SCS-C01: AWS Certified Security Specialist, Part 7 of 9: Security and Integration [Replaced]
with expert Zeal Vora
Course description
This course has been updated. please use the following course series instead
SCS-C01: AWS Certified Security Specialist, Part 1 of 6: Incident Response
SCS-C01: AWS Certified Security Specialist, Part 2 of 6: Logging and Monitoring
SCS-C01: AWS Certified Security Specialist, Part 3 of 6: Infrastructure and Security
SCS-C01: AWS Certified Security Specialist, Part 4 of 6: Identity and Access MGMT
SCS-C01: AWS Certified Security Specialist, Part 5 of 6: Data Protection
SCS-C01: AWS Certified Security Specialist, Part 6 of 6: Exam Preparation
Amazon Web Services Certified Security Specialty is an exam intended to validate an individuals experience in a security role with at least two years of hands-on experience securing AWS and 5 years or more in IT security experience designing and implementing security solutions. This course covers the security token service, Federation, SAML for SSO, IDP and SP, selecting the IDP, AD Integration, S3 Bucket Policies, Canned ACL and S3 Versionings
Prerequisites
two years of hands-on experience securing AWS and 5 years or more in IT security experience designing and implementing security solutions
Meet the expert
Zeal works primarily as a Cloud Security Consultant guiding organizations to re-build their infrastructure with security in mind. Zeal also holds more then 13+ certifications ranging from RedHat Certified Architect to AWS Security.
Course outline
Security and Federation
Security Token Service (33:46)
- Introduction (00:08)
- AWS Security Token Service (07:46)
- Migrating the EC2 Role Credentials (04:21)
- Architecturing IAM user keys the right way (16:55)
- Automate the temporary credentials (04:27)
- Summary (00:08)
Federation (14:57)
- Introduction (00:08)
- Federation Part 1 (06:30)
- Federation Part 2 (08:10)
- Summary (00:08)
SAML for SSO (48:05)
- Introduction (00:08)
- Understanding SAML for SSO (14:38)
- Capturing SAML Assertion Packets with Tracer (04:08)
- Post Request (29:02)
- Summary (00:08)
IDP and SP (20:48)
- Introduction (00:08)
- Establishing trust between IdP and SP (08:15)
- Sign in to Console (12:17)
- Summary (00:08)
Integration and Versioning
Selecting the IDP (29:20)
- Introduction (00:08)
- Choosing a right IdP (06:15)
- AWS Cognito (11:57)
- AWS Directory Service (10:51)
- Summary (00:08)
AD Integration (25:53)
- Introduction (00:08)
- Understanding Active Directory (04:19)
- Deploy our first SimpleAD based directory service (04:16)
- Domain Joining EC2 instance with Directory Service (09:17)
- IAM Credential Report (07:44)
- Summary (00:08)
S3 Bucket Policies (18:59)
- Introduction (00:08)
- S3 Bucket Policies (07:31)
- Cross Account S3 Bucket (11:11)
- Summary (00:08)
Canned ACL (23:30)
- Introduction (00:08)
- Canned ACL (09:27)
- Understanding Signed URL (13:47)
- Summary (00:08)
S3 Versioning (23:43)
- Introduction (00:08)
- S3 Versioning (06:02)
- S3 Cross region replication (07:37)
- IAM Permission Boundary (09:47)
- Summary (00:08)