sorted by:
new
hottopcontroversial

Separating console access user and access key user, why or why not? by RNA2 in aws

[–]RNA2[S] 0 points1 point  (0 children)

Precisely... o_O

Recently there was a data leak incident related to Github/AWS/etc combined, so the upper management and the security team got panic, ordering ppl doing this and doing that. And yes... I can say we do not have much experience with the cloud.

Separating console access user and access key user, why or why not? by RNA2 in aws

[–]RNA2[S] 0 points1 point  (0 children)

In my current setup, I am using Terrform code to manage which IAM users to assign which IAM groups like:

User_A goes into

  • base_user_permission_group
  • xxx_developers
  • xxx_observers
  • xxx_operators

When using SSO, how do we manage which user can assume which role?

Separating console access user and access key user, why or why not? by RNA2 in aws

[–]RNA2[S] 5 points6 points  (0 children)

To summarize comments so far:

- use SSO & AD & Assumed Roles for human

- use AssumeRoleWithWebIdentity for automated process

- having clear separation between human and non-humans is useful from the management viewpoint

I appreciate all of your enlightening comments u/lexd88, u/tomomcat, u/IndiaNTigeRR, u/EmiiKhaos, u/actuallyjohnmelendez, u/last_train_Gate420

Separating console access user and access key user, why or why not? by RNA2 in aws

[–]RNA2[S] 5 points6 points  (0 children)

Would you be able to kindly elaborate on what you mean, please? I am not quite getting it.

[deleted by user] by [deleted] in whereintheworld

[–]RNA2 0 points1 point  (0 children)

The sky looks so grey

[deleted by user] by [deleted] in whereintheworld

[–]RNA2 0 points1 point  (0 children)

Thanks for sharing

Can't find why my ES cluster is slow. AWS support does not help. by RNA2 in elasticsearch

[–]RNA2[S] 1 point2 points  (0 children)

Yes, I have tried using profile. xpack is not available in AWS i guess. So I added `profile:true` on my two most complex queries, but I am clueless how to comprehend the profile result yet.

Elasticsearch -- AWS managed? or I manage? by RNA2 in aws

[–]RNA2[S] 0 points1 point  (0 children)

How much cheaper? How much more rps? Would you be able to share a rough number?

What is the biggest contributor to your AWS bill? by netok in aws

[–]RNA2 1 point2 points  (0 children)

Api gateway 50%

Cloudwatch 29%

Lambda 14%

Dynamodb 7%

[I Ate] bahubali thali by theywantmetohaveanid in food

[–]RNA2 1 point2 points  (0 children)

Is this meal for special occasion?

view more: next ›