a way that reduces processing time may include receiving an email message for a recipient at a spam filter and extracting email characteristics from the message. Global filtering rule statistics and a profile for the recipient may be retrieved. The technique may include selecting a subset of rules from a set of filtering rules according to the email characteristics, the global filtering rule statistics, and/or the recipient characteristics. The subset of rules may be prioritized and applied to the message from highest priority to lowest until a determination of whether the message is spam is reached. Other embodiments are described and claimed.

Abstract: A selection of a document that includes a command and a parameter is received, and a user is caused to be associated with a policy that grants permission to execute the document. A request is received, from a requestor, to execute the document, the request including a parameter value, and the requestor is determined to be the user associated with the policy. The user is validated to have access to a resource indicated by the parameter value, and the command is caused to be executed against the resource.

Abstract: A method for communicating messages between a service and a virtual machine instance may include receiving a message from a service. The message includes a target instance identification of at least one virtual machine instance (VMI) to receive the message. A notification of the message and the target instance identification is stored in a message queue for each of a plurality of host servers associated with a plurality of VMIs. The message is stored in a message store without storing at least a portion of the message in the message queue. A request for undelivered messages is received from a VMI associated with a customer account. In response to the request, it is determined that a local cache contains an indication that the message is undelivered, where the local cache is within at least one of the plurality of host server computers associated with the VMI sending the request.

Abstract: Techniques to select and prioritize the application of spam filtering rules in a way that reduces processing time may include receiving an email message for a recipient at a spam filter and extracting email characteristics from the message. Global filtering rule statistics and a profile for the recipient may be retrieved. The technique may include selecting a subset of rules from a set of filtering rules according to the email characteristics, the global filtering rule statistics, and/or the recipient characteristics. The subset of rules may be prioritized and applied to the message from highest priority to lowest until a determination of whether the message is spam is reached. Other embodiments are described and claimed.

Abstract: A selection of a document that includes a command and a parameter is received, and a user is caused to be associated with a policy that grants permission to execute the document. A request is received, from a requestor, to execute the document, the request including a parameter value, and the requestor is determined to be the user associated with the policy. The user is validated to have access to a resource indicated by the parameter value, and the command is caused to be executed against the resource.

Abstract: The present document describes systems and methods that authorize client resources such as computers, servers, computing appliances, and virtual machines to access online services provided by an online service provider. To authorize a client resource, a client submits a registration request on behalf of the client resource to an authorization service provided by the service provider. The authorization service returns an activation code to the client. The activation code may expire after an amount of time, or upon first use. The client provides the activation code to an agent running on the client resource. The agent establishes communication with the authorization service, and upon providing the activation code to the authorization service, receives an authorization token that can be used by the client resource to access online services in accordance with security roles or permissions specified with the registration request.

Abstract: A selection of a document that includes a command and a parameter is received, and a user is caused to be associated with a policy that grants permission to execute the document. A request is received, from a requestor, to execute the document, the request including a parameter value, and the requestor is determined to be the user associated with the policy. The user is validated to have access to a resource indicated by the parameter value, and the command is caused to be executed against the resource.

Abstract: A method for executing commands on virtual machine instances in a distributed computing environment can include receiving, from a client computing device, a command execution request for executing a command on one or more virtual machine instances within the distributed computing environment. The command execution request includes a tag, and instance identification information for the one or more virtual machine instances is retrieved based on the tag. A command specification document associated with the command specified by the command execution request is retrieved. A command execution message, including the command specification document and at least one command parameter, is communicated to each of the one or more virtual machine instances. A command execution result from executing the command at the one or more virtual machine instances is received from the one or more virtual machine instances. The command execution result is sent to the client computing device.

Abstract: A service is disclosed that allows configuration, management and deployment of instances. A configuration document can be stored by the service and one or more instance identifiers can be linked to the configuration document. As a result, multiple instances can be launched and configured using a single configuration document allowing for a consistent result across instances. Local agents running on the instances can execute plug-ins in order to effectuate the configuration. As a result, administrators of instances can configure, manage and easily deploy their unique instance configurations. Customers who manage their instances can scale and manage their entire fleet with repeatable configuration tasks that seamlessly integrate into their instance workflow.