AWS Certified Solutions Architect Official - AWS Certified Solutions Architect

AWS Certified Solutions Architect Official - AWS Certified Solutions Architect Official Study Guide
Safari H

AWS Certified Solutions Architect Official Study Guide AWS Certified Solutions Architect Official ⏭
recomm
queue
recent 
topics

tutoria

offers i
highlig
setting
⬆
Recommended /
Queue /
History /
Topics /
Tutorials /
Settings /
Blog /
Support /
Get the App /
Sign Out
© 2017 Safari.
Terms of Service /
Privacy Policy
Find answers on the fly, or master something new. Subscribe today. See pricing options.
https://www.safaribooksonline.com/library/view/aws-certified-solutions/9781119138556/fcover.xhtml[2017/6/14 23:50:57]
https://www.safaribooksonline.com/library/view/aws-certified-solutions/9781119138556/fcover.xhtml[2017/6/14 23:50:57]
Safari H ⏮ AWS Certified Solutions Architect Official AWS Certified Solutions Architect Official ⏭

AWS Certified Solutions Architect Official Study Guide
recomm
queue
recent


topics
Certified Solutions Architect Official 
tutoria

offers i Study Guide - Associate Exam
highlig
setting
Joe Baron, Hisham Baz, Tim Bixler, Biff Gaut, Kevin E. Kelly, Sean Senior, John Stamper
Recommended /
Queue /
History /
Topics /
Tutorials /
Settings /
Blog /
Support /
Get the App /
Sign Out ⬆
© 2017 Safari.
Terms of Service /
Privacy Policy
https://www.safaribooksonline.com/library/view/aws-certified-solutions/9781119138556/f_01.xhtml[2017/6/15 0:14:09]

recomm
Senior Acquisitions Editor: Kenyon Brown
queue Project Editor: Gary Schwartz
Production Editor: Dassi Zeidel
recent 
Copy Editor: Kezia Endsley
Editorial Manager: Mary Beth Wakefield
topics

Production Manager: Kathleen Wisor
tutoria
Executive Editor: Jim Minatel

Book Designers: Judy Fung and Bill Gibson
offers i
Proofreader: Nancy Carrasco
highlig Indexer: Johnna vanHoose Dinse
Project Coordinator, Cover: Brent Savage
setting
Cover Designer: Wiley
Cover Image: ©Getty Images, Inc./Jeremy Woodhouse
Copyright © 2017 by AWS
Published by John Wiley & Sons, Inc. Indianapolis, Indiana
Published simultaneously in Canada
ISBN: 978-1-119-13855-6
ISBN: 978-1-119-13955-3 (ebk.)
ISBN: 978-1-119-13954-6 (ebk.)
Manufactured in the United States of America
No part of this publication may be reproduced, stored in a retrieval system or transmitted in any form or by any means, electronic,
mechanical, photocopying, recording, scanning or otherwise, except as permitted under Sections 107 or 108 of the 1976 United States
Copyright Act, without either the prior written permission of the Publisher, or authorization through payment of the appropriate per-copy
fee to the Copyright Clearance Center, 222 Rosewood Drive, Danvers, MA 01923, (978) 750-8400, fax (978) 646-8600. Requests to the
Publisher for permission should be addressed to the Permissions Department, John Wiley & Sons, Inc., 111 River Street, Hoboken, NJ
07030, (201) 748-6011, fax (201) 748-6008, or online at http://www.wiley.com/go/permissions.
Find answers on
Limit of Liability/Disclaimer the fly, orThe
of Warranty: master something
publisher new.make
and the author Subscribe today. Seeorpricing
no representations options.
warranties with respect to the
accuracy or completeness of the contents of this work and specifically disclaim all warranties, including without limitation warranties of
fitness for a particular purpose. No warranty may be created or extended by sales or promotional materials. The advice and strategies
contained herein may not be suitable for every situation. This work is sold with the understanding that the publisher is not engaged in
rendering legal, accounting, or other professional services. If professional assistance is required, the services of a competent professional
person should be sought. Neither the publisher nor the author shall be liable for damages arising herefrom. The fact that an organization or
Web site is referred to in this work as a citation and/or a potential source of further information does not mean that the author or the
publisher endorses the information the organization or Web site may provide or recommendations it may make. Further, readers should be
aware that Internet Web sites listed in this work may have changed or disappeared between when this work was written and when it is
read.
For general information on our other products and services or to obtain technical support, please contact our Customer Care Department
within the U.S. at (877) 762-2974, outside the U.S. at (317) 572-3993 or fax (317) 572-4002.
Wiley publishes in a variety of print and electronic formats and by print-on-demand. Some material included with standard print versions
of this book may not be included in e-books or in print-on-demand. If this book refers to media such as a CD or DVD that is not included in
the version you purchased, you may download this material at http://booksupport.wiley.com. For more information about Wiley products,
visit www.wiley.com.
Library of Congress Control Number: 2016949703
TRADEMARKS: Wiley, the Wiley logo, and the Sybex logo are trademarks or registered trademarks of John Wiley & Sons, Inc. and/or its
affiliates, in the United States and other countries, and may not be used without written permission. AWS is a registered trademark of
Amazon Technologies, Inc. All other trademarks are the property of their respective owners. John Wiley & Sons, Inc. is not associated with
any product or vendor mentioned in this book.
Recommended /
Queue /
History /
Topics /
Tutorials /
Settings /
Blog /
Support /
Get the App /
Sign Out
© 2017 Safari.
Terms of Service /
Privacy Policy

recomm
queue
recent 
topics

tutoria

offers i
For the original AWS instructor, Mike Culver, who taught us how to teach, lead, and inspire with tenacity and kindness.
highlig
setting
Recommended /
Queue /
History /
Topics /
Tutorials /
Settings /
Blog /
Support /
Get the App /
Sign Out
© 2017 Safari.
Terms of Service /
Privacy Policy
Safari H ⏮ AWS Certified Solutions Architect Official Acknowledgments ⏭


recomm
queue
CONTENTS
recent Acknowledgments 
About the Authors
topics

Foreword
tutoria

Introduction
offers i
Assessment Test
highlig Answers to Assessment Test
setting Chapter 1 Introduction to AWS
What Is Cloud Computing?
AWS Fundamentals
AWS Cloud Computing Platform
Summary
Exam Essentials
Review Questions
Chapter 2 Amazon Simple Storage Service (Amazon S3) and Amazon Glacier Storage
Introduction
Object Storage versus Traditional Block and File Storage
Amazon Simple Storage Service (Amazon S3) Basics
Buckets
Amazon S3 Advanced Features
Amazon Glacier
Summary
Exam Essentials ⬆
Exercises
Review Questions
https://www.safaribooksonline.com/library/view/aws-certified-solutions/9781119138556/ftoc.xhtml[2017/6/15 9:41:58]
Chapter 3 Amazon Elastic Compute Cloud (Amazon EC2) and Amazon Elastic Block Store (Amazon EBS)
Introduction
Amazon Elastic Compute Cloud (Amazon EC2)
Amazon Elastic Block Store (Amazon EBS)
Summary
Exam Essentials
Exercises
Review Questions
Chapter 4 Amazon Virtual Private Cloud (Amazon VPC)
Introduction
Amazon Virtual Private Cloud (Amazon VPC)
Subnets
Route Tables
Internet Gateways
Dynamic Host Configuration Protocol (DHCP) Option Sets
Elastic IP Addresses (EIPs)
Elastic Network Interfaces (ENIs)
Endpoints
Peering
Security Groups
Network Access Control Lists (ACLs)
Network Address Translation (NAT) Instances and NAT Gateways
Virtual Private Gateways (VPGs), Customer Gateways (CGWs), and Virtual Private Networks (VPNs)
Summary
Exam Essentials
Exercises
Review Questions
Chapter 5 Elastic Load Balancing, Amazon CloudWatch, and Auto Scaling
Introduction
Elastic Load Balancing
Amazon CloudWatch
Auto Scaling
Summary
Exam Essentials
Exercises
Review Questions
Chapter 6 AWS Identity and Access Management (IAM)
Principals
Authentication
Authorization
Other Key Features
Summary
Exam Essentials
Exercises
Review Questions
Chapter 7 Databases and AWS
Database Primer
Amazon Relational Database Service (Amazon RDS)
Amazon Redshift
Amazon DynamoDB
Summary
Exam Essentials
Exercises
Review Questions
Chapter 8 SQS, SWF, and SNS
Amazon Simple Queue Service (Amazon SQS)
Amazon Simple Workflow Service (Amazon SWF)
Amazon Simple Notification Service (Amazon SNS)
Summary
Exam Essentials
Exercises
Review Questions
Chapter 9 Domain Name System (DNS) and Amazon Route 53
Domain Name System (DNS)
Amazon Route 53 Overview
Summary
Exam Essentials
Exercises
Review Questions
Chapter 10 Amazon ElastiCache
Introduction
In-Memory Caching
Amazon ElastiCache
Summary
Exam Essentials
Exercises
Review Questions
Chapter 11 Additional Key Services
Introduction
Storage and Content Delivery
Security
Analytics
DevOps
Summary
Exam Essentials
Review Questions
Chapter 12 Security on AWS
Introduction
Shared Responsibility Model
AWS Compliance Program
AWS Global Infrastructure Security
AWS Account Security Features
AWS Cloud Service-Specific Security
Summary
Exam Essentials
Exercises
Review Questions
Chapter 13 AWS Risk and Compliance
Introduction
Overview of Compliance in AWS
Evaluating and Integrating AWS Controls
AWS Risk and Compliance Program
AWS Reports, Certifications, and Third-Party Attestations
Summary
Exam Essentials
Review Questions
Chapter 14 Architecture Best Practices
Introduction
Design for Failure and Nothing Fails
Implement Elasticity
Leverage Different Storage Options
Build Security in Every Layer
Think Parallel
Loose Coupling Sets You Free
Don’t Fear Constraints
Summary
Exam Essentials
Exercises
Review Questions
Appendix A Answers to Review Questions
Chapter 1: Introduction to AWS
Chapter 2: Amazon Simple Storage Service (Amazon S3) and Amazon Glacier Storage
Chapter 3: Amazon Elastic Compute Cloud (Amazon EC2) and Amazon Elastic Block Store (Amazon EBS)
Chapter 4: Amazon Virtual Private Cloud (Amazon VPC)
Chapter 5: Elastic Load Balancing, Amazon CloudWatch, and Auto Scaling
Chapter 6: AWS Identity and Access Management (IAM)
Chapter 7: Databases and AWS
Chapter 8: SQS, SWF, and SNS
Chapter 9: Domain Name System (DNS) and Amazon Route 53
Chapter 10: Amazon ElastiCache
Chapter 11: Additional Key Services
Chapter 12: Security on AWS
Chapter 13: AWS Risk and Compliance
Chapter 14: Architecture Best Practices
Advert
EULA
List of Tables
Chapter 3
TABLE 3.1
TABLE 3.2
TABLE 3.3
TABLE 3.4
TABLE 3.5
TABLE 3.6
Chapter 4
TABLE 4.1
TABLE 4.2
TABLE 4.3
TABLE 4.4
TABLE 4.5
Chapter 6
TABLE 6.1
TABLE 6.2
TABLE 6.3
Chapter 7
TABLE 7.1
TABLE 7.2
TABLE 7.3
TABLE 7.4
TABLE 7.5
Chapter 12
TABLE 12.1
Chapter 14
TABLE 14.1
List of Illustrations
Chapter 1
FIGURE 1.1 Six advantages of cloud computing
FIGURE 1.2 AWS Cloud computing platform
FIGURE 1.3 Auto scaling capacity
FIGURE 1.4 AWS CloudFormation workflow summary
Chapter 3
FIGURE 3.1 Memory and vCPUs for the m4 instance family
FIGURE 3.2 A workload using a mix of On-Demand and Reserved Instances
Chapter 4
FIGURE 4.1 VPC, subnets, and a route table
FIGURE 4.2 VPC, subnet, route table, and an Internet gateway
FIGURE 4.3 VPC peering connections do not support transitive routing
FIGURE 4.4 VPC with VPN connection to a customer network
Chapter 5
FIGURE 5.1 Auto Scaling group behind an Elastic Load Balancing load balancer
FIGURE 5.2 Auto Scaling group with policy
FIGURE 5.3 Amazon CloudWatch alarm triggering scaling out
Chapter 6
FIGURE 6.1 Different identities authenticating with AWS
FIGURE 6.2 Associating IAM users with policies
Chapter 7
FIGURE 7.1 Multi-AZ Amazon RDS architecture
FIGURE 7.2 Amazon Redshift cluster architecture
FIGURE 7.3 Table, items, attributes relationship
FIGURE 7.4 Table partitioning
Chapter 8
FIGURE 8.1 Message lifecycle
FIGURE 8.2 Diagram of visibility timeout
FIGURE 8.3 Amazon SWF workflow illustration
FIGURE 8.4 Diagram of topic delivery
FIGURE 8.5 Diagram of fanout scenario
Chapter 9
FIGURE 9.1 FQDN components
Chapter 10
FIGURE 10.1 Common caching architecture
FIGURE 10.2 Redis replication group
Chapter 11
FIGURE 11.1 Delivering static and dynamic content
FIGURE 11.2 High availability CloudHSM architecture
FIGURE 11.3 Amazon Kinesis Firehose
FIGURE 11.4 Amazon Kinesis Streams
FIGURE 11.5 Example pipeline
FIGURE 11.6 Simple application server stack
FIGURE 11.7 Simple application server stack with AWS OpsWorks
FIGURE 11.8 Creating a stack workflow
FIGURE 11.9 Updating a stack workflow
FIGURE 11.10 AWS Trusted Advisor Console dashboard
Chapter 12
FIGURE 12.1 The shared responsibility model
FIGURE 12.2 Amazon Web Services regions
FIGURE 12.3 Amazon EC2 multiple layers of security
FIGURE 12.4 Amazon EC2 security group firewall
FIGURE 12.5 Amazon VPC network architecture
FIGURE 12.6 Flexible network architectures
Chapter 13
FIGURE 13.1 Shared responsibility model
Chapter 14
FIGURE 14.1 Simple web application architecture
FIGURE 14.2 Updated web application architecture with redundancy
FIGURE 14.3 Updated web application architecture with auto scaling
FIGURE 14.4 Updated web application architecture with Amazon S3 and Amazon CloudFront
FIGURE 14.5 Updated web application architecture with Amazon ElastiCache and Amazon DynamoDB
FIGURE 14.6 Tight and loose coupling
FIGURE 14.7 Sample web application for chapter exercises
Recommended /
Queue /
History /
Topics /
Tutorials /
Settings /
Blog /
Support /
Get the App /
Sign Out
© 2017 Safari.
Terms of Service /
Privacy Policy

AWS Certified Solutions Architect Official - AWS Certified Solutions Architect

Uploaded by

Copyright:

Available Formats

AWS Certified Solutions Architect Official - AWS Certified Solutions Architect

Uploaded by

Document Information

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

AWS Certified Solutions Architect Official - AWS Certified Solutions Architect

Uploaded by

Copyright:

Available Formats

What are the main services described in the document?

What are the main services described in the document?

What security features does AWS provide?

What security features does AWS provide?

AWS Certified Solutions Architect Official - AWS Certified Solutions Architect Official Study Guide

queue Project Editor: Gary Schwartz

Production Editor: Dassi Zeidel

Editorial Manager: Mary Beth Wakefield

highlig Indexer: Johnna vanHoose Dinse

Project Coordinator, Cover: Brent Savage

Cover Image: ©Getty Images, Inc./Jeremy Woodhouse

Copyright © 2017 by AWS

Published by John Wiley & Sons, Inc. Indianapolis, Indiana

Published simultaneously in Canada

ISBN: 978-1-119-13955-3 (ebk.)

ISBN: 978-1-119-13954-6 (ebk.)

Manufactured in the United States of America

07030, (201) 748-6011, fax (201) 748-6008, or online at http://www.wiley.com/go/permissions.

Library of Congress Control Number: 2016949703

any product or vendor mentioned in this book.

Safari H ⏮ AWS Certified Solutions Architect Official Acknowledgments ⏭

setting Chapter 1 Introduction to AWS

What Is Cloud Computing?

AWS Cloud Computing Platform

Object Storage versus Traditional Block and File Storage

Amazon Simple Storage Service (Amazon S3) Basics

Amazon S3 Advanced Features

Amazon Elastic Compute Cloud (Amazon EC2)

Amazon Elastic Block Store (Amazon EBS)

Chapter 4 Amazon Virtual Private Cloud (Amazon VPC)

Amazon Virtual Private Cloud (Amazon VPC)

Dynamic Host Configuration Protocol (DHCP) Option Sets

Elastic IP Addresses (EIPs)

Elastic Network Interfaces (ENIs)

Network Access Control Lists (ACLs)

Network Address Translation (NAT) Instances and NAT Gateways

Chapter 5 Elastic Load Balancing, Amazon CloudWatch, and Auto Scaling

Elastic Load Balancing

Chapter 6 AWS Identity and Access Management (IAM)

Other Key Features

Chapter 7 Databases and AWS

Amazon Relational Database Service (Amazon RDS)

Chapter 8 SQS, SWF, and SNS

Amazon Simple Queue Service (Amazon SQS)

Amazon Simple Workflow Service (Amazon SWF)

Amazon Simple Notification Service (Amazon SNS)

Chapter 9 Domain Name System (DNS) and Amazon Route 53

Domain Name System (DNS)

Amazon Route 53 Overview

Chapter 10 Amazon ElastiCache

Chapter 11 Additional Key Services

Storage and Content Delivery

Chapter 12 Security on AWS

Shared Responsibility Model

AWS Compliance Program

AWS Global Infrastructure Security

AWS Account Security Features

AWS Cloud Service-Specific Security

Chapter 13 AWS Risk and Compliance

Overview of Compliance in AWS