Certified Google Cloud Architect

Author Archives: anuj - Page 35

Security Readers and Security Admins in GCP

anuj May 7, 2021 Security Readers and Security Admins in GCP2021-05-08T19:26:56+00:00 GCP IAM 1 Comment

Also read - Built in Security related Managed Policies in AWS and GCP GCP has over a few thousand built in (predefined) roles for a variety of activities. Level 1…

Best Practices around GCP Service Accounts

anuj May 3, 2021 Best Practices around GCP Service Accounts2021-07-16T17:52:18+00:00 Google Cloud Platform Enter your password to view comments.

This content is password protected. To view it please enter your password below: Password:

S3 data protection best practices

anuj April 30, 2021 S3 data protection best practices2021-04-30T14:27:25+00:00 AWS No Comment

Notes from the Field Apart from standard AWS recommendations around s3 data protection, these are some tips from hands on engagements around S3 data backups (from data centers) S3…

Protecting Data in S3 Buckets

anuj April 30, 2021 Protecting Data in S3 Buckets2021-04-30T14:20:20+00:00 1 Comment

Broadly, you can protect these via IAM Policies and via Encryption Default Encryption The objects are encrypted using server-side encryption with either Amazon S3-managed keys (SSE-S3) or customer master keys…

GCP Foundation via Terraform

anuj April 21, 2021 GCP Foundation via Terraform2021-04-27T01:49:13+00:00 AWS No Comment

Google has put out a few examples of cloud foundational components - integrated into a single terraform solution that is called from a bootstrap module. Need an experienced AWS/GCP/Azure…

F5 on AWS

anuj April 18, 2021 F5 on AWS2021-04-21T16:58:45+00:00 AWS No Comment

What roles are required to install BigIP on an EC2 or Compute Instance? F5 requires a custom AWS role with three policies attached: { "Version": "2012-10-17", "Statement": , "Resource": "*"…

Backup and Recovery AWS, Azure or GCP

anuj April 6, 2021 Backup and Recovery AWS, Azure or GCP2021-04-25T18:02:09+00:00 AWS No Comment

Backup and recovery conversations often get derailed. While everyone understands RTO and RPO, it is hard to apply these metrics in a granular fashion. To that end, it is better…

ADFS and SSO Federated Users in AWS

anuj April 6, 2021 ADFS and SSO Federated Users in AWS2021-04-27T01:34:26+00:00 AWS 1 Comment

(Also see - Functional Roles and AWS managed policies) Permissions Set and SSO Groups SSO Groups are created within AWS IAM (they come directly from the IdP). The actual permissions…

AWS Managed Policies for work functions

anuj April 6, 2021 AWS Managed Policies for work functions2022-07-07T14:05:12+00:00 AWS 4 Comments

Keep in mind that anything with 'Admin' in it allows creation of other users as well as attaching / detaching policies to users. Anything with 'user' in it, has no…

Custom IAM Roles in GCP

anuj March 29, 2021 Custom IAM Roles in GCP2021-04-27T01:34:42+00:00 GCP IAM No Comment

Also read - Roles, IAM in GCP and AWS Managed Policies for On Premises Work Functions and Base Roles for Developers in GCP Can Anyone Create Custom Roles? No. Only…

«‹33 343536 37 ›»