Presentation is loading. Please wait.

Presentation is loading. Please wait.

Certified Cloud Practitioner Exam Personal Study Guide

Published byYenny Lesmono Modified over 6 years ago

Similar presentations

Presentation on theme: "Certified Cloud Practitioner Exam Personal Study Guide"— Presentation transcript:

1 Certified Cloud Practitioner Exam Personal Study Guide
AWS Certified Cloud Practitioner Exam Personal Study Guide Disclaimer: These are my personal study notes I made to prepare for the aws cloud practitioner exam. I can’t guarantee all the information is 100% correct. Please do not use this video as your only source to prepare for the exam. 90% of this content source is from the Amazon AWS website.

2 Responsibility Model CUSTOMER AWS Customer Data Physical Hardware
Security in the Cloud Storage Platform, Applications, Identity & Access Management AWS Databases OS, Network, Firewall Configuring Managed Services Client-side Data, Encryption, Authentication Edge Locations Server-side Encryption, files, data Regions Network Traffic Protection Availability Zones Global Infrastructure Natural Disasters Compute Networking

3 CloudWatch MONITORING
collect - metrics and logs from all resources cloud/local monitor - with dashboards to troubleshoot and set alarms act - automate response to events with auto scaling analyze - real time 1 sec metrics, data retention improve total cost of ownership and optimize applications

4 Cloud trial MONITORING gov, compliance, risk auditing
Log, monitor, retain, record events across AWS who made API call, SDKs, command line Cloudwatch can use this information to take action

5 Total Cost of Ownership
TCO calculator your company cost vs aws savings reduce large capital investment pay as you go model detailed report no up front cost

6 COST Cost Explorer easy-to-use interface, visualize, understand, manage costs and usage over time dive deeper in cost, usage data, identify trends, pinpoint cost drivers, detect anomalies future forecasting

7 Trusted Advisor COST customized cloud expert, real-time software
inspect aws environment for: money saving performance reliability security part of admin console

8 Consolidated Billing COST
the master account is called a payer account, and the member account is called a linked account

9 SECURITY DDOS Prevention WAF(Web Application Firewall), AWS Shield, Cloudfront, Load Balancer NACL - subnet in VPC to protect against incoming traffic requests Security Groups Acts as firewall that controls traffic allowed to reach one or more instances up to 5 security groups only use SSH into EC2 instances that are attached to security group

10 SECURITY Penetration Testing Amazon Inspector
Get permissions from AWS first. It can be done on your infrastructure only Amazon Inspector automated security assessment service that improve security and compliance of applications deployed automatically assesses applications for exposure, vulnerabilities, and deviations from best practices

11 Identity Access Management
SECURITY Identity Access Management IAM Roles – determine what the identity can and cannot do in AWS, temporarily Secure communication between EC2 Instance and S3 IAM - Identity Access Mgt - manage users and their level of access to AWS Console, it's universal, root account - complete admin access by default, users have no permissions initially

12 DATABASES Relational Database Service(RDS) - mySQL, PostgreSQL, MicrosoftSQL Server, Oracle Multi-AZ, Read-Replica Dynamo DB - noSQL non relational database, serverless and fully managed. Amazon RedShift - Data Warehouse Auroa - MySQL and PostgreSQL-compatible relational database built for the cloud, managed by Amazon Host self-managed database in AWS - complete control over the database engine and infrastructures

13 STORAGE S3 Transfer Acceleration enables fast, easy, and secure transfers of files over long distances between your client and an S3 bucket. Transfer Acceleration takes advantage of Amazon CloudFront’s globally distributed edge locations S3 Costs depend on GB size of storage, 5TB & maximum buckets = 100 Import Data into Amazon - Glacier API, Glacier SDK, S3 lifecycle policies, Snowball petabytes of data mailed to AWS Glacier infrequently accessed data archives

14 Reserved Instances INSTANCE TYPES
discount (up to 75%) compared to On-Demand instance pricing assigned to a specific Availability Zone with capacity reservation available when you need them For applications that have steady state or predictable usage

15 Spot Instances INSTANCE TYPES can be interrupted fault-tolerant
flexible applications big data, data analysis, batch jobs 90% compared to on-demand medical, scientific, bids, if it's below your bid

16 Dedicated Host INSTANCE TYPES
physical EC2 server dedicated for your use can help reduce costs by allowing to use existing server-bound software licenses, including Windows Server, SQL Server, and SUSE Linux Enterprise Server (subject to license terms)

17 On-Demand INSTANCE TYPES
you pay for compute capacity by per hour or per second No longer-term commitments or upfront payments applications with short-term, spiky, or unpredictable workloads cannot be interrupted

18 DISASTER RECOVERY Backup and Restore (highest downtime)
Pilot light - DR scenario in which a minimal version of an environment is always running in the cloud Warm Standby Multi AZ (least downtime)

19 DISASTER RECOVERY An Availability Zone (AZ) isolated location within an AWS region, put in multiple regions RRS reliability 99.99 RRS durability 99.99 S3 durability S3 availability 99.99

20 KEY POINTS Elasticity Elastic Beanstalk
allow application to scale up and scale down diverting traffic to instances based on the demand and least load Elastic Beanstalk easy-to-use service for deploying and scaling web applications and services developed with Java, .NET, PHP, Node.js, Python, Ruby, Go, and Docker on familiar servers such as Apache, Nginx, Passenger, and IIS. upload code and Elastic Beanstalk automatically handles the deployment, from capacity provisioning, load balancing, auto-scaling to application health monitoring. Retain full control over the AWS resources

21 KEY POINTS CloudFormation Amazon Direct Connect
model entire infrastructure in text file template single source of truth for infrastructure standardized code Amazon Direct Connect easy to set up a dedicated network connection from your premises to AWS can reduce network costs, increase bandwidth, provide consistent network experience than Internet connections VPN Connection

22 KEY POINTS SQS AWS Config
fully managed message queuing service that enables you to decouple and scale microservices, distributed systems, and serverless applications You can send, store, and receive messages between software components at any volume, without losing messages or requiring other services to be available AWS Config service that enables you to assess, audit, and evaluate the configurations of your AWS resources. Config continuously monitors and records your AWS resource configurations and allows you to automate the evaluation of recorded configurations against desired configurations.

23 KEY POINTS EMR managed Hadoop framework that makes it easy, fast, and cost- effective to process vast amounts of data across dynamically scalable Amazon EC2 instances. You can also run other popular distributed frameworks such as Apache Spark, HBase, Presto, and Flink VPC carved out a portion of AWS Cloud virtual private network

24 KEY POINTS AMI Amazon Machine Image (AMI) provides information required to launch instance You must specify a source AMI when you launch an instance. You can launch multiple instances from a single AMI A template for the root volume for the instance (for example, an operating system, an application server, and applications) You can create from EBS-backed instances & snapshots

25 KEY POINTS Snap Shot Amazon ElastiCache
take snapshot of volume, then put in another availability zone (in order to move one volume to another availability zone) copy snap shot to other region, create image of that snap shot, then boot as new EC2 instance, for back ups, image creates new, AMI's is where image is saved Amazon ElastiCache offers fully managed Redis and Memcached - real-time apps, gaming, ride hailing, media streaming, dating, social media store as database cache, message broker, queue, real time transactions

26 KEY POINTS CloudFront AWS Marketplace
fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds, all within a developer-friendly environment using edge locations AWS Marketplace sales channel, easy Sellers to offer software solutions that run on the AWS cloud

27 KEY POINTS Acceptable Use Policy - Describes Prohibited Actions
Policy Document - that provides a formal statement of (one or more permissions) provides formal statement of Permissions, resource, action, effect, principal, JSON, what user can do Service control policies (SCPs) - manage your organization and restrict, at the account level of granularity, what services and actions the users, groups, and roles in those accounts can do

28 KEY POINTS Support Plans - Basic, Developer, Business, Enterprise - support Concierge AWS Mgmt Console - Web-based user interface PCI Compliant The Payment Card Industry Data Security Standard (PCI DSS) AWS offer these services

29 KEY POINTS you cannot upload archives to Glacier by using the management console. To upload data, such as photos, videos, and other documents, you must either use the AWS CLI or write code to make requests, by using either the REST API directly or by using the AWS SDKs

30 GOOD LUCK Hope this helps

Download ppt "Certified Cloud Practitioner Exam Personal Study Guide"

Similar presentations

Ivan Pleština Amazon Simple Storage Service (S3) Amazon Elastic Block Storage (EBS) Amazon Elastic Compute Cloud (EC2)

Ivan Pleština Amazon Simple Storage Service (S3) Amazon Elastic Block Storage (EBS) Amazon Elastic Compute Cloud (EC2)
1 NETE4631 Cloud deployment models and migration Lecture Notes #4.

1 NETE4631 Cloud deployment models and migration Lecture Notes #4.
A Brief Overview by Aditya Dutt March 18 th ’ 2014 1Aditya Inc.

A Brief Overview by Aditya Dutt March 18 th ’ Aditya Inc.
How AWS Pricing Works Jinesh Varia Technology Evangelist.

How AWS Pricing Works Jinesh Varia Technology Evangelist.
INTRODUCTION TO AMAZON WEB SERVICES (EC2). AMAZON WEB SERVICES  Services  Storage (Glacier, S3)  Compute (Elastic Compute Cloud, EC2)  Databases (Redshift,

INTRODUCTION TO AMAZON WEB SERVICES (EC2). AMAZON WEB SERVICES  Services  Storage (Glacier, S3)  Compute (Elastic Compute Cloud, EC2)  Databases (Redshift,
AWS Simple Icons v AWS Simple Icons: Usage Guidelines

AWS Simple Icons v AWS Simple Icons: Usage Guidelines
AuraPortal Cloud Helps Empower Organizations to Organize and Control Their Business Processes via Applications on the Microsoft Azure Cloud Platform MICROSOFT.

AuraPortal Cloud Helps Empower Organizations to Organize and Control Their Business Processes via Applications on the Microsoft Azure Cloud Platform MICROSOFT.
Univa Grid Engine Makes Work Management Automatic and Efficient, Accelerates Deployment of Cloud Services with Power of Microsoft Azure MICROSOFT AZURE.

Univa Grid Engine Makes Work Management Automatic and Efficient, Accelerates Deployment of Cloud Services with Power of Microsoft Azure MICROSOFT AZURE.
Device Maintenance and Management, Parental Control, and Theft Protection for Home Users Made Easy with Remo MORE and Power of Azure MICROSOFT AZURE APP.

Device Maintenance and Management, Parental Control, and Theft Protection for Home Users Made Easy with Remo MORE and Power of Azure MICROSOFT AZURE APP.
MICROSOFT AZURE ISV PROFILE: BMC SOFTWARE

MICROSOFT AZURE ISV PROFILE: BMC SOFTWARE
COMPANY PROFILE: CORENT TECHNOLOGY INC.

COMPANY PROFILE: CORENT TECHNOLOGY INC.
100% Exam Passing Guarantee & Money Back Assurance

100% Exam Passing Guarantee & Money Back Assurance
Meemim's Microsoft Azure-Hosted Knowledge Management Platform Simplifies the Sharing of Information with Colleagues, Clients or the Public MICROSOFT AZURE.

Meemim's Microsoft Azure-Hosted Knowledge Management Platform Simplifies the Sharing of Information with Colleagues, Clients or the Public MICROSOFT AZURE.
DocFusion 365 Intelligent Template Designer and Document Generation Engine on Azure Enables Your Team to Increase Productivity MICROSOFT AZURE APP BUILDER.

DocFusion 365 Intelligent Template Designer and Document Generation Engine on Azure Enables Your Team to Increase Productivity MICROSOFT AZURE APP BUILDER.
Connect Your Apps and Automate Your Business: OneSaas on Microsoft Azure Empowers SMBs to Save Time and Make Better Business Decisions MICROSOFT AZURE.

Connect Your Apps and Automate Your Business: OneSaas on Microsoft Azure Empowers SMBs to Save Time and Make Better Business Decisions MICROSOFT AZURE.
Vidcoding Introduces Scalable Video and TV Encoding in the Cloud at an Affordable Price by Utilizing the Processing Power of Azure Batch MICROSOFT AZURE.

Vidcoding Introduces Scalable Video and TV Encoding in the Cloud at an Affordable Price by Utilizing the Processing Power of Azure Batch MICROSOFT AZURE.
Amazon Storage- S3 and Glacier

Amazon Storage- S3 and Glacier
New Heights by Guiding Them into the Cloud

New Heights by Guiding Them into the Cloud
Trial.iO Makes it Easy to Provision Software Trials, Demos and Training Environments in the Azure Cloud in One Click, Without Any IT Involvement MICROSOFT.

Trial.iO Makes it Easy to Provision Software Trials, Demos and Training Environments in the Azure Cloud in One Click, Without Any IT Involvement MICROSOFT.
A10 Networks vThunder Leverages the Powerful Microsoft Azure Cloud Platform to Offer Advanced Layer 4-7 Networking, Security on a Global Scale MICROSOFT.

A10 Networks vThunder Leverages the Powerful Microsoft Azure Cloud Platform to Offer Advanced Layer 4-7 Networking, Security on a Global Scale MICROSOFT.

Similar presentations

Ads by Google