AWS Saving plan give you cost saving with AWS billing, but we need to be clear on key concepts how saving plan work and how it will impact on your bill. And similarly, when you are getting/purchasing saving plan, then what you need to keep in mind and how you should plan your saving plan purchase.
With any software's/application's most important part is how we are managing data and specially for production environment, how my database is highly available, resilience and scalable. So that you are not losing any data, your database is well optimized to handle expected traffic/load and able to recover point in time data recovery. AWS RDS help you to achieve all of this.
When you are suing AWS organization to manage multiple AWS account together, then it always important how you are managing AWS console login to for each account.
When you are working on SaaS platform and managing central log management(Kibana/Open-Search dashboard), then it is very important for you, how you are managing data access across different clients and maintaining data separation for each client as multi tenancy concept.
We all know, security is always our top priority for any software. In general, when we host our application for production environment, we mostly have some services/applications which we would like to allow only access from whitelisted/trusted source. So this article will explain, if our services/applications hosted on AWS, then how we can manage IP whitelisting.
AWS Glue is ETL service, which help you to load, transfer and load data from source DB to target data store. This is very much useful when you have Datawarehouse and you need to load data from your application source databaes to Datawarehouse DB or you have multiple files or different data stores which you want to read, transform and load into Datawarehouse or other target data store. To achieve this, you need ETL tool and AWS Glue service provide same feature as ETL job to sync data from source
When you have private resource like open search Kibana dashboard url, or you have aws RDS instance which is private or even ec2 instance with private subnet and private ip only or even you want to allow RDS of your machine from PVN machine IP only. All such resources if you want to access from your local machine, you need VPN, so that it will make trusted private network connection between your local system to cloud infrastructure and then you will be able to use those resources from your system
As we all know, protecting our system from any virus malware is always important and story begin from having virus infected file into your system which cause danger in our system and because of that we use/install antivirus into our system and keep scanning files to make sure we do not have virus infected files available.
Recently AWS launched AWS Encryption SDK for .NET to encrypt and decrypt data. Similarly, AWS launched IP based request routing through Route 53, which will be used when we want to route traffic based on the location of users, and have the IP addresses that the traffic originates from.
AWS API Gateway provide multiple security mechanisms to secure API gateway exposed URL's
Apache Kafka is a distributed event streaming platform and capable of handling big no. of data from multiple sources. We it worked very much near real time and ideal for using data processing real time and use the processed data for auditing, tracking or any immediate push notification
S3 batch replication feature, help you to replicate your existing S3 objects and keep always synchronize your buckets with new objects across all the buckets you configured for replication between or different regions or different AWS accounts
Distributed load testing is part of AWS solution, so this is not service you will find with AWS console. To implement this, you have to find this service from AWS solution page and then from there, it provide option to use their cloud formation template to get related services created to your account and after wards, it provide one URL(UI) option where you would be able to setup test and run
AWS Batch is used for run your job either on on-demand or set this automated to run on certain time frequency or on some event. Most common use case is, like you need to process some data, like import export. Generally we have the scenario where we need to read file from S3 and then process those record and insert back to database.
NoSQL Workbench for AWS DynamoDB provide visual editor tool to create, view DB model/table. Insert record, run queries. Generally to achieve this we need AWS console access and then we can do all these things from there but think for developer who do not have access to AWS console, in that case either they can use AWS SDK to run API's and play with DynamoDB but that is not providing you UI. So in that we developer can prefer NoSQL Workbench which they can download and install on his machine and
AWS Cognito user pool, instead of using sign up process, if we want to use third party provider for sign in then you should configure this using Identify provider option and in this case we trying to use Facebook integration provide with AWS Coginito, so that end user can use their existing Facebook login to login into your website.
Cognito User Pool where we create end user sign up and sign in setup configuration like what should be used as user name like email, phone. What should be the password policy. How we want to trigger email and sms text for password reset. If we want to enable 2FA etc. We configure cognito built in host UI for sign up and sign in which then you can use on your app to get user sign up and login. You also configure callback url, and once user is successfully logged in then it redirect to callback ur
AWS SNS now support sending SMS to your phone by subscribing your mobile number.
You have some resources or services with production account and you want to use that resources/service from development account. So in this example I want to access available S3 buckets from production account to my developer account login.
AWS Organization - Manage multiple AWS accounts together for billing, policy/permission control
AWS AppSync simplifies application development by letting you create a flexible API to securely access, manipulate, and combine data from one or more data sources. AppSync is a managed service that uses GraphQL to make it easy for applications to get exactly the data they need.
AWS CloudShell which is available online and you do not need to install anything or configure anything new to run this. You can simply start using it just by login into AWS console.
Cloning AWS lambda function to other region or same region. So this is the case when you already have lambda function and you want to clone (create duplicate copy) of your lambda function either in same region or different region.
YubiKey for multi-factor authentication to enhance AWS programmatic access
AWS S3 new updates: S3 object ownership and S3 access point
Top/common Azure cloud services and tools which probably all cloud engineer use for hosting and code development.
Microservices Event Driven Architecture, where using AWS SNS and SQS created ESB(message bus) publisher and subscriber to publish and listen the even and get microservice executed and rollback if fail.
Launch ec2 instance, download putty convert .pem file(which is your private key file provided by ec2 at last stage of ec2 launch to connect with instance) to .ppk file(Putty support to connect with instance) via Putty generator and with Putty connect to your Linux instance by using generated .ppk file and then install mongo db and work with mongo db.
AWS Managed AD enable you to manage your workload and purely managed by AWS. You can setup your AD by using AWS directory services and then centrally manage your workload and account like login to all our ec2 instance with AD account etc.
