AWS Certified Solutions Architect Official Study Guide

The AWS Certified Solutions Architect Official Study Guide: Associate Exam is written by the AWS?team of Joe Baron, Hisham Baz, Tim Bixler, Biff Gaut, Kevin E. Kelly, Sean Senior, and John Stamper.

Foreword xxvii Introduction xxix Assessment Test xxxvii Chapter 1 Introduction to AWS 1 What Is Cloud Computing? 3 Advantages of Cloud Computing 3 Cloud Computing Deployment Models 5 AWS Fundamentals 6 Global Infrastructure 6 Security and Compliance 7 AWS Cloud Computing Platform 8 Accessing the Platform 9 Compute and Networking Services 9 Storage and Content Delivery 11 Database Services 13 Management Tools 13 Security and Identity 15 Application Services 16 Summary 17 Exam Essentials 17 Review Questions 19 Chapter 2 Amazon Simple Storage Service (Amazon S3) and Amazon Glacier Storage 21 Introduction 23 Object Storage versus Traditional Block and File Storage 24 Amazon Simple Storage Service (Amazon S3) Basics 25 Buckets 25 AWS Regions 25 Objects 26 Keys 26 Object URL 26 Amazon S3 Operations 27 REST Interface 27 Durability and Availability 28 Data Consistency 28 Access Control 28 Static Website Hosting 29 Amazon S3 Advanced Features 30 Prefixes and Delimiters 30 Storage Classes 30 Object Lifecycle Management 31 Encryption 32 Versioning 33 MFA Delete 33 Pre-Signed URLs 34 Multipart Upload 34 Range GETs 34 Cross-Region Replication 34 Logging 35 Event Notifications 35 Best Practices, Patterns, and Performance 36 Amazon Glacier 36 Archives 37 Vaults 37 Vaults Locks 37 Data Retrieval 37 Amazon Glacier versus Amazon Simple Storage Service (Amazon S3) 37 Summary 38 Exam Essentials 39 Exercises 40 Review Questions 46 Chapter 3 Amazon Elastic Compute Cloud (Amazon EC2) and Amazon Elastic Block Store (Amazon EBS) 51 Introduction 53 Amazon Elastic Compute Cloud (Amazon EC2) 53 Compute Basics 53 Securely Using an Instance 56 The Lifecycle of Instances 59 Options 61 Instance Stores 65 Amazon Elastic Block Store (Amazon EBS) 65 Elastic Block Store Basics 65 Types of Amazon EBS Volumes 66 Protecting Data 68 Summary 70 Exam Essentials 71 Exercises 73 Review Questions 81 Chapter 4 Amazon Virtual Private Cloud (Amazon VPC) 85 Introduction 87 Amazon Virtual Private Cloud (Amazon VPC) 87 Subnets 89 Route Tables 89 Internet Gateways 90 Dynamic Host Configuration Protocol (DHCP) Option Sets 92 Elastic IP Addresses (EIPs) 92 Elastic Network Interfaces (ENIs) 93 Endpoints 93 Peering 94 Security Groups 95 Network Access Control Lists (ACLs) 97 Network Address Translation (NAT) Instances and NAT Gateways 98 NAT Instance 99 NAT Gateway 99 Virtual Private Gateways (VPGs), Customer Gateways (CGWs), and Virtual Private Networks (VPNs) 100 Summary 101 Exam Essentials 103 Exercises 105 Review Questions 107 Chapter 5 Elastic Load Balancing, Amazon CloudWatch, and Auto Scaling 111 Introduction 112 Elastic Load Balancing 112 Types of Load Balancers 113 Listeners 114 Configuring Elastic Load Balancing 115 Amazon CloudWatch 117 Auto Scaling 119 Auto Scaling Plans 120 Auto Scaling Components 121 Summary 126 Exam Essentials 127 Exercises 128 Review Questions 131 Chapter 6 AWS Identity and Access Management (IAM) 137 Introduction 138 Principals 140 Root User 140 IAM Users 140 Roles/Temporary Security Tokens 141 Authentication 143 Authorization 144 Policies 144 Associating Policies with Principals 145 Other Key Features 147 Multi-Factor Authentication (MFA) 147 Rotating Keys 148 Resolving Multiple Permissions 148 Summary 149 Exam Essentials 149 Exercises 150 Review Questions 154 Chapter 7 Databases and AWS 157 Database Primer 158 Relational Databases 159 Data Warehouses 160 NoSQL Databases 161 Amazon Relational Database Service (Amazon RDS) 161 Database (DB) Instances 162 Operational Benefits 163 Database Engines 164 Storage Options 166 Backup and Recovery 1