Download presentation
Presentation is loading. Please wait.
1
Let’s get Started with Your AWS Account
AWS Certifications Sri Lanka Hosted By: Techmore Solutions (PVT) LTD
2
Welcome ! It’s our first meet up, You’re all welcome !
Mission of AWS Certifications Sri Lanka Our future plans Thanks to techMORE Suggestions are welcome
3
Why Learn AWS ? Most popular and fastest growing cloud computing platform on the Earth. Largest public cloud computing platform on the Earth. Large number of organizations are outsourcing their IT to AWS.
4
Why Learn AWS ? AWS certifications are the most requested cloud certifications in job descriptions. Top paid IT certification for 2016 according to Forbes. It’s $125,000. Still there are less number of AWS certified professionals and the demand is very high.
5
What you need to get started ?
Online payment card (Credit or Debit) AWS account Computer with internet connection A web browser Linux – SSH client Windows – RDP Client
6
What is Cloud Computing?
Cloud computing is the on-demand delivery of Compute power, Database storage, Applications, Infrastructure, via the internet Pay-as-you-go pricing
7
Benefits of Cloud Computing
Trade capital expense for variable expense Pay for what you use Stop spending on in house data centers Benefit from massive economies of scale pay as you go prices Stop guessing capacity Increase speed and agility Go global in minutes multiple regions around the world
8
Types of Cloud Computing
Infrastructure as a Service (IaaS) Platform as a Service (PaaS) Software as a Service (SaaS)
9
Infrastructure as a Service (IaaS)
The most basic category of cloud computing services. You rent IT infrastructure - servers and virtual machines (VMs), storage, networks, operating systems from a cloud provider on a pay-as-you-go basis.
10
Platform as a Service (PaaS)
Supply an on-demand environment for developing, testing, delivering and managing software applications. PaaS is designed to make it easier for developers to quickly create web or mobile apps, without worrying about setting up or managing the underlying infrastructure .
11
Software as a Service (SaaS):
Software-as-a-service (SaaS) is a method for delivering software applications over the Internet, on demand and typically on a subscription basis. With SaaS, cloud providers host and manage the software application and underlying infrastructure and handle any maintenance, like software upgrades and security patching.
12
Cloud Computing Deployment Models
Public Cloud Hybrid cloud Private cloud
13
Public cloud Public clouds are owned and operated by a third-party cloud service provider, which deliver their computing resources like servers and storage over the Internet.
14
Private cloud A private cloud refers to cloud computing resources used exclusively by a single business or organization. A private cloud can be physically located on the company’s on-site datacenter. Some companies also pay third-party service providers to host their private cloud. A private cloud is one in which the services and infrastructure are maintained on a private network
15
Hybrid cloud Hybrid clouds combine public and private clouds, bound together by technology that allows data and applications to be shared between them. By allowing data and applications to move between private and public clouds, hybrid cloud gives businesses greater flexibility and more deployment options.
16
AWS Global Infrastructure
17
AWS Global Infrastructure
Region A Region is a physical location in the world which have multiple Availability Zones. Availability Zone (“AZs”) Availability Zones consist of one or more discrete data centers, each with redundant power, networking and connectivity, housed in separate facilities. These Availability Zones offer you the ability to operate production applications and databases which are more highly available, fault tolerant and scalable than would be possible from a single data center.
18
AWS Regions and Availability Zones
19
AWS Regions and Availability Zones
20
AWS Regions and Availability Zones
21
AWS Global Infrastructure
The AWS Cloud operates 44 Availability Zones within 16 geographic Regions around the world. Announced plans for 14 more Availability Zones and five more Regions in China, France, Hong Kong, Sweden.
22
AWS Regions and Availability Zones
23
Let’s Get Started
24
Let’s Get Started
25
Login Details
26
Contact Information
27
Credit or Debit Card
28
Phone Verification
29
Basic Support Plan
30
Login to Your ROOT Account
31
Explore the Console
32
Our First AWS Service - IAM
AWS Identity and Access Management (IAM) is a web service that helps you securely control access to AWS resources for your users. Use IAM to control who can use your AWS resources (authentication) and what resources they can use and in what ways (authorization).
33
IAM Features Shared access to your AWS account
Grant other people permission to administer and use resources in your AWS account without having to share your password or access key. Identity federation Allow users who already have passwords elsewhere to get temporary access to your AWS account.
34
IAM Features Identity information for assurance
Receive log records that include information about those who made requests for resources in your account. Multi-factor authentication (MFA) Add two-factor authentication to your account and to individual users for extra security.
35
IAM Features Granular permissions
Grant different permissions to different people for different resources. Secure access to AWS resources for applications that run on Amazon EC2 Grant applications that run on EC2 instances the credentials that they need in order to access other AWS resources, like S3 buckets and RDS or DynamoDB databases.
36
IAM Features PCI DSS Compliance
IAM supports the processing, storage, and transmission of credit card data by a merchant or service provider, and has been validated as being compliant with Payment Card Industry (PCI) Data Security Standard (DSS). Integrated with many AWS services EC2, S3, RDS, DynamoDB, Cloudwatch, EMR, Lex, Lambda, Polly to name a few.
37
IAM Features Eventually Consistent
IAM achieves high availability by replicating data across multiple servers within Amazon's data centers around the world. If a request to change some data is successful, the change is committed and safely stored. However, the change must be replicated across IAM, which can take some time. Such changes include creating or updating users, groups, roles, or policies.
38
Accessing IAM AWS Management Console Programmatic Access
AWS Command Line Tools – CLI AWS provides SDKs (software development kits) IAM HTTPS API
39
IAM Users Instead of sharing your root user credentials with others, you can create individual IAM users within your account that correspond to users in your organization. IAM users are not separate accounts; they are users within your account. Each user can have its own password for access to the AWS Management Console. You can also create an individual access key for each user so that the user can make programmatic requests
40
Federating Existing Users
41
IAM Groups
42
IAM Policies To assign permissions to a resource, you create a policy, which is a JSON document that explicitly lists permissions. Actions: what actions you will allow. Resources: which resources you allow the action on. Effect: what the effect will be when the user requests access
43
IAM Policies Actions: Each AWS service has its own set of actions.
For example, you might allow a user to use the Amazon S3 ListBucket action, which returns information about the items in a bucket. Any actions that you don't explicitly allow are denied.
44
IAM Policies Resources: which resources you allow the action on.
For example, what specific Amazon S3 buckets will you allow the user to perform the ListBucket action on? Users cannot access any resources that you have not explicitly granted permissions to.
45
IAM Policies Effect: what the effect will be when the user requests access Allow Deny Default is that resources are denied to users, you typically specify that you will allow users access to resource.
46
IAM Policies
47
Let’s Try It Out
48
AWS Certifications
49
AWS - SAA Designing and deploying scalable, highly available, and fault tolerant systems on AWS Lift and shift of an existing on-premises application to AWS Ingress and egress of data to and from AWS
50
AWS - SAA Selecting the appropriate AWS service based on data, compute, database, or security requirements Identifying appropriate use of AWS architectural best practices Estimating AWS costs and identifying cost control mechanisms
51
Exam Overview Duration in 80 minutes Number of questions is 55 - 60
Multiple Choice Pass Mark 65% - 70% Scenario based questions Valid for 2 years Cost is $150 Renew for ½ price
52
Next meet-up Introduction to Amazon EC2 service.
Launch your first RedHat Linux 7 instance Introduction to Amazon S3 service. Deploy and secure your S3 bucket Upload files to S3 bucket Introduction to AWS CLI. Backup logs from RedHat Linux 7 instance to S3 bucket using CLI Automated log backup solution using BASH and AWS CLI to backup logs to S3
53
Let’s meet next month
Similar presentations
© 2024 SlidePlayer.com. Inc.
All rights reserved.