Master the intricacies of Amazon Web Services and efficiently prepare for the SAA-C02 Exam with this comprehensive study guide
AWS Certified Solutions Study Guide: Associate (SAA-C02) Exam, Third Edition comprehensively and efficiently prepares you for the SAA-C02 Exam. The study guide contains robust and effective study tools that will help you succeed on the exam. The guide grants you access to the regularly updated Sybex online learning environment and test bank, which contains hundreds of test questions, bonus practice exams, electronic flashcards, and a glossary of key terms.
In this study guide, accomplished and experienced authors Ben Piper and David Clinton show you how to:
• Design resilient architectures
• Create high-performing architectures
• Craft secure applications and architectures
• Design cost-optimized architectures
Perfect for anyone who hopes to begin a new career as an Amazon Web Services cloud professional, the study guide also belongs on the bookshelf of any existing AWS professional who wants to brush up on the fundamentals of their profession.
Author(s): Ben Piper, David Clinton
Edition: 3
Publisher: Sybex
Year: 2020
Language: English
Commentary: Vector PDF
Pages: 464
City: Indianapolis, IN
Tags: Amazon Web Services;Cloud Computing;Command Line;Databases;Security;Web Applications;Relational Databases;NoSQL;Reliability;DNS;Logging;Encryption;Networking;Performance Tuning;Access Management;Software Architecture;Performance;AWS Redshift;AWS Athena;Container Orchestration;Scaling;AWS CloudFormation;AWS Glacier;AWS CloudWatch;AWS Elastic Compute Cloud;AWS Simple Storage Service;Amazon Virtual Private Cloud;Amazon Route 53;AWS CloudFront;AWS CodeCommit;AWS CodeDeploy;AWS CodePipeline
Cover
Title Page
Copyright
Acknowledgments
About the Authors
Contents at a Glance
Contents
Table of Exercises
Introduction
Part I The Core AWS Services
Chapter 1 Introduction to Cloud Computing and AWS
Cloud Computing and Virtualization
Cloud Computing Architecture
Cloud Computing Optimization
The AWS Cloud
AWS Platform Architecture
AWS Reliability and Compliance
The AWS Shared Responsibility Model
The AWS Service Level Agreement
Working with AWS
The AWS CLI
AWS SDKs
Technical Support and Online Resources
Support Plans
Other Support Resources
Summary
Exam Essentials
Review Questions
Chapter 2 Amazon Elastic Compute Cloud and Amazon Elastic Block Store
Introduction
EC2 Instances
Provisioning Your Instance
Configuring Instance Behavior
Placement Groups
Instance Pricing
Instance Lifecycle
Resource Tags
Service Limits
EC2 Storage Volumes
Elastic Block Store Volumes
Instance Store Volumes
Accessing Your EC2 Instance
Securing Your EC2 Instance
Security Groups
IAM Roles
NAT Devices
Key Pairs
EC2 Auto Scaling
Launch Configurations
Launch Templates
Auto Scaling Groups
Auto Scaling Options
AWS Systems Manager
Actions
Insights
AWS CLI Example
Summary
Exam Essentials
Review Questions
Chapter 3 AWS Storage
Introduction
S3 Service Architecture
Prefixes and Delimiters
Working with Large Objects
Encryption
Logging
S3 Durability and Availability
Durability
Availability
Eventually Consistent Data
S3 Object Lifecycle
Versioning
Lifecycle Management
Accessing S3 Objects
Access Control
Presigned URLs
Static Website Hosting
Amazon S3 Glacier
Storage Pricing
Other Storage-Related Services
Amazon Elastic File System
Amazon FSx
AWS Storage Gateway
AWS Snowball
AWS DataSync
AWS CLI Example
Summary
Exam Essentials
Review Questions
Chapter 4 Amazon Virtual Private Cloud
Introduction
VPC CIDR Blocks
Secondary CIDR Blocks
IPv6 CIDR Blocks
Subnets
Subnet CIDR Blocks
Availability Zones
IPv6 CIDR Blocks
Elastic Network Interfaces
Primary and Secondary Private IP Addresses
Attaching Elastic Network Interfaces
Enhanced Networking
Internet Gateways
Route Tables
Routes
The Default Route
Security Groups
Inbound Rules
Outbound Rules
Sources and Destinations
Stateful Firewall
Default Security Group
Network Access Control Lists
Inbound Rules
Outbound Rules
Using Network Access Control Lists and Security Groups Together
Public IP Addresses
Elastic IP Addresses
AWS Global Accelerator
Network Address Translation
Network Address Translation Devices
Configuring Route Tables to Use NAT Devices
NAT Gateway
NAT Instance
VPC Peering
Hybrid Cloud Networking
Virtual Private Networks
AWS Transit Gateway
AWS Direct Connect
High-Performance Computing
Elastic Fabric Adapter
AWS ParallelCluster
Summary
Exam Essentials
Review Questions
Chapter 5 Database Services
Introduction
Relational Databases
Columns and Attributes
Using Multiple Tables
Structured Query Language
Online Transaction Processing vs. Online Analytic Processing
Amazon Relational Database Service
Database Engines
Licensing Considerations
Database Option Groups
Database Instance Classes
Storage
Read Replicas
High Availability (Multi-AZ)
Single-Master
Multi-Master
Backup and Recovery
Automated Snapshots
Maintenance Items
Amazon Redshift
Compute Nodes
Data Distribution Styles
Redshift Spectrum
AWS Database Migration Service
Nonrelational (NoSQL) Databases
Storing Data
Querying Data
Types of Nonrelational Databases
DynamoDB
Partition and Hash Keys
Attributes and Items
Throughput Capacity
Reading Data
Global Tables
Backups
Summary
Exam Essentials
Review Questions
Chapter 6 Authentication and Authorization—AWS Identity and Access Management
Introduction
IAM Identities
IAM Policies
User and Root Accounts
Access Keys
Groups
Roles
Authentication Tools
Amazon Cognito
AWS Managed Microsoft AD
AWS Single Sign-On
AWS Key Management Service
AWS Secrets Manager
AWS CloudHSM
AWS CLI Example
Summary
Exam Essentials
Review Questions
Chapter 7 CloudTrail, CloudWatch, and AWS Config
Introduction
CloudTrail
Management Events
Data Events
Event History
Trails
Log File Integrity Validation
CloudWatch
CloudWatch Metrics
Graphing Metrics
Metric Math
CloudWatch Logs
CloudWatch Alarms
Amazon EventBridge
AWS Config
The Configuration Recorder
Configuration Items
Configuration History
Configuration Snapshots
Monitoring Changes
Summary
Exam Essentials
Review Questions
Chapter 8 The Domain Name System and Network Routing: Amazon Route 53 and Amazon CloudFront
Introduction
The Domain Name System
Namespaces
Name Servers
Domains and Domain Names
Domain Registration
Domain Layers
Fully Qualified Domain Names
Zones and Zone Files
Record Types
Alias Records
Amazon Route 53
Domain Registration
DNS Management
Availability Monitoring
Routing Policies
Traffic Flow
Route 53 Resolver
Amazon CloudFront
AWS CLI Example
Summary
Exam Essentials
Review Questions
Chapter 9 Simple Queue Service and Kinesis
Introduction
Simple Queue Service
Queues
Queue Types
Polling
Dead-Letter Queues
Kinesis
Kinesis Video Streams
Kinesis Data Streams
Kinesis Data Firehose
Kinesis Data Firehose vs. Kinesis Data Streams
Summary
Exam Essentials
Review Questions
Part II The Well-Architected Framework
Chapter 10 The Reliability Pillar
Introduction
Calculating Availability
Availability Differences in Traditional vs. Cloud-Native Applications
Know Your Limits
Increasing Availability
EC2 Auto Scaling
Launch Configurations
Launch Templates
Auto Scaling Groups
Auto Scaling Options
Data Backup and Recovery
S3
Elastic File System
Elastic Block Storage
Database Resiliency
Creating a Resilient Network
VPC Design Considerations
External Connectivity
Designing for Availability
Designing for 99 Percent Availability
Designing for 99.9 Percent Availability
Designing for 99.99 Percent Availability
Summary
Exam Essentials
Review Questions
Chapter 11 The Performance Efficiency Pillar
Introduction
Optimizing Performance for the Core AWS Services
Compute
Storage
Database
Network Optimization and Load Balancing
Infrastructure Automation
CloudFormation
Third-Party Automation Solutions
Reviewing and Optimizing Infrastructure Configurations
Load Testing
Visualization
Optimizing Data Operations
Caching
Partitioning/Sharding
Compression
Summary
Exam Essentials
Review Questions
Chapter 12 The Security Pillar
Introduction
Identity and Access Management
Protecting AWS Credentials
Fine-Grained Authorization
Permissions Boundaries
Roles
Enforcing Service-Level Protection
Detective Controls
CloudTrail
CloudWatch Logs
Searching Logs with Athena
Auditing Resource Configurations with AWS Config
Amazon GuardDuty
Amazon Inspector
Amazon Detective
Security Hub
Protecting Network Boundaries
Network Access Control Lists and Security Groups
AWS Web Application Firewall
AWS Shield
Data Encryption
Data at Rest
Data in Transit
Macie
Summary
Exam Essentials
Review Questions
Chapter 13 The Cost Optimization Pillar
Introduction
Planning, Tracking, and Controlling Costs
AWS Budgets
Monitoring Tools
AWS Organizations
AWS Trusted Advisor
Online Calculator Tools
Cost-Optimizing Compute
Maximizing Server Density
EC2 Reserved Instances
EC2 Spot Instances
Auto Scaling
Elastic Block Store Lifecycle Manager
Summary
Exam Essentials
Review Questions
Chapter 14 The Operational Excellence Pillar
Introduction
CloudFormation
Creating Stacks
Deleting Stacks
Using Multiple Stacks
Stack Updates
Preventing Updates to Specific Resources
Overriding Stack Policies
CodeCommit
Creating a Repository
Repository Security
Interacting with a Repository Using Git
CodeDeploy
The CodeDeploy Agent
Deployments
Deployment Groups
Deployment Types
Deployment Configurations
Lifecycle Events
The Application Specification File
Triggers and Alarms
Rollbacks
CodePipeline
Continuous Integration
Continuous Delivery
Creating the Pipeline
Artifacts
AWS Systems Manager
Actions
Insights
AWS Landing Zone
Summary
Exam Essentials
Review Questions
Appendix Answers to Review Questions
Chapter 1: Introduction to Cloud Computing and AWS
Chapter 2: Amazon Elastic Compute Cloud and Amazon Elastic Block Store
Chapter 3: AWS Storage
Chapter 4: Amazon Virtual Private Cloud
Chapter 5: Database Services
Chapter 6: Authentication and Authorization—AWS Identity and Access Management
Chapter 7: CloudTrail, Cloud Watch, and AWS Config
Chapter 8: The Domain Name System and Network Routing: Amazon Route 53 and Amazon CloudFront
Chapter 9: Simple Queue Service and Kinesis
Chapter 10: The Reliability Pillar
Chapter 11: The Performance Efficiency Pillar
Chapter 12: The Security Pillar
Chapter 13: The Cost Optimization Pillar
Chapter 14: The Operational Excellence Pillar
Index
Online Test Bank
EULA
