O'Reilly logo
live online training icon Live Online training

Amazon Web Services: Architect Associate Certification - AWS Core Architecture Concepts

Mark Wilkins

Understanding the fundamentals of properly architecting solutions in the AWS cloud empowers you to design effective, scalable, and secure solutions. Join Mark Wilkins for a thorough review of AWS cloud best practices and recommended design patterns. You’ll learn how to administrate and support the core AWS components—compute, storage, database, and managed services—that utilize AWS recommended architectural principles and best practices as you prepare for the Amazon Web Services Architecture - Associate certification.

What you'll learn-and how you can apply it

By the end of this live, online course, you’ll understand:

  • AWS cloud infrastructure basic concepts
  • Available compute, storage, networking, and database solutions in AWS
  • How to design cloud solutions utilizing AWS best practices

And you’ll be able to:

  • Deploy effective solutions using the core components of the AWS toolbox
  • Prepare for the AWS Architect - Associate certification
  • This course is for you because…
  • You’re a system administrator moving to AWS.
  • You’re a cloud architect responsible for AWS design.
  • You’re an IT professional who needs to develop AWS technical knowledge and skills for daily operation and migration.
  • You’re working toward the AWS Architecture - Associate certification.

This training course is for you because...

  • You’re a system administrator moving to AWS.
  • You’re a cloud architect responsible for AWS design.
  • You’re an IT professional who needs to develop AWS technical knowledge and skills for daily operation and migration.
  • You’re working toward the AWS Architect - Associate certification.


  • A basic understanding of general networking concepts, cloud computing, and multitier architectural design

Recommended preparation:

Introduction to Architecting Amazon Web Services (video)

Amazon Web Services: Virtual Private Cloud (video)

About your instructor

  • Mark Wilkins is a former electronic design technologist with more than 20 years’ experience designing, deploying, and supporting software and hardware technology in the corporate and small business world. Currently, Mark provides training and consulting services to corporate customers throughout North America. Previously, as course director for Global Knowledge, Mark developed and taught technical seminars and developed courseware for the 2008 Microsoft official curriculum stream. Since 2010, Mark has focused on cloud services, including Amazon Web Services, Microsoft Azure, and IBM SoftLayer. His most recent courses include Supporting and Maintaining Windows 10 Enterprise and AWS Security Operations: Securing Core AWS Infrastructure Services, both for Pluralsight. Mark holds Amazon Web Services Architect - Associate and AWS Sys-Ops - Associate as well as certifications in MCSA (2012) He is the author of Learning AWS to be published in 2019 by Pearson Education, and Administering SMS 3.0, and Administering Active Directory for McGraw-Hill.


The timeframes are only estimates and may vary according to how the class is progressing

Day 1

Core architecture concepts (50 minutes)

  • Lecture: AWS architecture design concepts; managed versus unmanaged services; regions, availability zones, and edge locations; security and the cloud; the management console
  • Hands-on exercises: Explore essential AWS managed services; select regions and availability zones; use the management console

Break (10 minutes)

Virtual private clouds (VPCs) and access control lists (ACLs) (65 minutes)

  • Lecture: VPC design; subnets (private and public); route tables; elastic IP addresses; security groups; network ACLs; NATs versus bastion hosts; peering VPCs
  • Hands-on exercises: Review the default VPC; create a VPC; configure network ACLs; set up security groups and network ACLs

Break (10 minutes)

Elastic Compute Cloud (EC2) (35 minutes)

  • Lecture: EC2 types (on-demand, spot, reserved, scheduled, and dedicated); Elastic Block Store versus ephemeral storage; configuration, storage options, and key pairs; automating instances with user data
  • Hands-on exercise: Order and configure an EC2 instance

Wrap-up and Q&A (10 minutes)

Day 2

Core architecture concepts—Part II (50 minutes)

  • Lecture: Elastic IPs and network interfaces; EC2 instance metadata; placement groups, resource groups, and tagging; pricing options—on-demand, reserved capacity, and spot instances; AWS storage options; EBS volume types
  • Hands-on exercises: Add network NICs and IPs; tag instances; add, attach, and delete volumes
  • Discussion: Pricing options for EC2 servers

Break (10 minutes)

Snapshots, volumes, and buckets (55 minutes)

  • Lecture: Snapshots; creating AMIs and images from snapshots; Amazon S3 and naming conventions; versioning
  • Hands-on exercises: Manage snapshots; create EBS volumes; create an S3 bucket and upload content; enable versioning; explore ACLs and bucket policies; create a bucket policy; use tiered storage management

Break (10 minutes)

Security and lifecycle (45 minutes)

  • Hands-on exercises: Implement security and encryption; explore Glacier; explore vaults and vault lock policy; explore lifecycle rules; use lifecycle options with S3 and Glacier operations
  • Discussion: Managing storage

Wrap-up and Q&A (10 minutes)