AWS Interview Question

What are the different types of encryption mechanism available in AWS to encrypt data at rest in s3 ?

Data protection refers to protecting data while in-transit (as it travels to and from Amazon S3) and at rest (while it is stored on disks in Amazon S3 data centers) 1.Server-Side Encryption Request Amazon S3 to encrypt your object before saving it on disks in its data centers and then decrypt it when you download the objects. 2.Client-Side Encryption  Encrypt…

Continue Reading

RDS

MySQL/Amazon RDS error: “you do not have SUPER privilege”

Access denied; you need the SUPER privilege for this operation you do not have SUPER privilege This error normally will occur when try to import or restore mysql database into Amazon rds. The error clearly shows you do not have SUPER user privileges . Yes thats true , becuase Amazon will not provide any rds super user provilages even for…

Continue Reading

AWS

How to configure AWS cloud trail logs to S3 Bucket? 

AWS CloudTrail is a web service that records activity made on your account and delivers log files to your Amazon S3 bucket. CloudTrail provides visibility into user activity by recording actions taken on your account . CloudTrail records important information about each action, including who made the request, the services used, the actions performed, parameters for the actions, and the…

Continue Reading

AWS

How to configure multiple AWS EC2 Elastic Network Interface ENI in Linux instance

AWS EC2 instance by-default will have one ENI with private / public IP address .In some cases need 2 or more separate IP address for high availability solutions, multiple web deployments or to separate the management ,administration and public traffic .In AWS we can create additional ENI NIC and can attach to instance . Elastic Network Interface (ENI) properties: Every…

Continue Reading

Ansible basics

Ansible technical terms – Cheat sheet

Ansible has lot of technical terms with service , function, modules etc . Below are the major technical terms used widely . Control Node: Any machine that has ansible and python installed can act ass Control node . You can run commands and playbooks, invoking /usr/bin/ansible or /usr/bin/ansible-playbook, from any control node .Windows server can not be run as control node. Managed Node:…

Continue Reading

AWS

What is the difference between AWS IAM user and role

Below are the difference between IAM user and role. IAM User: An IAM user has permanent long-term credentials and is used to directly interact with AWS services . Users can make requests to AWS services using security credentials. A user is a unique identity recognized by AWS services and applications. Similar to a login user in an operating system like…

Continue Reading

Ansible basics

Ansible Architecture

The above diagram illustrate Ansible architecture . The beauty of ansible is agentless . By default it manages remote connections over SSH (Linux & Unix) or WinRM (windows). The “Ansible Automation Engine” consists of below core components. Core component: *Host Inventory *Modules *Playbook *Plugins Now lets see each component functionality. Host Inventory: Inventory is a collection of hosts or nodes…

Continue Reading

AWS

How to connect aws ec2 instance Linux server console

In traditional Data center environment , VM ware and other cloud providers like Azure having options to connect Linux virtual server serial console . Through IMM console or through web browser or through some application call . Normally why we want to connect with Linux server console? If you are unable to reach your instance via ssh , problem diagnostics…

Continue Reading

AWS

How to practice AWS using without paying

In AWS account setup is simple concept . AWS Account is normally common for single user or Enterprise account for organisation,you will not find any difference in service features , view etc . There is no concept of trial account or separate free tier account. It is really possible to practice AWS without paying using AWS free tier? The answer…

Continue Reading

AWS

AWS ENI – Error deleting network interface

In AWS sometimes you could see the error message when try to detach ENI “Error deleting network interface” .  It’s normal , we just need to understand the concept . ENI’s are not only created by manually . When you create some resources , AWS will automatically create the backend must required resource. Example when you create EFS it will…

Continue Reading

AWS

How to login with AWS CLI from Windows

Step1: To login into AWS CLI , first need to install AWS CLI package . The CLI package available for different OS . you can download from amazon website http://docs.aws.amazon.com/cli/latest/userguide/installing.html Step2: Create IAM User account with access key and Secret Key . Dont forget to save , you can not view or download it again. You can create multiple access…

Continue Reading

AWS

How to attach role to AWS EC2 instance after launching

Few years back this feature was not available in AWS .Once instance launched with particular role you can not replace . Need to launch the instance with required role .This is really challenge task in real time scenario Now Amazon enabled this beautiful features . So you can attache or replace the role to instance anytime even in EC2 instance…

Continue Reading

Ansible basics

What is Ansible?

Ansible is an open-source IT automation tool. Ansible was written by Michael DeHaan and acquired by Red Hat in 2015 . Ansible supports cross platform , supports all major OS,Physical ,virtual,cloud and network. Ansible bundled with 1000+ modules in built , which will make task easier to run client nodes. Ansible major features are : 1.Configuration Management 2.Software provisioning 3. Application deployment4.Multi-tier…

Continue Reading

AWS

How to redirect http URL to https in AWS ELB

In AWS ELB we can pass the traffic as HTTP (80) or HTTPS (443) . If you are using HTTPS you have to terminate SSL certificate either in ELB or backend EC2 instance. Normally users will type the URL directly in browser  not with HTTP or HTTPS . When user type the URL with HTTPS the request will responded directly…

Continue Reading

AWS

How to create S3 Bucket in AWS and set permission

Creating S3 bucket very simple . In-fact you can create without any guidance also , like creating folder in google drive ,super easy. But if you are new , you may need some assistance on setting up permissions. The below steps will help you. 1.Login to S3 console page You can find information about any existing bucket . 2.Click “Create…

Continue Reading