Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

AWS ML Certification > Miscellaneous > Flashcards

Miscellaneous Flashcards

1
Q

Securing SageMaker notebooks

A
  1. IAM Policy: sagemaker: CreatePredsignedNotebookInstanceURL
    - Notebooks themselves are just webpages
    - We access them through signing into the console, where notebooks are “presigned” when we open them
    - We can create an IAM policy that grants or denies access to certain notebooks
  2. When we create the notebook, we have the option to grant root access which enables software installation
  3. SageMaker instance profiles - creating roles within IAM and assigning them to SageMaker services (e.g. S3)
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

SageMaker and VPC

A
  • SM hosts models in a public VPC by default (although users need to be authenticated through IAM to gain access). The resources that we’re using have access to the internet. If we require further security, we need to create a private VPC which has various subnets without internet access
  • Models and data in S3 (public internet). Create an S3 endpoint / use a custom endpoint policy for S3 / encrypt the data within S3
  • SageMakerFullAccessPolity IAM policy has all of the permissions required to perform automatic scaling actions
How well did you know this?
1
Not at all
2
3
4
5
Perfectly

AWS ML Certification (12 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions