Explore Products

Best Sellers

New Releases

Books

Videos

Audiobooks

Learning Hub

Conferences

Free Learning

You're reading from AWS SysOps Cookbook Practical recipes to build, automate, and manage your AWS-based cloud environments

Product type Paperback

Published in Sep 2019

Publisher

ISBN-13 9781838550189

Length 490 pages

Edition 2nd Edition

Tools

AWS

Concepts

System Administration

Authors (3):

Eric Z. Beard

Rowan Udell

Lucas Chan

View More author details

Table of Contents (15) Chapters

Preface

1. AWS Fundamentals FREE CHAPTER

2. Account Setup and Management

3. AWS Storage and Content Delivery

4. AWS Compute

5. Monitoring the Infrastructure

6. Managing AWS Databases

7. AWS Networking Essentials

8. AWS Account Security and Identity

9. Managing Costs

10. Advanced AWS CloudFormation

11. AWS Well-Architected Framework

12. Working with Business Applications

13. AWS Partner Solutions

14. Other Books You May Enjoy

Leave a review - let other readers know what you think

Administering users with IAM

Before we introduce this recipe, we need to talk briefly about IAM. It's free, and is enabled on every account. It allows you to create groups and users, and allows you to control exactly what they can and can't do, through the use of a policy statement.

By default, groups, users and roles will have no permissions until you assign them either an AWS Managed Policy or a Customer-Managed Policy (one which you manage). You may want to use AWS Managed Policies as a starting point in order to avoid having to create and maintain your own, but it's good practice to refine your requirements, and scope down access privileges with custom policies.

There's a third kind of policy, called an Inline Policy. Use this sparingly. In fact, the only time we typically see it is in CloudFormation templates.

You pretty much never want to assign a policy...

The rest of the chapter is locked

A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of

Start free trial

Renews at $19.99/month. Cancel anytime

Authors (3)

Eric Z. Beard

Eric Z. Beard, a former United States Marine, has nearly two decades of experience in technology, leading diverse DevOps and solutions architecture teams. Eric is currently a manager at Amazon Web Services in Seattle, Washington, and holds nine AWS certifications.

See other products by Eric Z. Beard

Udell

Rowan Udell has been working in development and operations for 15 years. His travels have seen him work in start-ups and enterprises in the finance, education, and web industries in both Australia and Canada. He currently works as a Technical Director at Versent, an AWS Premier Consulting Partner, working with teams building cloud-native products on AWS. He specializes in serverless applications and architectures on AWS, and contributes actively in the AWS and serverless communities.

See other products by Udell

Chan

Lucas Chan has been working in tech since 1995 in a variety of development, systems admin, and DevOps roles. He is currently a senior consultant and engineer at Versent and was a technical director at Stax. He's been running production workloads on AWS for over 10 years. He's also a member of the APAC AWS warriors program and holds all five of the available AWS certifications.

See other products by Chan