AWS Partner Network (APN) Blog

Tag: AWS IAM

Securely-Using-External-ID-thumbnail

Securely Using External ID for Accessing AWS Accounts Owned by Others

It’s often required for a partner solution running on Amazon Web Services to access AWS accounts owned by their customers (third-party AWS accounts). This kind of access is known as cross-account access. In such scenarios, a cross-account AWS Identity and Access Management (IAM) role with external ID should be used. Explore the best practices for using external ID to avoid the confused deputy problem it is designed to solve.

Heimdall Data-APN-Blog-090622

Active Directory Authentication and Authorization with Amazon RDS

Learn how to set up Active Directory authentication with authorization for Postgres. Heimdall Data provides synchronization scripts for other databases as well, allowing all Amazon RDS instance types to be supported in a similar way. Using Active Directory authentication allows organizations to standardize their password and authorization management via a globally available authentication store, reducing management overhead and improving security and auditing capabilities.

Self-Service Platform for Standardized Amazon EKS Deployments Across the Organization

AWS provides a secure, reliable, and scalable environment for customers to run their container workloads. Customers running containers on premises are looking to move to AWS to gain agility benefits and reduce technical debt of managing their own infrastructure. Learn how Tech Mahindra transitioned a customer from an on-premises self-managed Kubernetes environment to a managed Amazon EKS platform with centralized self-service deployment options using AWS Service Catalog.

SaaS-FTPS-Transfer-Family-thumbnail

Designing a Multi-Tenant SFTP Server with AWS Transfer Family

Data security is a particularly important topic for multi-tenant SaaS applications that handle customers’ sensitive data. How to securely segregate tenant data and how to provide data access to customers will vary depending on the SaaS solution’s architecture and its requirements. This post explores how SaaS vendors can build secure, scalable, and cost-effective data exchange mechanisms using SFTP (SSH File Transfer Protocol) with AWS managed services like AWS Transfer Family.

Infosys-APN-Blog-080922

Proactive Patient Engagement with Infosys Digital Health Platform

Infosys Digital Health Platform is a connected health platform powered by AWS and is designed to help patients lead a healthy life. It achieves this through regular and in-depth insights on a patient’s daily habits and streaming of vital health parameters from different connected devices. It also tracks symptoms and quality-of-life indicators. With this information, the platform analyses data for multiple therapeutic areas and provides necessary insights.

ClearScale-APN-Blog-080222

PBS Provides Tailored Experiences for Viewers with Amazon Personalize

Like many of today’s leading media and streaming platforms, PBS wanted to take its overall user experience to the next level. That’s why PBS approached AWS Premier Tier Consulting Partner ClearScale, a leader in machine learning. ClearScale came up with a detailed roadmap for tackling PBS’s recommendation system project that included data operations, MLOps, and demonstrational user interface. Together, PBS and ClearScale decided to move forward with an AWS-powered solution on top of Amazon Personalize.

TechMahindra-APN-Blog-072722

How Tech Mahindra’s InfoWise Accelerates the AWS Cloud Journey Through Data Modernization

Lack of a modernization strategy can result in unwanted downtime, excess investment, poor quality service, and dead-weight assets into the modernized platform. This post talks about how InfoWise, a Tech Mahindra solution, accelerates the first two stages of the cloud data migration and modernization journey: search and discover and plan and strategy. InfoWise also helps recommend the migration priority by running various dependency intelligence across all the metadata objects.

Build and Deploy a Secure Container Image with AWS and Snyk

Learn how to build a Java application in a Docker container and push the container image to Amazon ECR orchestrated by AWS CodePipeline. We’ll use Snyk to scan your code, build a container image, and display the results in both Snyk and Amazon ECR. We’ll also show you how Amazon Inspector utilizes Snyk open source to provide insight into your software security vulnerabilities. All of this functionality is available from the AWS Management Console.

Deloitte-APN-Blog-072622

Managing Cybersecurity Risks with the Next Generation of Managed Security Services  

Both AWS and Deloitte understand that a customer’s cloud journey is different and have their own set of requirements. This is why Deloitte’s Cyber CMS solution provides a wide range of options for businesses to choose from to create the right package for them. Learn how Cyber CMS can help organizations become more trustworthy, resilient, and secure through proactive management of cyber risks.

How Multi-Tenancy with AWS Transfer Family is a Cost-Effective Solution

AWS Transfer Family provides SFTP, FTPS, and/or FTP access to Amazon S3 or Amazon Amazon EFS. It does that by providing a secure, highly available, and scalable server endpoint. You pay for the time this endpoint is enabled, and for data transfer (upload and download). Learn how this makes a multi-tenant setup where an endpoint is shared between different users (or applications), a more cost-efficient solution than having dedicated endpoints.