Simply speaking ACM (AWS Certificate Manager) uses KMS (Key Management Service) to protects the private key. What drew my attention into this topic is that a user get denied (no permission to describe kms key) when trying to request a ACM certificate in a region where KMS is explicitly denied. This diagrams explains how ACM … Continue reading How ACM protects the private key?
AWS has produced lots of good learning resources, but they are bits and pieces here and there. So I created a Github project to collect those resources. The collection list starts with some AWS offical resources. Later on I will add more from third-parties and individuals. Libraries AWS InfrastructureAWS HistoryAWS DocumentationAWS Learning LibraryAWS Whitepapers & … Continue reading AWS Learning Resources
Overview With the increasing demands and the advantages of Cloud technologies, moving Jira to Cloud is definitely inevitable regardless it is self-hosted Jira in Cloud (IaaS) or Atlassian Jira Cloud (SaaS). As our current project is to migrate Jira to AWS cloud, I will be focus on the challenges vs solutions to run Jira in … Continue reading Run Jira on AWS – Challenges vs Solutions
Three years ago, I wrote a blog on how to Consolidate Elastic Beanstalk ELB. If you have not done it yet, then you don't need to do it in that way now. As just a couple days ago, AWS finally announced that AWS Elastic Beanstalk now supports sharing of an Application Load Balancer among Elastic Beanstalk … Continue reading AWS Elastic Beanstalk now supports sharing ALB (finally)
We recently migrated Confluence Data Center to AWS. And by using the Read-Only mode, we achieved zero downtime! Everything works well since the migration. During the working hours, the normal load is between 6000 to 7500 RPM (request per minute). And the two node cluster is still able to provide satisfying response time while the … Continue reading Load Balancing Algorithm for Confluence
