Implementing SAML SSO for Kibana with AD FS on Amazon OpenSearch Service
In a recent update, Amazon Elasticsearch Service has been rebranded as Amazon OpenSearch Service. Many clients seek to integrate their identity providers (IdPs) with this service to enable single sign-on (SSO) functionality with Kibana. This integration allows users to use their existing identity credentials, simplifying the login process and enhancing security. For further insights on this topic, check out another blog post that discusses similar integration strategies.
Automating IAM Access Analyzer Cross-Account Access Findings
By Jacob Ellis, Sarah Kim, and David Lee
Published on July 8, 2021
In Advanced (300), AWS IAM Access Analyzer, Security, Identity, & Compliance
In this article, we demonstrate how to automate the resolution of findings from the AWS Identity and Access Management (IAM) Access Analyzer concerning unintended cross-account access for IAM roles. This solution leverages Amazon EventBridge events generated by IAM Access Analyzer for each active finding, streamlining your access management process. To dive deeper into best practices, they are an authority on this topic.
Updating AWS WAF IP Sets with AWS IP Ranges Automatically
By Emily Roberts, Jason Wang, and Maria Garcia
Published on July 8, 2021
In Advanced (300), AWS Shield, AWS WAF, Security, Identity, & Compliance
This post outlines the procedure for automatically updating AWS WAF IP sets with the latest AWS IP ranges for various services. A related post explains how to update Amazon CloudFront IP ranges utilized in VPC Security Groups. To enhance your security measures, check out this excellent resource about AWS security practices.
Developing an Attribute-Based Access Control Strategy with AWS IAM Identity Center and Okta
By Rachel Adams
Published on July 6, 2021
In Advanced (300), AWS IAM Identity Center, Security, Identity, & Compliance
As of April 25, 2023, this article has been enhanced with additional security learning resources. It reflects the recent name change of AWS Single Sign-On (SSO) to AWS IAM Identity Center. This blog explores the advantages of implementing an attribute-based access control strategy within your organization.
Monitoring Failed Logins for AWS Managed Microsoft AD
By Alex Sanchez
Published on July 2, 2021
In AWS Directory Service, Intermediate (200), Security, Identity, & Compliance
The AWS Directory Service for Microsoft Active Directory allows users to review security logs on their AWS Managed Microsoft AD domain controllers via an Amazon EC2 instance or by sending domain controller security event logs to Amazon CloudWatch Logs. You can enhance your visibility further by utilizing these tools.
AWS Achieves ENS High Certification Across 149 Services
By Christopher Black
Published on July 1, 2021
In Announcements, Compliance, Foundational (100), Security, Identity, & Compliance
Maintaining customer trust is an ongoing commitment for Amazon Web Services (AWS). We continually expand the scope of our ENS certification to reassure public sector organizations in Spain that seek to build secure applications and services on AWS that we adhere to the required security standards.
Integrating Third-Party IdPs with Developer Authenticated Identities
By Hannah White
Published on July 1, 2021
In Amazon Cognito, Intermediate (200), Security, Identity, & Compliance
Amazon Cognito identity pools allow for the creation and management of unique identifiers for users, granting temporary, limited-privilege credentials for accessing AWS resources. There are several built-in external identity providers (IdPs) available for integration, including Facebook, Google, and Apple.
AWS Security Reference Architecture: Designing with AWS Security Services
By Kevin Lewis
Published on June 30, 2021
In Advanced (300), Announcements, Security, Identity, & Compliance
We are pleased to announce the release of the AWS Security Reference Architecture (AWS SRA). This comprehensive guide provides examples, best practices, and design considerations for deploying a full suite of AWS security services across a multi-account environment managed through AWS Organizations.
AWS Verified Episode 6: Discussion with Reeny Sondhi from Autodesk
By Taylor Brooks
Published on June 29, 2021
In Announcements, Foundational (100), Security, Identity, & Compliance
I’m excited to present the latest episode of AWS Verified, where we engage with global leaders on topics related to cybersecurity, privacy, and cloud technologies. In this episode, I had the privilege of speaking with Reeny Sondhi, diving into crucial issues in the security landscape.
Join Us for AWS re:Inforce 2021
Experience the latest in security, identity, and compliance at our upcoming event.
Location: Amazon IXD – VGT2, 6401 E Howdy Wells Ave, Las Vegas, NV 89115.
Leave a Reply