Securing Cross-Account AWS API Calls & CLI Access with MFA (Two-Factor) Authentication

AWS Cross-Account Roles are an excellent way of managing access to a target account (the account in which work is carried out) from other AWS accounts. Some scenarios to consider in this context include: Managed Services & Support Centralised accounts, e.g. from an AWS Organizations perspective 3rd parties & services (e.g. Cloudcheckr) The advantages of Read more about Securing Cross-Account AWS API Calls & CLI Access with MFA (Two-Factor) Authentication[…]

Creating a Core Network Foundation in AWS with SSH, VPN & NAT access

For both test and build purposes I often find myself reusing parts of past CloudFormation templates. Over time I’ve found that the foundation of the templates like VPC, subnets, routing tables etc remain roughly the same. I have also found that the AWS VPN solution often isn’t suitable because of e.g. NAT, lack of port Read more about Creating a Core Network Foundation in AWS with SSH, VPN & NAT access[…]