AWS Partner Network (APN) Blog

Category: Best Practices

Top Recommendations for Working with IAM from Our AWS Heroes – Part 4: Available Permissions and User Identity

When it debuted 10 years ago, AWS Identity and Access Management (IAM) supported15 services. Today, it’s woven into the core of everything in the AWS Cloud. Check out the fourth and final blog post celebrating IAM‘s 10th anniversary. Dive deep on the Service Authorization Reference, a comprehensive list of all the permissions in AWS, and explore the AWS CloudTrail userIdentity element that keeps track of who did what.

Read More

Top Recommendations for Working with IAM from Our AWS Heroes – Part 3: Permissions Boundaries and Conditions

This is our third blog post celebrating AWS Identity and Access Management (IAM)‘s 10th anniversary. Explore two powerful ways that you can limit access to AWS by setting the boundaries and conditionally provide access to resources in IAM policies. Permissions boundaries can be used for situations like granting someone limited permissions management abilities, while conditions enable you to specify when a policy statement is enforced.

Read More

Top Recommendations for IAM from Our AWS Heroes – Part 2: The Visual Editor and Federation

AWS Identity and Access Management (IAM)‘s 10th anniversary continues with Part 2 of our blog series. Writing an IAM policy can be tricky, but don’t feel overwhelmed. Learn how the IAM visual editor helps you create policies by providing helpful documentation and the correct syntax. You’ll also learn why you should use federation due to the short-term credentials made possible by IAM roles. More tips like these can be found throughout our 4-part blog series.

Read More

IAM 10th Anniversary: Top Recommendations for Working with IAM from Our AWS Heroes – Part 1

This year marks the 10th anniversary of AWS Identity and Access Management (IAM), which is essential in securing your applications and your AWS environment as a whole. To help you get the most out of this critical AWS service, we are excited to share a blog series featuring top recommendations for using IAM from AWS Heroes and APN Ambassadors, who will share recommendations which are driven from personal experiences using a service that’s foundational for the security of AWS customers.

Read More
Well-Architected-SaaS-Lens-3

Assessing the Reliability of Your SaaS Environment with the AWS Well-Architected SaaS Lens

The reliability pillar of the AWS Well-Architected SaaS Lens focuses on the reliability posture of your SaaS solution. The SaaS Lens helps AWS customers assess the overall reliability of their SaaS architecture, providing prescriptive guidance that enables better alignment of their architecture. There are several considerations to keep in mind when building or optimizing a SaaS solution for reliability. While some apply to all modern solutions, others are specific to SaaS and that’s the focus of this post.

Read More
APN-Ambassadors-1

Governance in the AWS Cloud: The Right Balance Between Agility and Safety

Cloud infrastructure provides more agility than traditional IT, meaning organizations must think differently about how they design, build, and manage applications. Cloud resources need a stronger integration between IT and organizational governance, as builders need to be able to operate in a cloud environment that’s agile and safe. Hear from APN Ambassador Paolo Latella, who introduces a decentralized model of cloud governance that can help you strike the right balance between agility and safety.

Read More
Cloud Anything-13

Building a Third-Party SaaS Metering and Billing Integration on AWS

When moving to a SaaS model, companies need more flexible billing constructs that allow them to support a range of billing strategies and models. Learn how SaaS providers can create a billing integration experience that captures metering data and publishes it to a third-party billing system. We’ll also review common SaaS billing models and introduce a sample billing implementation that provides a working example of how you can approach building a strategy for integrating with SaaS billing providers.

Read More
Cloud Anything-9

Building a Multi-Tenant SaaS Solution Using Amazon EKS

As more organizations make the move to a SaaS delivery model, many are choosing Amazon EKS as the target for their solutions. The programming model, cost efficiency, security, deployment, and operational attributes of Amazon EKS represent a compelling model for SaaS providers. Walk through the key architectural elements of a sample architecture, and learn how to isolate tenants within an EKS cluster, automate tenant onboarding, manage tenant identities, and support routing of tenant workloads.

Read More
VMware Cloud on AWS-dark

Design Considerations for Disaster Recovery with VMware Cloud on AWS

Customers who run VMware on-premises are incorporating VMware Cloud on AWS into their hybrid cloud strategy due to the immense benefits of using the AWS Global Infrastructure. As organizations plan hybrid cloud strategies, disaster recovery is a vital consideration to ensure business continuity in the event of a disaster. Learn about the architectural considerations and best practices for implementing disaster recovery using VMware Cloud on AWS.

Read More
AWS-MSP-Partners-1

The Journey to AWS MSP: Best Practices for Executing the AWS MSP Full Audit

An integral part of the AWS MSP journey is completing the full two-day audit with ISSI, our third-party auditing firm and an AWS Select Consulting Partner. In our first post in a two-part series, we had a Q&A with Chang Leong, Global Head of Auditing at ISSI, who shared best practices leading up to the AWS MSP audit. In this post, we continue the conversation with Chang and focus on what to expect for the two-day-long AWS MSP audit—as well as post-audit activities for AWS MSP Partners.

Read More