All posts by: Cloud Comrade

About Cloud Comrade

Amazon Cognito now makes it easier for developers to add OIDC-providers that are currently not built-in to the service console, like Salesforce or Ping Identity. Lengthy sign-up forms create friction for the registration and conversion of users. This new Cognito feature simplifies the registration process by allowing users to login with an existing OpenID account into a User Pool.

Amazon Elastic Compute Cloud (EC2) bare metal instances provide your applications with direct access to the processor and memory resources of the underlying server. These instances are ideal for workloads that require access to the hardware feature set (such as Intel® VT-x), or for applications that need to run in non-virtualized environments for licensing or support requirements. Bare metal instances are built on the Nitro system, a collection of AWS-built hardware offload and server protection components that come together to securely provide high performance networking and storage resources to EC2 instances. Bare metal instances were announced for preview at AWS re:Invent 2017, and are now generally available with the EC2 Storage Optimized I3 instance family in the form of i3.metal instances.

Amazon EC2 C5d instances deliver C5 instances equipped with local NVMe-based SSD block level storage physically connected to the host server. These instances are a great fit for applications that need access to high-speed, low latency local storage like video encoding, image manipulation and other forms of media processing. It will also benefit applications that need temporary storage of data, such as batch and log processing and applications that need caches and scratch files. With the option of NVMe-based SSD instance storage, C5 customers now have additional storage choices for their most compute-intensive workloads.

PostgreSQL read replicas on Amazon RDS now support Outbound Network Access and can execute queries using the postgres_fdw extension to access remote servers. The postgres_fdw extension lets you access and modify data stored in other PostgreSQL servers as if they were tables within the RDS for PostgreSQL DB instance. This is already supported on primary PostgreSQL instances, but offloading read only queries from remote servers to read replicas will reduce resource usage on the primary instance.

Amazon Inspector expanded security assessments to include Amazon Linux 2018.03 and Ubuntu 18.04 LTS for Common Vulnerabilities & Exposures (CVE), Security Best Practices, and Runtime Behavior Analysis. To run security assessments, simply install the Amazon Inspector Agent on the desired EC2 instance, configure your assessment in the Inspector console, and run your assessment.