User Account

All Pages

Differences between the updated bucket policy

Assignment Help Computer Engineering
Reference no: EM133761282

Cloud Computing

Question 1: Create a VPC and a public subnet (use instructions from Lab 3)

Create a VPC with Internet gateway, plus a public subnet and a public Route table. Include your first name in all of them. Associate Route table with the public Subnet.

Take a full and clear screenshot of your VPC's entire Resource map

Launch an EC2 instance based on Amazon Linux inside your new VPC and public subnet. Note: Make sure your account is eligible for the Free Tier, and that you use Free Tier eligible services when launching the instance.

Connect to the EC2 instance using SSH client.

Question 2: Create a S3 bucket (instructions from Lab 4, until bucket is created)

Go to S3 dashboard to create a bucket. Include your first name in the bucket name.

Under the bucket Permissions, use the Bucket policy previously discussed in Lab 4.

Upload a blank .txt file named with your first name (e.g., name.txt) into the S3 bucket.

Take a full screenshot of your bucket showing the object uploaded in it

Question 3: Create an endpoint using the VPC dashboard

Open the Amazon VPC dashboard.

In the navigation pane, choose Endpoints. Then choose Create endpoint.

For Service category, choose AWS services.

In Services, filter for Type= Gateway and select the option com.amazonaws.region.s3 Note: If your region is Asia Pacific (Sydney), region would be ap-southeast-2

For VPC, and Route table, select the VPC and public subnet you created in step 1.

For Policy, select Full access to allow all operations by all principals on all resources over the VPC endpoint.

Choose Create endpoint.

Take another screenshot of VPC's Resource Map; show the new endpoint

Question 4: Create an IAM instance profile that grants access to Amazon S3

Open the IAM dashboard.

Choose Roles, and then choose Create role.

Select AWS Service and then choose EC2 under Use Case.

Select Next to go to Add permissions.

Search and select AmazonS3FullAccess policy to allow EC2 access your S3 buckets.

Next, enter a Role name and include your first name in it, e.g., name-EC2-role.

Take a screenshot of the Role details to show Role name and Description

Scroll down and click Create role.

Question 5: Attach the IAM instance profile to the EC2 instance

Open the Amazon EC2 dashboard and navigate to instances.

Select the EC2 instance created in step 1. Attach the IAM role created in step 4 using:

Choose the Actions tab, choose Security, and then choose Modify IAM role.

Select the IAM role that you just created, and then Update IAM role. The IAM role is assigned to your EC2 instance.

Question 6: Update your bucket policy to restrict bucket permissions to your EC2 instance

For the bucket created in step 2, under the bucket permissions edit Bucket policy, and change the policy code to the code shown below, and then save changes.
Note: Replace your-bucket-name with the name of your S3 bucket and vpce-xxxxxxxxxx with the ID of the VPC endpoint (created in step 3) that attached to your EC2 instance.

{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Principal": "*",
"Action": "s3:*", "Resource": [
"arn:aws:s3:::your-bucket-name", "arn:aws:s3:::your-bucket-name/*"
],
"Condition": { "StringEquals": {
"aws:SourceVpce": "vpce-xxxxxxxxxx"
}
}
}
]
}

Take a full and clear screenshot of your bucket policy (4 marks)

Explain briefly in your report, what are the TWO main differences between the updated bucket policy in step 6, and the previous policy that was used in step 2

Question 7: Access your S3 from the EC2 instance, in Lunix prompt

Use the Linux command below to list all S3 buckets, including the one created in step 2:
aws s3 ls

List file (or files) in the new bucket created in step 2:
aws s3 ls s3://your-bucket-name

List any EC2 files:
ls

Get the file in the bucket created in step 2 (e.g., name.txt):
aws s3 cp s3://your-bucket-name/name.txt .

Then again list the files in EC2:
ls -l

Finally delete the file from EC2:
rm name.txt

Take a full screenshot of the prompt showing all 6 commands and results (5 marks)

Question 8: Completion

Terminate the EC2. Submit a PDF copy of answers containing the screenshots and descriptions via Moodle LMS. Include a one liner caption on the top of each screenshot, to describe its contents. Number the captions (e.g. Screenshot 1. VPC Resource map) etc etc.

 

Reference no: EM133761282

Questions Cloud

Presents feeling tired-pain localized to Left side of face : Mr. A is an 88-year-old presents feeling tired, and pain localized to Left side of face and behind left eye, Onset a week ago.
What percentage of data are missing : Calculate the percentage per Item to determine what percentage of data are missing (e.g., CPH, after deleting CPH9 and CPH10, has 14 items).
Significance of measuring respiratory rate-rhythm-depth : Describe the significance of measuring respiratory rate, rhythm, depth, and effort in a health assessment,
How do you experience stratification and gender : Discuss your experiences with social class, inequality, or income privilege. Discuss how you and your friends do gender.
Differences between the updated bucket policy : Explain briefly in your report, what are the TWO main differences between the updated bucket policy in step 6, and the previous policy that was used in step 2
Identify the clinical findings from the case : Identify the clinical findings from the case that supports a diagnosis of acute diverticulitis. List 3 risk factors for acute diverticulitis.
Examine white privilege in working with a biracial couple : Examine the implications of white privilege in working with a biracial couple, a white male and a Latina female, in a social work setting.
Create a vpc and a public subnet : ICT507 Cloud Computing, Sydney International School of Technology & Commerce - under the bucket permissions edit Bucket policy, and change the policy code
How do perception tie into how we view real-world situations : How do culture and perception tie into how we view real-world situations? For example, there is controversy over DNR orders (do not resuscitate).

Reviews

Write a Review

Computer Engineering Questions & Answers

  Mathematics in computing

Binary search tree, and postorder and preorder traversal Determine the shortest path in Graph

  Ict governance

ICT is defined as the term of Information and communication technologies, it is diverse set of technical tools and resources used by the government agencies to communicate and produce, circulate, store, and manage all information.

  Implementation of memory management

Assignment covers the following eight topics and explore the implementation of memory management, processes and threads.

  Realize business and organizational data storage

Realize business and organizational data storage and fast access times are much more important than they have ever been. Compare and contrast magnetic tapes, magnetic disks, optical discs

  What is the protocol overhead

What are the advantages of using a compiled language over an interpreted one? Under what circumstances would you select to use an interpreted language?

  Implementation of memory management

Paper describes about memory management. How memory is used in executing programs and its critical support for applications.

  Define open and closed loop control systems

Define open and closed loop cotrol systems.Explain difference between time varying and time invariant control system wth suitable example.

  Prepare a proposal to deploy windows server

Prepare a proposal to deploy Windows Server onto an existing network based on the provided scenario.

  Security policy document project

Analyze security requirements and develop a security policy

  Write a procedure that produces independent stack objects

Write a procedure (make-stack) that produces independent stack objects, using a message-passing style, e.g.

  Define a suitable functional unit

Define a suitable functional unit for a comparative study between two different types of paint.

  Calculate yield to maturity and bond prices

Calculate yield to maturity (YTM) and bond prices

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +1-415-670-9521

Phone: +1-415-670-9521

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd