Management Fundamentals for AWS

AWS Config One of the largest headaches we have is understanding: What resources do we have? Do we have resources that are no longer needed? Their status, security vulns. How are they linked? What changes have occurred on a resource? Is the infrastructure compliant with governance controls? Accurate auditing information? AWS Config records and captures source changes allowing us to perform actions against the data. It can: Capture resource changes Act as a resource inventory....

December 3, 2020 · 4 min · Bee

AWS Cost Management and Customer Support

There are 4 main support plans:: Access online resources (basic) General guidance from AWS (Developer) 24-hour technical support (Business) Dedicated Account Managers and Personaliiseid Consultation Total Cost of Ownership The Total Cost of Ownership (ToC) calculator is a free calculator to compare AWS cloud and on-premise costs. It’s designed for anyone who is considering migrating to AWS. It creates a report after we complete a short questionaire. The report will include estimated on-premise costs such as:...

December 2, 2020 · 2 min · Bee

Overview of AWS Authentication, Authorisation, and Access Control

Authentication Comprised of 2 parts of information. Who you are? Presenting your identity (login username). Unique value within the system we are trying to authenticate to. Verify you are who you say you are. Passwords, MFA, etc. This does not have to be unique. We may use credit card pin numbers for authentication. Identity = credit card, verify = pin number. Authorisation Happens before authentication. System in which we have authenticated to establishes what level of privileges we can access....

December 2, 2020 · 1 min · Bee

Creating your own VPN with PiHole & UnBound on AWS

Introduction In this blog post we will: Create our own VPN on AWS Add PiHole to iit Use Unbound as our DNS resolver Access the VPN using Wireguard Not go bankrupt doing it! Step 1 Create an AWS lightsail instance on Amazon. We use Lightsail instead of EC2 because EC costs £0.12 / GB on outbound transfers. That means for 1 TB / month it’ll cost £120. Lightsail costs £3....

November 29, 2020 · 3 min · Bee

Introduction to IAM with AWS

Identity & Access Management Identities are required to authenticate to AWS accounts. Username = identity Password = verification Access management relates to what an identity can access once its been authenticated. The AWS IAM service is used to centrally manage and control security permissions. Users: These are objects within IAM identifying different users. Groups: These are objects that contain multiple users. Roles: These are objects that different identities can adopt to assume a new set of permissions....

November 29, 2020 · 3 min · Bee

Disaster Recovery with AWS for CCP

We’ll need to invoke our disaster recovery plans to restore our data if our storage or server fails. With traditional backup methods, the data we need might not be available because: Backup data is stored in the same location as the production data, and the disaster impacted the backups. If using a tape backup method, the tapes could fail making the data unreadable. The tapes could get lost when in transit....

October 1, 2020 · 8 min · Bee