Category: Advanced (300)

It’s often required for a partner solution running on Amazon Web Services to access AWS accounts owned by their customers (third-party AWS accounts). This kind of access is known as cross-account access. In such scenarios, a cross-account AWS Identity and Access Management (IAM) role with external ID should be used. Explore the best practices for using external ID to avoid the confused deputy problem it is designed to solve.

HP Anyware from HP Teradici is the first high-performance remote desktop solution for EC2 Mac instances, providing a graphics-intensive computing experience with high color fidelity, crisp text, and up to 4K UHD resolution. HP Anyware enables you to remotely access your EC2 Mac instances as if they were on a local machine, with the resolution and color fidelity you need for the best desktop experience.

Learn how to set up Active Directory authentication with authorization for Postgres. Heimdall Data provides synchronization scripts for other databases as well, allowing all Amazon RDS instance types to be supported in a similar way. Using Active Directory authentication allows organizations to standardize their password and authorization management via a globally available authentication store, reducing management overhead and improving security and auditing capabilities.

As customers adopt VMware Cloud on AWS, it’s important to provide scalable and reliable hybrid connectivity to help integrate SDDCs with on-premises and cloud-native services. VMware Cloud on AWS customers have additional network security requirements including network encryption, firewall integration, and traffic segmentation. Learn about hybrid network design patterns and considerations, and go through various network architecture design options and use cases addressing customer requirements.

Data security is a particularly important topic for multi-tenant SaaS applications that handle customers’ sensitive data. How to securely segregate tenant data and how to provide data access to customers will vary depending on the SaaS solution’s architecture and its requirements. This post explores how SaaS vendors can build secure, scalable, and cost-effective data exchange mechanisms using SFTP (SSH File Transfer Protocol) with AWS managed services like AWS Transfer Family.

Today, many organizations trust Amazon Web Services (AWS) to host their business’s applications and infrastructure. As they continue to innovate, their applications and environments become increasingly complex. This post explores how AWS customers can leverage Gremlin to improve the resiliency and reliability of their applications. Learn how to apply chaos engineering principles to your Amazon EKS environment to increase uptime, reduce incidents, and build more resilient applications, systems, and services.

Amazon EKS and Calico Cloud’s combined solution provides proof of security compliance to meet organizational regulatory requirements, but building and running cloud-native applications in EKS requires communication with other AWS and external third-party services. Learn how you can apply zero-trust workload access controls along with microsegmentation for workloads on EKS, and explore what implementing zero-trust workload access controls and identity-aware microsegmentation means for you.

The increase in market uncertainty over the last couple of years has demonstrated the need for market participants to have a dynamic view of the risks and impacts due to market moves on their portfolios. This post explores how Validus, a leading independent technology-enabled financial services firm, built a Bloomberg real-time market data integration using serverless managed services on AWS.

Customers have different reasons to run multiple Red Hat OpenShift clusters, including having separate clusters per geographical locations, setting a cluster-level boundary between mission-critical applications, data residency, and reducing latency for end users. This post explores Red Hat Advanced Cluster Management for Kubernetes and how it extends the value of Red Hat OpenShift for hybrid environments. It also explores different scenarios where having a multi-cluster environment is beneficial.

Learn how to build a Java application in a Docker container and push the container image to Amazon ECR orchestrated by AWS CodePipeline. We’ll use Snyk to scan your code, build a container image, and display the results in both Snyk and Amazon ECR. We’ll also show you how Amazon Inspector utilizes Snyk open source to provide insight into your software security vulnerabilities. All of this functionality is available from the AWS Management Console.