| Description |
1 online resource |
| Contents |
Cover -- Title page -- Copyright and Credits -- Dedication -- Foreword -- Contributors -- Table of Contents -- Preface -- Section 1: IAM and AWS -- Critical Concepts, Definitions, and Tools -- Chapter 1: An Introduction to IAM and AWS IAM Concepts -- Technical requirements -- Understanding IAM -- IAM applied to real-world use cases -- Exploring AWS IAM -- IAM for AWS and IAM on AWS -- The AWS IAM dashboard -- Principals, users, roles, and groups -- getting to know the building blocks of AWS IAM -- Authentication -- proving you are who you say you are |
|
Authorization -- what you are allowed to do and why you are allowed to do it -- Putting it all together -- Signing in with the root user -- Summary -- Questions -- Chapter 2: An Introduction to the AWS CLI -- Technical requirements -- Exploring the AWS CLI basics -- What is the AWS CLI? -- Installing the AWS CLI -- AWS CLI configuration -- Testing out the CLI -- Profiles -- Using the AWS CLI -- Discovering command syntax -- Putting it all together -- creating a functional IAM user with the AWS CLI -- Attaching an administrator policy -- Creating and attaching a password |
|
Creating and attaching the programmatic credentials -- Using the new profile -- Scripting -- Summary -- Questions -- Further reading -- Chapter 3: IAM User Management -- Technical requirements -- What is an IAM user account? -- Principals -- Managing and securing root IAM user accounts -- Differences between root user account and IAM user accounts -- Managing and securing IAM user accounts -- IAM user lifecycle management -- Password management -- Access key management -- MFA credential management -- Managing federated user accounts -- AWS Single Sign-On and federated users -- Summary |
|
Questions -- Chapter 4: Access Management, Policies, and Permissions -- Technical requirements -- What is access management? -- Introducing the AWS access policy types -- The anatomy of an AWS JSON policy document -- Defining JSON policy document elements -- Exploring the AWS policy types -- Identity-based policies -- Resource-based policies -- IAM permissions boundaries -- Service control policies -- Access control lists -- Session policies -- Policy evaluation -- Governance -- Access Analyzer -- AWS CloudTrail -- Summary -- Questions -- Further reading -- Chapter 5: Introducing Amazon Cognito |
|
Technical requirements -- What is Amazon Cognito? -- Amazon Cognito user pools -- Amazon Cognito identity pools -- Amazon Cognito use cases -- User authentication for application access -- User authentication and authorization for access to application resources -- User authentication and access to AWS services exposed through an application -- Federated user authentication and access to AWS services exposed through an application -- Creating an Amazon Cognito user pool -- Populating users in a user pool -- Bulk importing with CSV files -- Creating a user pool using the AWS CLI |
| Summary |
Understand the IAM toolsets, capabilities, and paradigms of the AWS platform and learn how to apply practical identity use cases to AWS at the administrative and application level Key Features Learn administrative lifecycle management and authorization Extend workforce identity to AWS for applications deployed to Amazon Web Services (AWS) Understand how to use native AWS IAM capabilities with apps deployed to AWS Book DescriptionAWS identity management offers a powerful yet complex array of native capabilities and connections to existing enterprise identity systems for administrative and application identity use cases. This book breaks down the complexities involved by adopting a use-case-driven approach that helps identity and cloud engineers understand how to use the right mix of native AWS capabilities and external IAM components to achieve the business and security outcomes they want. You will begin by learning about the IAM toolsets and paradigms within AWS. This will allow you to determine how to best leverage them for administrative control, extending workforce identities to the cloud, and using IAM toolsets and paradigms on an app deployed on AWS. Next, the book demonstrates how to extend your on-premise administrative IAM capabilities to the AWS backplane, as well as how to make your workforce identities available for AWS-deployed applications. In the concluding chapters, you’ll learn how to use the native identity services with applications deployed on AWS. By the end of this IAM Amazon Web Services book, you will be able to build enterprise-class solutions for administrative and application identity using AWS IAM tools and external identity systems. What you will learn Understand AWS IAM concepts, terminology, and services Explore AWS IAM, Amazon Cognito, AWS SSO, and AWS Directory Service to solve customer and workforce identity problems Apply the concepts you learn about to solve business, process, and compliance challenges when expanding into AWS Navigate the AWS CLI to unlock the programmatic administration of AWS Explore how AWS IAM, its policy objects, and notational language can be applied to solve security and access management use cases Relate concepts easily to your own environment through IAM patterns and best practices Who this book is for Identity engineers and administrators, cloud administrators, security architects, or anyone who wants to explore and manage IAM solutions in AWS will find this book useful. Basic knowledge of AWS cloud infrastructure and services is required to understand the concepts covered in the book more effectively |
| Notes |
Description based on CIP data; resource not viewed |
| Subject |
Amazon Web Services (Firm)
|
| SUBJECT |
Amazon Web Services (Firm) fast |
| Subject |
Computer networks -- Access control.
|
|
Computer security.
|
|
Computer Security
|
|
Computer networks -- Access control
|
|
Computer security
|
| Form |
Electronic book
|
| Author |
Hutchinson, Steve, author
|
| ISBN |
9781800567023 |
|
1800567022 |
|
