Learn about the AWS Command Line Interface (CLI), where to obtain it, and how to use credential profiles from the AWS Command Line Interface (CLI). These different profiles possess the access key and secret access key for different IAM users. You can use the CLI to validate that the bucket policy is functioning as intended.
- [Narrator] Here I am with a terminal window…on my local Mac, I've already installed the AWS CLI.…If you need to download it, it's pretty easy to do.…Just pop open a new web browser and Google…search for download AWS CLI, clicking on the first…link will take you to Amazon documentation…with instructions on how to download and install…the CLI for your specific platform.…I've also set up a configuration file for the…credentials I want to use with the AWS CLI.…
I'll show it to you now, I'm going to use the VI Editor…to open the credentials file and look at it.…The profile I'm interested in is the Madeline.dev profile.…As you can see it specifies her access key id…and the associated secret access key.…This combination will allow me to use the CLI…as the Madeline IAM user from the development AWS account.…Putting out of the editor, let's list the contents…of the s3 bucket as Madeline.…
It's kind of a long command so let's deconstruct it briefly.…Using the AWS CLI, you want to use the s3 component…to list the contents of this bucket.…
Sharif Nijim couples pragmatic advice with practical examples that educate IT pros on how to create a secure infrastructure within Amazon Web Services. Sharif explores the shared responsibility model of security, which splits duties between your company and AWS, and introduces key identity and access management concepts, including users, groups, roles, and policies. Learn how to configure Identity and Access Manager (IAM) and Simple Storage Service (S3) access management, including policies and access control lists. At the end of the course, Sharif helps you prepare for the inevitable audit of your AWS account(s).
This course is also part of a series designed to help you prepare for the AWS Certified SysOps Administrator – Associate certification exam.
- The AWS shared responsibility model and security landscape
- Enabling CloudTrail
- Configuring AWS Identity and Access Management (IAM)
- Configuring IAM users, groups, and policies
- Granting temporary access
- Controlling access to Simple Storage Service (S3)
- Preparing for security audits
- Getting audit help from Trusted Advisor