Skip to main content

Amazon Web Services

Amazon Web Services, Inc. is a subsidiary of Amazon that provides on-demand cloud computing platforms and APIs to individuals, companies, and governments, on a metered pay-as-you-go basis. These cloud computing web services provide distributed computing processing capacity and software tools via AWS server farms.
~ Internet

AWS:

  • Storage
  • Databases
  • Networking
  • Security
    • IAM
      • is an Access management service 
      • Least Privilege 
        • Minimal set of permission/access 
        • Adhoc access upgradation 
      • Groups
        • Collective access to users
        • for ease of management 
      • Policy
        • Managed Policy 
          • by AWS 
        • Only the root user can do 
          • Not even users with admin access 
            • Admin access has all access (rwx) on all resources 
          • Closing an account 
          • Changing billing/Support plans 
        • deny takes precedence 
        • IAM Policy simulator 
          • to get a check of access for a policy 
          • can be used for different resources access checks for a policy 
        • Access Analyser 
          • AI to find access gaps or leaks 
          • Reviews for extra access and report
        • Roles
          • Identity that has permission assigned 
          • Access for identity outside AWS 
          • Temporary credentials for lifetime session 
            • No Long term keys and passwords 
        • User
          • Add to groups for access
          • can copy permission from existing users 
            • Special feature 
            • copies all the permission to new users 
          • can be attached to the policy directly 
            • Not typically used
            • only for advance or exceptional access 
        • SSO & Cognito
          • SAML 2.0 
            • Active Directory Single sign-on option 
            • Access to other apps like workday, drive, and outlook.
          • Cognito used for mobile apps and web authentication 
            • Two signing options
              • User Pool 
                • Sign Up page 
                • attached with a lambda function 
                • stores credential and user details in AWS/App
              • Identity Pools
                • used with Auth providers 
                • like, Google, Apple, and Facebook. 
                • Change of application Id will prevent existing users from login in. 
    • more...

    Comments

    Post a Comment

    Popular posts from this blog

    Delivery Foundation Academy (DFA) MCQs

    Question  1 Correct Mark 1.00 out of 1.00 Flag question Question text Every sprint starts with _________ and ends with ___________ and ______________. Select one: a. 1. Sprint planning 2. Sprint Review 3. Sprint Retrospective b. 1. Daily Stand Up 2. Sprint Review 3. Sprint retrospective c. 1. Sprint Review 2. Sprint planning 3. Sprint Retrospective d. 1. Sprint Retrospective 2. Sprint Review 3. Sprint planning Feedback The correct answer is: 1. Sprint planning 2. Sprint Review 3. Sprint Retrospective Question  2 Partially correct Mark 0.67 out of 1.00 Flag question Question text As part of cloud application security, which of the following are the identity and access solutions provided by the cloud service providers? Select one or more: a. Role based authentication b. Single Sign-On/Off c. Federation and Identity Provision d. Multifactor Authentication Feedback The correct answers are: Federation and Identity Provision, Single Sign-On/Off, Multifactor Authentication Question...
    Post a Comment
    Read more

    What is Apache Hive?

    Apache Hive is one of Apache's top-level projects. Hive is a data warehouse and ETL for a large dataset in distributed storage. Hive supports different types of storage formats like CSV, TSV, Parquet, ORC (Optimized Row Column), and others. It is used for the analytical processing of structured data using an SQL-like interface. Hive is built on top of Hadoop. Apache Hive      ~ https://hive.apache.org/ Hive is a software project that provided data querying and analysis. It facilitates the reading, writing, and handling of a wide dataset that is stored in distributed storage and queried by SQL syntax, HiveQL.  Hive provides the necessary abstraction to the Hadoop environment by projecting structure on data in HDFS storage so that SQL queries can be integrated with the low-level Java API.  Hive also provides a command-line tool and Java Database Connectivity (JDBC) driver that can be used to connect to Hive.  Hive was co-created by Joydeep Sen Sarma and ...
    Post a Comment
    Read more