Amazon OpenSearch Service is an AWS-managed service that lets you run and scale OpenSearch clusters without having to worry about managing, monitoring, and maintaining your infrastructure, or having to build in-depth expertise in operating OpenSearch clusters. SAML based federation for OpenSearch & Dashboards will make use of any existing identity…
7 posts by author
Madan Kumar
Passionate on Automation & Security in AWS.
Access AWS Services outside AWS world using IAM Roles Anywhere
IAM access gets more complicated when we want to allow access to a client/application which needs access outside of the AWS cloud. Disadvantage in using IAM KeysAWS keys will be a long lived credentialsFrequent rotation of IAM keysAWS IAM Roles Any where is a newly released AWS service that…
Database access via AWS SSO
Every Team/Products owns a RDS(Mysql/Postgres) instance. Infra Team will use superuser account to create new application users with permissions to the databases as required. These new user accounts are not bound to any individual, so it is shared within the team and all team members use the…
Simplifying tunnel to private network
How our current ssh config looks like below and it will have multiple line of local forward to tunnel the traffic. Host pg User admin HostName 18.139.62.211 Port 22 ForwardAgent yes LocalForward localhost:6767 xxx-db.ap-southeast-1.production.org:5432 LocalForward localhost:9898 yyyy-db.ap-southeast-1.production.org:443…
AWS SSO CLI
Topic Client machine Pre-Requisite Configure AWS CLIPrerequisite in the client machine (MacBook):Install/Update AWS CLI version 2Install session-manager-pluginInstall ec2 instance connect cliInstall AWS CLI v2 curl "https://awscli.amazonaws.com/AWSCLIV2.pkg" -o "AWSCLIV2.pkg" sudo installer -pkg AWSCLIV2.pkg -target /Successful installation should output like below Install session-manager-plugin…