Route 53 Logs Route 53 has service integrations for exporting events into CloudTrail and CloudWatch. DNS requests at the domain- and subdomain-level are logged into CloudWatch with metrics including what domain lookup was requested, the date and time, the record type such as CNAME or A records, the response code, and the edge location that […]

Identity Providers The Identity Providers section of IAM allows you to establish a trust connection between your AWS account and another identity provider (often referred to as an ID). Two standards are currently available: SAML: SAML stands for Security Assertion Markup Language. Identity providers (IDPs) that use SAML include Active Directory and Okta.  OpenID Connect: […]

Access Logs Many AWS services record user access and export the data as log files for you to process using backend services. These log files allow you to monitor usage patterns, collect baselines, troubleshoot, and validate any security or compliance mandates your organization may operate under. Analytic services can be used to gain valuable insights […]

Types of CloudTrail Events As discussed previously, an event is captured every time a call to the AWS API is made. This could be from the AWS Management Console, the AWS CLI, or one of the AWS SDKs. There are several types of events in CloudTrail. As a security professional and someone looking to take […]

Integrate Functional Testing as Part of Your Deployment This is a standard best practice. Functional tests should be part of your CI/CD pipeline(s). Failing any of those tests should stop the pipeline(s) from deploying any further, and trigger a rollback as needed. Integrate Resiliency Testing as Part of Your Deployment This is a more advanced […]

3.6  Invocable Methods in Flows Invocable methods in Salesforce allow developers to expose Apex methods as custom actions in the Flow Builder. These custom actions can be used in flows to perform complex logic that cannot be achieved with declarative tools alone. Invocable methods can receive input parameters from flows, perform some processing, and return […]

VPC Reachability Analyzer The VPC Reachability Analyzer is used to validate your network connectivity, troubleshoot, identify network configuration issues, and automate validations for connectivity after configuration changes or new deployments. The VPC Reachability Analyzer checks the network path taken by a packet from the source to destination. The tool creates a logical model of the […]

Computing K-Means step by step In this example, you will simulate K-Means in a very small dataset, with only two columns (x and y) and six data points (A, B, C, D, E, and F), as defined in Table 6.8. Point x y A 1 1 B 2 2 C 5 5 D 5 6 […]

Metric Insights Metric Insights is part of the CloudWatch service offerings. Metric Insights provides an SQL-based query engine that can search millions of metrics in real time. Metric Insights allows you to capture trends and data patterns as they occur, enabling you to respond quickly to events using SQL-based queries. Metric Insights allows for the […]

3.4 Flow Components Salesforce Flow consists of several components that work together to automate business processes. These components include elements, variables, and connectors. Elements represent the actions that the flow can execute. Elements are connected together to define the flow’s sequence and logic, determining the order in which actions are executed. There are different types […]