AWS Management Tools

Home » AWS Cheat Sheets » AWS Management Tools

Managing Amazon GuardDuty Security Findings Across Multiple Accounts

2023-05-02T05:23:52+00:00

In our previous article, we discussed how GuardDuty can help organizations monitor their workloads and  AWS accounts from malicious activities and how to monitor findings with Amazon CloudWatch Events. Imagine that your organization has multiple AWS accounts for different workloads, teams, and projects. With every account, you need to monitor GuardDuty findings individually. It will be quite difficult for your security team to monitor these findings with their constant switching between AWS accounts.  Amazon GuardDuty supports the consolidation of these findings to one AWS account. For example, your organization has 10 AWS accounts. All you have to do is to [...]

Managing Amazon GuardDuty Security Findings Across Multiple Accounts2023-05-02T05:23:52+00:00

Monitoring GuardDuty Findings with Amazon CloudWatch Events

2023-05-27T08:47:29+00:00

Large scale cyber attacks are now becoming normal in this age of interconnectivity. As we rely more and more on cloud technologies, companies are looking to tap into digital innovations to improve their businesses. Cyber attacks are costing companies millions of dollars of downtime not to mention the possibility of lawsuits whenever an attack occurs. It is imperative that security teams have the means to prevent, detect, and take actions to ensure that the security of their workloads in AWS are airtight. Amazon GuardDuty was released during the 2017 re:Invent conference. Amazon GuardDuty is an agentless threat detection service that [...]

Monitoring GuardDuty Findings with Amazon CloudWatch Events2023-05-27T08:47:29+00:00

AWS CloudFormation Deletion Policy

2023-06-03T04:57:38+00:00

Deleting a stack on CloudFormation also removes all the provisioned resources in it. In some cases, you want some resources to be retained even after deleting its stack. The good thing is that you can do this by defining its DeletionPolicy.  This is pretty straightforward - you just need to define DeletionPolicy with Retain value and for the resources that support snapshot, (like RDS databases) you can set Snapshot as its value. With DeletionPolicy: Snapshot, a snapshot is created before a resource is deleted. This allows you to have a backup of the resource that's been deleted from the stack.  [...]

AWS CloudFormation Deletion Policy2023-06-03T04:57:38+00:00

AWS CloudFormation StackSets and Nested Stacks

2023-06-03T04:59:37+00:00

AWS CloudFormation lets you model and provision resources for your environment using programming language, leveraging the concept of Infrastructure as Code (IaC). You don’t need to manually create all of your resources one by one, CloudFormation will do this for you. All resources are defined on the AWS CloudFormation template. This means that this AWS environment can be reliably and easily reproduced since everything is declared on a template. For example, creating a new Test environment similar to your current setup, or when creating a Disaster Recovery environment in another region.  With AWS CloudFormation, you can either upload your own [...]

AWS CloudFormation StackSets and Nested Stacks2023-06-03T04:59:37+00:00

AWS Service Catalog

2023-06-23T07:54:09+00:00

Bookmarks Features Concepts Security Pricing AWS Service Catalog Cheat Sheet Allows you to create, manage, and distribute catalogs of approved products to end-users, who can then access the products they need in a personalized portal.  Administrators can control which users have access to each product to enforce compliance with organizational business policies. Administrators can also set up adopted roles so that end users only require IAM access to AWS Service Catalog in order to deploy approved resources. This is a regional service. Features Standardization of assets Self-service discovery and launch Fine-grain access control [...]

AWS Service Catalog2023-06-23T07:54:09+00:00

AWS Trusted Advisor

2023-06-22T15:08:37+00:00

AWS Trusted Advisor Cheat Sheet Trusted Advisor analyzes your AWS environment and provides best practice recommendations in five categories: Cost Optimization Performance Security Fault Tolerance Service Limits Access to the full set of Trusted Advisor checks is available to Business, Enterprise On-Ramp, and Enterprise Support plans.   Concepts The AWS Support API gives you access to some of the AWS Support Center's features and provides two different groups of operations: Support case management - operations to manage your AWS support cases throughout their entire life cycle, from creation to resolution. Trusted Advisor - operations to access AWS Trusted Advisor checks. [...]

AWS Trusted Advisor2023-06-22T15:08:37+00:00

AWS Systems Manager

2024-01-18T07:50:28+00:00

Bookmarks Features Capabilities Monitoring Security Pricing Validate Your Knowledge AWS Systems Manager Cheat Sheet Allows you to centralize operational data from multiple AWS services and automate tasks across your AWS resources. Features Create logical groups of resources such as applications, different layers of an application stack, or production versus development environments. You can select a resource group and view its recent API activity, resource configuration changes, related notifications, operational alerts, software inventory, and patch compliance status. Collects information about your instances and the software installed on them. Allows you to safely [...]

AWS Systems Manager2024-01-18T07:50:28+00:00

AWS OpsWorks

2024-02-16T08:47:59+00:00

Bookmarks OpsWorks for Puppet Enterprise OpsWorks for Chef Automate OpsWorks Stacks AWS OpsWorks-related Cheat Sheets Validate Your Knowledge AWS OpsWorks Cheat Sheet A configuration management service that helps you configure and operate applications in a cloud enterprise by using Puppet or Chef. AWS OpsWorks Stacks and AWS OpsWorks for Chef Automate (1 and 2) let you use Chef cookbooks and solutions for configuration management, while OpsWorks for Puppet Enterprise lets you configure a Puppet Enterprise master server in AWS. With AWS OpsWorks, you can automate how nodes are configured, deployed, and managed, [...]

AWS OpsWorks2024-02-16T08:47:59+00:00

AWS Management Console

2023-02-20T04:00:16+00:00

AWS Management Console Cheat Sheet Resource Groups A collection of AWS resources that are all in the same AWS region, and that match criteria provided in a query. Resource groups make it easier to manage and automate tasks on large numbers of resources at one time. Two types of queries on which you can build a group: Tag-based AWS CloudFormation stack-based Tag Editor Tags are words or phrases that act as metadata for identifying and organizing your AWS resources. The tag limit varies with the resource, but most can have up to 50 tags. You can sort and filter the [...]

AWS Management Console2023-02-20T04:00:16+00:00

AWS Health

2023-06-22T14:40:53+00:00

AWS Health Cheat Sheet Provides ongoing visibility into the state of your AWS resources, services, and accounts. The service delivers alerts and notifications triggered by changes in the health of AWS resources. The AWS Health Dashboard, powered by the AWS Health API, is available to all customers. The dashboard requires no setup, and it is ready to use for authenticated AWS users. The AWS Health Dashboard organizes issues in three groups: Open and recent issues - restricted to issues whose start time is within the last seven days. Scheduled changes - contains items that are ongoing or upcoming. Other notifications [...]

AWS Health2023-06-22T14:40:53+00:00

AWS, Azure, and GCP Certifications are consistently among the top-paying IT certifications in the world, considering that most companies have now shifted to the cloud. Earn over $150,000 per year with an AWS, Azure, or GCP certification!

Follow us on LinkedIn, Facebook, or join our Slack study group. More importantly, answer as many practice exams as you can to help increase your chances of passing your certification exams on your first try!