AWS Solutions Architect/training

From Freephile Wiki
< AWS Solutions Architect
Revision as of 17:56, 7 February 2024 by Admin (talk | contribs) (Created page with "This course covers topics such as the following: # AWS Accounts and Organizations including Service Control Policies (SCPs) # Identity Management and Permissions includ...")
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigation Jump to search

This course covers topics such as the following:

  1. AWS Accounts and Organizations including Service Control Policies (SCPs)
  2. Identity Management and Permissions including RBAC, ABAC and permissions boundaries
  3. AWS Directory Services and Federation including Identity Federation, AWS SSO, and Cognito
  4. Advanced Amazon VPC including a routing deep dive and multi-account VPC configurations
  5. Hybrid Connectivity including S2S VPN, Direct Connect, and AWS Transit Gateway
  6. Compute, Auto Scaling, and Load Balancing including ALB, NLB, EC2, and NAT
  7. AWS Storage Services including EBS, EFS, and Amazon S3
  8. DNS, Caching, and Performance Optimization including Route 53, CloudFront, and AWS Global Accelerator
  9. AWS Database Services including Amazon RDS, Aurora, ElastiCache and DynamoDB
  10. Serverless Applications including AWS Lambda, EventBridge, SQS, SNS, and API Gateway
  11. Docker Containers and PaaS including Amazon ECS, Fargate, and Elastic Beanstalk
  12. Deployment and Management including AWS CodeCommit, CodePipeline, Service Catalog, Systems Manager and more
  13. Migration and Transfer Service including AWS DMS, SMS, DataSync, and Snowball
  14. Analytics Services including Amazon Athena, AWS Glue, RedShift, EMR, and Kinesis
  15. Monitoring, Logging and Auditing including CloudWatch, CloudTrail and AWS X-Ray
  16. Defense in Depth including how to build a secure application with ACM, KMS, Config, Inspector and WAF/Shield
  17. Cost Management including how AWS services are priced, consolidated billing, and AWS Budgets


Detailed notes are broken down according to each section of the course

  1. Section 1: Introduction and Course Download 1-3
  2. Section 2: AWS Accounts and Organizations 4-16
  3. Section 3: Identity Management and Permissions 17-24
  4. Section 4: AWS Directory Services and Federation 37-41
  5. Section 5: Advanced Amazon VPC 42-56
  6. Section 6: Hybrid Connectivity 57-63
  7. Section 7: Compute, Auto Scaling, and Load Balancing 64-85
  8. Section 8: AWS Storage Services 86-102
  9. Section 9: DNS, Caching, and Performance Optimization 103-115
  10. Section 10: AWS Database Services 116-133
  11. Section 11: Serverless Applications 134-149
  12. Section 12: Docker Containers and PaaS 150-167
  13. Section 13: Deployment and Management 168-195
  14. Section 14: Migration and Transfer Services 196-203
  15. Section 15: Analytics Services 204-211
  16. Section 16: Monitoring, Logging and Auditing 212-219
  17. Section 17: Security: Defense in Depth 220-238
  18. Section 18: Additional Services 239-248
  19. Section 19: Sample Practice Test
  20. Section 20: Additional Training Resources 249


  • 1. Welcome and Introduction
  • 2. The SAP-C02 Exam
  • 3. Course Download
  • 4. Introduction
  • 5. Hands-On Practice: Free Tier vs Sandbox
  • 6. [HOL] Create Your AWS Free Tier Account
  • 7. [HOL] Configure Account and Create a Budget and Alarm
  • 8. [HOL] Setup Individual User Account
  • 9. [HOL] Install Tools and Configure AWS CLI
  • 10. AWS Organizations
  • 11. [HOL] Create AWS Organization and Add Account
  • 12. Service Control Policies (SCPs)
  • 13. SCP Strategies and Inheritance
  • 14. [HOL] Test SCP Inheritance
  • 15. AWS Control Tower
  • 16. [HOL] Create a Landing Zone
  • 17. Introduction
  • 18. How IAM Works
  • 19. Overview of Users, Groups, Roles and Policies
  • 20. IAM Authentication Methods
  • 21. AWS Security Token Service (STS)
  • 22. Multi-Factor Authentication (MFA)
  • 23. [HOL] Setup Multi-Factor Authentication (MFA)
  • 24. Identity-Based Policies and Resource-Based Policies
  • 25. Access Control Methods - RBAC & ABAC
  • 26. Permissions Boundaries
  • 27. IAM Policy Evaluation
  • 28. IAM Policy Structure
  • 29. [HOL] Using Role-Based Access Control (RBAC)
  • 30. [HOL] Using Attribute-Based Access Control (ABAC)
  • 31. [HOL] Apply Permissions Boundary
  • 32. Use Cases for IAM Roles
  • 33. [HOL] Cross-Account Access to S3
  • 34. Access Keys and IAM Roles with EC2
  • 35. [HOL] Amazon EC2 Instance Profile
  • 36. AWS IAM Best Practices
  • 37. Introduction
  • 38. AWS Directory Services
  • 39. Identity Providers and Federation
  • 40. [HOL] IAM Identity Center
  • 41. Amazon Cognito
  • 42. Introduction
  • 43. The AWS Global Infrastructure
  • 44. Defining VPC CIDR Blocks
  • 45. [HOL] Create a Custom VPC
  • 46. VPC Routing Deep Dive
  • 47. Security Groups and Network ACLs
  • 48. [HOL] Configure Security Groups and NACLs
  • 49. NAT Gateways and NAT Instances
  • 50. [HOL] Private Subnet with NAT Gateway
  • 51. Using IPv6 in a VPC
  • 52. [HOL] Configure IPv6
  • 53. VPC Peering
  • 54. [HOL] Configure VPC Peering
  • 55. VPC Endpoints
  • 56. [HOL] Create VPC Endpoint
  • 57. Introduction
  • 58. AWS Client VPN
  • 59. AWS Site-to-Site VPN
  • 60. AWS VPN CloudHub
  • 61. AWS Direct Connect (DX)
  • 62. AWS Direct Connect Gateway
  • 63. AWS Transit Gateway
  • 64. Introduction
  • 65. Amazon EC2 Pricing Options
  • 66. Amazon EC2 Pricing Use Cases
  • 67. Bootstrapping AMIs
  • 68. EC2 Placement Group Use Cases
  • 69. Network Interfaces (ENI, ENA, EFA)
  • 70. [HOL] Working with ENIs and IP Addresses
  • 71. Public, Private and Elastic IP Addresses
  • 72. NAT for Public Addresses
  • 73. Advanced Auto Scaling
  • 74. [HOL] Create an ASG and ALB with the CLI
  • 75. [HOL] Create a Lifecycle Hook
  • 76. Types of Elastic Load Balancer (ELB)
  • 77. Routing with ALB and NLB
  • 78. ALB and NLB Access Control and SSL/TLS
  • 79. [HOL] Register Domain with Route 53 (Optional)
  • 80. [HOL] Request Routing with ALB
  • 81. [HOL] NLB Static IPs and Whitelisting
  • 82. Session State and Session Stickiness
  • 83. AWS Batch
  • 84. Amazon LightSail
  • 85. Architecture Patterns - Compute
  • 86. Introduction
  • 87. Amazon EBS Deployment and Volume Types
  • 88. Amazon EBS Copying, Sharing and Encryption
  • 89. EBS vs instance store
  • 90. Amazon EFS Refresher
  • 91. [HOL] Working with Files on EFS
  • 92. Amazon S3 Overview
  • 93. Amazon S3 Storage Classes
  • 94. Amazon S3 Lifecycle Policies
  • 95. [HOL] Configure Replication and Lifecycle
  • 96. S3 Versioning and Replication
  • 97. S3 Encryption
  • 98. [HOL] Enforce Encryption with AWS KMS
  • 99. S3 Presigned URLs
  • 100. Server Access Logging
  • 101. [HOL] S3 Event Notifications
  • 102. AWS Storage Gateway
  • 103. Introduction
  • 104. Amazon Route 53 Hosted Zones
  • 105. Route 53 Routing Policies
  • 106. [HOL] Failover Routing Policy with ALB
  • 107. Route 53 Resolver
  • 108. Amazon CloudFront Origins and Distributions
  • 109. Amazon CloudFront Caching and Behaviors
  • 110. CloudFront Signed URLs and OAI/OAC
  • 111. [HOL] CloudFront Cache and Behavior Settings
  • 112. CloudFront SSL/TLS and SNI
  • 113. Lambda@Edge
  • 114. AWS Global Accelerator
  • 115. [HOL] Create a Global Accelerator
  • 116. Introduction
  • 117. Amazon RDS Scaling and Deployment
  • 118. Amazon RDS Backup and Recovery
  • 119. Amazon RDS Security
  • 120. Amazon Aurora Core Knowledge
  • 121. Amazon Aurora Deployment Options
  • 122. Amazon RDS Anti-Patterns and Alternatives
  • 123. Amazon ElastiCache Core Knowledge
  • 124. Scaling ElastiCache
  • 125. Amazon DynamoDB Core Knowledge
  • 126. DynamoDB Capacity Modes and RCUs/WCUs
  • 127. [HOL] Practice Creating DynamoDB Tables
  • 128. DynamoDB Streams
  • 129. DynamoDB Accelerator (DAX)
  • 130. DynamoDB Global Tables
  • 131. [HOL] Enable Global Table
  • 132. Other Database Services
  • 133. Architecture Patterns - AWS Databases
  • 134. Introduction
  • 135. Event-Driven Architectures
  • 136. AWS Lambda Invocations and Concurrency
  • 137. Lambda Versions and Aliases
  • 138. Advanced Amazon SQS
  • 139. Serverless App Architecture for HOL
  • 140. [HOL] Build a Serverless App - Part 1
  • 141. [HOL] Build a Serverless App - Part 2
  • 142. Application Integration Services Comparison
  • 143. Amazon AppFlow
  • 144. Amazon EventBridge
  • 145. Amazon API Gateway Core Knowledge
  • 146. [HOL] Build a Serverless App - Part 3
  • 147. [HOL] Build a Serverless App - Part 4
  • 148. Amazon Simple Email Service (Amazon SES)
  • 149. Architecture Patterns - Serverless
  • 150. Introduction
  • 151. Docker Containers and Microservices
  • 152. Amazon Elastic Container Service (ECS)
  • 153. Amazon ECS Launch Types
  • 154. [HOL] Deploy Tasks on Amazon ECS
  • 155. Amazon ECS and IAM Roles
  • 156. Scaling Amazon ECS
  • 157. Amazon ECS with ALB
  • 158. [HOL] ECS-LAB-1 - Create Image and Push to ECR Repository
  • 159. [HOL] ECS-LAB-2 - Create Task Definition and ALB
  • 160. [HOL] ECS-LAB-3 - Create Fargate Cluster and Service
  • 161. Amazon Elastic Kubernetes Service (EKS)
  • 162. [HOL] Deploying and Scaling an Amazon EKS Cluster
  • 163. AWS Elastic Beanstalk Core Knowledge
  • 164. Updating Elastic Beanstalk Applications
  • 165. [HOL] Creating and Updating Environments
  • 166. AWS App Runner
  • 167. Architecture Patterns - Containers and PaaS
  • 168. Introduction
  • 169. CI/CD Overview
  • 170. AWS CodeCommit and CodePipeline
  • 171. [HOL] Install Git (and Learn the Basics)
  • 172. [HOL] Create CodeCommit Repository
  • 173. [HOL] Create Pipeline and Application
  • 174. [HOL] Add Build Stage to Pipeline
  • 175. Additional Developer Tools
  • 176. [HOL] ECS-LAB-4 - CodeDeploy Application and Pipeline
  • 177. [HOL] ECS-LAB-5 - Implement Blue/Green Update to ECS
  • 178. AWS CloudFormation Core Knowledge
  • 179. [HOL] Create CloudFormation Stack
  • 180. [HOL] Create Nested Stack using the AWS CLI
  • 181. AWS Service Catalog
  • 182. [HOL] Deploy Product using Service Catalog
  • 183. AWS Cloud Development Kit
  • 184. AWS Serverless Application Model (SAM)
  • 185. AWS Systems Manager
  • 186. [HOL] Launch EC2 Managed Instances
  • 187. [HOL] SSM Automation and Config Rules
  • 188. [HOL] Systems Manager Automation
  • 189. [HOL] Systems Manager Run Command and Patch Manager
  • 190. [HOL] Systems Manager Configuration Compliance
  • 191. AWS OpsWorks
  • 192. AWS Resources Access Manager (RAM)
  • 193. AWS Health API and Dashboards
  • 194. AWS Well-Architected Tool
  • 195. Architecture Patterns - Deployment and Management
  • 196. Introduction
  • 197. AWS Migration Tools Overview
  • 198. AWS Database Migration Service (DMS)
  • 199. AWS Application Migration Service (MGN)
  • 200. AWS DataSync
  • 201. AWS Snow Family
  • 202. The 7 Rs of Migration
  • 203. Architecture Patterns - Migration and Transfer
  • 204. Introduction
  • 205. Amazon Athena and AWS Glue
  • 206. [HOL] Build a Serverless App - Part 5
  • 207. Redshift and OLAP Use Cases
  • 208. Amazon EMR Use Cases
  • 209. Amazon Kinesis
  • 210. Other Analytics Services
  • 211. Architecture Patterns - Analytics
  • 212. Introduction
  • 213. Amazon CloudWatch Features and Use Cases
  • 214. [HOL] Export CloudWatch Logs to S3
  • 215. [HOL] Trigger SSM on Instance Launch
  • 216. AWS CloudTrail Use Cases
  • 217. [HOL] Enable CloudTrail Log File Validation
  • 218. Metric Analysis and Tracing
  • 219. Architecture Patterns - Monitoring, Logging and Auditing
  • 220. Introduction
  • 221. Secure Multi-Tier Architecture for HOL
  • 222. AWS Certificate Manager (ACM)
  • 223. AWS Key Management Service (KMS)
  • 224. AWS CloudHSM
  • 225. [HOL] Build a Secure Multi-Tier Architecture - Part 1
  • 226. [HOL] Build a Secure Multi-Tier Architecture - Part 2
  • 227. [HOL] Build a Secure Multi-Tier Architecture - Part 3
  • 228. Amazon Macie
  • 229. AWS Config
  • 230. Amazon Inspector
  • 231. [HOL] Build a Secure Multi-Tier Architecture - Part 4
  • 232. AWS Web Application Firewall (WAF)
  • 233. AWS Shield
  • 234. [HOL] Build a Secure Multi-Tier Architecture - Part 5
  • 235. AWS GuardDuty
  • 236. Network Firewall and DNS Firewall
  • 237. AWS Audit Manager
  • 238. Architecture Patterns - Security
  • 239. AWS Amplify and AppSync
  • 240. AWS Device Farm
  • 241. Internet of Things
  • 242. Machine Learning Services
  • 243. [HOL] Transcode and Transcribe Video
  • 244. AWS License Manager
  • 245. AWS Compute Optimizer
  • 246. [HOL] AWS Cost Explorer
  • 247. [HOL] Cost Allocation Tags
  • 248. AWS Cost Management Tools
  • Practice Test 1: Sample Practice Test 1
  • 249. Bonus Lesson

Domain Name System. An Named Host to IP Address lookup system

Application Programming Interface

Internet Protocal version 6

Internet Protocol. An IP Address is a host or device name in numeric form.

Secure Sockets Layer = secure (encrypted) underpinning for HTTP

Transport Layer Security

Uniform Resource Locator = an address of a web page or other component, including the protocol.

Retrieved from "https://wiki.freephile.org/wiki/index.php?title=AWS_Solutions_Architect/training&oldid=10572"