Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Update basics.md #196

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open
Changes from all commits
Commits
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
29 changes: 14 additions & 15 deletions Cloud_providers/AWS/basics.md
Original file line number Diff line number Diff line change
@@ -1,25 +1,24 @@
## AWS
[Amazon Web Services (AWS)](https://aws.amazon.com/ "Amazon Web Services (AWS)") is a comprehensive cloud computing platform that offers a wide range of services to help businesses and individuals build, deploy, and manage applications and infrastructure. One fundamental concept within AWS is the Amazon Resource Name (ARN), which plays a crucial role in resource identification and access control.

- [AWS ARN](https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html)
**[Amazon Resource Names (ARNs)](https://docs.aws.amazon.com/ARG/latest/userguide/resource-groups.html "Amazon Resource Names (ARNs)")** uniquely identify AWS resources. ARNs are essential when you need to specify a resource unambiguously across all of AWS. They are used in various contexts, such as **AWS Identity and Access Management (IAM) policies, Amazon Relational Database Service (Amazon RDS) tags, and API calls**. ARNs are structured strings that contain information about the AWS service, region, AWS account, and the resource itself.

- [AWS IAM](https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_identifiers.html)
In the realm of AWS IAM (Identity and Access Management), **IAM policies** are pivotal in defining permissions. IAM is a service that allows you to manage access to AWS resources securely. When a policy is attached to an identity (such as a user or group) or a resource, it specifies what actions are allowed or denied. AWS evaluates these policies when a principal, like a user, makes a request to AWS services. These policies help enforce access control and ensure that only authorized actions are performed within your AWS environment.

- [AWS Troubleshooting IAM](https://docs.aws.amazon.com/IAM/latest/UserGuide/troubleshoot.html)
When working with AWS EKS (Elastic Kubernetes Service), you can interact with your Kubernetes clusters using the AWS CLI (Command Line Interface) and the Kubernetes **[kubectl](https://kubernetes.io/docs/reference/kubectl/ "kubectl")** command. To manage Kubernetes contexts for AWS EKS clusters, you can use the following commands:

- ARN
- Amazon Resource Names (ARNs) uniquely identify AWS resources. We require an ARN when you need to specify a resource unambiguously across all of AWS, such as in IAM policies, Amazon Relational Database Service (Amazon RDS) tags, and API calls.
**1. Get Contexts:** To view the available contexts in your **[kubectl](https://kubernetes.io/docs/reference/kubectl/ "kubectl")** configuration, use the command:

- get contexts
``` kubectl config get-contexts ```
`kubectl config get-contexts
`

- use contexts
**2. Use Context:** To set a specific AWS EKS cluster context for subsequent **[kubectl](https://kubernetes.io/docs/reference/kubectl/ "kubectl")** commands, you can use the following command:

```kubectl config use-context arn:aws:eks:<region-name>:<arn-id>:cluster/<cluster-name>```
`kubectl config use-context arn:aws:eks:<region-name>:<arn-id>:cluster/<cluster-name>
`

- update cluster config
**3. Update Cluster Config:** To update your Kubernetes configuration for an AWS EKS cluster, you can use the AWS CLI command:

```aws eks update-kubeconfig --region <region-name> --name <cluster-name>```
`aws eks update-kubeconfig --region <region-name> --name <cluster-name>
`

- IAM Policies

```A policy is an entity in AWS that, when attached to an identity or resource, defines their permissions. AWS evaluates these policies when a principal, such as a user, makes a request. ```
AWS ARNs are crucial for uniquely identifying AWS resources, IAM policies define permissions for these resources, and when working with AWS EKS and Kubernetes, managing contexts is essential for interacting with your clusters effectively. Understanding these concepts and commands is fundamental for efficient AWS resource management and access control.