1.AWS Systems Manager
The diagram above is referenced from the article: https://medium.com/@vtstanescu/ssh-alternative-in-aws-d0f67a5a460d
Outstanding features:
- Session Manager: Securely access and control your EC2 instances without exposing SSH ports or using SSH keys.
- Incident Manager: Automatically detects and responds to incidents, such as application errors or hardware problems, by performing automated troubleshooting actions.
- Ability to setup to many other cloud providers. https://aws.amazon.com/vi/blogs/mt/use-aws-systems-manager-for-multi-cloud-operations-management-part-1/
2.IAP and OS login
- Simplified SSH Access: OS Login enables you to use your Google identity to SSH into your Linux VMs, eliminating the need to manage SSH keys.
- Enhanced Security: IAP provides an additional layer of security by controlling access to your applications and VMs based on user identity and context. This means that users can only access resources if they have the appropriate permissions, regardless of their network location.
- Context-Aware Access: IAP can take into account various contextual factors, such as user location, device type, and time of day, to make more informed access decisions.
See details at
https://github.com/GoogleCloudPlatform/iap-desktop
3.Azure Bastion host
Outstanding features:
- No Public IP Required: Eliminates the need to expose your VMs to the public internet via public IP addresses. This significantly reduces the attack surface and protects your VMs from unauthorized access attempts.
- Azure AD Integration: Leverages Azure Active Directory for authentication, allowing you to manage access to your VMs using your existing identity infrastructure.
Thank you for reading the article
Top comments (0)