In this post, we’ll se how we can create an Automated Patching Workflow to patch our EC2 instances on a regular basis. We’ll be using SSM, Lambda and Step Functions to orchestrate the entire workflow and SNS for sending patching status notifications.

Note: We’ll be creating the setup in us-east-1…


In this post, we’ll see how we can leverage Trend Micro Cloud One to secure our outbound traffic in AWS environment.

Step 1: Go to
https://aws.amazon.com/marketplace/pp/B01LXMNGHB?ref_=beagle&applicationId=AWS-Marketplace-Console and subscribe to Trend Micro Cloud One SaaS and then create an account.

Step 2: Launch an instance with Amazon Linux2 AMI in a…


In this post, we’ll deploy a simple ECS application with Blue/Green deployment, using Terraform. We’ll refer to the setup created in Gerd Koenig and Stephane Maarek’s awesome Udemy course, Amazon ECS & Fargate Master Class — Docker on AWS and will create the entire infrastructure using Terraform.

Note: Some working…


In this post, we’ll see how we can create EFS File System and Mount Targets using Terraform.

Note: We’ll run our setup in the us-east-1 region. Terraform and AWS credentials must be configured before proceeding with the execution.

Step 1: Create the following terraform files:

efs.tf

resource "aws_efs_file_system" "efs" {…


In this post, we’ll see how we can use VPC Reachability Analyzer to debug networking issues in AWS environment.

Step1: Create 2 VPCs and connect them using VPC peering. Next, launch 1 instance in both the VPCs. …


In this post, we’ll set up Vault on AWS EKS with TLS and Persistent Storage.

Step 1: Launch a CloudShell terminal in us-east-1 region. We’ll use it as our workstation and execute all commands here. Create an IAM user with Administrator permission and set keys using aws configure command.

Step…


In this post, we’ll see how we can use LDAP credentials to connect to CentOS instances.

Step 1: Launch an instance using Ubuntu 18.04 AMI and follow https://www.digitalocean.com/community/tutorials/how-to-install-and-configure-openldap-and-phpldapadmin-on-ubuntu-16-04 to set up an OpenLDAP server along with phpLdapAdmin.

Step 2: When you try to access http://<your_public_ip>/phpldapadmin, you’ll see some PHP related…


In this post, we’ll see how we can use AWS Managed Microsoft AD to connect to Linux instances.

Step 1: Go to Directory Services and create a AWS Managed Microsoft AD.
You can specify the Directory DNS name as directory.example.com and set the admin password. …


Recently we had a scenario where we need to allow developers access to the parameter store so that they can check and update the parameters. Since developers may not be that comfortable working with AWS CLI, we decided to generate temporary IAM users with console access. …


In https://faun.pub/using-iam-authorizer-with-api-gateway-4f3ae2292491 we saw how we can use IAM authorizer with API gateway to allow users to invoke a Lambda function to start/stop an EC2 instance. In this post, we’ll see how we can implement the same solution with Cognito, ALB and Lambda.

Step 1: Launch an EC2 instance and…

Vinayak Pandey

Experienced Cloud Consultant with a knack of automation. Linkedin profile: https://www.linkedin.com/in/vinayakpandeyit/

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store