Hello! Generally sometimes interviewer ask about VPC, some people will tell i know the VPC and we can simply derive the abbreviation virtual private cloud but VPC concept is big concept & most important service in AWS.
We can try to understand and create the VPC in this post.
VPC
Subnets
Internet Gateway
Router
NAT Gateway
Elastic IP
Lets create VPC manually and assign subnets,security groups.
Security is the most important area need to concentrate now days. AWS also provide couple of security services to protect the organization but AWS cloud security provide Shared responsibility model.It means customer need to focus on Security in the cloud and AWS responsibility for security of the cloud.
we can start with IAM service:
Managing IAM users:
- No shared user Identity
- Individual user access
- Tightly control the IAM policies.
Managing IAM Groups:
- use group for giving authorization with IAM policies.
Managing aws credentials
- AWS Username/password with MFA
- Access Keys
- MFA for API calls.
