Open in app

Sign in

Write

Sign in

#8 AWS Weekly Updates (03 Aug 20)

Vimal Paliwal
2 min readAug 3, 2020
Photo by Jeremy Bishop on Unsplash

This week’s picks are:

  • Resource-based policy for AWS Secret Manager
  • CloudFront support for Amazon Lightsail
  • CIS Benchmark for Amazon EKS

To learn more about all the latest updates from AWS visit: https://aws.amazon.com/new/

Resource-based policy for AWS Secret Manager

In brief, Secrets Manager lets you protect, rotate, manage and retrieve your database credentials, API keys, OAuth token and other secrets. Club it with AWS KMS service to encrypt your secrets at rest-side.

With the launch of the resource-based policy, you can now manage access to your secrets centrally across multiple AWS accounts. Unlike Identity-based policy which is attached to a user, group or role, a resource-based policy is attached to a service. Example: S3 bucket policy, SQS policy, KMS policy, etc.

Article: AWS Secrets Manager now enables you to attach resource-based policies to secrets from the AWS Secrets Manager console and uses Zelkova to validate these policies

CloudFront support for Amazon Lightsail

Lightsail is the easiest way to deploy your application on the AWS cloud. With just a few clicks you can deploy WordPress, Magento, Drupal, MEAN, LAMP, etc. It has loads of features like you can create a load balancer, managed MySQL and PostgreSQL database, restrict incoming traffic to a specific IP, etc.

Using CloudFront, your applications hosted on Lightsail servers can now be served on the edge which means they are served to customer from the nearest edge location instead of the request travelling all the way to the origin.

Article: Amazon Lightsail now offers CDN distributions to accelerate content delivery

CIS Benchmark for Amazon EKS

AWS EKS is a fully managed Kubernetes service which lets you run containers at scale. It even supports serverless mode using AWS Fargate which relieves you from managing the nodes as well.

The CIS Benchmark for Amazon EKS helps you accurately assess the secure configuration of both self-managed and managed nodes running as part of your Amazon EKS clusters by providing standard and community-approved ways to ensure that you have securely configured your EKS cluster and nodes.

Article: Announcing the CIS Benchmark for Amazon EKS, Introducing The CIS Amazon EKS Benchmark

That’s all for now. Stay tuned to learn more about new releases/updates by AWS. ✌️

AWS
Aws Secrets Manager
Amazon Cloudfront
Amazon Lightsail
Aws Eks

--

--

Vimal Paliwal

Written by Vimal Paliwal

35 Followers

DevSecOps Practitioner | AWS AAI - Champion | vimalpaliwal.com | skildops.com

Help

Status

About

Careers

Blog

Privacy

Terms

Text to speech

Teams