O'Reilly logo

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

AWS Certified SysOps Administrator - Associate Guide

Book Description

An effective guide to becoming an AWS Certified SysOps Administrator

Key Features

  • Not only pass the certification with confidence but also enhance your skills to solving real-world scenarios.
  • A practical guide to getting you hands-on experience with application management, deployment, operation.
  • Enhance your AWS skills with practice questions and mock tests.

Book Description

AWS certifications are becoming one of the must have certifications for any IT professional working on an AWS Cloud platform. This book will act as your one stop preparation guide to validate your technical expertise in deployment, management, and operations on the AWS platform. Along with exam specific content this book will also deep dive into real world scenarios and hands-on instructions.

This book will revolve around concepts like teaching you to deploy, manage, and operate scalable, highly available, and fault tolerant systems on AWS. You will also learn to migrate an existing on-premises application to AWS. You get hands-on experience in selecting the appropriate AWS service based on compute, data, or security requirements. This book will also get you well versed with estimating AWS usage costs and identifying operational cost control mechanisms.

By the end of this book, you will be all prepared to implement and manage resources efficiently on the AWS cloud along with confidently passing the AWS Certified SysOps Administrator – Associate exam.

What you will learn

  • Create and manage users, groups, and permissions using AWS IAM services
  • Create a secure VPC with public and private subnets, Network Access Control, and security groups
  • Get started with launching your first EC2 instance, and working with it
  • Handle application traffic with ELB and monitor AWS resources with CloudWatch
  • Work with S3, Glacier, and CloudFront
  • Work across distributed application components using SWF
  • Understand event-based processing with Lambda and messaging SQS and SNS in AWS
  • Get familiar with AWS deployment concepts and tools including Elastic Beanstalk, CloudFormation and AWS OpsWorks

Who this book is for

If you are a system administrator or a system engineer interested in leveraging the AWS platform to deploy applications then, this book is for you. IT professionals interested in passing the AWS Certified Sysops Administrator will also benefit from this book. Some basic understanding of working AWS components would do wonders.

Downloading the example code for this book You can download the example code files for all Packt books you have purchased from your account at http://www.PacktPub.com. If you purchased this book elsewhere, you can visit http://www.PacktPub.com/support and register to have the files e-mailed directly to you.

Table of Contents

  1. Title Page
  2. Copyright and Credits
    1. AWS Certified SysOps Administrator – Associate Guide
  3. About Packt
    1. Why subscribe?
    2. Packt.com
  4. Contributors
    1. About the author
    2. About the reviewers
    3. Packt is searching for authors like you
  5. Preface
    1. Who this book is for
    2. What this book covers
    3. To get the most out of this book
      1. Download the example code files
      2. Download the color images
      3. Conventions used
    4. Get in touch
      1. Reviews
  6. Overview of AWS Certified SysOps Administrators and Associated Certification
    1. The exam blueprint
    2. The exam's requirements
    3. The exam's structure
    4. The scoring
      1. The passing score
    5. The exam knowledge domains
    6. The questions structure
    7. Taking the exam
  7. The Fundamentals of Amazon Web Services
    1. Technical requirements
    2. What is the AWS platform?
      1. Infrastructure as a Service
      2. Platform as a Service
    3. The shared responsibility model
    4. Advantages of using AWS
    5. AWS Foundation Services
      1. Network services
      2. Compute services
      3. Storage services
      4. Security and identity services
      5. End user applications
    6. AWS Platform Services
      1. Databases
      2. Management tools
      3. Analytics tools
      4. Application services
      5. Developer tools
      6. Mobile and IoT services
    7. Using AWS services
      1. AWS Management Console
      2. The AWS Command-Line Interface
      3. The AWS Software Development Kit
    8. Cloud-native and serverless designs
    9. Choosing availability zones and regions
      1. Regional high availability
      2. Cross-regional high availability
      3. Edge locations
    10. Summary
    11. Questions
    12. Further reading
  8. Managing AWS Security with Identity and Access Management
    1. Technical requirements
    2. Overview of Identity and Access Management
      1. Getting started with IAM
    3. Managing access with IAM
      1. Managing Users
      2. Managing Groups
      3. Managing Roles
      4. Types of credentials in AWS
      5. Managing policies and assigning permissions 
    4. Integration with external directories
    5. IAM best practices
    6. Summary
    7. Questions
    8. Further reading
  9. Networking with the Virtual Private Cloud
    1. Technical requirements
    2. VPC overview
    3. VPC subnets
      1. Default VPC and default subnets
      2. Defining networks in a VPC
      3. Public and private subnets
    4. Connecting to on-premises resources
      1. AWS VPN connectivity options
      2. AWS Direct Connect
    5. VPC endpoints and AWS PrivateLink
      1. Gateway endpoints
      2. Interface endpoints – powered by AWS PrivateLink
    6. VPC peering connections
    7. Network security in the VPC
      1. Security groups
      2. Network ACLs or NACLs
    8. Building a custom VPC
      1. Managing ACLs and security policies
    9. Summary
    10. Questions
    11. Further reading
  10. Managing Servers on AWS with Elastic Compute Cloud
    1. Technical requirements
    2. EC2 overview
      1. Virtualization types
      2. EC2 shared responsibility and availability
      3. EC2 instance pricing models
        1. On-Demand Instances
        2. Reserved Instances
        3. Spot Instances
        4. Dedicated Instances and Dedicated Hosts
    3. Components of a virtual machine instance
      1. Amazon Machine Images (AMIs) 
      2. Amazon Linux AMI 
      3. Amazon EC2 instance types
    4. Instance store and EBS volumes
      1. The root device
      2. Amazon instance store
      3. Amazon EBS
      4. Amazon EBS snapshots
      5. Volume web console
    5. Connecting instances to the network
    6. EC2 high availability scenarios
      1. Stateful EC2 instance high availability
      2. Stateless EC2 instance high availability
    7. EC2 placement groups
      1. Cluster placement groups
      2. Spread placement groups
    8. Building an EC2 instance in AWS
    9. Summary
    10. Questions
    11. Further reading
  11. Handling Server Traffic with Elastic Load Balancing
    1. Technical requirements
    2. The AWS Elastic Load Balancing service
      1. Classic Load Balancer
      2. Application Load Balancer
      3. Network Load Balancer
    3. Maintaining session state
    4. Building an ELB for EC2 instances
      1. Prerequisite
      2. Building the Load Balancer
      3. Deleting the highly available application
    5. Summary
    6. Questions
    7. Further reading
  12. Understanding Simple Storage Service and Glacier
    1. Technical requirements
    2. Overview of Amazon S3 and Glacier
    3. S3 storage classes
      1. S3 Standard
      2. S3 Infrequent Access
      3. S3 One Zone-Infrequent Access
      4. S3 Reduced Redundancy Storage (RRS)
      5. Amazon Glacier
    4. S3 bucket restrictions and limitations
    5. S3 performance recommendations
    6. Amazon S3 and Glacier use cases
      1. Serverless hosting
      2. Web-scale content delivery
      3. Data lakes for big data and machine learning
      4. Extending the capabilities of enterprise applications 
      5. Backup and disaster recovery
      6. Archiving
    7. Working with S3
      1. Creating a bucket
      2. Setting up a static website
      3. Versioning bucket content
      4. Life cycling data to Glacier
      5. Deleting S3 buckets
    8. Summary
    9. Questions
    10. Further reading
  13. Understanding Content Distribution with CloudFront
    1. Technical requirements
    2. Overview of CloudFront
      1. Features of CloudFront
      2. Security
    3. Edge Locations
      1. Regional Edge Cache
    4. Content delivery methods
    5. Cache behavior
    6. Working with CloudFront
      1. Creating a CloudFront distribution
      2. Deleting a CloudFront distribution
    7. Summary
    8. Questions
    9. Further reading
  14. AWS Storage Options
    1. Technical requirements
    2. Overview of storage options on AWS
    3. Introduction to Elastic File System (EFS)
      1. Performance 
      2. Security and resilience of EFS
    4. Introduction to Storage Gateway
    5. Introduction to Snowball
      1. Security
      2. Snowball Edge
    6. Introduction to Snowmobile
      1. Security
    7. Summary
    8. Questions
    9. Further reading
  15. Working with the Route 53 Domain Name System
    1. Technical requirements
    2. Introduction to Route 53
      1. Traditional DNS system design features
      2. Amazon Route 53 features
    3. Route 53 supported DNS resource record types
    4. Registering a domain and creating a zone
    5. Routing policies
      1. Simple routing
      2. Latency-based routing
      3. Weighted routing
      4. Failover routing
      5. Geolocation routing
      6. Multi-value response
    6. Health checking
    7. Best practices
    8. Summary
    9. Questions
    10. Further reading
  16. Working with Relational Database Services
    1. Technical requirements
    2. Introduction to RDS
      1. Features of RDS
    3. RDS engine types
      1. RDS for MySQL, MariaDB, and PostgreSQL
      2. Amazon Aurora
      3. Oracle and Microsoft SQL on RDS
      4. Deploying an RDS database
    4. Best practices for deploying RDS instances
      1. RDS security
      2. Multi-AZ RDS
      3. Performance best practices
    5. Changing RDS instance types
    6. Read replicas
    7. Sharding data over RDS instances
    8. Creating and restoring snapshots
      1. Multi-AZ snapshots
      2. Automated backups
      3. Restoring RDS instances from a snapshot
    9. Summary
    10. Questions
    11. Further reading
  17. Introduction to ElastiCache
    1. Technical requirements
    2. What is ElastiCache?
    3. Engine types
      1. Memcached
      2. Redis
      3. Creating an ElastiCache service
    4. Caching strategies
      1. Write-through 
      2. Lazy loading
    5. Best practices
    6. Summary
    7. Questions
    8. Further reading
  18. Amazon DynamoDB - A NoSQL Database Service
    1. Technical requirements
    2. Introduction to DynamoDB
    3. ACID versus BASE
      1. ACID compliant data
      2. BASE-compliant data
    4. Relational versus non-relational DB
    5. DynamoDB core concepts
      1. Tables
      2. Items
      3. Attributes
      4. Naming rules and data types
        1. Scalar type key-value pairs
        2. Document type – a map attribute
        3. Set type – a set of strings
      5. Primary and sort key
      6. Secondary indexes
      7. DynamoDB streams
    6. Read consistency
      1. Eventually consistent reads
      2. Strongly consistent reads
    7. Creating a DynamoDB table
    8. DynamoDB provisioned throughput
      1. Determining required read/write capacity units
      2. On-demand capacity mode
    9. DynamoDB partitions and distribution
    10. Accessing DynamoDB
      1. Accessing DynamoDB through the CLI
      2. Table scans and queries
      3. Pagination and limits
      4. Conditional and atomic writes
    11. User authentication and access control
    12. DynamoDB service ceiling
    13. Summary
    14. Questions
    15. Further reading
  19. Working with Simple Queue Service
    1. Technical requirements
    2. Introduction to queuing
    3. How a queue works
      1. Standard queues versus FIFO queues
      2. Visibility timeout
      3. Dead letter queues
      4. Use cases for queues
        1. Example 1 – decoupling
        2. Example 2 – buffering
        3. Example 3 – request offloading
        4. Example 4 – batch operations
    4. Managing queues
      1. Creating and listing queues
      2. Adding user permissions to a queue
      3. Deleting a queue
    5. Working with messages
      1. Sending a message in a queue
      2. Receiving and deleting a message
      3. Purging a queue
    6. Queue limits
    7. Queue security
    8. Summary
    9. Questions
    10. Further reading
  20. Handling Messaging with Simple Notification Service
    1. Technical requirements
    2. Introduction to SNS
    3. SNS use cases
      1. SNS fan-out
      2. Application and system alerts
      3. Push email and text messaging
      4. Mobile push notifications
    4. Working with topics
      1. Creating a topic
      2. Subscribing to a topic
      3. Publishing to a topic
      4. Deleting a topic
    5. Managing SNS access
      1. Access control
      2. Access policy concepts
      3. Access request evaluation logic
    6. Summary
    7. Questions
    8. Further reading
  21. Getting Started with Simple Workflow Service
    1. Technical requirements
    2. Introduction to SWF
    3. Components of the SWF
      1. Workflows
      2. Workflow execution history
      3. Activities and tasks
      4. Actors
      5. Domains
      6. Object identifiers
      7. Task lists
      8. The workflow life cycle and execution closure
      9. Polling for tasks
      10. Endpoints
    4. Managing access with IAM
    5. Summary
    6. Questions
    7. Further reading
  22. Overview of AWS Lambda
    1. Technical requirements
    2. Introduction to AWS Lambda
      1. Packaging a function
      2. Functions, runtimes, sources, and resources
    3. Supported languages
    4. Creating a Lambda function
    5. Supported AWS services
    6. Business cases
      1. Web applications, microservices, and backends
      2. Asynchronous data processing
      3. Live support and chatbots
      4. Intelligent scaling and IT automation
    7. Summary
    8. Questions
    9. Further reading
  23. Monitoring Resources with Amazon CloudWatch
    1. Technical requirements
    2. Introduction to Amazon CloudWatch
    3. How CloudWatch works
    4. Elements of CloudWatch
      1. Namespaces
      2. Metrics
        1. Normal and detailed metrics
        2. Data retention for metrics
      3. Dimensions
      4. Statistics
      5. Percentile
      6. CloudWatch Logs
      7. Alarms
      8. Creating a CloudWatch alarm
    5. CloudWatch dashboards
      1. Creating a CloudWatch dashboard
    6. Monitoring EC2
      1. EC2 status troubleshooting
      2. EC2 custom metrics
        1. Reporting custom metrics using the AWS CLI
        2. Reporting memory utilization using the CloudWatch enhanced monitoring scripts
      3. Monitoring EBS
      4. Monitoring ELB
    7. Monitoring RDS
    8. Monitoring ElastiCache
    9. SQS monitoring and logging
    10. Monitoring SNS with CloudWatch
    11. Monitoring Elastic Beanstalk environments
    12. Billing alerts
    13. Summary
    14. Questions
    15. Further reading
  24. Understanding Elastic Beanstalk
    1. Technical requirements
    2. Introduction to Elastic Beanstalk
      1. Elastic Beanstalk basics
    3. Supported platforms
    4. Supported AWS services
    5. Deploying an application with Elastic Beanstalk
    6. Managing Elastic Beanstalk environments
      1. Managing application versions
      2. Configuring application version life cycle settings
      3. Creating a source bundle
    7. Updating Elastic Beanstalk environments
      1. All at once
      2. Rolling updates
      3. Immutable updates
      4. Blue/green deployment
    8. Summary
    9. Questions
    10. Further reading
  25. Automation with the CloudFormation Service
    1. Technical requirements
    2. Introduction to CloudFormation
    3. CloudFormation basic elements
      1. Templates
      2. Stacks
      3. Change sets
    4. How does CloudFormation work?
      1. Stack creation
      2. Stack deletion
    5. Creating an EC2 instance using a template (code example)
      1. Template analysis
        1. Version and description
        2. Parameters
        3. Mappings
        4. Resources
        5. Outputs
      2. Template deployment
    6. Summary
    7. Questions
    8. Further reading
  26. Cloud Orchestration with OpsWorks
    1. Technical requirements
    2. Introduction to OpsWorks
      1. OpsWorks examples
        1. Legacy applications
        2. Hybrid environments
        3. Compliance
        4. Clusters with small dynamic changes
        5. Updating and patching
        6. Migration of Chef or Puppet
    3. How OpsWorks works
      1. AWS OpsWorks for Chef Automate
      2. AWS OpsWorks for Puppet Enterprise
    4. Components of OpsWorks
      1. Stacks
      2. Layers
        1. Service layers
      3. Instances
      4. Apps
      5. Cookbooks, recipes, manifests, and modules
        1. Life cycle events
        2. Timed and manual deployments
    5. Summary
    6. Questions
    7. Further reading
  27. Exam Tips and Tricks
    1. Technical requirements
    2. Introduction
    3. Monitoring metrics and managing cost
    4. High availability and scaling
    5. Analysis of your AWS environment
    6. Deployment and provisioning
    7. Data management
    8. Security
    9. Networking
    10. Summary
    11. Further reading
  28. Mock Tests
    1. Mock test 1
    2. Mock test 2
  29. Assessments
    1. Chapter 2 – The Fundamentals of Amazon Web Services
    2. Chapter 3 – Managing AWS Security with Identity and Access Management 
    3. Chapter 4 – Networking with Virtual Private Cloud
    4. Chapter 5 – Managing Servers on AWS with Elastic Compute Cloud
    5. Chapter 6 – Handling Server Traffic with Elastic Load Balancing
    6. Chapter 7 – Understanding Simple Storage Service and Glacier
    7. Chapter 8 – Understanding Content Distribution with CloudFront
    8. Chapter 9 – AWS Storage Options
    9. Chapter 10 – Working with Route 53 Domain Name System
    10. Chapter 11 – Working with Relational Database Services
    11. Chapter 12 – Introduction to ElastiCache
    12. Chapter 13 – Amazon DynamoDB – a NoSQL Database Service
    13. Chapter 14 – Working with Simple Queue Service
    14. Chapter 15 – Handling Messaging with SNS
    15. Chapter 16 – Getting Started with Simple Workflow Service
    16. Chapter 17 – Overview of AWS Lambda
    17. Chapter 18 – Monitoring Resources with Amazon CloudWatch
    18. Chapter 19 – Understanding Elastic Beanstalk
    19. Chapter 20 – Automation with CloudFormation service
    20. Chapter 21 – Cloud Orchestration with OpsWorks
    21. Chapter 23 – Mock Test
  30. Other Books You May Enjoy
    1. Leave a review - let other readers know what you think