AWS Certified Security Specialist, Part 7of 9: Security and Integration
Interactive

AWS Certified Security Specialist, Part 7of 9: Security and Integration

LearnNow Online
Updated Sep 10, 2019

Course description

Amazon Web Services Certified Security Specialty is an exam intended to validate an individuals experience in a security role with at least two years of hands-on experience securing AWS and 5 years or more in IT security experience designing and implementing security solutions. This course covers the security token service, Federation, SAML for SSO, IDP and SP, selecting the IDP, AD Integration, S3 Bucket Policies, Canned ACL and S3 Versionings

Each LearnNowOnline training course is made up of Modules (typically an hour in length). Within each module there are Topics (typically 15-30 minutes each) and Subtopics (typically 2-5 minutes each). There is a Post Exam for each Module that must be passed with a score of 70% or higher to successfully and fully complete the course.


Prerequisites

two years of hands-on experience securing AWS and 5 years or more in IT security experience designing and implementing security solutions


Meet the expert

Zeal Vora

Zeal works primarily as a Cloud Security Consultant guiding organizations to re-build their infrastructure with security in mind. Zeal also holds more then 13+ certifications ranging from RedHat Certified Architect to AWS Security.

Video Runtime

239 Minutes

Time to complete

279 Minutes

Course Outline

Security and Federation

Security Token Service (33:46)

  • Introduction (00:08)
  • AWS Security Token Service (07:46)
  • Migrating the EC2 Role Credentials (04:21)
  • Architecturing IAM user keys the right way (16:55)
  • Automate the temporary credentials (04:27)
  • Summary (00:08)

Federation (14:57)

  • Introduction (00:08)
  • Federation Part 1 (06:30)
  • Federation Part 2 (08:10)
  • Summary (00:08)

SAML for SSO (48:05)

  • Introduction (00:08)
  • Understanding SAML for SSO (14:38)
  • Capturing SAML Assertion Packets with Tracer (12:37)
  • Establishing trust between IdP and SP (20:32)
  • Summary (00:08)

IDP and SP (20:48)

  • Introduction (00:08)
  • Establishing trust between IdP and SP (08:15)
  • Sign in to Console (12:17)
  • Summary (00:08)

Integration and Versioning

Selecting the IDP (29:20)

  • Introduction (00:08)
  • Choosing a right IdP (06:15)
  • AWS Cognito (11:57)
  • AWS Directory Service (10:51)
  • Summary (00:08)

AD Integration (25:53)

  • Introduction (00:08)
  • Understanding Active Directory (04:19)
  • Deploy our first SimpleAD based directory service (04:16)
  • Domain Joining EC2 instance with Directory Service (09:17)
  • IAM Credential Report (07:44)
  • Summary (00:08)

S3 Bucket Policies (18:59)

  • Introduction (00:08)
  • S3 Bucket Policies (07:31)
  • Cross Account S3 Bucket (11:11)
  • Summary (00:08)

Canned ACL (23:30)

  • Introduction (00:08)
  • Canned ACL (09:27)
  • Understanding Signed URL (13:47)
  • Summary (00:08)

S3 Versioning (23:43)

  • Introduction (00:08)
  • S3 Versioning (06:02)
  • S3 Cross region replication (07:37)
  • IAM Permission Boundary (09:47)
  • Summary (00:08)