AWS Identity
32,002 followers
Mike Shell 
sma_04 
LazerEYES 
Learn how to provide a single sign-in experience to Windows EC2 instances using AWS Fleet Manager with #AWSSO, which allows you to create users in AWS SSO, or to connect any supported identity provider to AWS SSO. go.aws/3P89HcL
Learn how @Pinterest used #AmazonS3 Access Points, integrated with #AWSIAM, to create an innovative fine grained access control solution that makes it easier to manage data access at scale for shared data sets. go.aws/3nOi812
Find out how you can provide least privilege access to third-party suppliers & setup the right #AWSCertificateManager Private Certificate Authority hierarchy using managed permissions in #AWSRAM. 👇go.aws/3yaHoDoG
ICYMI: You can now use X.509 digital certificates to obtain temporary #AWS credentials for workloads outside of AWS & use the same IAM roles & policies that you've already configured for your AWS workloads to access AWS resources. 👇twitter.com/jeffbarr/statu…I
↖️ Here, there ↘️, anywhere 🎉!
Want to see how IAM Roles Anywhere works in action? Check out this blog for an example scenario. �go.aws/3NPd0VcEN
This could have a huge impact: “IAM now enables workloads that run outside of AWS to access AWS resources using IAM Roles Anywhere” 🤯
aws.amazon.com/about-aws/what…X
Retweeted by AWS Identity 
This is one of the biggest things to come from AWS this year!! 🙌
IAM Roles anywhere! There is now very little reason to use long term credentials for AWS. Ditch them now!twitter.com/MerrittBaer/st…A
Retweeted by AWS Identity 
Holy cow, speaking of certificates. Going to need to play with this one - "IAM Roles Anywhere," which could eliminate the need to seed non-AWS apps with long-lived IAM user access keys, replacing them with a CA trust.
aws.amazon.com/blogs/security…
Retweeted by AWS Identity 
much huge. very huge.
When prod ready this "IAM Roles Anywhere" service is gonna be a massive security win as hard coded secrets won't be needed on premise or external servers any more twitter.com/DonKoyote/stat…
Retweeted by AWS Identity 
#AWSIAM has released IAM Roles Anywhere, a feature that extends the capabilities of IAM roles to workloads outside AWS. This feature provides a secure way to obtain temporary AWS credentials and removes the need for long-term AWS credentials.
Read more 👉go.aws/3AstHm7d9
Retweeted by AWS Identity I've always loved ♥️ IAM roles in AWS...now you can use them from anywhere. A welcome addition to IAM. tinyurl.com/yxecw238
Retweeted by AWS Identity This is huge!
You can now use certificates to obtain short-lived IAM credentials for workloads outside of AWS!
Check this out!
#aws #security #awscommunitybuilders
aws.amazon.com/about-aws/what…
Retweeted by AWS Identity Another good news from AWS
AWS Identity and Access Management introduces IAM Roles Anywhere for workloads outside of AWS
#aws #iam
lnkd.in/eZx_Ps2j lnkd.in/e6TSeQb9
Retweeted by AWS Identity 🆕: Need to give workloads outside of AWS temporary access to AWS resources? Announcing IAM Roles Anywhere, allowing you to provide temporary AWS credentials to workloads outside AWS using the same IAM roles & policies you configured for your AWS workloadsgo.aws/3NRecXYiW
🔢 4 reasons to join Build On Live, Data & Analytics on July 7.
🧵[1/4] Insightful sessions on numerous topics like the world of Data & Analytics, open source solutions, ETL modernization & migration, serverless Spark jobs with Airflow, & NoSQL databasesgo.aws/3bdsl42gqR
Retweeted by AWS Identity Need audited evidence of processes and controls supporting International Organization for Standardization (ISO) standards for using #AWSRAM? You can now use the AWS ISO certificates for #AWSRAM to help meet your compliance requirements. go.aws/3IhWfki twitter.com/AWSSecurityInf…
Next week at #AWSSummit New York, join our experts as they share practical knowledge on how you can apply organization-wide permissions guardrails to restrict access to trusted identities accessing sensitive data as you intend. twitter.com/awscloud/statu…
Launch Announcement ⚡
AWS Well-Architected Tool now integrates with AWS Organizations, enabling you to share workloads & custom lenses across your entire organization. ☁️
Learn more about this update here: go.aws/3NFq6UJ
Retweeted by AWS Identity Learn about temporary elevated access & how it can mitigate risks relating to human access to your AWS environment.
Then, download a minimal reference implementation & use it to build a temporary elevated access solution tailored for your organization. go.aws/3uhyjYE
ICYMI: You can meet your specific security & compliance requirements across all new & existing directories with a 🆕 flexible control for updating directory settings in#AWSManagedMicrosoftADD.go.aws/3tQf9spZx
Learn how to use managed permissions for #AWSCertificateManager Private Certificate Authority in #AWSRAM to scope down the actions that third-parties can perform with your Certificate Authority.
go.aws/3yaHoDo
Last week our Senior Specialist Security Architect, Arthur Mnev presented a session on how you can extend the functionality of your SAML IdP. Here, he shares 3 takeaways for those who couldn't make it to #Identiverse2022.
The All Builders Welcome Grant, geared towards underrepresented technologists in the first five years of their career, offers a complimentary trip to #AWS reInvent.
Apply now at apply.scholarsapply.org/awsreinventgra…
Retweeted by AWS Identity Have you heard about Build On Live? Check the agenda of this once-a-quarter event happening next week. You'll get to interact with hosts @darkosubotica & @dtrapezoid and connect with industry experts like @gwenshap, @BM_DataDowntime, @mza & @afronski. go.aws/3yv1MAQ
"End users should consider least privileged access as a core tenet & then support that practice with role-based policies, MFA & secrets management."
Check out @DMEdwards' interview with @SCMagazine at #Identiverse2022. go.aws/3u9oQ5x
Meet the security & compliance needs for your application in #AWS by updating the security settings for your #AWSManagedMicrosoftAD directories. go.aws/3a8EgA1
Learn how you can use IAM Access Analyzer, #AmazonMacie & #AWSSecurityHub together to detect when access has been granted to sensitive data in #AmazonS3 buckets in your AWS accounts. go.aws/3Oacamm
Weighing up which account recovery strategy is right for your customers? @n3rd1ty shares 3 tips from his session at #identiverse. go.aws/39LDRmX
Optimize, optimize, optimize: Mahmoud Matouk shares takeways from his #Identiverse2022 session with @NHSDigital. Find out how #AmazonCognito was used to build NHS login, a #serverless identity platform that provides patients access to healthcare apps. go.aws/3bd2fhE
Listening to my friend and colleague @arynncrow talk about IAM for Customer Service. #identiverse
Retweeted by AWS Identity Great anecdotes and real life examples shared by @n3rd1ty for his “Account Recovery Strategies” talk at @Identiverse. If you missed it I highly recommend checking out his @idpro_org BoK article on this topic bok.idpro.org/article/id/64/
Retweeted by AWS Identity Full-house session by @arynncrow about #IAM in customer service 📞 It was packed with great insights 🤔 on how to think of security 🔐 for your frontline �GfoPw
Retweeted by AWS Identity Absolutely ❤️ the IAM origin stories being told at this reception by @WomeninID hosted by AWS. #Identiverse2022
The diversity of this industry is such a strength.
Retweeted by AWS Identity Sarah Cecchetti @Sarah_Cecc gives an update of the first ever vendor neutral, practitioner built certification for Digital Identity, CIDPRO @idpro_org #Identiverse2022
Retweeted by AWS Identity Find out how you can setup organization-wide guardrails using data perimeters. go.aws/3HHyWjz
Read how to use the #AmazonCognito hosted UI for sign-up & sign-in. go.aws/3HL4XqV
Learn how to get started with attribute-based access control, which allows you to define permissions based on attributes. go.aws/3ych6Cf
Catching up with our experts at #Identiverse2022? @MoumitaDeUnique shares what you can expect to find at our booth. For those who aren't attending here's a thread with resources so you can follow along at home. go.aws/3ybJC6T
First conference nerves? 😬 @n3rd1tyy shares some tips on how to maximize your#identiversee experience.i
📢 T-1 day until#Identiversee: Meet us at booth 1101 & connect with our experts for presentations, demos & technical conversations.go.aws/3tOGdZ8SC
ℹ️ Learn how to configure security settings for your #AWSManagedMicrosoftAD directory, for your organization's security & compliance needs. go.aws/3xF8Tor
🆕 Need a simple, flexible way to update directory settings? Starting today you can update your directory settings &#AWSManagedMicrosoftADD applies them to all domain controllers & additional regions, automatically.go.aws/3tQf9spZt
Join @WomeninID & AWS at #Identiverse tomorrow to hear from women identity professionals from various backgrounds & career stages about how they got into identity, how they're navigating it as women & what has changed in the industry. go.aws/3betiZW
Need to design, develop & deploy account recovery mechanisms for your online systems? We have a session at #identiverse for you: A Framework for Comparing Account Recovery Strategies. Here, @n3rd1ty shares what he'll be covering. go.aws/3xmmm4r
In this workshop, learn how to use #AWSIAM to delegate access to AWS services. You'll use AWS IAM roles to do this & give users the minimum level of privilege they need to do their tasks. go.aws/3MVt8UJ
Our Principal Solutions Architect Mahmoud Matouk shares what he'll be covering in his two sessions at #identiverse. Learn about our other sessions & how to connect with our experts. go.aws/3xmmm4r
Join us at #Identiverse where you can learn about:
✅ Our workforce & consumer identity services
✅How to provide seamless experiences to employees and consumers
✅ How to centralize & scale fine-grained access controls
go.aws/3xmmm4r
Need audited evidence of controls in AWS System and Organization Controls (SOC) reporting for using #AWSRAM? You can now use the AWS SOC reports for #AWSRAM to help meet your compliance requirements. go.aws/3tIfVrD twitter.com/AWSSecurityInf…
Twiends™ uses the Twitter™ API, displays it's logo & trademarks, and is not endorsed or certified by them. These items remain the property of Twitter.
We do not sell followers, we only provide display advertising. Bots & fake accounts are not permitted on twiends. © 2009