Securing Cross-Account AWS API Calls & CLI Access with MFA (Two-Factor) Authentication

AWS Cross-Account Roles are an excellent way of managing access to a target account (the account in which work is carried out) from other AWS accounts. Some scenarios to consider in this context include: Managed Services & Support Centralised accounts, e.g. from an AWS Organizations perspective 3rd parties & services (e.g. Cloudcheckr) The advantages of Read more about Securing Cross-Account AWS API Calls & CLI Access with MFA (Two-Factor) Authentication[…]

Creating a Core Network Foundation in AWS with SSH, VPN & NAT access

For both test and build purposes I often find myself reusing parts of past CloudFormation templates. Over time I’ve found that the foundation of the templates like VPC, subnets, routing tables etc remain roughly the same. I have also found that the AWS VPN solution often isn’t suitable because of e.g. NAT, lack of port Read more about Creating a Core Network Foundation in AWS with SSH, VPN & NAT access[…]

Need a good reason to switch to Cloudformation YAML now? Template size limits…

AWS CloudFormation size limits are well-documented in the User Guide. However, this does not make hitting any of the limits any less painful. I recently hit the template body size limit in request (–template-body) of 51200 bytes on one of my templates. This adds the extra complexity of having to first upload the template to Read more about Need a good reason to switch to Cloudformation YAML now? Template size limits…[…]

Securing AWS API Calls & CLI Access with MFA (Two-Factor) Authentication

One of the largest concerns of allowing AWS API calls to be made from the “outside” is issuing an API key and secret for developer and administrator PCs and laptops alike – because they may be interceptable in one way or another. Some scenarios spring to mind: Laptop is stolen/un-encrypted or left unlocked Key/secret is Read more about Securing AWS API Calls & CLI Access with MFA (Two-Factor) Authentication[…]

Welcome!

Welcome to Virtuability. We are currently launching as a new business, which aims to specialise in Cloud services for small to medium organisations. Our goal is to deliver an exceptional service to businesses around the world in a no-nonsense and personal manner. Please feel free to contact us if you have any questions about our Read more about Welcome![…]