grumpy.hashnode.devWhy You Need to Stop Using that Lone AWS AccountThe Basics First, your AWS account: is not a "login" to AWS. is akin to your "subscription" to AWS. can be identified using a 12 digit number that is unique. has a name. has one primary email address, known as the account's email address. provides s...Nov 14, 2022·2 min read
grumpy.hashnode.devWrapping AWS Control Tower Account FactoryThis post presents a small wrapper product for the AWS Control Tower Account Factory. The wrapper supports automation as it provides a stable interface (name and version) to the Control Tower Account Factory that doesn't change over time. The out of ...Nov 13, 2022·7 min read
grumpy.hashnode.devWhy You're Getting PWNED on AWSWhile AWS may be pretty decent at keeping their security together and not being in the limelight for security incidents, you dear AWS user might not be so lucky. Over at GitHub there's a great curated list of publicly disclosed security incidents of ...Nov 7, 2022·2 min read
grumpy.hashnode.devThe Dreaded AWS Inventory Question - Whats Running In My AWS Account?Introduction Inevitably anyone with an AWS account is at one time faced with questions of basic visibility such as Which resources (such as IAM roles, EC2 instances, VPCs, Security Groups, etc.) do I have in my AWS account(s)? How do I see all thos...Nov 3, 2022·4 min read
grumpy.hashnode.devServerless Event Driven AWS IAM Identity Center Permission Set AutomationThe post introduces a solution for automating AWS Identity Center permissions management. The solution manages AWS accounts and permission set assignments for groups created within AWS Identity Center from an external Identity Provider (such as Azure...Nov 2, 2022·9 min read