Skip to content

Contact sales

By filling out this form and clicking submit, you acknowledge our privacy policy.
  • Labs icon Lab
  • A Cloud Guru
Google Cloud Platform icon
Labs

Securing Your S3 Bucket from A to Z

In this hands-on lab, we implement S3 bucket policies and IAM policies to learn about the various ways to secure our S3 buckets and the data within them. We also examine which services we can leverage to audit and remediate security issues. Here is the [GitHub link](https://raw.githubusercontent.com/linuxacademy/content-how-to-properly-secure-an-s3-bucket/master/lab-securing-s3-a-to-z/S3BucketPolicy.json) to copy the S3 bucket policy mentioned in this lab.

Try for free Contact sales
Google Cloud Platform icon
Labs

Path Info

Level
Clock icon Intermediate
Duration
Clock icon 1h 15m
Published
Clock icon Aug 06, 2020

Contact sales

By filling out this form and clicking submit, you acknowledge our privacy policy.

Table of Contents

  1. Challenge

    Update the IAM Policy

    Update the IAM policy to include our partyparrots-<STRING> bucket name and the public IP address provided for the lab.

  2. Challenge

    Attach the IAM and S3 Bucket Policies

    Attach the IAM policy to our Architects and Developers groups and create user folders for bob and john. Then, add an S3 bucket policy from the provided GitHub repository.

  3. Challenge

    Test and Verify the IAM and S3 Bucket Policies

    Verify the IAM and S3 policy permissions are configured correctly, update the IAM policy to include the DeleteObject permission, and test server-side encryption.

  4. Challenge

    Enable Block Public Access in the S3 Bucket

    Update the Block Public Access settings for the S3 bucket.

  5. Challenge

    Configure CloudTrail and CloudWatch for SNS Event Notifications

    Create a CloudTrail trail to log read and write events, configure SNS notifications and subscribe to receive email alerts, and set a CloudWatch rule to trigger email alerts on deletion events.

A Cloud Guru - Labs - Securing Your S3 Bucket from A to Z
Author
A Cloud Guru

The Cloud Content team comprises subject matter experts hyper focused on services offered by the leading cloud vendors (AWS, GCP, and Azure), as well as cloud-related technologies such as Linux and DevOps. The team is thrilled to share their knowledge to help you build modern tech solutions from the ground up, secure and optimize your environments, and so much more!

What's a lab?

Hands-on Labs are real environments created by industry experts to help you learn. These environments help you gain knowledge and experience, practice without compromising your system, test without risk, destroy without fear, and let you learn from your mistakes. Hands-on Labs: practice your skills before delivering in the real world.

Provided environment for hands-on practice

We will provide the credentials and environment necessary for you to practice right within your browser.

Guided walkthrough

Follow along with the author’s guided walkthrough and build something new in your provided environment!

Did you know?

On average, you retain 75% more of your learning if you get time for practice.

Start learning by doing today

View Plans