DailySysAdmin | For all things IT!
A resource for Sys Admins & IT Pros
The reason for this post is that I wanted to create a one click solution to deploy a Window 10 machine into AWS. I wanted the AWS instance to be named in Windows, added to the domain, install applications, name the AWS instance tag an much more. The tools I initially decided on to create this were VMware, awscli, PowerShell, Terraform and Packer.
Continue reading “Deploying Windows 10 to AWS using Packer and the AWS PowerShell module”
The aim of this post is to configure policies in AWS to allow accounts that have been provisioned for users with specific permissions to register for MFA themselves. The authenticator we will be using is the Microsoft IOS app but it could also be Google or any other authenticator.
Continue reading “Add Microsoft Authenticator MFA to AWS Accounts”
The main driver for this post was a project I had started to migrate all of our applications that were currently using Okta as an Identity Source to Azure Active Directory. An Identity Source is authentication mechanism that you can use instead of the defaults that the application provides. If you also use Office 365 you probably use Azure AD for Single Sign On (SSO) already. This can be extended to other applications such as Salesforce not just for Office 365.
The reasons for this were mainly financial as we had already paid for Office 365 E3 + EMS licences. We therefore had the identity services built in already so it didn’t make sense to continue to pay Okta for the same service. I will go through setting up a number of applications in Azure AD including; AWS Console, BlueJeans, Concur, Dynatrace, Litmos, EmPerform, PeopleHR, Salesforce and Secret Server. All applications use SAML and we will go through the configuration for each individual application below.
Problem:
How do I add an Or condition in an AWS JSON policy?
Continue reading “Adding an Or condition in an AWS JSON policy”
Problem:
I had various text files with lists of email addresses in that I needed to add to an AWS JSON policy but needed formatting.
Continue reading “Format a text list of email addresses for an AWS JSON IAM Policy using PowerShell”
This is a quick post to mention the very useful AWS policy generator. There are many times you will need to generate JSON based policies when using AWS. You can write the code yourself or you can just let the policy generator do it for you.
Continue reading “How to create AWS JSON policies using the policy generator”