book

AWS Certified Solutions Architect Associate All-in-One Exam Guide, Second Edition (Exam SAA-C02), 2nd Edition

Name: AWS Certified Solutions Architect Associate All-in-One Exam Guide, Second Edition (Exam SAA-C02), 2nd Edition
Author: Joyjeet Banerjee
ISBN: 9781260470192

by Joyjeet Banerjee

January 2021

Intermediate to advanced

448 pages

13h 18m

English

McGraw-Hill

Read now

Unlock full access

Cover
About the Author
Title Page
Copyright Page
Dedication
Contents at a Glance
Contents
Acknowledgments
Introduction
Chapter 1 Overview of Cloud Computing and Amazon Web Services
Advantages of Running Cloud Computing on AWSThree Models of Cloud ComputingThree Cloud Computing Deployment ModelsHistory of AWSAWS Global InfrastructureAWS Security and ComplianceAWS Products and ServicesComputeNetworkingSecurity and ComplianceStorage and Content DeliveryDatabaseAnalyticsApplication ServicesDeveloper ToolsManagement ToolsMessagingMigrationArtificial IntelligenceInternet of ThingsMobile ServicesChapter ReviewQuestionsAnswers

Chapter 2 Storage on AWS
Amazon Simple Storage Service (S3)Advantages of Amazon S3Usage of Amazon S3 in Real LifeAmazon S3 Basic ConceptsAmazon S3 Data Consistency ModelAmazon S3 Performance ConsiderationsReverse the Key Name StringAdding a Hex Hash Prefix to a Key NameEncryption in Amazon S3Amazon S3 Access ControlAccess PoliciesBucket PoliciesAccess Control ListS3 Security Best PracticesAmazon S3 Storage ClassVersioning of Objects in Amazon S3Amazon S3 Object Lifecycle ManagementAmazon S3 ReplicationStatic Web Site Hosting in Amazon S3Amazon S3 GlacierAmazon S3 Glacier Key TerminologyAccessing Amazon S3 GlacierUploading Files to AmazonS3 GlacierRetrieving Files from Amazon S3 GlacierAmazon Elastic Block StoreFeatures of Amazon EBSAWS Block Storage OfferingsAmazon Elastic File SystemUsing Amazon Elastic File SystemPerformance Mode of Amazon EFSOn-Premise Storage Integration with AWSAWS Storage GatewayAWS Snowball and AWS Snowball EdgeAWS SnowmobileChapter ReviewLab 2-1: Creating, Moving, and Deleting Objects in Amazon S3Lab 2-2: Using Version Control in Amazon S3Lab 2-3: Using the Bucket Policy Generator for Amazon S3QuestionsAnswers
Chapter 3 Virtual Private Cloud
Amazon VPC Components and TerminologyAmazon VPCSubnetRoute TableInternet GatewayNetwork Address TranslationEgress-Only Internet GatewayElastic Network InterfaceEnhanced Networking (Linux Only)Elastic IP AddressNetwork SecurityAmazon VPC PeeringAmazon VPC EndpointTransit GatewayDNS and VPCDHCP Option SetsConnecting to a VPCVPC Flow LogsDefault VPCLabs on VPCLab 3-1: Using the VPC WizardLab 3-2: Creating a VPC with Public and Private SubnetsLab 3-3: Exploring All the Options in a Virtual Private CloudChapter ReviewQuestionsAnswers
Chapter 4 Introduction to Amazon Elastic Compute Cloud
Benefits of Amazon EC2Amazon EC2 Instance Types and FeaturesGeneral Purpose (T3, T3a, T2, M6g, M5, M5a, M5n, M4, and A1)Compute Optimized (C6g, C5, C5a, C5n, and C4)Memory Optimized (R6g, R5, R5a, R5n, R4, X1e, X1, High Memory, and Z1d)Storage Optimized (I3, I3en, D2, and H1)Accelerated Computing (P3, P2, Inf1, G4, G3, and F1)Processor FeaturesNetwork FeaturesStorage FeaturesSteps for Using Amazon EC2Pricing for Amazon EC2On-Demand InstanceReserved InstanceSpot InstanceShared Tenancy, Dedicated Hosts, and Dedicated InstancesShared TenancyDedicated HostDedicated InstanceInstances and AMIsInstance Root VolumeObtaining an AMIVirtualization in AMIHVM AMIPV AMIInstance Life CycleLaunchStart and StopRebootTerminationRetirementConnecting to an InstanceSecurity GroupAmazon Elastic Container ServiceLab 4-1: Using EC2Creating a New Key PairLaunching a Web Server InstanceBrowsing the Web ServerLab 4-2: Creating an EBS Instance and Attaching It to an EC2 InstanceLab 4-3: Creating an Elastic File System (EFS) and Mounting Across Two EC2 Instances in Different AZsChapter ReviewQuestionsAnswers
Chapter 5 Identity and Access Management and Security on AWS
AuthenticationAuthorizationAuditingTypes of Security CredentialsTemporary Security CredentialsUsersGroupsRolesIAM Hierarchy of PrivilegesIAM Best PracticesUse the IAM UserCreate a Strong Password PolicyRotate Security Credentials RegularlyEnable MFAManage Permissions with GroupsGrant the Least PrivilegesUse IAM RolesUse IAM Roles for Amazon EC2 InstancesUse IAM Policy Conditions for Extra SecurityEnable AWS CloudTrailAWS Compliance ProgramShared Responsibility ModelAWS ResponsibilityCustomer’s ResponsibilityAWS Security Products and ServicesResource Access ManagerAWS Secrets ManagerAmazon GuardDutyAmazon InspectorAmazon MacieAWS Certificate ManagerAWS Web Application FirewallAWS ShieldAWS CloudHSMAWS KMSLab 5-1: Creating IAM Users, Groups, and RolesManaging IAM User Permissions and CredentialsIAM Roles for Amazon EC2Chapter ReviewQuestionsAnswers
Chapter 6 Auto Scaling
Benefits of Auto ScalingScaling PlanIdentify Scalable ResourcesSpecify Scaling StrategyUsing EC2 Auto ScalingLaunch ConfigurationAuto Scaling GroupsTermination PolicyElastic Load BalancingHow ELB WorksTypes of Load BalancersLoad Balancer Key Concepts and TerminologyHealth CheckUsing Multiple AZsLab 6-1: Set Up Auto ScalingChapter ReviewQuestionsAnswers
Chapter 7 Deploying and Monitoring Applications on AWS
AWS LambdaIs AWS Lambda Really Serverless?Understanding AWS LambdaAmazon API GatewayAPI Types Supported by API GatewayBenefits of Amazon API GatewayAmazon KinesisReal-Time Application ScenariosDifferences Between Batch and Stream ProcessingAmazon Kinesis Data SteamsBenefits of Amazon Kinesis Data StreamsAmazon Kinesis Data FirehoseBenefits of Amazon Kinesis Data FirehoseAmazon Kinesis Data AnalyticsBenefits of Amazon Kinesis Data AnalyticsUse Cases for Amazon Kinesis Data AnalyticsAmazon Kinesis Video StreamsReference Architectures Using Serverless ServicesReal-Time File ProcessingReal-Time Stream ProcessingExtract, Transformation, and Load (ETL) ProcessingIoT Back EndsAmazon CloudFrontAmazon CloudFront Key ConceptsGeo RestrictionError HandlingAmazon Route 53AWS Web Application FirewallAmazon ShieldBenefits of AWS ShieldAmazon Simple Queue ServiceAmazon Simple Notification ServiceAWS Step Functions and Amazon Simple Workflow (SWF)AWS Elastic BeanstalkAWS OpsWorksAmazon CognitoAmazon Elastic MapReduceAWS CloudFormationMonitoring in AWSAmazon CloudWatchMetrics Collection and TrackingCapture Real-Time Changes Using Amazon CloudWatch EventsMonitoring and Storing LogsSet AlarmsView Graphs and StatisticsAWS CloudTrailAWS ConfigAmazon VPC Flow LogsAWS Trusted AdvisorAWS OrganizationsChapter ReviewQuestionsAnswers
Chapter 8 Databases on AWS
Understanding Relational DatabasesUnderstanding the Amazon Relational Database ServiceScenario 1: Hosting the Database in Your Data Center On-PremisesScenario 2: Hosting the Database on Amazon EC2 ServersScenario 3: Hosting the Database Using Amazon RDSHosting a Database in Amazon EC2 vs. Amazon RDSHigh Availability on Amazon RDSSimplest Architecture: Single-AZ DeploymentHigh Availability: Multiple AZsScaling on Amazon RDSChanging the Instance TypeRead ReplicaSecurity on Amazon RDSAmazon VPC and Amazon RDSBackups, Restores, and SnapshotsMonitoringAmazon AuroraAmazon RedshiftBenefits of Amazon RedshiftAmazon Redshift ArchitectureSizing Amazon Redshift ClustersNetworking for Amazon RedshiftEncryptionSecurityBackup and RestoreData Loading in Amazon RedshiftData Distribution in Amazon RedshiftAmazon DynamoDBBenefits of Amazon DynamoDBAmazon DynamoDB TerminologySecondary IndexConsistency ModelGlobal TableAmazon DynamoDB StreamsAmazon DynamoDB AcceleratorEncryption and SecurityAmazon ElastiCacheAmazon NeptuneBenefits of Amazon NeptuneAmazon Neptune Use CasesAmazon DocumentDBBenefits of Amazon DocumentDBAmazon DocumentDB Use CasesLab 8-1: RDS: Creating an Amazon Aurora DatabaseLab 8-2: Taking a Snapshot of a DatabaseLab 8-3: Creating an Amazon Redshift ClusterLab 8-4: Creating an Amazon DynamoDB TableChapter ReviewQuestionsAnswers
Chapter 9 AWS Well-Architected Framework and Best Practices
Operational ExcellencePrepareOperateEvolveSecurityHave a Strong Identity FoundationEnable TraceabilityImplement Security at All LayersSecure the DataAutomate for SecurityPlan for Security EventsBest PracticesPerformancePerformance EfficiencyReliabilityBest PracticesCost Optimization PillarFinding Cost-Effective ResourcesMatching Supply with DemandBeing Aware of ExpendituresOptimizing Over TimeAWS Best PracticesDesign for FailuresBuild Security in Every LayerLeverage Multiple Storage OptionsImplement ElasticityThink ParallelLoosely Couple Your ArchitectureThere Are No Constraints in the AWS CloudChapter ReviewQuestionsAnswers
Appendix A Objective Map
Exam SAA-C02
Appendix B Additional Resources
WhitepapersAWS re:Invent Videos
Appendix C About the Online Content
System RequirementsYour Total Seminars Training Hub AccountPrivacy NoticeSingle User License Terms and ConditionsTotalTester OnlineTechnical Support
Acronyms and Glossary
AcronymsGlossary
Index

Overview

This up-to-date study guide offers 100% coverage of every objective for the current version of the AWS Certified Solutions Architect Professional exam

Get complete coverage of all objectives included on the SAA-C02 exam from this comprehensive resource. Written by an expert AWS Solutions Architect and well-respected author, this authoritative guide fully addresses the knowledge and skills required for passing the AWS Certified Solutions Architect – Associate exam. You’ll find learning objectives at the beginning of each chapter, exam tips, practice exam questions, and in-depth explanations. You’ll also build your practical knowledge with the many hands-on labs found throughout this guide. Designed to help you pass the exam with ease, this definitive volume also serves as an essential on-the-job reference.

Covers all exam domains, including:

Design Resilient Architectures
Design High-Performing Architectures
Design Secure Applications and Architectures
Design Cost-Optimized Architectures

Online content includes:

130 practice exam questions
Test engine that provides practice exams or quizzes that can be customized by chapter or exam objective

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Read now

Unlock full access

More than 5,000 organizations count on O’Reilly

O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.

Julian F.

Head of Cybersecurity

I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.

Addison B.

Field Engineer

I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.

Amir M.

Data Platform Tech Lead

I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.

Mark W.

Embedded Software Engineer

AWS Certified Solutions Architect - Associate (SAA-C03) Cert Guide, 2nd Edition

Publisher Resources

ISBN: 9781260470192

Cloud Computing

Data Engineering

Data Science

AI & ML

Programming Languages

Software Architecture

IT/Ops

Security

Design

Business

Soft Skills