Hello All,
Hope everyone is doing good. Recently I appeared for AWS Cloud Practitioner foundational exam and here sharing my study tips.
*Exam Information *
AWS Certified Cloud Practitioner (CLF-C01) exam is intended for individuals who can effectively demonstrate an overall knowledge of the AWS Cloud independent of a specific job role. The exam validates a candidate’s ability to complete the following tasks:
❖ Explain the value of the AWS Cloud
❖ Understand and explain the AWS shared responsibility model
❖ Understand security best practices
❖ Understand AWS Cloud costs, economics, and billing practices
❖ Describe and position the core AWS services, including compute, network, databases, and storage
❖ Identify AWS services for common use cases
_This exam is changing starting September 19, 2023. The last date to take the current exam is September 18, 2023.
_
Official AWS certification exam guide : https://d1.awsstatic.com/training-and-certification/docs-cloud-practitioner/AWS-Certified-Cloud-Practitioner_Exam-Guide.pdf
_Please don’t completely rely on this for complete exam preparation. This is the last minute exam concepts I used to clear this exam.
_
Define the benefits of the AWS cloud
**
● **Security: AWS is one of the most secure cloud platforms in the world. It offers a wide range of security features, including encryption, access control, and intrusion detection. AWS also has a team of security experts who are dedicated to keeping your data safe.
● Reliability: AWS is a highly reliable platform. It has a 99.99% uptime SLA, which means that your applications will be up and running 99.99% of the time. AWS also has a global infrastructure with multiple availability zones, so your applications will be available even if one region goes down.
● High Availability: AWS offers a high availability service called Elastic Load Balancing. This service distributes traffic across multiple servers, so your applications will be available even if one server goes down.
● Elasticity: AWS is an elastic platform. You can easily scale your applications up or down as needed. This means that you can save money by only paying for the resources you use.
● Agility: AWS is an agile platform. You can quickly and easily deploy new applications and services. This means that you can innovate faster and bring new products to market sooner.
● Pay-as-you-go pricing: AWS offers a pay-as-you-go pricing model. This means that you only pay for the resources you use. This can save you a lot of money, especially if your applications have variable workloads.
● Scalability: AWS is a scalable platform. You can easily scale your applications up or down as needed. This means that you can handle even the most demanding workloads.
● Global Reach: AWS has a global infrastructure with multiple availability zones in different regions around the world. This means that your applications will be available to users all over the world.
● Economy of scale: AWS benefits from economies of scale. This means that they can offer their services at a lower cost than other cloud providers.
Explain how the AWS cloud allows users to focus on business value
● Reduces infrastructure costs: AWS's pay-as-you-go pricing model means that you only pay for the resources you use. This can save you a significant amount of money, especially if your applications have variable workloads.
● Frees up IT resources: By offloading the responsibility of managing infrastructure to AWS, you can free up your IT resources to focus on other areas of your business, such as developing new products and services.
● Increases agility: AWS's elastic platform allows you to quickly and easily scale your applications up or down as needed. This means that you can adapt to changes in demand without having to make major investments in infrastructure.
● Improves security: AWS offers a wide range of security features and services, including encryption, access control, and intrusion detection. This means that you can be confident that your data is safe and secure when it is stored in the AWS cloud.
● Provides global reach: AWS has a global infrastructure with multiple availability zones in different regions around the world. This means that your applications will be available to users all over the world.
*Define items that would be part of a Total Cost of Ownership proposal *
● Capital expenses (CapEx): These are the costs associated with purchasing and maintaining hardware and software. For example, the cost of buying servers, storage, and networking equipment would be included in CapEx.
● Operational expenses (OpEx): These are the costs associated with running and maintaining your IT infrastructure. For example, the cost of electricity, cooling, and staffing would be included in OpEx.
● Migration costs: These are the costs associated with moving your data and applications to the cloud. For example, the cost of hiring consultants or using a migration service would be included in migration costs.
● Training costs: These are the costs associated with training your staff on how to use the cloud. For example, the cost of sending your staff to training courses or hiring a trainer would be included in training costs.
● Support costs: These are the costs associated with getting help from AWS if you have problems with your cloud environment. For example, the cost of paying for AWS support plans would be included in support costs.
● Compliance costs: These are the costs associated with ensuring that your cloud environment complies with all applicable regulations. For example, the cost of hiring a compliance consultant or implementing a compliance framework would be included in compliance costs.
By considering all of these factors, you can get a more accurate picture of the true cost of owning and operating your IT infrastructure. This information can help you to make informed decisions about whether to move to the cloud or to continue running your infrastructure on-premises.
Identify which operations will reduce costs by moving to the cloud
● Right-sizing: Right-sizing means using the right amount of resources for your needs. If you overprovision resources, you will be paying for resources that you are not using. If you underprovision resources, your applications may not perform as well as they could.
● Spot Instances: Spot Instances are unused EC2 instances that are available at a discounted price. You can use Spot Instances to save money on your compute costs.
● Savings Plans: Savings Plans are a way to commit to using a certain amount of AWS resources over a period of time. You can get discounts of up to 72% on your AWS costs by using Savings Plans.
● Reserved Instances: Reserved Instances are a way to purchase EC2 instances in advance. You can get discounts of up to 75% on your AWS costs by using Reserved Instances.
● Elastic Load Balancing: Elastic Load Balancing distributes traffic across multiple EC2 instances. This can help you to save money on your compute costs by ensuring that you are only using the resources that you need.
● Auto Scaling: Auto Scaling can automatically scale your EC2 instances up or down based on demand. This can help you to save money on your compute costs by ensuring that you are only using the resources that you need.
Explain the different cloud architecture design principles
● Design for failure: This means designing your architecture in such a way that it can withstand failures. For example, you can use redundant components and services to ensure that your applications are still available even if one component fails.
● Decouple components: This means designing your architecture in such a way that the components are independent of each other. This makes it easier to scale your architecture and to troubleshoot problems.
● Implement elasticity: This means designing your architecture in such a way that it can automatically scale up or down based on demand. This can help you to save money on your cloud costs and to ensure that your applications are always available.
●Think parallel: This means designing your architecture in such a way that it can take advantage of the parallel nature of the cloud. For example, you can use multiple servers to process requests in parallel.
*Define the AWS shared responsibility model *
The AWS Shared Responsibility Model is a framework that defines the responsibilities of AWS and its customers for security in the cloud. Under this model, AWS is responsible for the security of the cloud infrastructure, while customers are responsible for the security of the data and applications that they run on AWS.
The elements of the Shared Responsibility Model are as follows:
Physical Security: AWS is responsible for the physical security of its data centers, including the physical access to the facilities, the security of the perimeter, and the security of the data center infrastructure.
Network Security: AWS is responsible for the network security of the cloud infrastructure, including the routing, firewalling, and intrusion detection.
Hardware Security: AWS is responsible for the hardware security of the cloud infrastructure, including the physical security of the hardware, the firmware security, and the BIOS security.
Operating System Security: AWS is responsible for the operating system security of the cloud infrastructure, including the patching, the configuration, and the hardening of the operating systems.
Application Security: Customers are responsible for the security of the applications that they run on AWS, including the coding, the configuration, and the hardening of the applications.
Data Security: Customers are responsible for the security of the data that they store on AWS, including the encryption, the access control, and the auditing of the data.
The customer’s responsibility on AWS depends on the service that they are using. For example, if a customer is using Amazon Relational Database Service (RDS), then AWS is responsible for the physical security, the network security, the hardware security, and the operating system security of the database. However, the customer is responsible for the application security and the data security of the database.
How the customer’s responsibilities may shift depending on the service used can be illustrated by the following examples:
Amazon Relational Database Service (RDS): AWS is responsible for the physical security, the network security, the hardware security, and the operating system security of the database. However, the customer is responsible for the application security and the data security of the database.
Amazon Elastic Compute Cloud (EC2): AWS is responsible for the physical security, the network security, and the hardware security of the EC2 instance. However, the customer is responsible for the operating system security, the application security, and the data security of the EC2 instance.
Amazon Lambda: AWS is responsible for the physical security, the network security, and the hardware security of the Lambda function. However, the customer is responsible for the application security and the data security of the Lambda function.
AWS responsibilities under the shared responsibility model include:
Providing a secure infrastructure: AWS is responsible for providing a secure infrastructure for its customers. This includes physical security, network security, hardware security, and operating system security.
Managing security features: AWS provides a number of security features that customers can use to protect their data and applications. These features include encryption, access control, and auditing.
Providing security documentation: AWS provides documentation that customers can use to understand the security features of AWS and to implement best practices for security.
Responding to security incidents: AWS has a team of security experts who are responsible for responding to security incidents.
*Define AWS Cloud security and compliance concepts *
AWS Shared Responsibility Model: This model defines the responsibilities of AWS and its customers for security in the cloud. Under this model, AWS is responsible for the security of the cloud infrastructure, while customers are responsible for the security of the data and applications that they run on AWS.
Encryption: This is the process of converting data into a form that cannot be read by unauthorized users. AWS offers a variety of encryption features that customers can use to protect their data.
Access control: This is the process of controlling who has access to data and resources. AWS offers a variety of access control features that customers can use to protect their data.
Auditing: This is the process of tracking and recording who has accessed data and resources. AWS offers a variety of auditing features that customers can use to track and record access to their data.
Compliance: This is the process of ensuring that an organization's systems and processes meet the requirements of a specific regulation or standard. AWS offers a variety of compliance features that customers can use to ensure that their systems and processes meet the requirements of specific regulations.
Identify AWS access management capabilities
**
User and Identity Management **(IAM) is a web service that allows you to manage users and access to AWS resources. IAM provides a number of features that you can use to control who has access to your AWS resources and what they can do with those resources.
Access keys and password policies: Access keys are a pair of strings that you can use to authenticate to AWS services. Password policies allow you to control the complexity and expiration of passwords for IAM users.
Multi-Factor Authentication (MFA) is an additional layer of security that you can use to protect your AWS account. MFA requires you to enter a code from a physical device, such as a security token, in addition to your password when you authenticate to AWS.
Groups and users: IAM groups allow you to group IAM users together. This can make it easier to manage access to AWS resources for a group of users. IAM users are individual users who have access to AWS resources.
Roles: IAM roles allow you to grant permissions to AWS resources without having to create IAM users. Roles are often used to grant permissions to applications and services.
Policies: IAM policies are documents that define the permissions that users and roles have to AWS resources. Policies are written in JSON format.
Managed policies: Managed policies are pre-defined policies that you can attach to IAM users and roles. Managed policies make it easier to manage permissions for IAM users and roles.
Custom policies: Custom policies are policies that you create yourself. Custom policies give you more flexibility in defining the permissions that users and roles have to AWS resources.
Tasks that require use of root accounts: The root account is the master account for your AWS account. It has full access to all of your AWS resources. You should only use the root account for tasks that require administrative privileges.
Protection of root accounts: You should protect your root account by enabling MFA and by using a strong password. You should also avoid using the root account for everyday tasks. Instead, you should create IAM users and roles for everyday tasks.
Identify resources for security support
**
**Native AWS services: AWS offers a number of native security services that you can use to protect your data and applications.
These services include:
Security groups: Security groups are used to control the traffic that is allowed to flow into and out of your EC2 instances.
Network ACLs: Network ACLs are used to control the traffic that is allowed to flow between subnets in your VPC.
AWS WAF: AWS WAF is a web application firewall that can be used to protect your web applications from common web attacks.
Third-party security products: AWS also offers a number of third-party security products that you can use to protect your data and applications. These products can be found in the AWS Marketplace.
Documentation: AWS provides a number of security documents that you can use to learn about security on AWS. These documents include:
Best practices: AWS provides best practices for security on AWS. These best practices can help you to secure your data and applications.
Whitepapers: AWS provides whitepapers that discuss security on AWS in more detail. These whitepapers can help you to understand the security features of AWS and how to use them.
Official documents: AWS provides official documentation for all of its security services. This documentation can help you to understand how to use the security services.
AWS Knowledge Center: The AWS Knowledge Center is a great resource for security information. The Knowledge Center includes articles, tutorials, and videos on a variety of security topics.
Security Center: Security Center is a managed service that provides you with a centralized view of your security posture across your AWS accounts. Security Center can help you to identify security risks and to take steps to mitigate those risks.
Security forum: The AWS Security forum is a great place to ask questions and get help from other AWS users. The forum is a great resource for security information and best practices.
Security blogs: AWS publishes a number of security blogs that discuss security topics in more detail. These blogs can help you to stay up-to-date on the latest security trends.
Partner Systems Integrators: AWS has a number of partner Systems Integrators (SIs) that can help you with security on AWS. SIs can help you to assess your security posture, to implement security best practices, and to troubleshoot security issues.
AWS Trusted Advisor: AWS Trusted Advisor is a service that provides you with recommendations for improving the security, performance, cost optimization, and fault tolerance of your AWS resources. Trusted Advisor can help you to identify security risks and to take steps to mitigate those risks.
Define methods of deploying and operating in the AWS Cloud
**
Methods of provisioning and operating in the AWS cloud.
There are a number of ways to provision and operate in the AWS cloud. These methods include:
**Programmatic access: This is the use of APIs, SDKs, and other tools to provision and operate AWS resources programmatically. This method is often used by developers and DevOps engineers.
AWS Management Console: This is a web-based graphical user interface (GUI) that you can use to provision and operate AWS resources. This method is often used by business users and IT administrators.
Command-line interface (CLI): This is a command-line tool that you can use to provision and operate AWS resources. This method is often used by developers and system administrators.
Infrastructure as code (IaC): This is a methodology for provisioning and operating AWS resources using code. IaC tools, such as AWS CloudFormation and Terraform, can be used to automate the provisioning and operation of AWS resources.
Types of cloud deployment models
Public Cloud: This is a model where all of your applications and data are hosted in the cloud. This model is often used by businesses that want to take advantage of the scalability, elasticity, and agility of the cloud.
Hybrid: This is a model where some of your applications and data are hosted in the cloud and some are hosted on-premises. This model is often used by businesses that want to take advantage of the benefits of both the cloud and on-premises infrastructure.
On-premises: This is a model where all of your applications and data are hosted on-premises. This model is often used by businesses that are not ready to move to the cloud or that have regulatory requirements that prevent them from moving to the cloud.
There are a number of ways to connect to AWS resources. These methods include:
VPN: A virtual private network (VPN) is a secure connection between your on-premises network and AWS. VPNs can be used to connect to AWS resources from on-premises applications and services.
AWS Direct Connect: AWS Direct Connect is a dedicated network connection between your on-premises network and AWS. AWS Direct Connect can be used to provide a more reliable and secure connection to AWS resources than a VPN.
Public internet: The public internet can be used to connect to AWS resources. However, the public internet is not as secure as a VPN or AWS Direct Connect.
*Define the AWS global infrastructure
*
**Regions and Availability Zones
**AWS Regions are geographic locations where AWS data centers are located. Each Region has multiple Availability Zones, which are isolated from each other by distance and power grids. This means that if there is a problem with one Availability Zone, your applications and data will still be available in the other Availability Zones.
Edge Locations
Edge Locations are points of presence (PoPs) that are located close to end-users. Edge Locations are used to cache content, such as images, videos, and web pages, so that end-users can access them with lower latency.
Achieving high availability through the use of multiple Availability Zones
High availability is achieved by using multiple Availability Zones. This means that your applications and data will be available even if there is a problem with one Availability Zone. For example, if you have an application that is deployed in two Availability Zones, and one Availability Zone goes down, your application will still be available in the other Availability Zone.
Official page : https://aws.amazon.com/about-aws/global-infrastructure/
There are a few reasons why you might want to consider using multiple AWS Regions:
Disaster recovery/business continuity: If you want to ensure that your applications and data are available even in the event of a disaster, you can deploy them in multiple Regions. This way, if one Region is unavailable, your applications and data will still be available in the other Region.
Low latency for end-users: If you have users located in different parts of the world, you can deploy your applications in multiple Regions to reduce latency for those users. For example, if you have users in North America and Europe, you can deploy your applications in an AWS Region in each region to reduce latency for those users.
Data sovereignty: If you have regulatory requirements that require you to store your data in a specific region, you can deploy your applications in that region. For example, if you have users in the European Union, you might need to store their data in an AWS Region in the European Union.
Benefits of Edge Locations
Reduced latency: Edge Locations are located close to end-users, which can reduce latency for those users.
Improved performance: Edge Locations can improve the performance of your applications by caching content, such as images, videos, and web pages.
Increased capacity: Edge Locations can increase the capacity of your applications by serving content from multiple locations.
Amazon CloudFront
Amazon CloudFront is a content delivery network (CDN) that uses Edge Locations to deliver content to end-users. CloudFront can cache content, such as images, videos, and web pages, in Edge Locations, which can reduce latency for end-users. CloudFront can also improve the performance of your applications by caching content and serving it from multiple locations.
AWS Global Accelerator
AWS Global Accelerator is a global load balancing service that uses Edge Locations to improve the performance of your applications. Global Accelerator can route traffic to your applications through the closest Edge Location, which can reduce latency for end-users. Global Accelerator can also improve the performance of your applications by distributing traffic across multiple Edge Locations.
Identify the core AWS services
AWS offers a wide range of services that can be categorized into four main categories:
Compute: These services provide virtual machines (VMs) that can be used to run applications.
Storage: These services provide a variety of ways to store data, such as object storage, block storage, and file storage.
Networking: These services provide a way to connect your applications and data.
Database: These services provide a variety of database engines that can be used to store data.
AWS compute services
Amazon EC2: Amazon EC2 is a service that provides VMs that can be used to run applications.
AWS Lambda: AWS Lambda is a service that allows you to run code without provisioning or managing servers.
Amazon Elastic Container Service (ECS): Amazon ECS is a service that allows you to run containers on a cluster of EC2 instances.
Amazon Elastic Beanstalk: Amazon Elastic Beanstalk is a service that makes it easy to deploy and manage web applications and services.
AWS storage services
Amazon S3: Amazon S3 is an object storage service that provides a simple way to store and retrieve data.
Amazon EBS: Amazon EBS is a block storage service that provides persistent storage for EC2 instances.
Amazon S3 Glacier: Amazon S3 Glacier is an archival storage service that provides low-cost storage for data that is infrequently accessed.
AWS Snowball: AWS Snowball is a service that allows you to transfer large amounts of data to AWS.
Amazon EFS: Amazon EFS is a file storage service that provides a shared file system for EC2 instances.
AWS Storage Gateway: AWS Storage Gateway is a service that provides a hybrid storage solution that combines on-premises storage with AWS storage.
AWS networking services
VPC: A VPC is a virtual private cloud that provides a way to isolate your resources from the public internet.
VPC Subnets: A subnet is a range of IP addresses in your VPC. You can create AWS resources, such as EC2 instances, in specific subnets. Each subnet must reside entirely within one Availability Zone and cannot span zones. By launching AWS resources in separate Availability Zones, you can protect your applications from the failure of a single Availability Zone.
Security groups: Security groups are used to control the traffic that is allowed to flow into and out of your EC2 instances.
Amazon Route 53: Amazon Route 53 is a DNS service that can be used to route traffic to your applications.
VPN: A VPN is a secure connection between your on-premises network and AWS.
AWS Direct Connect: AWS Direct Connect is a dedicated network connection between your on-premises network and AWS.
AWS database services
Amazon RDS: Amazon RDS is a managed database service that provides a variety of database engines, such as MySQL, PostgreSQL, and Oracle.
Amazon DynamoDB: Amazon DynamoDB is a NoSQL database service that is designed for high performance and scalability.
Amazon Redshift: Amazon Redshift is a data warehouse service that is designed for large-scale data analytics.
*Identify resources for technology support *
AWS provides a wealth of documentation that can help you get started with AWS and troubleshoot problems. This documentation includes:
Best practices: AWS provides best practices for a variety of AWS services. These best practices can help you to design and deploy your applications on AWS in a secure and reliable way.
Whitepapers: AWS publishes whitepapers that discuss a variety of AWS services in more detail. These whitepapers can help you to understand the features and capabilities of AWS services.
AWS Knowledge Center: The AWS Knowledge Center is a searchable database of articles, FAQs, and how-tos. The AWS Knowledge Center is a great resource for troubleshooting problems and finding information about AWS services.
Forums: AWS provides forums where you can ask questions and get help from other AWS users. The forums are a great resource for troubleshooting problems and finding information about AWS services.
Blogs: AWS publishes blogs that discuss a variety of AWS services and topics. The blogs are a great resource for staying up-to-date on the latest AWS news and features.
Support levels
Basic **support: Basic support is included with all AWS accounts. Basic support provides 24/7 access to AWS support engineers.
**Developer **support: Developer support is a paid support level that provides 24/7 access to AWS support engineers and priority response times.
**Business **support: Business support is a paid support level that provides 24/7 access to AWS support engineers, priority response times, and dedicated account managers.
**Partner network
AWS has a partner network that includes Independent Software Vendors (ISVs) and System Integrators (SIs). These partners can provide you with additional support and services for your AWS applications.
Technical assistance and knowledge
AWS offers a variety of ways to get technical assistance and knowledge:
**Professional **services: AWS Professional Services can help you with a variety of tasks, such as designing and deploying your applications on AWS, migrating your applications to AWS, and troubleshooting problems.
Solution architects: AWS Solution Architects can help you to design and deploy your applications on AWS in a secure and reliable way.
Training and certification: AWS offers a variety of training and certification programs that can help you to learn about AWS services and become certified.
Amazon Partner Network: The Amazon Partner Network (APN) is a program that allows you to connect with AWS partners who can provide you with additional support and services for your AWS applications.
**AWS Trusted Advisor **is a service that provides you with recommendations for improving the security, performance, cost optimization, and fault tolerance of your AWS resources. AWS Trusted Advisor is a great way to identify and fix potential problems with your AWS applications.
Billing and support
On-Demand Instances
Most basic pricing model for AWS. You pay for the amount of time you use an instance, and there are no upfront costs or commitments. On-Demand Instances are a good fit for workloads that are unpredictable or that you only need to use for a short period of time.
Reserved Instances
More cost-effective pricing model for AWS. You commit to using an instance for a certain amount of time, and you receive a discount on the hourly price. Reserved Instances are a good fit for workloads that are predictable or that you need to use for a long period of time.
Spot Instances
Spot market for unused EC2 capacity. You can bid on Spot Instances, and if your bid is high enough, you will be able to use the instance. Spot Instances are a good fit for workloads that are flexible and that can be interrupted.
Account structures in relation to AWS billing and pricing
AWS offers a variety of account structures that can be used to manage billing and pricing. The most common account structure is a single account. In a single account, all of your AWS resources are billed together. This is the simplest account structure to manage, but it can be difficult to track costs and allocate costs across departments.
Another account structure is a multi-account structure. In a multi-account structure, you create separate accounts for different departments or teams. This can make it easier to track costs and allocate costs across departments. However, it can be more complex to manage a multi-account structure.
Resources available for billing support
AWS offers a variety of resources that can be used to get billing support and information. These resources include:
Cost Explorer: Cost Explorer is a tool that you can use to track your AWS costs. Cost Explorer can help you to identify areas where you can save money.
AWS Cost and Usage Report: The AWS Cost and Usage Report is a report that you can download that provides detailed information about your AWS costs. The AWS Cost and Usage Report can help you to track your costs and identify areas where you can save money.
Amazon QuickSight: Amazon QuickSight is a business intelligence service that you can use to visualize your AWS costs. Amazon QuickSight can help you to understand your costs and identify areas where you can save money.
Third-party partners: There are a number of third-party partners that offer tools that can help you to manage your AWS costs. These tools can help you to track your costs, identify areas where you can save money, and generate reports.
AWS Billing support case: If you have a billing issue, you can open a billing support case. AWS will investigate your issue and help you to resolve it.
Concierge: If you are an AWS Enterprise Support Plan customer, you can request the Concierge service. The Concierge service will help you to manage your AWS costs and optimize your AWS environment.
Pricing information on AWS services
You can find pricing information for AWS services on the AWS website. The AWS website provides pricing information for all of the AWS services. You can also find pricing information for AWS services in the AWS Simple Monthly Calculator.
Alarms and alerts
You can create alarms and alerts to track your AWS costs. Alarms and alerts can help you to identify when your costs are going over budget. You can then take action to reduce your costs.
Tags
You can use tags to track your AWS costs. Tags are key-value pairs that you can attach to your AWS resources. You can use tags to track your costs by department, project, or other criteria.
Quick summary of AWS Services
APIs (Application Programming Interfaces) are sets of programming instructions that allow you to interact with AWS services programmatically. APIs are used to automate tasks, build custom applications, and integrate AWS services with other systems.
Cost Explorer is a tool that you can use to track your AWS costs. Cost Explorer can help you to identify areas where you can save money.
AWS Cost and Usage Report is a report that you can download that provides detailed information about your AWS costs. The AWS Cost and Usage Report can help you to track your costs and identify areas where you can save money.
*AWS Command Line Interface *(CLI) is a tool that you can use to interact with AWS services from the command line. The AWS CLI is a powerful tool that can be used to automate tasks and manage your AWS environment.
Elastic Load Balancers (ELBs) are a type of AWS service that distributes traffic across multiple EC2 instances. ELBs can help you to improve the performance and availability of your applications.
Amazon EC2 instance types are different types of EC2 instances that have different specifications, such as the amount of CPU, memory, and storage. The type of EC2 instance that you choose will depend on the needs of your application.
**AWS global infrastructure **refers to the physical locations where AWS data centers are located. AWS has data centers in many different regions and Availability Zones around the world. This ensures that your applications will be available even if there is a problem with one region or Availability Zone.
Infrastructure as Code (IaC) is a methodology for managing your AWS infrastructure using code. IaC can help you to automate the deployment and management of your AWS environment.
Amazon Machine Images (AMIs) are pre-configured images that you can use to launch EC2 instances. AMIs can save you time and effort by providing you with a pre-configured environment that you can use to deploy your applications.
AWS Management Console is a web-based graphical user interface (GUI) that you can use to interact with AWS services. The AWS Management Console is a good choice for beginners who are new to AWS.
AWS Marketplace is a marketplace where you can buy and sell software, data, and services from AWS partners. The AWS Marketplace can be a good way to find pre-configured solutions that you can use to deploy your applications.
AWS Professional Services is a team of experts that can help you with a variety of AWS tasks, such as designing and deploying your applications, migrating your applications to AWS, and troubleshooting problems.
AWS Personal Health Dashboard is a tool that you can use to track the health of AWS services. The AWS Personal Health Dashboard can help you to identify if there are any problems with the AWS services that you are using.
Security groups are used to control the traffic that is allowed to flow into and out of your EC2 instances. Security groups can help you to secure your applications and data.
AWS Service Catalog is a service that you can use to create and manage catalogs of approved AWS services and products. The AWS Service Catalog can help you to standardize your AWS environment and improve compliance.
AWS Service Health Dashboard is a tool that you can use to track the health of AWS services. The AWS Service Health Dashboard can help you to identify if there are any problems with the AWS services that you are using.
Service quotas are limits that are placed on the number of resources that you can create in AWS. Service quotas can help to prevent you from accidentally creating too many resources.
AWS software development kits (SDKs) are libraries of code that you can use to interact with AWS services in your programming language of choice. SDKs can make it easier to develop applications that use AWS services.
AWS Support Center is a website where you can submit support tickets and get help from AWS support engineers.
AWS Support tiers are different levels of AWS support that you can purchase. AWS Support tiers offer different levels of support, such as 24/7 support and priority response times.
Virtual private networks (VPNs) are private connections between your on-premises network and AWS. VPNs can be used to securely connect your on-premises applications to AWS services.
Amazon Athena is a serverless, interactive query service that makes it easy to analyze data in Amazon S3 using standard SQL.
Amazon Kinesis is a suite of services that makes it easy to collect, process, and analyze streaming data.
Amazon QuickSight is a fully managed business intelligence (BI) service that makes it easy to analyze data and create interactive dashboards.
Amazon Simple Notification Service (Amazon SNS) is a pub/sub messaging service that makes it easy to decouple microservices and distributed applications.
Amazon Simple Queue Service (Amazon SQS) is a fully managed message queuing service that makes it easy to decouple microservices and distributed applications.
AWS Batch is a service that makes it easy to run batch jobs on AWS.
Amazon EC2 is a service that provides resizable compute capacity in the cloud.
AWS Elastic Beanstalk is a service that makes it easy to deploy and scale web applications and services.
AWS Lambda is a serverless compute service that lets you run code without provisioning or managing servers.
Amazon Lightsail is a fully managed compute, storage, and networking service that makes it easy to get started on AWS.
Amazon WorkSpaces is a managed desktop and application service that provides secure, cloud-based workspaces to users.
Amazon Elastic Container Service (Amazon ECS) is a service that makes it easy to run Docker containers on AWS.
Amazon Elastic Kubernetes Service (Amazon EKS) is a managed Kubernetes service that makes it easy to run Kubernetes on AWS.
AWS Fargate is a serverless compute engine for containers that allows you to run containers without provisioning or managing servers.
Amazon Aurora is a fully managed relational database service that offers high performance and availability.
Amazon DynamoDB is a fully managed NoSQL database service that offers high performance and scalability.
Amazon ElastiCache is a fully managed in-memory data store service that offers high performance and scalability.
Amazon RDS is a fully managed relational database service that offers a variety of database engines, including MySQL, PostgreSQL, and Oracle.
Amazon Redshift is a fully managed data warehouse service that offers high performance and scalability for data warehousing and analytics.
AWS CodeBuild is a fully managed continuous integration and continuous delivery (CI/CD) service that makes it easy to build and deploy your code.
AWS CodeCommit is a fully managed source control service that makes it easy to store and manage your code.
AWS CodeDeploy is a fully managed deployment service that makes it easy to deploy your code to AWS.
AWS CodePipeline is a fully managed continuous delivery service that makes it easy to automate your release pipelines.
AWS CodeStar is a service that helps you to quickly and easily create, build, and deploy applications on AWS.
Amazon Connect is a cloud-based contact center platform that makes it easy to set up and manage a contact center.
AWS Auto Scaling is a service that helps you to automatically scale your AWS resources up or down based on demand. This can help you to ensure that your applications have the resources they need to perform well, while also avoiding overprovisioning and incurring unnecessary costs.
AWS Budgets allows you to track your AWS costs and set alerts to notify you when you are approaching your budget limits. This can help you to stay on top of your AWS costs and avoid unexpected expenses.
AWS CloudFormation allows you to create and manage AWS resources using templates. This can help you to automate the deployment and management of your AWS environment, making it easier to deploy new changes and track your infrastructure changes over time.
AWS CloudTrail allows you to track all of the API calls that are made to your AWS account. This can help you to audit your AWS environment and identify any security vulnerabilities.
Amazon CloudWatch provides a variety of monitoring and logging services for your AWS resources. This can help you to track the performance of your applications and identify any problems.
AWS Config allows you to track the configuration of your AWS resources. This can help you to ensure that your resources are configured correctly and that they comply with your security policies.
AWS Cost and Usage Report provides you with a detailed report of your AWS costs. This can help you to track your AWS costs and identify any areas where you can save money.
Amazon EventBridge (Amazon CloudWatch Events) allows you to create and manage events that are triggered by changes to your AWS resources. This can help you to automate the response to events, such as the launch of a new EC2 instance or the failure of an EBS volume.
AWS License Manager allows you to track and manage your AWS licenses. This can help you to ensure that you are only using the licenses that you need and that you are not overpaying for licenses.
AWS Managed Services provides you with a managed service that can help you to manage your AWS environment. This can help you to free up your time so that you can focus on other tasks.
AWS Organizations allows you to create an organization that can help you to manage your AWS accounts. This can help you to simplify the management of your AWS environment and improve your security posture.
AWS Secrets Manager allows you to store and manage your AWS secrets. This can help you to keep your secrets secure and to avoid storing them in plain text.
AWS Systems Manager provides you with a variety of tools that can help you to manage your AWS environment. This can help you to automate tasks, troubleshoot problems, and improve the performance of your applications.
**AWS Systems Manager Parameter Store **allows you to store configuration data in AWS. This can help you to keep your configuration data secure and to make it easier to manage.
AWS Trusted Advisor provides you with recommendations that can help you to improve the security, performance, and cost-effectiveness of your AWS environment.
Amazon API Gateway is a fully managed service that makes it easy to create, publish, maintain, monitor, and secure APIs at any scale.
Amazon CloudFront is a content delivery network (CDN) that delivers your web content and APIs to users with low latency, high transfer speeds, and high availability.
AWS Direct Connect is a dedicated network connection between your on-premises network and AWS. This can help you to improve the performance of your applications and to reduce your network costs
Amazon Route 53 is a managed DNS service that can help you to route traffic to your applications and websites.
Amazon VPC is a virtual private cloud (VPC) that allows you to create a isolated network in AWS. This can help you to improve the security of your applications and data.
AWS Artifact is a centralized repository for your AWS artifacts, such as your AWS Identity and Access Management (IAM) policies and your AWS Certificate Manager (ACM) certificates. This can help you to manage your artifacts and to ensure that they are secure and compliant.
AWS Certificate Manager (ACM) is a service that allows you to easily manage your SSL/TLS certificates. This can help you to improve the security of your applications and websites.
AWS CloudHSM is a managed service that provides you with a highly secure and isolated environment to store your cryptographic keys. This can help you to protect your applications and data from unauthorized access.
Amazon Cognito is a service that provides you with user sign-up, sign-in, and access control for your applications. This can help you to improve the security of your applications and to make it easier for users to sign in to your applications.
Amazon Detective is a service that helps you to investigate security incidents in your AWS environment. This can help you to identify the root cause of security incidents and to take steps to remediate them.
**Amazon GuardDuty **is a threat detection service that monitors your AWS environment for malicious activity. This can help you to identify and respond to security threats before they cause damage.
AWS Identity and Access Management (IAM) is a service that allows you to manage access to your AWS resources. This can help you to control who has access to your resources and what they can do with them.
**Amazon Inspector **is a service that helps you to identify security vulnerabilities in your AWS environment. This can help you to fix security vulnerabilities before they are exploited by attackers.
AWS License Manager allows you to track and manage your AWS licenses. This can help you to ensure that you are only using the licenses that you need and that you are not overpaying for licenses.
Amazon Macie is a fully managed data loss prevention (DLP) service that helps you to discover, classify, and protect sensitive data in your AWS environment.
AWS Shield is a managed service that helps you to protect your AWS applications from distributed denial-of-service (DDoS) attacks.
AWS WAF is a web application firewall (WAF) that helps you to protect your web applications from common web attacks.
AWS Backup is a service that helps you to back up your AWS resources. This can help you to protect your data in case of a disaster.
Amazon Elastic Block Store (Amazon EBS) is a block storage service that provides you with durable, reliable, and resizable block storage volumes for your Amazon EC2 instances.
Amazon Elastic File System (Amazon EFS) is a file storage service that provides you with a simple, scalable, and highly available file system for your Amazon EC2 instances.
Amazon S3 is a highly scalable, reliable, and cost-effective object storage service that offers industry-leading durability.
Amazon S3 Glacier is an extremely low-cost storage service that provides long-term storage for data that is infrequently accessed.
AWS Snowball Edge is a portable appliance that you can use to transfer large amounts of data to and from AWS.
AWS Storage Gateway is a service that allows you to connect your on-premises storage to AWS. This can help you to extend the reach of your on-premises storage and to take advantage of the scalability and flexibility of AWS storage.
Hope this helps for your exam study guide last minute refresh. Connect with me on LinkedIn for further any assistance.
All the very best for your exams !!
Top comments (1)