AWS Cheat Sheets

Home » AWS Cheat Sheets » Page 21

Amazon Cognito User Pools vs Identity Pools

2024-08-29T01:45:49+00:00

Bookmarks Amazon Cognito User Pools Amazon Cognito Identity Pools With the proliferation of smartphones in our connected world, more and more developers are quickly deploying their applications on the cloud. One of the first challenges in developing applications is allowing users to log in and authenticate on your applications. There are multiple stages involved in user verification and most of these are not visible from the end-user. AWS provides an easy solution for this situation. User Identity verification is at the core of Amazon Cognito. It provides solutions for three key areas of user identification:  [...]

Amazon Cognito User Pools vs Identity Pools2024-08-29T01:45:49+00:00

AWS Transit Gateway

2025-12-26T16:30:19+00:00

Features Validate Your Knowledge AWS Transit Gateway Cheat Sheet A networking service that uses a hub and spoke model to enable customers to connect their on-premises data centers and their Amazon Virtual Private Clouds (VPCs) to a single gateway. With this service, customers only have to create and manage a single connection from the central gateway into each on-premises data center, remote office, or VPC across your network. If a new VPC is created, you simply attach it to the Transit Gateway, making it available to every other connected network (subject to route table rules). Features [...]

AWS Transit Gateway2025-12-26T16:30:19+00:00

Resolve Route 53 Private Hosted Zones from an On-premises Network

2023-06-05T03:00:59+00:00

Route 53 Private Hosted Zones Amazon Route 53 DNS service supports Public Hosted Zones and Private Hosted Zones. Private Hosted Zones are useful when you want to use your private domain and have Route 53 respond to queries on that domain from resources within your VPC.  For example, if you host a database on an EC2 instance on a private subnet, you can create a Route 53 record set (ex: privatedb.tutorialsdojo.com) for that database instance on your Private Hosted Zone to allow other EC2 instances to resolve the domain name.   But what if you have a VPN connection (or AWS [...]

Resolve Route 53 Private Hosted Zones from an On-premises Network2023-06-05T03:00:59+00:00

Locking your Glacier Vault using the Amazon S3 Glacier API

2025-02-25T12:22:16+00:00

What is Amazon S3 Glacier Vault Lock A Glacier Vault can be described as a container for your archived objects in S3 Glacier. To begin using Amazon S3 Glacier, you need a vault. Creating and deleting vaults can be easily done in the AWS Management Console, but interacting with them requires you to use the APIs. For example, let’s say you want to upload images or log files to your vault. To do so, you would either use the AWS CLI or write code that would upload these objects. Large corporations often have compliance requirements with how they store their [...]

Locking your Glacier Vault using the Amazon S3 Glacier API2025-02-25T12:22:16+00:00

Amazon S3 Bucket Policies for VPC Endpoints

2023-06-05T03:11:03+00:00

Amazon S3 and Amazon VPC Relationship Amazon S3 is a versatile object storage solution that boasts virtually unlimited storage capacity. You can expect that your files will be durably stored in S3 given that AWS provides an SLA for this service. When creating your S3 bucket, AWS provides you with a unique bucket URL that you can use to access your S3 bucket directly from the public internet, if you have public access enabled.  Amazon S3 is a service that is not used within a VPC. This means that traffic does not pass through VPC resources such as internet gateways [...]

Amazon S3 Bucket Policies for VPC Endpoints2023-06-05T03:11:03+00:00

AWS Fargate

2025-11-21T15:12:12+00:00

Bookmarks How It Works Use Case Network Compliance Pricing AWS Fargate Cheat Sheet A serverless compute engine for containers that works with both Amazon Elastic Container Service (ECS) and Amazon Elastic Kubernetes Service (EKS). It removes the need to provision, configure, and scale clusters of virtual machines to run containers. You define your application's requirements (CPU, memory), and Fargate manages the underlying infrastructure.   How It Works Use Case Launching containers without having to provision or manage EC2 instances. If you want a managed service for container cluster management. Configurations Amazon ECS [...]

AWS Fargate2025-11-21T15:12:12+00:00

Amazon Detective

2025-12-26T18:24:39+00:00

Bookmarks Concepts Limits Common Use Cases Amazon Detective Cheat Sheet The service automatically collects log data from your AWS resources and uses machine learning, statistical analysis, and graph theory to build a linked set of data that enables you to easily conduct faster and more efficient security investigations. It can be integrated with AWS security services like Amazon GuardDuty, Amazon Macie, and AWS Security Hub, as well as partner security products to identify potential security issues or findings. Overview & Data Sources Automatic Data Ingestion: Detective analyzes trillions of events from multiple data sources: [...]

Amazon Detective2025-12-26T18:24:39+00:00

AWS KMS Key Policy Management in AWS KMS

2024-07-11T12:32:27+00:00

What is an AWS KMS key? In security, a KMS key is what you use to encrypt all other encryption keys in your system. KMS key is a logical representation of a cryptographic key. They are the primary resources in AWS KMS. The AWS KMS Key contains the key material used to encrypt and decrypt data. It also contains metadata such as the key ID, creation date, description, and key state. You can start using AWS KMS through the web console or via API. There are two types of AWS KMS keys that you can create in AWS KMS: symmetric [...]

AWS KMS Key Policy Management in AWS KMS2024-07-11T12:32:27+00:00

Working with AWS KMS key using the AWS KMS API

2024-07-11T09:28:47+00:00

What is AWS Key Management Service? AWS Key Management Service (or KMS for short) is the service you use to securely store your encryption keys in AWS. If you need data encryption on your AWS resources, such as EBS volumes or RDS databases, you can use AWS KMS to simplify the process for you. You start using the service by requesting the creation of a KMS key. By default, AWS KMS creates the key material for your KMS key. You also have the option of importing your own keys to AWS if you wish to. Note that during key rotation, [...]

Working with AWS KMS key using the AWS KMS API2024-07-11T09:28:47+00:00

AWS Resource Access Manager

2025-12-28T15:41:56+00:00

AWS Resource Access Manager Cheat Sheet AWS Resource Access Manager (AWS RAM) is a service that allows you to securely share AWS resources across accounts, organizational units (OUs), or your entire AWS Organization. It eliminates the need to duplicate resources in multiple accounts, simplifying management and maintaining security and consistency. Only the master account can enable sharing with AWS Organizations. The organization must be enabled for all features. RAM eliminates the need to create duplicate resources in multiple accounts. You can create resources centrally in a multi-account environment, and use RAM to share those resources across accounts in three simple [...]

AWS Resource Access Manager2025-12-28T15:41:56+00:00

AWS, Azure, and GCP Certifications are consistently among the top-paying IT certifications in the world, considering that most companies have now shifted to the cloud. Upskill and earn over $150,000 per year with an AWS, Azure, or GCP certification!

Follow us on LinkedIn, Facebook, or join our Slack study group. More importantly, answer as many practice exams as you can to help increase your chances of passing your certification exams on your first try!