Search icon CANCEL
Subscription
0
Cart icon
Your Cart (0 item)
Close icon
You have no products in your basket yet
Arrow left icon
Explore Products
Best Sellers
New Releases
Books
Videos
Audiobooks
Learning Hub
Free Learning
Arrow right icon
Arrow up icon
GO TO TOP
AWS Certified Solutions Architect – Professional Exam Guide (SAP-C02)

You're reading from   AWS Certified Solutions Architect – Professional Exam Guide (SAP-C02) Gain the practical skills, knowledge, and confidence to ace the AWS (SAP-C02) exam on your first attempt

Arrow left icon
Product type Paperback
Published in Mar 2024
Publisher Packt
ISBN-13 9781801813136
Length 428 pages
Edition 1st Edition
Tools
Arrow right icon
Authors (2):
Arrow left icon
Yohan Wadia Yohan Wadia
Author Profile Icon Yohan Wadia
Yohan Wadia
Patrick Sard Patrick Sard
Author Profile Icon Patrick Sard
Patrick Sard
Arrow right icon
View More author details
Toc

Table of Contents (23) Chapters Close

Preface 1. Chapter 1: Determining an Authentication and Access Control Strategy for Complex Organizations 2. Chapter 2: Designing Networks for Complex Organizations FREE CHAPTER 3. Chapter 3: Designing a Multi-Account AWS Environment for Complex Organizations 4. Chapter 4: Ensuring Cost Optimization 5. Chapter 5: Determining Security Requirements and Controls 6. Chapter 6: Meeting Reliability Requirements 7. Chapter 7: Ensuring Business Continuity 8. Chapter 8: Meeting Performance Objectives 9. Chapter 9: Establishing a Deployment Strategy 10. Chapter 10: Designing for Cost Efficiency 11. Chapter 11: Improving Operational Excellence 12. Chapter 12: Improving Reliability 13. Chapter 13: Improving Performance 14. Chapter 14: Improving Security 15. Chapter 15: Improving Deployment 16. Chapter 16: Exploring Opportunities for Cost Optimization 17. Chapter 17: Selecting Existing Workloads and Processes to Migrate 18. Chapter 18: Selecting Migration Tools and Services 19. Chapter 19: Determining a New Architecture for Existing Workloads 20. Chapter 20: Determining Opportunities for Modernization and Enhancements 21. Chapter 21: Accessing the Online Practice Resources 22. Other Books You May Enjoy

Examining Access Control

In this section, you will investigate two different approaches organizations can take to control access, either based on a principal’s role or based on specific properties, also known as attributes, characterizing a principal.

Role-Based Access Control (RBAC)

This is the traditional access control approach where the permissions defining the actions that a principal (user or role) can perform are based on the function that the person has in their job. You typically define different policies for the roles you need in your organization and then assign these policies to IAM identities (users, user groups, or roles). Note that AWS already includes some managed policies for job functions.

Since granting the least privilege is a best practice, you should restrict the permissions that you grant to the various job functions to the strict minimum each of them needs to perform its job. Typically, you do that by explicitly listing the AWS resources each...

lock icon The rest of the chapter is locked
Register for a free Packt account to unlock a world of extra content!
A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.
Unlock this book and the full library FREE for 7 days
Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of
Renews at $19.99/month. Cancel anytime
Banner background image