aws administration - · pdf fileaws administration ... aws certification tracks –...
TRANSCRIPT
AWS Administration
www.ucliditschool.com V4.0
Course Description Amazon Web Services Administration (AWS Administration) course starts your Cloud Journey. If you are planning to learn Cloud Computing and Amazon Web Services in particular, then this is the course for you. This course lets you master various Services and Products offered by AWS to enable you build and manage highly sophisticated, scalable, available, and cost effective solutions on AWS Cloud Platform. This is the most comprehensive and dynamic course with loads of hands-on demos and lab activities. The course starts with a broad overview of AWS Platform and then Deep dive into the individual Services of AWS Platform. Apart from learning all the individual services of AWS, you will also learn how to integrate these services together to design Highly Available, Scalable and Cost effective Solutions using AWS Cloud Platform.
As we discuss each Service, we will also look at Architectural Best Practices, Pricing Models, Security and Monitoring options, and Disaster Recovery options provided by AWS.
Throughout the course the emphasis is on hands-on practice so that you apply the conceptual understanding to implement hands-on demonstrable solution. Each topic includes plenty of Demos/Hands-on practices to enrich your learning experience. This hands-on approach makes you easily master all the aspects of AWS Services.
This course covers all the core topics related to various Associate Level Exams like – AWS Certified Solutions Architect Associate, AWS Certified Developer Associate, and AWS Certified SysOps Administrator Associate.
What you will learn? Solid understanding of Cloud Computing
Become fully familiar with AWS Platform
Hands-on design Highly Available, Scalable, Cost-efficient solutions on AWS Cloud
Implement/Deploy AWS based Solutions
Identify appropriate use of AWS architectural best practices
Who can attend? Any IT professional
Any individual who want to start career in Cloud Computing
AWS Absolute Beginners. No prior AWS experience required.
Solutions Architects, System Administrators, Database Administrators, Network and
Storage Administrators, Application Developers etc…
Suggested Pre-requisites Basic IT Knowledge
About the Instructor Uclid has best of the best teaching faculties who are real time IT Professionals working with top MNCs. Each faculty has a minimum 10 years of real time experience and working in the capacity of project leaders and project managers in various MNCs. You will benefit from their rich experience by going through the real time scenarios and case studies during the training. At the end of the course you will not only learn AWS but familiarize yourself with the real time aspects of AWS.
AWS Administration
www.ucliditschool.com V4.0
COURSE CURRICULUM
1. Introduction to Cloud Computing
What is Cloud Computing
How does Cloud Computing Work?
Benefits of Cloud Computing
Type of Cloud Computing
− Infrastructure-as-Service (IaaS)
− Platform-as-Service (Paas)
− Software-as-Service (SaaS)
Cloud Computing Deployment Models
− Public Cloud
− Private Cloud
− Hybrid Cloud
Cloud Roles
− Cloud Enterprise Architect
− Cloud Infrastructure Architect
− Cloud Operations Engineer
− Cloud Security Architect
− Security Operations Engineer
− Application Architect
− Application Developer
− DevOps Engineer
2. AWS Concepts
What is AWS?
Why AWS?
AWS Cloud Model
AWS Global Infrastructure
AWS Regions, Availability Zones and Edge locations
AWS Products & Services
AWS Platform
AWS Marketplace
Enterprise Infrastructure and AWS Services
Interacting with AWS Services
3. AWS Certifications
Why AWS Certification?
AWS Certification Tracks – Architecting, Developing, Operations, Specialities
AWS Certification Types – Associate, Professional, Speciality
Certification Blueprint
Preparing for Certification
4. Creating your AWS account
Creating your AWS account
Logging into AWS with root account
AWS Administration
www.ucliditschool.com V4.0
Understanding Billing Dashboard
Choosing correct Region
Understanding the difference between AWS root account and admin account
Creating Admin account
Logging into AWS
Understanding AWS Management Console DEMO: Creating AWS account DEMO: Logging in with your AWS Account and Exploring AWS 5. Installing and Configuring AWS CLI
Installing AWS CLI on your personal system
Configuring AWS CLI using Access Key & Secret Access Key
Testing CLI
Finding out the Region names DEMO: Installing and Configuring AWS CLI 6. Elastic Compute Cloud (EC2)
Overview of EC2
Host and Guest
EC2 storage – Instance Store & Elastic Block Store (EBS)
Multi-tenant Infrastructure - Dedicated and Shared Resource
Virtualization Types – HVM , PV
Hardware Virtual Machine (HVM)
Para Virtual (PV) Machine
Operating Systems
Amazon Machine Image (AMI)
Amazon Linux AMI
Instance Families − General Purpose − Compute Optimized − Memory Optimized − Storage Optimized − Accelerated Computing
Resizing Instances
Instance Root Access - Secure Login Key Pairs
Physical Location – Region, AZ, VPC
EC2 Instance IP Addresses – Public IP, Private IP, Elastic IP
Placement Group
Elastic Block Storage (EBS) Optimized Instances
Firewall – Introduction to Security Group and Network Access Control List (ACL)
Security Group In-depth
Network Access Control List (ACL)
Access Control - IAM , Key Pairs and Sharing AMI
IAM Roles – Access other AWS Services from EC2
EC2 Instance Life Cycle
Recovering EC2 Instance
AWS Administration
www.ucliditschool.com V4.0
Instance Purchase Options
On-Demand Instances
Reserved Instances
Scheduled Instances
Spot Instances
Dedicated Hosts Vs Dedicated Instances
EC2 Pricing
− AWS Pricing calculator
− Data Transfer Charges
− Add-on pricing
− Peered VPC charges
Managing Instance, OS, Users
Managing Instance with EC2 Instance Manager
User Data – Customizing Instance at Launch
Instance Metadata – Querying Instance Attributes at Runtime DEMO: Installing Putty & AWS Key Pair Setup DEMO: Launch Linux Instance using Amazon Linux AMI DEMO: Connect to Linux Instance, Install Webserver and Verify the working of Web Server DEMO: Restart Instance and Observe Public & Private IP DEMO: Stop & Start Instance and Observe Public & Private IP DEMO: Creating and Assigning Elastic IP address to EC2 instance, DEMO: Disassociating & Associating Elastic IP DEMO: Releasing Elastic IP DEMO: Resizing Instance/Changing Instance Type DEMO: Launch Windows Instance DEMO: Launch EC2 Instance with IAM Role to Access S3 DEMO: Customize EC2 Instance with User Data DEMO: Query Instance Metadata 7. Virtual Private Cloud (VPC)
Introduction to VPC
VPC, Region and Availability Zones
VPC Connectivity Options
VPC Firewall and Security
EC2 Classic
Difference Between VPC and EC2-Classic
VPC Components
− Subnet – Public, Private
− Internet Gateway − NAT Gateway − NAT Instance − Egress-only Internet Gateway − Hardware VPN − Virtual Private Gateway (VPG) − Router − VPC Peering Connection − VPC Endpoint
− VPC Wizard
AWS Administration
www.ucliditschool.com V4.0
Default VPC Network Architecture
Non-Default Network Architecture
Private Subnet with NAT Gateway
Private Subnet with NAT Instance
NAT Instance – Source/Destination Check
Bastion Host
VPC and Corporate Data Center – Secure Connection using VPN
VPC as a Cloud Hub for your Infrastructure
AWS Direct Connect
VPC Routing Priority
IPv6 Configuration on VPC
IPv6 Egress only Gateways
VPC Pricing
Deploying other AWS Services on VPC
VPC Peering Connection
VPC Limits for your account
DEMO: VPC Console Quick Overview DEMO: VPC Wizard Launch Configuration DEMO: Create VPC with Single Public Subnet, Launch EC2 Instance and Connect DEMO: Enable IPv6 DEMO: Access EC2 Instance over a Peering Connection DEMO: Create VPC with Public & Private Subnets and Bastion Host DEMO: Bastion Host Credential forwarding and connecting to Instances DEMO: Bastion Host Clean-up 8. Cloudwatch
Cloudwatch Architecture
Cloudwatch Logs
Cloudwatch Events
Data Retention
Cloudwatch related AWS services
Cloudwatch Concepts & Terminology
− Namespaces
− Metrics
− Dimensions
− Statistics
− Percentiles
− Alarms
Monitoring EC2 Instances
Automated System Status Check
Automated Instance Status Check
Custom Metrics
DEMO: Creating Dashboards using Cloudwatch Console DEMO: Setup Billing Alarm DEMO: Creating Alarms to Shutting down Idle EC2 Instances
AWS Administration
www.ucliditschool.com V4.0
DEMO: Monitoring EC2 Instances 9. Storage for EC2 Instances
Instance Store
Elastic Block Store (EBS)
Elastic File System (EFS)
Simple Storage Service (S3)
Storage Units
Storage Technology Comparison
Pricing
Encrypting EBS Volumes
EBS Volume Types
EBS Optimized Instances
Snapshots
Snapshot Volume Restores
Snapshot and Encryption
Snapshot Creation Process
Sharing Snapshots
Expanding EBS Volumes
EBS Monitoring
DEMO: Monitoring Volumes DEMO: Creating Snapshots DEMO: Launching Volumes, Creating AMI from Snapshot, Launching Instance using AMI DEMO: Creating Volume and attaching to Running Instance DEMO: Detaching the Volume from one Instance and attaching to another Instance 10. Elastic Load Balancer (ELB)
Introduction to Amazon’s Elastic Load Balancer
Security Benefits of ELB
Internet Facing and Internal Load Balancers
Classic and Application Load Balancers
Cross-Zone Load Balancing
Load Balancer Access Logs
Load Balancer Billing & Charges
DEMO: Setup Internet facing Load Balancer DEMO: Setup Internal Load Balancer
11. Auto Scaling
Introduction to Auto Scaling
Auto Scaling Scenarios
Auto Scaling Terminology
Rebalancing across Availability Zones
Triggers for Scale out and Scale in
DEMO: Configure and Testing Auto Scaling
AWS Administration
www.ucliditschool.com V4.0
12. Identity and Access Management (IAM)
Introduction to IAM
IAM Users, Groups, Resources, Roles
Policies & Policy Types
User Types – root, IAM users
Amazon Resource Name(ARN)
IAM Best Practices For New Accounts
API Keys And Roles
DEMO: Creating IAM Roles and Users DEMO: Managing IAM Policies
13. Simple Storage Service (S3)
Introduction to S3
S3 Usage Examples
Terminology – Bucket, Object, Key, Region
S3 Consistency Model
S3 Versioning
Add, Delete, GET object, List Bucket, Undelete, Restore operations
Suspending Versioning
Retrieving, Deleting objects from Versioning-Suspended Buckets
Storage Classes
− Standard Storage
− Standard Infrequent Access Storage
− Glacier Storage
− Reduced Redundancy Storage (RRS)
Attribute Comparison of Storage Classes
Billing Comparison of Storage Classes
Changing Storage Classes
Performance Considerations – File Limits, Multipart Uploads/Downloads, CloudFront
CDN, Key Naming
S3 Transfer Acceleration
Life Cycle Management of Objects
Life Cycle Management Rules
Life Cycle with Versioning
Cross Region Replication (CRR)
Controlling Access to S3 Buckets and Objects
Encrypting Data in S3
Static Website Hosting with S3
Configuring S3 to send Notifications
Monitoring
Cross Origin Resource Sharing (CORS)
DEMO: Create Bucket, Upload File, Delete File DEMO: Enable Versioning and performing add, delete, undelete operations on objects DEMO: Suspending Versioning and performing add operations
AWS Administration
www.ucliditschool.com V4.0
DEMO: Storing new Objects by specifying Storage Class, Changing Storage Class DEMO: Object Life Cycle Transition and Deletion Policy – non-versioned bucket DEMO: Object Life Cycle Transition and Deletion Policy – versioned enabled bucket DEMO: Setup Cross Region Replication DEMO: Setup Bucket Level and Object Level ACLs DEMO: Encrypting Objects in S3 DEMO: Hosting Static Website with S3 14. Route 53
Introduction to Domain Name System Service
dig, nslookup, simpleDNS
Route 53 core capabilities
Route 53 Routing Policies
− Simple Routing
− Weighted Routing
− Latency Routing
− Failover Routing
− Geolocation Routing
Route 53 Availability, Latency, SLA, Service Credits
Route 53 Pricing DEMO: Use Route 53 to configuring Private Hosted Zone for your Relational Database
15. Simple Queue Service (SQS)
Overview of Amazon SQS
Queue Types – Standard Queue and FIFO Queue
Usage Examples Features
SQS Pricing DEMO: Create, Send, Receive, and Delete Standard Queue messages using SQS Console DEMO: Send, Receive and Delete Standard Queue messages using AWS CLI DEMO: Create, Send, Receive and Delete FIFO Queue messages using SQS Console 16. Simple Notification Service (SNS)
Introduction to SNS
Usage Scenarios
Tracking status of message delivery
Message Reliability and Delivery rate
Spam protection and Subscription Confirmation
SNS and SQS
Monitoring
Pricing DEMO: Send message to SQS Queue DEMO: Configure SNS to send Email Notifications 17. AWS Lambda
Introduction to Lambda
AWS Administration
www.ucliditschool.com V4.0
Benefits
Supported Languages
Lambda Usage Scenarios
Permissions for Lambda Functions
Lambda Limits
Lambda Pricing
DEMO: “Hello World” Function DEMO: Invoke Lambda Function from AWS Command Line
18. AWS Cloud Databases
AWS Cloud Database offerings
Relational Databases
NoSQL Databases
Columnar Databases
In-Memory Databases
AWS Elastic Search Service
Comparison between Relational and NoSQL databases
19. AWS Relational Database Services (RDS)
Introduction to RDS and Benefits
RDS Performance and Scalability
Availability and Durability
Security
RDS Terminology
DB Parameter Group
DB Option Group
RDS Backup and Restores
Modifying the RDS Instance
RDS Pricing
DEMO: Creating Oracle Database Instance DEMO: Connecting to Database Instance using Oracle SQL Developer 20. Amazon EC2 Container Services (ECS)
Introduction to ECS
Introduction to Docker Containers
Installing Docker on EC2 instance DEMO: Run “Hello World” container on EC2 instance
21. AWS Programmatic Integration
Introduction
Integrating Applications with AWS Services
Install/Setup Python Environment
Install Boto3 AWS SDK
Interact with AWS using Python Demo: Installing Python and Accessing AWS Services from Python
AWS Administration
www.ucliditschool.com V4.0
22. Architectural Patterns – Exam prep
Big Data Architectural Patterns and Best Practices on AWS
Elastic Cache Deep Dive: Best Practices and Usage Patterns
CloudFront - Content Delivery Network 23. Disaster Recovery, Hybrid Infrastructure and More - Exam prep
Disaster Recovery
Hybrid IT Infrastructure
Infrastructure as Code
AWS Services