ACM Enterprise Controls to help govern certificate issuance | Amazon Web Services
Enterprise, network and security admins can use AWS Identity and Access Management (IAM) condition context keys with AWS Certificate Manager (ACM) to help ensure that users are issuing certificates that conform to their organization’s public key infrastructure (PKI) guidelines. For example, you can use condition keys to allow only DNS validation. Or, you can authorize which of your users can request certificates for specific domain names such as accounting.example.com and/or wildcard names.
Using these context keys, you can define how your ACM users customize certificate issuance parameters to authorize 1) a specific certificate validation method, 2) who can request certificates for specific domain names including wildcard names, 3) specific certificate key-algorithm(s), and 4) the request of public or private certificate type. Additionally, you can prevent users from disabling Certificate Transparency (CT) logging or requesting certificates from specific AWS Private Certificate Authorities.
You can distribute and enforce your condition keys across your users and accounts using either IAM or Service control polices (SCPs) from AWS Organizations. You can enforce organization-wide policies or have specific policies for organization units. For example, you can authorize your HR unit to issue certificates for the domain name HR.example.com while your IT department can only issue certificates for IT.example.com. You can also enforce these policies at account creation through AWS CloudFormation.
Learn more at: https://go.aws/3PFS1an
Subscribe:
More AWS videos: https://go.aws/3m5yEMW
More AWS events videos: https://go.aws/3ZHq4BK
Do you have technical AWS questions?
Ask the community of experts on AWS re:Post: https://go.aws/3lPaoPb
ABOUT AWS
Amazon Web Services (AWS) is the world’s most comprehensive and broadly adopted cloud platform, offering over 200 fully featured services from data centers globally. Millions of customers — including the fastest-growing startups, largest enterprises, and leading government agencies — are using AWS to lower costs, become more agile, and innovate faster.
#AWSCertificateManager #ConditionKeys #LimitCertificateRequests #CertificateIssuanceGovernance #AWSSecurityServicesFeatureDemos #AWS #AmazonWebServices #CloudComputing
Видео ACM Enterprise Controls to help govern certificate issuance | Amazon Web Services канала Amazon Web Services
Using these context keys, you can define how your ACM users customize certificate issuance parameters to authorize 1) a specific certificate validation method, 2) who can request certificates for specific domain names including wildcard names, 3) specific certificate key-algorithm(s), and 4) the request of public or private certificate type. Additionally, you can prevent users from disabling Certificate Transparency (CT) logging or requesting certificates from specific AWS Private Certificate Authorities.
You can distribute and enforce your condition keys across your users and accounts using either IAM or Service control polices (SCPs) from AWS Organizations. You can enforce organization-wide policies or have specific policies for organization units. For example, you can authorize your HR unit to issue certificates for the domain name HR.example.com while your IT department can only issue certificates for IT.example.com. You can also enforce these policies at account creation through AWS CloudFormation.
Learn more at: https://go.aws/3PFS1an
Subscribe:
More AWS videos: https://go.aws/3m5yEMW
More AWS events videos: https://go.aws/3ZHq4BK
Do you have technical AWS questions?
Ask the community of experts on AWS re:Post: https://go.aws/3lPaoPb
ABOUT AWS
Amazon Web Services (AWS) is the world’s most comprehensive and broadly adopted cloud platform, offering over 200 fully featured services from data centers globally. Millions of customers — including the fastest-growing startups, largest enterprises, and leading government agencies — are using AWS to lower costs, become more agile, and innovate faster.
#AWSCertificateManager #ConditionKeys #LimitCertificateRequests #CertificateIssuanceGovernance #AWSSecurityServicesFeatureDemos #AWS #AmazonWebServices #CloudComputing
Видео ACM Enterprise Controls to help govern certificate issuance | Amazon Web Services канала Amazon Web Services
Показать
Комментарии отсутствуют
Информация о видео
Другие видео канала
Analytics Velocity - Gain Insights Faster | Amazon Web Services
The VMware on AWS Update Show - October 2023 Edition | Amazon Web Services
Using S3 for Veeam SOBR | Amazon Web Services
How to tag resources proactively and automatically at scale? | Amazon Web Services
Mastering Email Deliverability: How to Handle Bounces and Boost Inbox Success | Amazon Web Services
Scaling AWS Verified Access With AWS Resource Access Manager | Amazon Web Services
F1 Insights powered by AWS | Alternative Strategy | Amazon Web Services
Back to Basics: Using SageMaker Project Templates to Consistently Scale MLOps Enterprise Wide #MLOps
How do I assign a custom primary private IP address to my Amazon EC2 instance?
Generative AI is the Answer: What Was the Question? | Amazon Web Services
API Gateway의 HTTP 403 오류를 해결하려면 어떻게 해야 합니까?
AWS Managed Microsoft AD Demo and Overview | Amazon Web Services
How do I recover a lost or forgotten AWS password?
How do I provide internet access to a Lambda function that’s connected to an Amazon VPC?
How do I troubleshoot 503 errors returned when using Classic Load Balancer?
Back to Basics: Modernize Your Web Application with Server Side Rendering Technologies
Cybersecurity researcher shares valuable insights for SMBs - Part 2 | Amazon Web Services
Cybersecurity researcher shares valuable insights for SMBs | Amazon Web Services
Build a generative AI Virtual Assistant with Amazon Bedrock, Langchain and Amazon Elasticache
Onica by Rackspace Technology reaches customers in AWS Marketplace | Amazon Web Services
WWTaccelerates customer procurement in AWS Marketplace | Amazon Web Services