You can interact with Simple Storage Service (S3) from the web console, a variety of third-party tools, the AWS Command Line Interface (CLI), a number of Software Development Kits (SDKs), and from within a Virtual Private Cloud (VPC) using a VPC Endpoint. Learn what the S3 service is, and that access to it can be managed by VPC Endpoint, Identity and Access Management (IAM) policies, S3 Bucket Policies, and S3 Access Control Lists (ACLs)
- Simple storage service, or S3, is one of the oldest…service offerings in the AWS portfolio.…Storing literally trillions of files as objects,…it is safe to say that S3 is also remarkably widely used.…People can interact with S3 directly via the web console…or a variety of available third-party tools.…Machines interact with S3 programmatically,…using the AWS command line interface or using…one of the software development kits provided by AWS.…There are SDKs for a number of popular languages,…including python, NoJS, Ruby, .NET, PHP, and Java.…
Finally, machines within an AWS virtual private cloud…in your account can interact directly…with S3 using a VPC endpoint.…It is helpful to understand how S3 is organized.…Let's cement some AWS specific jargon in your mind.…First off, there's the S3 bucket.…It helps to think of a bucket as a folder,…a container in which a number of objects can be stored.…What do you put in a bucket?…In S3 terms, you can put objects into a bucket.…It is helpful to think of objects as files.…
Sharif Nijim couples pragmatic advice with practical examples that educate IT pros on how to create a secure infrastructure within Amazon Web Services. Sharif explores the shared responsibility model of security, which splits duties between your company and AWS, and introduces key identity and access management concepts, including users, groups, roles, and policies. Learn how to configure Identity and Access Manager (IAM) and Simple Storage Service (S3) access management, including policies and access control lists. At the end of the course, Sharif helps you prepare for the inevitable audit of your AWS account(s).
This course is also part of a series designed to help you prepare for the AWS Certified SysOps Administrator – Associate certification exam.
- Summarize the AWS Shared Responsibility Model.
- Recall how to implement separation of duties.
- Differentiate between assigning permissions to an individual versus a group.
- Summarize how to create IAM roles.
- Describe how to secure financial access.
- Recall the steps for managing access to S3 with IAM.
- Cite the advantages of a pre-signed URL.