Certified Google Cloud Architect

Author Archives: anuj - Page 13

Quick Recipe for hosting PCI sensitive data apps on Google Cloud

anuj August 18, 2022 Quick Recipe for hosting PCI sensitive data apps on Google Cloud2025-02-23T04:53:39+00:00 PCI Compliance No Comment

Hosting a PCI compliant app on GCP is straightforward. Create a separate project for all the PCI Data. The actual web tier should reside in a different project from the…

Data Analytics across Companies – Analytics Hub from GCP

anuj August 16, 2022 Data Analytics across Companies – Analytics Hub from GCP2022-08-16T15:36:58+00:00 Data Architecture on GCP No Comment

Its a challenging problem to link and combine the analytics platforms from more than one company. Enter Analytics Hub from GCP Analytics Hub will provide the ability for organizations to…

Accessing Google APIs – clarifying Authentication and Authorization for Web and Mobile Apps

anuj August 14, 2022 Accessing Google APIs – clarifying Authentication and Authorization for Web and Mobile Apps2022-08-14T15:43:11+00:00 APIs on GCP No Comment

Mobile Apps can use either OAuth (described below) or Google Sign-in for Android or iOS. Web Apps and Desktop Apps should try and use OAuth as described in this post. Mobile Application Authorization…

Importing Organization from admin.google to cloud console

anuj August 12, 2022 Importing Organization from admin.google to cloud console2022-08-12T14:01:17+00:00 No Comment

You have two routes to getting a google identity that can be used for GCP- ordinary Google Workspace accounts and Cloud Identity accounts. Google Workspace Accounts Sign in to your Google Admin…

stackdriver alerts – Alerting on resource non compliance in GCP

anuj August 11, 2022 stackdriver alerts – Alerting on resource non compliance in GCP2022-10-03T06:48:28+00:00 GCP Operational No Comment

Stackdriver alerts Cloud Monitoring (aka Stackdriver) makes it possible to create custom metrics. This 'metric' doesn't just have to be something like CPU, RAM and other well known metrics. It…

Intrusion Prevention Features in Firewalls – General

anuj August 11, 2022 Intrusion Prevention Features in Firewalls – General2022-08-11T15:17:48+00:00 Vulnerability Management No Comment

1. traffic flow inspection to stop exploits using signature-based detection. 2. Block known bad URLs and monitor fully qualified domain names

Certificate Authority as a Service and VPC Service Controls GCP

anuj July 23, 2022 Certificate Authority as a Service and VPC Service Controls GCP2024-01-22T06:18:34+00:00 Encryption and Data Protection No Comment

Certificate Authority as a Service CAs as a service are part of GCP's offerings now. Certificate Authority as a Service, like all GCP networking services, are tied to a VPC…

AWS SSO Groups and Root Users

anuj July 13, 2022 AWS SSO Groups and Root Users2022-07-13T20:09:51+00:00 AWS 1 Comment

Discourage use of local accounts and encourage SSO Groups. With SSO Groups, access can be granted either across multiple accounts or to individual accounts, using Permission Sets. SSO Groups and…

No Ingress EC2 Instances, Public IPs on EC2s

anuj July 13, 2022 No Ingress EC2 Instances, Public IPs on EC2s2022-07-13T15:17:04+00:00 No Comment

AWS allows for a no-ingress EC2 instance, that can only be accessed via Systems Manager. This is the recommended best practice. Also read - Identity Aware Proxy on GCP for…

«‹11 121314 15 ›»