Requirements
No specific requirements but familiarity with AWS and cloud platforms would be helpful.
Course Outline
- Authentication
- Services Module Overview
- RADIUS
- TACACS
- Kerberos
- LDAP Secure
- LDAP SAML
- Module Review Authentication
- Authorization and Access Control Review Identification vs. Authentication vs. Authorization
- Identification Personal Identification
- Verification Card
- Username Authentication
- Tokens Common Access
- Card Multifactor
- Authentication
- TOTP HOTP CHAP PAP
- Single Sign-on Access Control
- Implicit Deny
- Trusted OS Authentication Factors
- Authorization
- Separation of Duties
- ACLs Mandatory Access Control Discretionary
- Access Control
- Role Based and Rule Based Access Control
- Time of Day Restrictions
- Federation Transitive Trust/Authentication
- Module Review Account Management
- Security Controls Module Overview User with Multiple Accounts
- Shared Accounts Account Policy
- Management Group Policy
- Password Complexity
- Expiration Recovery
- Disablement Lockout
- Password History
- Password Reuse
- Password Length
- Basic Concepts of AWS IAM
- What is the AWS IAM?
- Managing Users
- Managing Groups
- Managing Permissions
- Managing Roles
- Customization & Reports
- Login & Customization
- Getting Credentials Reports
- Improving security on AWS IAM
- Creating Keys with AWS KMS
- Setup Account Password Policy
- Enabling MFA on Accounts & Root
- Best Practices Using AWS IAM
- Generic Account Prohibition
- Group Based Privileges
- User Assigned Privileges
- User Access Reviews
- Continuous Monitoring