From the course: AWS Certified SysOps Administrator - Associate (SOA-C02) Cert Prep
Join today to access over 24,600 courses taught by industry experts.
IAM Access Analyzer - Amazon Web Services (AWS) Tutorial
From the course: AWS Certified SysOps Administrator - Associate (SOA-C02) Cert Prep
IAM Access Analyzer
- [Instructor] In this tutorial, we'll talk about the AWS IAM Access Analyzer. In this video, we will try to understand the problems that the IAM Access Analyzer service tries to solve and how it fits in the enterprise scenario. In order for us to understand what IAM Access Analyzer does for us, let's talk about a common scenario in an organization. Organizations usually own multiple resources on AWS, and these resources are sometimes shared with external entities outside the organization. For example, you have an S3 bucket where you allow other AWS accounts to read from the bucket. Maybe a CSOps administrator edited an S3 bucket policy that allowed external AWS accounts to write on the bucket, which then becomes a security issue. Now if you work in a larger organization, this becomes a tedious process to manage. You'll have multiple resources having different permissions configured, and there are several resources to manage,…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.
Contents
-
-
AWS services overview5m 18s
-
(Locked)
AWS compute services10m 44s
-
(Locked)
AWS container services6m 4s
-
(Locked)
AWS storage services17m 32s
-
(Locked)
AWS database services11m 51s
-
(Locked)
AWS deployment services14m 25s
-
(Locked)
AWS monitoring services6m 6s
-
(Locked)
AWS audit and compliance services3m 22s
-
(Locked)
AWS networking and content delivery services13m 54s
-
(Locked)
AWS application integration services10m 9s
-
(Locked)
AWS security services12m 56s
-
(Locked)
AWS management and governance services9m 50s
-
(Locked)
AWS identity services4m 32s
-
(Locked)
AWS machine learning services16m 41s
-
(Locked)
AWS transfer and migration services9m 33s
-
(Locked)
AWS analytics services22m 32s
-
-
-
Amazon EC2 overview5m 11s
-
(Locked)
Instance purchasing options3m 40s
-
(Locked)
Spot instances5m 35s
-
(Locked)
On-demand EC2 instances3m
-
(Locked)
Reserved instances3m 50s
-
(Locked)
Dedicated hosts and instances3m 12s
-
(Locked)
Savings plans1m 57s
-
(Locked)
Capacity reservation1m 44s
-
(Locked)
Instance types8m 6s
-
(Locked)
Amazon Machine Image (AMI)7m 29s
-
(Locked)
Instance user data2m 31s
-
(Locked)
Instance metadata6m 13s
-
(Locked)
Amazon EC2 networking14m 20s
-
(Locked)
Amazon EC2 network security16m 12s
-
(Locked)
Hands-on lab - vertically scaling an amazon EC2 instance8m 13s
-
(Locked)
Hands-on lab - using EC2 instance connect to connect to your Instance5m 23s
-
(Locked)
Hands-on Lab - creating an amazon machine image (AMI) from an EBS-backed EC2 instance8m 36s
-
(Locked)
Hands-on lab - creating placement groups5m
-
(Locked)
Hands-on lab - launching an EC2 spot instance6m 19s
-
(Locked)
Hands-on lab - setting up a web server on an EC2 instance5m 52s
-
-
-
Amazon EBS overview11m 10s
-
(Locked)
Amazon EBS types5m 33s
-
(Locked)
Amazon S3 overview9m 22s
-
(Locked)
Amazon S3 storage classes12m 41s
-
(Locked)
Amazon S3 minimum storage duration4m 26s
-
(Locked)
Amazon S3 Event Notifications2m 53s
-
(Locked)
Amazon EFS overview3m 57s
-
(Locked)
Amazon FSx for Lustre4m 17s
-
(Locked)
Amazon FSx for Windows File Server5m 36s
-
(Locked)
Hands-on lab: Creating an EFS file systems storage7m 36s
-
(Locked)
Amazon Data Lifecycle Manager3m 55s
-
(Locked)
AWS Backup5m 28s
-
(Locked)
Hands-on lab: Exploring the Amazon S3 console7m 32s
-
(Locked)
Hands-on lab: Creating an Amazon S3 bucket7m 48s
-
(Locked)
Hands-on lab: Uploading and downloading objects in Amazon S35m 1s
-
-
-
Amazon RDS overview10m 58s
-
(Locked)
Amazon RDS Read Replica13m
-
(Locked)
Amazon RDS Multi-AZ deployments11m 5s
-
(Locked)
Amazon RDS events notification6m 17s
-
(Locked)
Amazon RDS Proxy3m 49s
-
(Locked)
Amazon Aurora overview7m 10s
-
(Locked)
Amazon DynamoDB overview14m 30s
-
(Locked)
Amazon DynamoDB core components7m 32s
-
-
-
(Locked)
CloudFormation overview4m 58s
-
(Locked)
Anatomy of a CloudFormation template9m 2s
-
(Locked)
CloudFormation helper scripts3m 59s
-
(Locked)
DependsOn and WaitCondition2m 43s
-
(Locked)
CloudFormation: StackSets6m 4s
-
(Locked)
CloudFormation: Nested stacks3m 52s
-
(Locked)
CloudFormation: Custom resource4m 56s
-
(Locked)
-
-
(Locked)
Serverless computing overview8m 38s
-
(Locked)
Serverless architectures11m 50s
-
(Locked)
AWS Lambda overview2m 50s
-
(Locked)
Amazon API Gateway overview5m 1s
-
(Locked)
AWS Audit Manager overview6m 51s
-
(Locked)
AWS Config overview4m 59s
-
(Locked)
Amazon Detective overview4m 30s
-
(Locked)
AWS Compute Optimizer overview5m 40s
-
(Locked)
Amazon Directory Service overview7m 23s
-
(Locked)
AWS Organizations overview7m 8s
-
(Locked)
AWS CloudTrail overview3m 13s
-
(Locked)
CloudTrail integrations3m 56s
-
(Locked)
Hands-on lab - Set up an AWS Organization7m 58s
-
(Locked)
-
-
(Locked)
High availability vs. fault tolerance3m 26s
-
(Locked)
RTO vs. RPO2m 29s
-
(Locked)
Security Group vs. Network ACL7m 56s
-
(Locked)
File vs. Volume vs. Tape Storage Gateway4m 5s
-
(Locked)
Storage Gateway vs. DataSync4m 55s
-
(Locked)
Amazon S3 vs. EFS vs. EBS15m 33s
-
(Locked)
SSM Parameter Store vs. AWS Secrets Manager3m 54s
-
(Locked)