Salt Based User Management

Salt based linux and iam user Management I have created Salt States for Managing User. I have uploaded them on GitHub. Kindly check and let me know any suggestions or queries. Clone Git Repo from https://github.com/neeleshg/salt-iamuser-sshkey.git Check out README.MD

Is your organization planning to have FedRAMP Compliance Certification?

The Federal Risk and Authorization Management Program (FedRAMP) is a government-wide program that provides a standardized approach to security assessment, authorization, and continuous monitoring for cloud products and services. FedRAMP is required if organization is planning to have projects from US FedRAL Government. It is also a framework to harden organization’s infrastructure. Getting FedRAMP is…

Salt – Fastrack

Salt is Configuration Management Tool. It is written in Python It uses YAML Very flexible and faster Server-Client technology for Configuration Management Salt works on ZeroMQ for master and Minion Communication Components of Salt: salt-master Master node which pushes the configuration salt-minion Slave node which connects to Master and get the configuration Execution Modules Salt…

Manage AWS API logs with CloudTrail and Graylogs

General Process: Cloudtrail will send all API logs to S3 bucket And will notify to SNS topic SNS will send log details to SQS queue Graylog will poll message from SQS and get the logs from that S3 file By default all logs will be sent to “All Messages” stream. Stream can be used to…

Manage System Logs with Graylog and rsyslogd

Graylog is widely used for log management and analysis. There are 4 main components of Graylog: Graylog Server MongoDB ElasticSearch NGINX as ReverseProxy to secure Graylog API Below steps will help, reader to basic installation of Single Node Graylog server and redirect system logs from rsyslogd to Graylog. Do let me know your queries on ngurjar…

Redis HA Implementation Options

This is high level description of Redis HA Implementation Options. There are couple of ways to setup Redis in HA mode as per business requirements. Main concern in Redis HA is how we are going to distribute Writes and Reads. Sometimes RedisHA is handled at Application level as well. Option 1: Manual This is the…

HowTo: Add CentOS7 machine to Windows AD

Microsoft Active Directory(AD) is widely used in Enterprise for Centralized Authentication, Pushing Security related Policies, etc. Administrator may need to add CentOS7 machines to AD to use same user credentials. This blog will provide steps to add CentOS7 Linux machine to AD. There are multiple ways to achieve this and it is one of the way.…

Linux: Troubleshooting Filesystem Full issue due to open files

We face filesystem Full issue in our day to day Linux Administration. This issue is mainly related with /var, /home filesystems. If both are in / filesystem then it will impact / filesystem as well. When we face this type of issue, our first solution is to delete or truncate log files, temp files, hidden…