Packt+ | Advance your knowledge in tech

0

All Products

Best Sellers

New Releases

Books

Videos

Audiobooks

Free Learning

Effective DevOps with AWS

You're reading from Effective DevOps with AWS Ship faster, scale better, and deliver incredible productivity

Product type Paperback

Published in Jul 2017

Publisher Packt

ISBN-13 9781786466815

Length 402 pages

Edition 1st Edition

Languages

Python

Tools

Ansible

Concepts

DevOps

Author (1):

Felsen

View More author details

Table of Contents (16) Chapters

Title Page

Credits

About the Author

About the Reviewer

www.PacktPub.com

Customer Feedback

Preface

1. The Cloud and the DevOps Revolution

2. Deploying Your First Web Application FREE CHAPTER

3. Treating Your Infrastructure As Code

4. Adding Continuous Integration and Continuous Deployment

5. Scaling Your Infrastructure

6. Running Containers in AWS

7. Monitoring and Alerting

8. Hardening the Security of Your AWS Environment

Index

Improving the security of the IAM layer

The IAM service is at the heart of the security management of AWS. By defining users, groups, and security policies, the IAM service lets you configure your different resources such that only the right individuals and services can access the right resources.

We will first look at user management.

Managing users in AWS

In Chapter 2, Deploying Your First Web Application, we created our first IAM user. We generated its access key and gave the user full access to the AWS account by assigning the Administrator access policy to that user.

This worked great as we managed to get through most of the book using that user but from a security standpoint, there are a number of concerns that this action caused:

There is no policy around enforcing the use of a strong password.
We didn't put our user in a group. On a small scale, that's fine but if you ever expect to have to manage a bigger pool of AWS users, having your users be a part of a group and granting the permissions...

The rest of the chapter is locked

Register for a free Packt account to unlock a world of extra content!

A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of

Start free trial

Renews at $15.99/month. Cancel anytime

Authors (1)

Felsen

Felsen

Nathaniel Felsen is a DevOps engineer who started working on DevOps engineering concepts over 10 years ago, before the term was even coined. He worked in several companies ranging from small start-ups to enterprises, including Qualys, Square, and more recently, Medium. Outside of work, Nathaniel lives a fabulous life where he enjoys running after his very active kids and spending a fortune on occasional date nights with his wife. Although Nathaniel is French, he prefers exploring local stout beers with friends than drinking wine. He holds a MS degree in system, network, and security from Ecole Pour l'Informatique et les Techniques Avances (EPITA), a top CS engineering school in France.

See other products by Felsen

Other recommended products

Related to this chapter

Effective DevOps with AWS

Effective DevOps with AWS

AWS provides a huge range of managed services. While each is well documented, figuring out how to use them together to build a business infrastructure is less clear. In this book, you'll see how the most successful tech start-ups launch and scale their services on AWS and how you can too.

Sep 2018 12h 48m

Learn CloudFormation

Learn CloudFormation

AWS CloudFormation is the best way to write, deploy and maintain your AWS infrastructure. It helps you create efficient solution architectures, all in one file. It supports most of the AWS Services, and is the safest way to make your AWS infrastructure evolve over time. With this book you will be able to use AWS CloudFormation effectively.

Jul 2018 7h 20m

Amazon Fargate Quick Start Guide

Amazon Fargate Quick Start Guide

AWS Fargate allows you to run containers without having to manage servers or clusters. It lets you focus on designing and building your applications without managing the infrastructure. The book will explain what Fargate is and the benefits of using Fargate launch type. It will teach you about using Fargate with a load balancer, an ECS CLI, and CloudWatch logs.

Jul 2018 6h 20m

Docker on Amazon Web Services

Docker on Amazon Web Services

Docker is the modern standard for building, testing, distributing and deploying cloud native applications, whilst AWS is the world's leading public cloud provider. Together these technologies provide you with a powerful platform to deliver your container applications into production, and this book will provide with the intelligent, effective, best practice techniques and strategies to deploy container applications to the cloud using AWS and Docker

Aug 2018 27h 24m

Mastering AWS CloudFormation

Mastering AWS CloudFormation

AWS CloudFormation provisions your resources in a safe and repeatable manner, allowing you to build your infrastructure and applications without performing manual actions or writing custom scripts. This comprehensive guide will help readers to implement Infrastructure as a Code using AWS CloudFormation.

May 2020 10h 0m

Designing AWS Environments

Designing AWS Environments

AWS is one of the most popular public clouds available in the market today. Small to medium-sized businesses, as well as large business organizations, utilize AWS to set up highly scalable and agile infrastructure to meet faster time to market. This book provides hands-on details with respect to the fundamentals of designing an AWS environment with security and governance.

Sep 2018 5h 48m

AWS Automation Cookbook

AWS Automation Cookbook

AWS CodeDeploy, AWS CodeBuild, and CodePipeline are scalable services offered by AWS that automate an application's build and deployment pipeline. In order to deliver tremendous speed and agility, every organization is moving toward automating an entire application pipeline. This book will cover all the AWS services required to automate your deployment to your instances.

Nov 2017 12h 56m

AWS for System Administrators

AWS for System Administrators

AWS for System Administrators covers a variety of tools, techniques, tips, and tricks for building highly available and fault-tolerant infrastructure. You'll get to grips with AWS fundamentals and concepts with the help of step-by-step explanations and practical code examples.

Feb 2021 12h 56m

AWS Security Cookbook

AWS Security Cookbook

AWS Security Cookbook lists all the practical solutions to the common problems faced by individuals or organizations in securing their instances. Here readers will learn to troubleshoot security concerns and understand additional patterns and services for securing AWS infrastructure.

Feb 2020 14h 40m

Amazon Web Services Bootcamp

Amazon Web Services Bootcamp

AWS Bootcamp is designed to teach you how to build and manage AWS resources using different ways. This highly practical guide leverages the reliability, versatility, and flexible design of the AWS Cloud. It enables you to perform tasks such as hosting multi-tier websites, running large-scale applications, data storage and archival, and a lot more with ease.

Mar 2018 11h 16m

Practical AWS Networking

Practical AWS Networking

Amazon Web Services has dominated the public cloud market by a huge margin and continues to be the first choice for many organizations. Networking has been an area of focus for all the leading cloud service providers. AWS has a suite of network-related products which help in performing network related task on AWS.

Jan 2018 8h 36m

AWS Administration Cookbook

AWS Administration Cookbook

Organisations today are harnessing the power of AWS cloud products and solutions to scale and grow. Amazon web services provide a cloud computing infrastructure with storage, bandwidth, security and more over the internet. This book will begin with AWS fundamentals and will go further to help you build and administer your own cloud environment.

Apr 2017 13h 8m

Personalised recommendations for you

Based on your interests and search pattern

Mastering Palo Alto Networks

Mastering Palo Alto Networks

Mastering Palo Alto Networks is a hands-on guide that helps you progress from a beginner to an expert in configuring Palo Alto firewalls. It covers setup, management, and optimization with real-world examples for both on-prem and cloud environments.

May 2025 21h 32m

Cloud Native Anti-Patterns

Cloud Native Anti-Patterns

Uncover and fix cloud native anti-patterns across strategy, culture, security, and operations. This book guides you through the practical steps to avoid common traps and shift your organization toward cloud-native best practices that drive lasting success.

Mar 2025 14h 44m

AWS for System Administrators

AWS for System Administrators

Master the art of designing, deploying, and managing AWS infrastructure with industry best practices. You'll learn to automate workflows, optimize costs, and implement robust disaster recovery strategies for scalable cloud success.

May 2025 14h 12m

Kubernetes for Generative AI Solutions

Kubernetes for Generative AI Solutions

Learn step by step how to design, optimize, and deploy Generative AI projects on Kubernetes. Covering networking, observability, security, scaling, and cost optimization strategies, this guide takes you from first deployment to production excellence.

Jun 2025 11h 8m

Azure Cloud Projects

Azure Cloud Projects

Azure Cloud Projects offers a hands-on introduction to Microsoft Azure, designed to help you build real-world cloud solutions, develop job-ready skills, and apply best practices that are widely used across the cloud computing industry.

May 2025 8h 28m

Sustainable Cloud Development

Sustainable Cloud Development

This book introduces best practices for developing and deploying high-performing, eco-friendly cloud applications, helping you meet sustainability goals while delivering efficient cloud solutions.

Mar 2025 9h 12m

SLIs and SLOs Demystified

SLIs and SLOs Demystified

This comprehensive guide to reliability engineering dives deep into SLIs, SLOs, observability, and incident management. It shows you how to optimize system reliability and make data-driven decisions to balance performance and business goals.

Apr 2025 10h 0m