AWS Archives - Page 4 of 5 - Multi Cloud Architect, Security Specialist

Archives for AWS - Page 4

Backup and Recovery AWS, Azure or GCP

anuj April 6, 2021 Backup and Recovery AWS, Azure or GCP2021-04-25T18:02:09+00:00 AWS No Comment

Backup and recovery conversations often get derailed. While everyone understands RTO and RPO, it is hard to apply these metrics in a granular fashion. To that end, it is better…

ADFS and SSO Federated Users in AWS

anuj April 6, 2021 ADFS and SSO Federated Users in AWS2021-04-27T01:34:26+00:00 AWS 1 Comment

(Also see - Functional Roles and AWS managed policies) Permissions Set and SSO Groups SSO Groups are created within AWS IAM (they come directly from the IdP). The actual permissions…

AWS Managed Policies for work functions

anuj April 6, 2021 AWS Managed Policies for work functions2022-07-07T14:05:12+00:00 AWS 4 Comments

Keep in mind that anything with 'Admin' in it allows creation of other users as well as attaching / detaching policies to users. Anything with 'user' in it, has no…

AWS Custom Groups and (Managed) Policies Needed

anuj March 29, 2021 AWS Custom Groups and (Managed) Policies Needed2022-03-01T15:51:48+00:00 AWS No Comment

This is meant to be a quick recap of some recommended custom AWS Groups and the included Managed Policies. A Network Admin Group AWS managed policy name: NetworkAdministrator A Security Auditor…

Oracle on AWS RDS

anuj March 29, 2021 Oracle on AWS RDS2021-04-25T18:02:23+00:00 AWS No Comment

These are some field tips for migrating Oracle databases to AWS RDS (or custom EC2 instances). Tuning, Monitoring, Pricing, Backup tips are included. Often, a reference to the appropriate AWS…

KMS Basics AWS (or GCP)

anuj March 24, 2021 KMS Basics AWS (or GCP)2024-01-23T20:30:17+00:00 AWS Enter your password to view comments.

This content is password protected. To view it please enter your password below: Password:

Secrets Manager and KMS in AWS

anuj March 23, 2021 Secrets Manager and KMS in AWS2024-01-23T20:30:24+00:00 AWS No Comment

To protect secrets, Secrets Manager uses envelope encryption with AWS KMS customer master keys (CMKs) and data keys. Secrets Manager uses a unique data key to protect each secret value. Whenever the secret value in…

Restricted EC2 Access Policies in AWS

anuj March 19, 2021 Restricted EC2 Access Policies in AWS2021-03-19T17:04:06+00:00 AWS No Comment

Often, in an effort to speed up development, AWS admins will grant broader access to services than is needed. As an example, to enable developers to quickly spin instances up,…

S3 Request Metrics, Cloudwatch Alarms

anuj November 25, 2020 S3 Request Metrics, Cloudwatch Alarms2020-11-26T07:23:59+00:00 AWS 1 Comment

Overview It is useful to get notifications (dashboard alarms and email notifications) when S3 uploads fail (request metric). Or when your bucket exceeds a certain size (Storage metric). The S3…

Policies on AWS vs GCP

anuj November 24, 2020 Policies on AWS vs GCP2020-11-24T21:42:14+00:00 AWS No Comment

Also read Programmatic Identities on Google Cloud vs AWS Policies in AWS A policy definition by itself, contains very little in AWS. It contains what type of resources (NOT the…

1 2 345