AWS Security Architect

ALBs with EC2 instances

anuj varma January 12, 2026 ALBs with EC2 instances2026-01-12T18:50:24+00:00 ALBs on AWS No Comment

<!doctype html> AWS ALB to Protect Instances with Public IPs (Elaborated) If your EC2 instances have public IPs, an AWS Application Load Balancer (ALB) can help — but the…

Shared VPCs for Production and Non Production Assets

anuj varma December 5, 2025 Shared VPCs for Production and Non Production Assets2025-12-05T18:25:49+00:00 Shared VPCs No Comment

Overview A Shared VPC lets one AWS account (the Host) own a VPC and subnets and share those subnets with other AWS accounts (the Participants). This pattern centralizes networking while…

DNS Isolation on AWS

anuj varma November 25, 2025 DNS Isolation on AWS2025-11-25T20:15:21+00:00 AWS Network Security No Comment

dns isolation aws DNS Isolation on AWS DNS isolation on AWS refers to designing your Amazon Web Services environment so that certain workloads or networks can only resolve DNS names…

How to tell whether an endpoint is public facing?

anuj varma November 25, 2025 How to tell whether an endpoint is public facing?2025-11-25T16:34:04+00:00 APIs on AWS No Comment

Interpreting a JSON 404 Response Context: you received a JSON response with status: 404 detail: "no static resource /api/v2/users/myapp" Quick answer This does not prove the API endpoint is…

Control Tower Integrated SSO and Permission Sets

anuj varma November 21, 2025 Control Tower Integrated SSO and Permission Sets2025-11-21T18:34:23+00:00 AWS IAM No Comment

AWS Permission Sets vs Control Tower SSO AWS Permission Sets vs Control Tower SSO 1. AWS Control Tower SSO Purpose: Provides a managed way to centrally set up and govern…

Backup Policies for Servers migrated to AWS

anuj varma November 21, 2025 Backup Policies for Servers migrated to AWS2025-11-21T19:03:16+00:00 AWS Backups No Comment

Backup Policy for Windows Servers on AWS Policy ID: IT-BACKUP-001 Version: Effective Date: Owner: IT Operations / Cloud Infrastructure Team 1. Purpose This policy defines standardized procedures for backing…

Aurora Postgres versus RDS Postgres

anuj varma November 20, 2025 Aurora Postgres versus RDS Postgres2025-11-20T21:36:55+00:00 AWS Migration No Comment

Phase 1 — Assessment & Planning Choose target engine Aurora PostgreSQL (recommended for PostgreSQL features & ecosystem). Aurora MySQL if your app is already MySQL-based. Inventory & compatibility assessment Catalog…

Tableau – No Authentication Visualizations

anuj varma November 14, 2025 Tableau – No Authentication Visualizations2025-11-14T19:16:06+00:00 Tableau on AWS No Comment

Tableau – Publishing Without Authentication Can Tableau Publish Content Without Authentication? Yes — Tableau can publish content that does not require authentication, but only under specific configurations. 1. Tableau Public…

AWS Resource Tag Recommendations

anuj varma November 14, 2025 AWS Resource Tag Recommendations2025-11-14T01:14:03+00:00 Automation No Comment

Recommended AWS Resource Tagging Strategy Recommended AWS Resource Tagging Strategy This document provides a comprehensive tagging framework for AWS EC2 and other AWS resources, including S3, RDS, Lambda, and networking…

Security of Signed URLs (for S3 content)

anuj varma November 14, 2025 Security of Signed URLs (for S3 content)2025-11-14T01:11:12+00:00 S3 Security No Comment

Security of AWS Pre-Signed URLs Are AWS Pre-Signed URLs Safe? Yes—if used correctly. A pre-signed URL is a time-limited, object-scoped URL that grants access to a specific S3 operation (GET/PUT)…

12 3 ›»