Multi-account landing zones have been the defacto standard for how to architect environments from a governance and compliance standpoint in AWS. Control Tower is an AWS service that was released in 2019, enabling customers to quickly and easily deploy the framework for a well-architected landing zone . More recently, AWS released Landing Zone Accelerator (LZA), … Continue reading Deploying AWS LZA with pre-existing Control Tower
Anyone who is currently running or has deployed VMware Cloud on AWS (VMC) will tell you that hybrid cloud networking adds the most complexity. It does make sense, the VMware aspect of VMC is frankly pretty easy. Getting access to a VMware SDDC in any public cloud provider typically takes about 10 – 15 minutes … Continue reading VMC on AWS Networking: Fun with Transit Connect
If you need an easy and secure method to provide a hardened browser to your end users, AWS's fully managed WorkSpaces Web may be the service you've been waiting for. What is Amazon WorkSpaces Web? To give the textbook definition, Amazon WorkSpaces Web is "a low cost, fully managed WorkSpace built specifically to facilitate secure, … Continue reading Introduction to Amazon WorkSpaces Web
Do you need a quick and easy way to inventory EC2 Instances across your organization? Have you tried an Advanced Query for AWS Config? I can't remember if I was on a call or "heard" this over email but a comment like this was made, "I'm updating the EC2 inventory spreadsheet.".....Not knowing anything beyond this … Continue reading A Quick and Easy EC2 Inventory using AWS Config
Overview Earlier this month, AWS announced that the Amazon WorkSpaces API could now be used to modify the appearance of the WorkSpaces client to enhance the end user experience. The updated API allows you to add a logo, login message, forgot password, and support links unique to your organization. What aspects of the WorkSpaces client … Continue reading Customizing the Amazon WorkSpaces Client
When it comes to VMware Cloud on AWS (VMC), the devil is in the networking details. For those out there unfamiliar with VMC, it is an service that was jointly developed between AWS and VMware, and is fully managed by VMware. It is essentially a VMware Software Defined Data Center (SDDC) as-a-Service running within the … Continue reading Why the heck can’t I connect to my stuff running in VMC from AWS?!?
Overview There may come a time when you wish to add an AWS Amazon Linux 2 EC2 instance as a managed server in Veeam Backup and Recovery. In this specific case, I was simply playing around with Veeam backup job settings with a Veeam Backup and Replication Server hosted on a VMware Cloud on AWS … Continue reading Adding an Amazon Linux 2 Instance to Veeam using Private Key Credentials
Overview I suppose its impossible to keep up with every AWS announcement, even for some of your favorite services. I can't really even remember how I came across this but on November 16, 2021, AWS announced that, "Amazon AppStream 2.0 adds support for Amazon Linux 2. With this launch, you can now stream Linux applications … Continue reading Deploying Linux Desktops and Applications with Amazon AppStream 2.0
Remembering When.... There are some days when I reminisce with great fondness about my previous experiences as a VMware consultant and admin. I remember being blown away by that first vMotion, thinking there was no way vMotion was going to work as advertised. I also enjoyed watching customers experience the same fascination when they saw … Continue reading AWS EC2 Image Builder for Beginners
With this post, we'll conclude this series covering the most common AWS Security Event Root Causes. To recap, the six most common AWS security incident root causes are: Unintended disclosure of security credentials and secretsCustomer does not ensure the complete accuracy of their AWS account informationInsecure AWS resource configurationInactive response to GuardDuty and other detective controls and … Continue reading Common AWS Security Event Root Causes – Notes – Part #3
