Explore Products

Best Sellers

New Releases

Books

Videos

Audiobooks

Learning Hub

Conferences

Free Learning

You're reading from AWS SysOps Cookbook Practical recipes to build, automate, and manage your AWS-based cloud environments

Product type Paperback

Published in Sep 2019

Publisher

ISBN-13 9781838550189

Length 490 pages

Edition 2nd Edition

Tools

AWS

Concepts

System Administration

Authors (3):

Eric Z. Beard

Rowan Udell

Lucas Chan

View More author details

Table of Contents (15) Chapters

Preface

1. AWS Fundamentals FREE CHAPTER

2. Account Setup and Management

3. AWS Storage and Content Delivery

4. AWS Compute

5. Monitoring the Infrastructure

6. Managing AWS Databases

7. AWS Networking Essentials

8. AWS Account Security and Identity

9. Managing Costs

10. Advanced AWS CloudFormation

11. AWS Well-Architected Framework

12. Working with Business Applications

13. AWS Partner Solutions

14. Other Books You May Enjoy

Leave a review - let other readers know what you think

Adding a Service Control Policy (SCP)

Before we begin, we should talk about what SCPs are and how they apply to your organization.

An SCP consists of a policy document that defines (by way of filtering) the services and actions that can be used and performed within an OU or in an AWS account.

If you've previously configured an IAM policy, then you will have more than enough background knowledge to get started with SCPs. Apart from a couple of minor exceptions, they look exactly the same.

SCPs can be applied at different levels throughout an organization. The following are the levels, starting from the bottom and going up:

AWS account level: An SCP that's applied to an AWS account takes effect on only that account. It's important to note that the SCP is very separate from the IAM policies that live inside the account. For example, an SCP might allow full access...

The rest of the chapter is locked

A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of

Start free trial

Renews at $19.99/month. Cancel anytime

Authors (3)

Eric Z. Beard

Eric Z. Beard, a former United States Marine, has nearly two decades of experience in technology, leading diverse DevOps and solutions architecture teams. Eric is currently a manager at Amazon Web Services in Seattle, Washington, and holds nine AWS certifications.

See other products by Eric Z. Beard

Udell

Rowan Udell has been working in development and operations for 15 years. His travels have seen him work in start-ups and enterprises in the finance, education, and web industries in both Australia and Canada. He currently works as a Technical Director at Versent, an AWS Premier Consulting Partner, working with teams building cloud-native products on AWS. He specializes in serverless applications and architectures on AWS, and contributes actively in the AWS and serverless communities.

See other products by Udell

Chan

Lucas Chan has been working in tech since 1995 in a variety of development, systems admin, and DevOps roles. He is currently a senior consultant and engineer at Versent and was a technical director at Stax. He's been running production workloads on AWS for over 10 years. He's also a member of the APAC AWS warriors program and holds all five of the available AWS certifications.

See other products by Chan