AWS – Page 18 – Scriptorium

[AWS] Identity and Access Management (IAM)

Identity and Access Management (IAM) provides the centralized management of your AWS account. It manages who can access what in your AWS services. Access control is done via policies that can be attached to users, groups, and roles.

IAM is a global service that is not tied to a region.
- Users and policies can be used globally.
Users are given long-term credentials to access AWS resources (username/password or access keys).
Roles allow for short-term access to resources when assumed, using temporary access credentials.
IAM can work with Identity Federation such as Active Directory or Web Identity Federation (Facebook, Google, etc.)

[AWS] Storage Gateway

Storage Gateway is a hybrid storage service that allows you to migrate data into AWS, extending on-premise storage capacity using AWS.

[AWS] VPN and DX

Hybrid cloud architecture combines resources in the cloud with on-premise resources and use them just like all resources are in the same environment. There are a couple of ways to setup communication between AWS VPCs and on-premise networks.

[AWS] Global Accelerator

Global Accelerator is a networking service that improves performance and availability by directing traffic to optional endpoints.

[AWS] Transit Gateway

AWS Transit Gateway is used to simplify your AWS network architecture (topology) by allowing to have transitive peering between hundreds and thousands of VPCs and on-premise data centers.

[AWS] VPC Endpoints

A VPC Endpoint is a gateway object within a VPC and can be used to connect privately to AWS public services or other VPC endpoints without the need for Internet Gateway or a public subnet.

[AWS] VPC Peering

VPC Peering allows direct communication between VPCs (inter-region & cross-account) using OSI Layer 3 (Network). Once the VPCs are connected, 2 VPCs can communicate using private IP addresses.

[AWS] Auto Scaling

Here is the confusing part. AWS provides multiple auto scaling services: notably ASW Auto Scaling and EC2 Auto Scaling.

AWS Auto Scaling lets you configure and manage scaling for your scalable AWS resources through a scaling plan.
EC2 Auto Scaling is an AWS service that automatically increases or decreases the number of on-demand instances based on chosen CloudWatch metrics.