AWS Classroomnotes 23/Mar/2023

Resource-based policies

  • Resource based policies are policies for specific resources like s3 buckets, SQS etc

IAM Roles

  • Roles are permissions given to aws resources to access other aws resources.
  • Activity 1:
    • Create an IAM Role for ec2 instances to have full access on s3 buckets




    • Create an ec2 instance (Amazon linux) and attach the role of fulls3accesstoec2

    • Now login into ec2 instance and create and delete s3 bucket
  • Activity 2:
    • Create an IAM role which allows ec2 instances to do anything on iam

Auditing with Cloud Trail

  • Cloud Trail tracks aws account usage
  • Exercise:
    • Create two users with ec2 full access
    • Create two ec2 instances
      • login as user 1 and shutdown one ec2
      • login as user 2 and terminate one ec2
    • Login in as user 1 and check cloud trail
    • Login in as user 2 and check cloud trail
    • Login in as root and check cloud trail
Published
Categorized as Uncategorized Tagged

By continuous learner

devops & cloud enthusiastic learner

Leave a ReplyCancel reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Please turn AdBlock off
Animated Social Media Icons by Acurax Responsive Web Designing Company

Discover more from Direct DevOps from Quality Thought

Subscribe now to keep reading and get access to the full archive.

Continue reading

Exit mobile version
%%footer%%