I deployed HCP Boundary Essentials on a local Minikube cluster to broker zero-trust access to a MySQL database and an SSH target — no direct exposure, credential injection, and full session control via the Boundary CLI or Boundary Desktop. Here is the full architecture, configuration, and what I learned.
Read more→Welcome to My Digital Space
My personal blog where I share thoughts about cloud and cybersecurity
What You'll Find Here
- 📚Technical tutorials and how-to guides
- 🔍Project showcases and case studies
- 💡Industry insights and emerging trends
- 🧠Personal reflections on the developer experience
- 🛠️Tips and tricks I've learned along the way
Why I Started This Blog
I believe in the power of sharing knowledge and experiences within the cloud community. Through this blog, I hope to:
- 📝Document my learning journey
- 🤝Help other cloud engineers solve common challenges
- 🌍Share insights from real-world projects
- 🔗Connect with like-minded individuals
Latest Articles
AWS has four distinct mechanisms to restrict permissions — and most engineers confuse them. This article breaks down SCPs, RCPs, Permission Boundaries and Session Policies: what each one limits, where it sits in the evaluation engine, and when to use which.
Read more→Transit gateways get the job done, but they come with real operational weight. I rebuilt the same infrastructure using Amazon VPC Lattice — here is what changed, what got simpler, and why it matters.
Read more→Dormant IAM credentials are not harmless — they are a ticking time bomb. I built IAM Cleanup, a serverless tool that automatically detects, tags, and removes unused IAM roles and policies before they become a liability.
Read more→Three fundamental misconceptions about AWS security that create dangerous blind spots in your security posture.
Read more→