Category: Security, Identity, & Compliance

In this blog post, we will demonstrate how you can set up self-managed licenses to be tracked automatically through tagging. Managing licenses for software running on HAQM Elastic Compute Cloud (HAQM EC2) is critical for compliance and auditing purposes. HAQM Web Services (AWS) provides a free tool, AWS License Manager, to help you manage your licenses. However, license […]

Introduction In this blog post, I am going to show you how to generate, import, test, and troubleshoot a properly created Transport Layer Security (TLS) certificate for a Remote Desktop Gateway (RD Gateway) farm. Secure management of your HAQM Elastic Compute Cloud (HAQM EC2) instances for Microsoft Windows Server is a top priority for any […]

In this blog post, we will guide you through the process of setting up an AWS Lambda authorizer with Microsoft Entra ID (formerly Azure Active Directory) using OpenID Connect (OIDC). This will allow you to use the authentication from Entra ID as an identity provider for your HAQM API Gateway. Securing your APIs is crucial […]

In this blog post, we will present a sample solution and provide recommendations on how to reduce both the cost and time associated with a Microsoft Windows Server instance joining an HAQM Elastic Compute Cloud (HAQM EC2) Auto Scaling group up to 78%. Customers using HAQM EC2 Auto Scaling often desire faster scale-out times to […]

In this blog post, we will look at how to automate the rotation of the AWS Identity and Access Management (IAM) credentials synchronized with Microsoft SQL Server credentials to meet password rotation requirements. Solution overview The IAM Access key and Secret access key are used to create a SQL Server credential; therefore, to rotate the […]

In this blog post, you will learn how to use custom attributes for Attribute-Based Access Control (ABAC) with Microsoft Entra ID (formerly known as Azure Active Directory) as the single sign-on (SSO) identity provider integrated with AWS IAM Identity Center (formerly known as AWS SSO). ABAC allows you to control access or fine-grained permissions to […]

In this blog post, we will guide you through configuring cross-tenant synchronization with multiple Microsoft Entra ID tenants using AWS IAM Identity Center. By following the steps outlined in this post, you can simplify access to your HAQM Web Services (AWS) resources while enabling collaboration efforts between Entra ID tenants within your organization. Background Organizations […]

With the upcoming end of support for Microsoft Windows Server 2012/2012 R2 on October 10, 2023, and the ongoing challenges faced by those on Windows Server 2008/2008 R2, many organizations find themselves in a delicate position. Transitioning away from these older versions isn’t always straightforward. Some organizations are running third-party software that is not yet […]

In this blog post, we will explore a new feature for AWS Private Certificate Authority (AWS Private CA), Connector for Active Directory, that can help you more easily provision certificates for users and machines within your Microsoft Active Directory (AD) environment with just a few clicks. AWS Private CA can accelerate your provisioning and reduce […]

In this blog post, I will show how you can leverage HAQM Web Services (AWS) for disaster recovery (DR) for your self-managed Microsoft Active Directory (AD). I will also provide an automated solution to help you run on-demand, periodic DR tests of your AD infrastructure as part of your larger business continuity strategy. Introduction Most […]