Category: Security, Identity, & Compliance

In this blog post, I will demonstrate how to use the OpenID Connect (OIDC) options in AWS Toolkit for Azure DevOps version 1.15.0+ to federate into AWS accounts and obtain temporary credentials without managing static AWS Identity and Access Management (IAM) credentials. Introduction Azure DevOps Pipelines enable continuous build, test, and deployment across platforms and […]

In this blog post, we will show you how to build and deploy a custom solution to automate the process of provisioning users and groups from Microsoft Active Directory (AD) to AWS IAM Identity Center using the System for Cross-domain Identity Management (SCIM) protocol. Introduction Many organizations manage their user identities using AD and rely […]

In this blog post, I will show you how you can strengthen security when using two-way trusts between your self-managed Microsoft Active Directory and your AWS Managed Microsoft AD for accessing AWS applications. Introduction Customers often want their self-managed Active Directory users to have a seamless authentication and authorization experience when using Amazon Web Services […]

Introduction In this blog post, I am going to show you how easy it is to deploy a secure infrastructure to manage your Amazon Elastic Compute Cloud (Amazon EC2) instances for Microsoft Windows Server through the automation provided by AWS Launch Wizard. AWS Launch Wizard offers a guided way of sizing, configuring, and deploying AWS […]

In this blog post we will explore several scenarios where combining AWS Managed Microsoft AD and Active Roles can streamline and accelerate your AWS workload implementations. Many organizations rely on Microsoft Active Directory (AD) to manage identities and access controls, and extending AD infrastructure to the cloud is a common goal. This need often arises […]

In this blog post, I will show you how to use the myApplications dashboard in the AWS Management Console. Using a sample .NET application, I will demonstrate how you can manage costs, monitor, and optimize your Microsoft workloads with this new dashboard. Introduction Assume you are a web application owner and it’s your team’s responsibility […]

In this blog post, I will demonstrate a solution for managing the Active Directory domain membership for a dynamic fleet of Amazon Elastic Compute Cloud (Amazon EC2) Windows instances using AWS Systems Manager Automation. Using Systems Manager Automation, you can dynamically automate domain join and unjoin activities with Microsoft Active Directory (AD) for your Amazon […]

Introduction In this blog post, I will show you how to selectively share a central AWS Directory Service for Microsoft Active Directory (AWS Managed Microsoft AD) directory across your multi-account environment through a self-service model using AWS Service Catalog. In a large and growing AWS Organizations environment with decentralized teams, you want to remove as […]

For customers that have workloads in the AWS Cloud, a common use case is the provisioning of new user accounts in Active Directory, and subsequently, WorkSpaces for these new users. In this blog post, we will present an efficient and reusable solution to automate the creation, provisioning, and deprovisioning of Microsoft Active Directory (AD) user […]

In this blog post, we explore how the Microsoft SQL Server backup metadata, known as backup headers, can be leveraged when migrating from on premises to Amazon Elastic Compute Cloud (Amazon EC2). This technique is particularly useful when access to source database information is non-existent or only backup files are available with no access to […]