Today we will use Amazon Web Services SSM Service to store secrets in their Parameter Store which we will encyrpt using KMS. Then we will read the data from SSM and decrypt using our KMS key. We will then end
Security
A collection of 13 posts
Amazon Web Services Releases Elasticsearch VPC Support
AWS have recently announced VPC Support for Amazons Elasticsearch Service, which is a big win! The official announcement: https://aws.amazon.com/about-aws/whats-new/2017/10/amazon-elasticsearch-service-announces-support-for-amazon-virtual-private-cloud-vpc/ Elasticsearch Private IP Based Authorization: This essentially means that you can now allow
AWS IAM Users and Groups: Encrypt and Decrypt Data using KMS via the CLI
In our previous post we went through the process on controlling access using the CLI for IAM, to Create a IAM Policy, Associating the Policy to a Group and Creating Users within the group to inherit the policy, in order
Removing the Hive Metastore Password from hive-site.xml on EMR
With Hive's Metastore config, we have an entry that hosts your password to authenticate against your metastore database. This password is saved in clear-text, which looks like this: <property> <name>javax.jdo.option.ConnectionPassword</name&
AWS DynamoDB Access Control
2017.04.19 - Note: VPC Endpoints has been Released for DynamoDB At the moment of writing this post, AWS currently does not offer VPC Endpoints for DynamoDB. Having said that, you can look into fine graining your IAM policy
Subscribe to Sysadmins
Subscribe today and get access to a private newsletter and new content every week!