As a follow-up to the SSO, Okta, and SAML. We already did everything for our Jenkins (see the Jenkins: SAML, Okta, user groups, and Role-Based Security plugin post) – now it’s time to do the same thing with our Github organization. The idea is the same as for the Jenkins’ setup: keep all users in… Read More »
Our data-analytics team eventually started to play with an AWS Redshift cluster instead of the MariaDB RDS service. Actually, the current task is to spin up a simple Proof of Concept Redshift’s cluster in the AWS. Let’s do it quickly, without details – if this will go to the Production, I’ll add another post with… Read More »
Still on the subject of the Okta and SSO for Jenkins – let’s configure a Role-Based Security plugin for our Jenkins. See the first part in the Jenkins: SAML Authentication with Okta SSO and users groups post. The general idea is to have user groups defined in the Okta, and Okta has to pass a… Read More »
We have an OpenVPN Access Server running, see its setup in the OpenVPN: OpenVPN Access Server set up and AWS VPC peering configuration post. The VPN server is hosted in a first AWS VPC, while a Bitwarden service – in another one VPC. Between those VPCs we have a VPC peering configured, and the OpenVPN… Read More »
SAML – Secure Assertion Markup Language is used for federated authentication when some service which we need to get access to (a Service Provider), asks another service (an Identity Provider) to perform a user’s authentification. Check the documentation here>>>. Service Provider (SP): is a system where need to authenticate, in our case this will be Jenkins… Read More »
Vertica is a data warehouse solution intended to store petabytes amount of data. The task, for now, is to spin up a kind of Proof of Concept for Vertica on an AWS EC2 to take a closer look at its setup and to give it to data-analytics to play with it a bit. Vertica has… Read More »
We have an AWS EC2 with Debian and logrotate. One day its root partition was exhausted and when I started investigating it – found, that we have a bunch of files like /var/log/syslog.N.gz. At the same time by default logrotate creates a config file to rotate syslog log files: [simterm] root@monitoring-dev:~# cat /etc/logrotate.d/syslog # Ansible… Read More »
You can use your own domain configured for Okta. The one thing worth to mention here is the fact that Okta’s official plugin doesn’t work with a Custom domain feature so you’ll have to use Okta’s URL for the plugin authentification, see the documentation for details. Custom domain configuration Go to the Settings > Customization:… Read More »
Okta is a service which provides Single Sign-On ability. I’d like to move all our users to the Okta for better management, so the task now will be to create a Gmail mailbox account and Slack community access. Okta Gmail app Register a new account, go to the Get started, in the Use single sign-on… Read More »
We have a picture in an AWS S3 bucket which updated, but AWS CloudFront still returns its old version. To remove it from the CloudFront cache – need to create an object’s invalidation. It can be created via AWS Console web-UI or by using AWS CLI. In the AWS Console – go to the desired… Read More »