Other Access Management-Related AWS Services At this point in this text, I am sure you are not surprised to learn that there are plenty of services available in AWS to assist with identity and access management. Let’s look at just some of them here: AWS IAM Identity Center: This service was previously named AWS Single…
Gateways to Other Networks – 100-150 Exam Guide
Objectives Upon completion of this chapter, you will be able to answer the following questions: • What are network boundaries? • What is the purpose of Network Address Translation in small networks? Key Terms This chapter uses the following key terms. You can find the definitions in the Glossary. Network Address Translation (NAT) Introduction (12.0)…
Best Practices with IAM – CLF-C02 Exam Guide
Review IAM permissions: You should not use a “set and forget” policy when it comes to your permissions in IAM. You should consistently review the permissions level assigned to ensure that you are following least privilege concepts and that you are still granting those permissions to the groups that require them. There is even a…
Best Practices with IAM – CLF-C02 Exam Guide
Best Practices with IAM While IAM in AWS provides many exciting capabilities, its complexity can cause organizations to make fatal mistakes when working with the service. This section highlights some best practices that can save you from making such mistakes. You should consider following most (if not all) of these recommendations: Use the root account…
Dynamic Addressing with DHCP Summary
The following is a summary of each topic in the chapter and some questions for your reflection. What Did I Learn in this Module? (11.3.1) • Static and Dynamic Addressing—With a static assignment, the network administrator must manually configure the network information for a host. At a minimum, this includes the host IPv4 address, subnet…
Identity and Access Management
Identity and Access Management When it comes to accessing your AWS account and working inside it, you need the Identity and Access Management (IAM) services of AWS. IAM allows you to grant access to other individuals for team management of the services. IAM permits extremely granular permissions. For example, you might grant someone read access…
DHCP Servers – 100-150 Exam Guide
If you enter an airport or coffee shop with a wireless hotspot, DHCP makes it possible for you to access the internet. As you enter the area, your laptop DHCP client contacts the local DHCP server via a wireless connection. The DHCP server assigns an IPv4 address to your laptop. Various types of devices can…
AWS Security Compliance Programs
AWS Security Compliance Programs How does Amazon measure its success when it comes to compliance with security best practices and regulations? Through the success of its many customers! Customers drive AWS efforts in these categories (to name just a few): Compliance reports Attestations Certifications Compliance programs and your adherence to them will help you implement…
Dynamic Addressing with DHCP
Objectives Upon completion of this chapter, you will be able to answer the following questions: • What is the difference between static and dynamic IPv4 addressing? • Configure a DHCPv4 server to dynamically assign IPv4 addresses. Key Terms This chapter uses the following key terms. You can find the definitions in the Glossary. Dynamic Host…
An Introduction to AWS Security
An Introduction to AWS Security Amazon understands that a major concern for many organizations considering moving to public (or hybrid) clouds is security. As a result, it has taken great pains to ensure that incredible levels of security are available for your organization, including massive efforts around confidentiality, integrity, and availability (CIA). The CIA triad,…