book

AWS for System Administrators

Name: AWS for System Administrators
Author: Prashant Lakhera
ISBN: 9781800201538

by Prashant Lakhera

February 2021

Intermediate to advanced

388 pages

6h 45m

English

Packt Publishing

Read now

Unlock full access

AWS for System Administrators
Why subscribe?ContributorsAbout the authorAbout the reviewerPackt is searching for authors like you
Preface
Who this book is forWhat this book coversTo get the most out of this bookDownload the example code filesCode in ActionDownload the color imagesConventions usedGet in touchReviews
Section 1: AWS Services and Tools
Chapter 1: Setting Up the AWS Environment
Technical requirementsSetting up the environmentInstalling the AWS CLIConfiguring command-line completionConfiguring the AWS command lineUnderstanding the AWS CLI command structureIntroducing Python Boto3Installing Python Boto3Verifying the Boto3 setupIntroducing CloudFormationWriting your first CloudFormation templateCreating a CloudFormation stack using the AWS consoleCreating a CloudFormation stack using the AWS CLIIntroducing Terraform Installing TerraformCreating resources using TerraformInstalling tools in an automated waySummary
Chapter 2: Protecting Your AWS Account Using IAM
Technical requirementsCreating IAM users and groupsIntroducing IAM usersIntroducing IAM groupsUnderstanding IAM policiesIAM policy structureIntroducing ARN IAM policy evaluation Creating the IAM policy using the AWS CLICreating IAM rolesAdvantages of using an IAM roleCreating an IAM role using TerraformIntroducing AWS Security Token Service (AWS STS)Advantages of AWS STSUse casesIAM cross-account accessReal-time use case of launching a specific instance using CloudFormationRotating IAM credentials using Boto3PrerequisitesCreating a Boto3 script to rotate credentialsSummary
Section 2: Building the Infrastructure
Chapter 3: Creating a Data Center in the Cloud Using VPC
Technical requirementsSetting up two VPCsCreating your first VPC using the AWS consoleCreating a second VPC using CloudFormationIntroducing AWS Transit GatewayCreating your first transit gateway using the AWS consoleCreating a second transit gateway using TerraformReal-time use case to enable a VPC flow logSummary
Chapter 4: Scalable Compute Capacity in the Cloud via EC2
Technical requirementsSetting up EC2 instancesCreating an EC2 instance using AWS CloudFormationCreating an AWS billing alarmsReal-time use case to clean up an unused AMIReal-time use case to detach unused EBS volumesReal-time use case to shutdown instances on a daily basisSummary
Section 3: Adding Scalability and Elasticity to the Infrastructure
Chapter 5: Increasing an Application's Fault Tolerance with Elastic Load Balancing
Technical requirements Different load balancers offered by AWSSetting up the application load balancerSetting up the application load balancerAutomating the application load balancer using TerraformSummary

Chapter 6: Increasing Application Performance Using AWS Auto Scaling
Technical requirementsSetting up Auto ScalingCreating a launch templateCreating an AWS Auto Scaling groupVerifying an Auto Scaling groupUnderstanding Auto Scaling policiesScaling an application based on demandTesting the Auto Scaling groupCreating an Auto Scaling group using TerraformSummary
Chapter 7: Creating a Relational Database in the Cloud using AWS Relational Database Service (RDS)
Technical requirementsThe different database offerings in AWS RDSSetting up AWS RDS in high availability modeSetting up a MySQL read replicaAutomating AWS RDS MySQL creation using TerraformSummary
Section 4: The Monitoring, Metrics, and Backup Layers
Chapter 8: Monitoring AWS Services Using CloudWatch and SNS
Technical requirementsCloudWatch monitoringMonitoring custom metrics using CloudWatchDownloading and installing the CloudWatch agentCreating an IAM role used by CloudWatch agentRunning the CloudWatch agent on your serverIntroduction to SNSIntroduction to CloudWatch EventsAutomating alarm notification using email and a Slack channelConfiguring SlackConfiguring CloudWatchCreating a Lambda functionTesting the integrationSummary
Chapter 9: Centralizing Logs for Analysis
Technical requirements Why do we need log management?Setting up the CloudWatch agentSetting up AWS Elasticsearch and KibanaSummary
Chapter 10: Centralizing Cloud Backup Solution
Technical requirementsThe v backup options offered by AWSWhy do we back up data?Setting up the AWS DLMBacking up your data to S3 using the AWS CLITransitioning S3 data to Glacier using a lifecycle policyAutomating transitioning S3 data to Glacier using TerraformSummary
Chapter 11: AWS Disaster Recovery Solutions
Technical requirementsDiscussing the various DR solutions offered by AWSBackup and restorePilot lightWarm standby in AWSHot standby (with multi-site)Configuring a website to fail over to an S3 bucketSummary
Chapter 12: AWS Tips and Tricks
Technical requirementsSome common pitfalls – VPC limitationsWhich VPC subnets to choose while building a VPCDedicated instance versus dedicated host – which should you choose?The power of the IAM permission boundaryCustom CloudWatch metricsTagging, tagging, and tagging – why is tagging important?Protecting your EC2 instances and EBS volumes using termination protectionHow to reduce your AWS billChoosing an AWS bucket name and how to create a random bucket nameAutomating AMI creationCreating an AMI using the AWS consoleCreating an AMI using the AWS CLIAutomating AMI creation using PackerSummary
Other Books You May Enjoy
Leave a review - let other readers know what you think

Content preview from AWS for System Administrators

Chapter 3: Creating a Data Center in the Cloud Using VPC

In the previous chapter, you learned how to tighten security with the help of IAM policies and how to use IAM roles to assign temporary credentials to role sessions so that you no longer need to embed them inside your application. IAM provides security at the authentication level, that is, who is allowed or denied, and the authorization level is what that authenticated user or role is allowed to do. In the next level of defense, we need to secure our network so that only the users from the trusted network can access our service, and that is where VPC comes into the picture.

AWS Virtual Private Cloud (VPC) is your data center in the cloud. In VPC, you can define your own private network, ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Read now

Unlock full access

More than 5,000 organizations count on O’Reilly

O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.

Julian F.

Head of Cybersecurity

I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.

Addison B.

Field Engineer

I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.

Amir M.

Data Platform Tech Lead

I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.

Mark W.

Embedded Software Engineer

Deploy Containers on AWS: With EC2, ECS, and EKS

Publisher Resources

ISBN: 9781800201538

Cloud Computing

Data Engineering

Data Science

AI & ML

Programming Languages

Software Architecture

IT/Ops

Security

Design

Business

Soft Skills

AWS for System Administrators

by Prashant Lakhera

Chapter 3: Creating a Data Center in the Cloud Using VPC

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.