52 Weeks of AWS Episode 16: Securing Users for Solutions Architect

Alright, so I'm live here 52 weeks of AWS, continuing to cover the solutions architect certification material. And today I'm going to talk about securing user and application access. Probably one of the most timely topics that we can discuss for cloud computing, there is a lot of increased risk of cybersecurity threats in in the world right now. And there's conflicts that could potentially make your organization really need to care a bit more about cybersecurity. And so this is a great topic for today. So let's go ahead and dive right in here. I'm going to talk through this material on securing user and application access. I'm going to go ahead and share my screen if you're watching. Live here with the video, and let's get to it. Okay, so first up securing user application access. We're talking about some of the things like architectural needs the user account and I ns, how to organize users do federated users multiple accounts. also play around a little bit with AWS itself and do some demos, if it seems like it's needed. So by the end of this talk, today, I'm going to cover I am groups roles, how to use user Federation, also about AWS organizations, and how to manage multiple AWS accounts, which is, in fact, a really good process for many organizations. Okay, let's get into architectural need first. So, you know, that's typically a good place to start as what's the structure of your company, what it is you need to solve, then move into the details. So the first thing that most people don't do that they should do when they're using AWS is they need to secure the root account. I've personally seen this happen at multiple companies, where you everybody was using the root and now account initially, because it's a startup. And, you know, we want to move fast and break things or, you know, like, I like to say, move fast and break democracy. But in general, with root users, you need to secure them immediately, because it's so easy to essentially give someone access to your account. And then now you don't have a company anymore, you've given it away to other people. And the first thing to do would be to create a admin user account, the next thing to do is make sure that you lock away the root credentials, and then don't use the root account period. So instead, what you would want to do is use the admin or specific admin users, maybe an admin for s3, or an admin for compute, or something like that, for most of the tasks. So I am is a way of managing identity and access management, you can securely control individual and group access, you can integrate with other AWS services, do Federated Identity Management, granular permissions, and also MFA or multi factor authentication.If you enjoyed this video, here are additional resources to look at:Coursera + Duke Specialization: Building Cloud Computing Solutions at Scale Specialization: https://www.coursera.org/specializations/building-cloud-computing-solutions-at-scalePython, Bash, and SQL Essentials for Data Engineering Specialization: https://www.coursera.org/specializations/python-bash-sql-data-engineering-dukeO'Reilly Book: Practical MLOps: https://www.amazon.com/Practical-MLOps-Operationalizing-Machine-Learning/dp/1098103017O'Reilly Book: Python for DevOps: https://www.amazon.com/gp/product/B082P97LDW/Pragmatic AI: An Introduction to Cloud-based Machine Learning: https://www.amazon.com/gp/product/B07FB8F8QP/Pragmatic AI Labs Book: Python Command-Line Tools: https://www.amazon.com/gp/product/B0855FSFYZPragmatic AI Labs Book: Cloud Computing for Data Analysis: https://www.amazon.com/gp/product/B0992BN7W8Pragmatic AI Book: Minimal Python: https://www.amazon.com/gp/product/B0855NSRR7Pragmatic AI Book: Testing in Python: https://www.amazon.com/gp/product/B0855NSRR7Subscribe to Pragmatic AI Labs YouTube Channel: https://www.youtube.com/channel/UCNDfiL0D1LUeKWAkRE1xO5QView content on noahgift.com: https://noahgift.com/View content on Pragmatic AI Labs Website: https://paiml.com/ 🔥 Hot Course Offers:🤖 Master GenAI Engineering - Build Production AI Systems🦀 Learn Professional Rust - Industry-Grade Development📊 AWS AI & Analytics - Scale Your ML in Cloud⚡ Production GenAI on AWS - Deploy at Enterprise Scale🛠️ Rust DevOps Mastery - Automate Everything🚀 Level Up Your Career:💼 Production ML Program - Complete MLOps & Cloud Mastery🎯 Start Learning Now - Fast-Track Your ML Career🏢 Trusted by Fortune 500 TeamsLearn end-to-end ML engineering from industry veterans at PAIML.COM