From the course: AWS Certified Advanced Networking - Specialty (ANS-C01) Cert Prep
Join today to access over 25,200 courses taught by industry experts.
AWS CloudFormation Guard - Amazon Web Services (AWS) Tutorial
From the course: AWS Certified Advanced Networking - Specialty (ANS-C01) Cert Prep
AWS CloudFormation Guard
“
You're writing CloudFormation templates, but how do you make sure they always meet your organization's security and compliance rules before you deploy? AWS CloudFormation Guard helps you exactly do that. CloudFormation Guard or CFN Guard is an open-source policy as code evaluation tool. tool. You write rules in a simple domain-specific language, DSL, using its CLI, and then you validate structured data, like JSON or YAML, against those policies. Guard also includes a built-in unit testing framework to make sure your rules do what you expect. Importantly, Guard does not check for template syntax errors. For that, you would use CFM Lint instead. Here are some common scenarios where Guard is very useful. First, shift left governance. Validate your CloudFormation template before deployment to ensure they comply with your company policies for security or cost. Second, detective compliance. Validate structured configuration…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.
Watch this course anytime, anywhere.
Get started with a free trial today.
Contents
-
-
(Locked)
AWS services overview5m 18s
-
(Locked)
AWS compute services10m 32s
-
(Locked)
AWS container services6m 4s
-
(Locked)
AWS storage services17m 32s
-
(Locked)
AWS database services11m 51s
-
(Locked)
AWS deployment services14m 25s
-
(Locked)
AWS monitoring services6m 6s
-
(Locked)
AWS audit and compliance services3m 22s
-
(Locked)
AWS networking and content delivery services13m 54s
-
(Locked)
AWS application integration services10m 9s
-
(Locked)
AWS security services12m 56s
-
(Locked)
AWS management and governance services9m 50s
-
(Locked)
AWS identity services4m 32s
-
(Locked)
AWS machine learning services16m 41s
-
(Locked)
AWS transfer and migration services9m 33s
-
(Locked)
AWS analytics services22m 32s
-
(Locked)
-
-
(Locked)
Amazon VPC overview2m 25s
-
(Locked)
The anatomy of an Amazon VPC17m 15s
-
(Locked)
Amazon VPC network architectures10m 58s
-
(Locked)
AWS Transit Gateway for Amazon VPC5m 51s
-
(Locked)
Hands-on lab: Exploring the Amazon VPC console16m 52s
-
(Locked)
Hands-on lab: Launching an Amazon VPC15m 17s
-
(Locked)
OSI model explained for beginners5m 17s
-
(Locked)
-
-
(Locked)
Amazon EC2 overview5m 11s
-
(Locked)
Instance purchasing options3m 40s
-
(Locked)
Spot instances5m 35s
-
(Locked)
On-demand EC2 instances3m
-
(Locked)
Reserved instances3m 50s
-
(Locked)
Dedicated hosts and instances3m 12s
-
(Locked)
Savings plans1m 57s
-
(Locked)
Capacity reservation1m 44s
-
(Locked)
Instance types8m 6s
-
(Locked)
Amazon Machine Image (AMI)7m 29s
-
(Locked)
EC2 Image Builder2m 56s
-
(Locked)
Instance user data2m 31s
-
(Locked)
Instance metadata6m 13s
-
(Locked)
Amazon EC2 networking14m 20s
-
(Locked)
Amazon EC2 network security16m 12s
-
(Locked)
Launching an Amazon EC2 instance10m
-
(Locked)
Hands-on lab: Vertically scaling an Amazon EC2 instance8m 13s
-
(Locked)
Hands-on lab: Using EC2 Instance Connect to connect to your instance5m 23s
-
(Locked)
Hands-on lab: Creating an Amazon Machine Image (AMI) from an EBS-backed EC2 instance8m 36s
-
(Locked)
Hands-on lab: Creating placement groups5m
-
(Locked)
Hands-on lab: Launching an EC2 Spot instance6m 19s
-
(Locked)
Hands-on lab: Setting up a web server on an EC2 instance5m 52s
-
(Locked)
-
-
(Locked)
Amazon EBS overview11m 10s
-
(Locked)
Amazon EBS types5m 33s
-
(Locked)
Amazon S3 overview9m 22s
-
(Locked)
Amazon S3 storage classes12m 41s
-
(Locked)
Amazon S3 minimum storage duration4m 26s
-
(Locked)
Amazon S3 event notifications2m 53s
-
(Locked)
Amazon EFS overview3m 57s
-
(Locked)
Amazon FSx for Lustre4m 17s
-
(Locked)
Amazon FSx for Windows File Server5m 36s
-
(Locked)
Amazon FSx for OpenZFS6m 24s
-
(Locked)
Amazon FSx for NetApp ONTAP6m 2s
-
(Locked)
Amazon Data Lifecycle Manager3m 55s
-
(Locked)
AWS Backup5m 28s
-
(Locked)
AWS Elastic Disaster Recovery7m 49s
-
(Locked)
Hands-on lab: Exploring the Amazon S3 console7m 32s
-
(Locked)
Hands-on lab: Creating an Amazon S3 bucket7m 48s
-
(Locked)
Hands-on lab: Uploading and downloading objects in Amazon S35m 1s
-
(Locked)
Hands-on lab: Creating an EFS file systems storage7m 36s
-
(Locked)
-
-
(Locked)
Amazon RDS overview10m 58s
-
(Locked)
Amazon RDS read replica13m
-
(Locked)
Amazon RDS multi-AZ deployments11m 5s
-
(Locked)
Amazon RDS events notification6m 17s
-
(Locked)
Amazon RDS proxy3m 49s
-
(Locked)
Amazon Aurora overview7m 10s
-
(Locked)
Amazon DynamoDB overview14m 30s
-
(Locked)
Amazon DynamoDB core components7m 32s
-
(Locked)
Global secondary index2m 23s
-
(Locked)
Local secondary index4m 6s
-
(Locked)
-
-
(Locked)
Systems Manager Parameter Store5m 44s
-
(Locked)
Systems Manager AppConfig6m 21s
-
(Locked)
Systems Manager Automation8m 8s
-
(Locked)
Systems Manager Run Command7m 18s
-
(Locked)
Systems Manager Change Manager5m 5s
-
(Locked)
Systems Manager Patch Manager6m 48s
-
(Locked)
Hands-on lab: AWS Systems Manager Parameter Store10m 2s
-
(Locked)
-
-
(Locked)
CloudFormation overview4m 58s
-
(Locked)
Anatomy of a CloudFormation template9m 2s
-
(Locked)
CloudFormation helper scripts3m 59s
-
(Locked)
DependsOn and WaitCondition2m 43s
-
(Locked)
CloudFormation: StackSets6m 4s
-
(Locked)
CloudFormation: Nested stacks3m 52s
-
(Locked)
CloudFormation: Custom resource4m 56s
-
(Locked)
AWS CloudFormation Guard2m 47s
-
(Locked)
-
-
(Locked)
Route 53 overview8m 15s
-
(Locked)
Route 53 routing policies11m 6s
-
(Locked)
Route 53 weighted routing: Split your traffic like a pro5m 53s
-
(Locked)
Route 53 geolocation routing: Direct traffic by user location6m 10s
-
(Locked)
CloudFront overview10m 45s
-
(Locked)
CloudFront security features11m 35s
-
(Locked)
Adding CDN to your site using Amazon CloudFront8m 19s
-
(Locked)
Amazon Elastic Load Balancing (ELB) overview10m 9s
-
(Locked)
Amazon Elastic Load Balancing types8m 49s
-
(Locked)
AWS Step Functions overview6m 11s
-
(Locked)
What is AWS Cloud Map?2m 47s
-
(Locked)
-
-
(Locked)
Serverless computing overview8m 38s
-
(Locked)
Serverless architectures11m 50s
-
(Locked)
AWS Lambda overview2m 50s
-
(Locked)
Amazon API Gateway overview5m 1s
-
(Locked)
AWS Audit Manager overview6m 51s
-
(Locked)
AWS Amplify overview3m 13s
-
(Locked)
AWS Amplify demo11m 8s
-
(Locked)
AWS Elastic Beanstalk overview4m 30s
-
(Locked)
AWS Config overview4m 59s
-
(Locked)
Amazon Detective overview4m 30s
-
(Locked)
AWS Compute Optimizer overview5m 40s
-
(Locked)
Amazon Directory Service overview7m 23s
-
(Locked)
AWS Organizations overview7m 8s
-
(Locked)
AWS Control Tower2m 7s
-
(Locked)
AWS CloudTrail overview3m 13s
-
(Locked)
CloudTrail integrations3m 56s
-
(Locked)
Amazon Macie hands-on6m 54s
-
(Locked)
AWS Network Firewall5m 17s
-
(Locked)
AWS Network Firewall hands-on demo5m 17s
-
(Locked)
AWS Firewall Manager2m 47s
-
(Locked)
AWS Secrets Manager3m 53s
-
(Locked)
AWS Resource Access Manager (RAM)6m 13s
-
(Locked)
AWS Security Hub overview6m 13s
-
(Locked)
Amazon Inspector4m 3s
-
(Locked)
AWS Shield5m 23s
-
(Locked)
Automated Forensics Orchestrator3m 37s
-
(Locked)
How to launch an AWS Lambda function1m 25s
-
(Locked)
Hands-on lab: Set up an AWS organization7m 58s
-
(Locked)
-
-
(Locked)
Amazon S3 vs. EFS vs. EBS3m 54s
-
(Locked)
High availability vs. fault tolerance3m 26s
-
(Locked)
File vs volume vs. tape storage gateway4m 5s
-
(Locked)
RTO vs. RPO2m 29s
-
(Locked)
Security group vs. network ACL7m 56s
-
(Locked)
Storage Gateway vs. DataSync4m 55s
-
(Locked)
SSM Parameter Store vs. AWS Secrets Manager15m 33s
-
(Locked)
Global secondary index vs. local secondary index3m 32s
-
(Locked)
-
-
(Locked)
Understanding Amazon S3 Storage Lens4m 14s
-
(Locked)
Amazon S3 storage classes: Standard1m 46s
-
(Locked)
Amazon S3 storage classes: Standard-IA2m 28s
-
(Locked)
Amazon S3 storage classes: One zone-IA2m 31s
-
(Locked)
Amazon S3 storage classes: Intelligent-tiering2m 33s
-
(Locked)
Amazon S3 storage class: Glacier instant retrieval2m 19s
-
(Locked)
Amazon S3 storage class: Glacier flexible retrieval2m 33s
-
(Locked)
Transform data with Amazon S3 Object Lambda7m 39s
-
(Locked)
Vector management with Amazon S3 Vectors10m 4s
-
(Locked)
Tabular data management in S3 with table buckets6m
-
(Locked)
-
-
(Locked)
Getting started with AWS Direct Connect5m 6s
-
(Locked)
Understanding virtual interfaces (VIFs) in AWS Direct Connect3m 31s
-
(Locked)
Introduction to Border Gateway Protocol: Who tells the internet where to go3m 20s
-
(Locked)
The role of Direct Connect gateway in multi-VPC networking3m 23s
-
(Locked)
Understanding link aggregation groups (LAG) in AWS Direct Connect3m 4s
-
(Locked)
Understanding AWS Direct Connect SiteLink4m 45s
-
(Locked)
AWS Direct Connect routing policies and BGP communities5m 6s
-
(Locked)
AWS Direct Connect Resiliency Toolkit6m 52s
-
(Locked)
MAC Security (MACsec): How AWS Direct Connect protects your link3m 54s
-
(Locked)
Introduction to Dead Peer Detection (DPD)5m 2s
-
(Locked)
What is Internet Key Exchange (IKE)?5m 50s
-
(Locked)
What is routing?4m 20s
-
(Locked)
Introduction to AWS Cloud WAN4m 34s
-
(Locked)
What is a wide area network (WAN)?3m 12s
-
(Locked)
AWS Data Transfer Terminal7m 28s
-
(Locked)
AWS Application Migration Service: Move to the cloud with confidence4m 39s
-
(Locked)
The 7 common migration strategies9m 48s
-
(Locked)
Move your data faster and smarter with AWS DataSync5m 5s
-
(Locked)
-
-
(Locked)
Route 53 overview8m 15s
-
(Locked)
Route 53 routing policies11m 6s
-
(Locked)
Route 53 simple routing: Connect your domain in minutes4m 39s
-
(Locked)
Route 53 multivalue answer routing: Simple load distribution with health checks4m 59s
-
(Locked)
Route 53 weighted routing: Split your traffic like a pro5m 53s
-
(Locked)
Route 53 latency routing: Send users to the fastest server7m 12s
-
(Locked)
Route 53 failover routing: Automatic disaster recovery5m 55s
-
(Locked)
Route 53 geolocation routing: Direct traffic by user location6m 10s
-
(Locked)
Route 53 geoproximity routing: Route traffic by location with bias control4m 50s
-
(Locked)
Route 53 IP-based routing: Route traffic by specific IP ranges6m 4s
-
(Locked)