|
|
| (6 intermediate revisions by the same user not shown) |
| Line 1: |
Line 1: |
| This course covers topics such as the following:
| | == About == |
| # [[AWS Accounts and Organizations including Service Control Policies (SCPs)]]
| |
| # [[Identity Management and Permissions including RBAC, ABAC and permissions boundaries]]
| |
| # AWS Directory Services and Federation including Identity Federation, AWS SSO, and Cognito
| |
| # Advanced Amazon VPC including a routing deep dive and multi-account VPC configurations
| |
| # Hybrid Connectivity including S2S VPN, Direct Connect, and AWS Transit Gateway
| |
| # Compute, Auto Scaling, and Load Balancing including ALB, NLB, EC2, and NAT
| |
| # AWS Storage Services including EBS, EFS, and Amazon S3
| |
| # DNS, Caching, and Performance Optimization including Route 53, CloudFront, and AWS Global Accelerator
| |
| # AWS Database Services including Amazon RDS, Aurora, ElastiCache and DynamoDB
| |
| # Serverless Applications including AWS Lambda, EventBridge, SQS, SNS, and API Gateway
| |
| # Docker Containers and PaaS including Amazon ECS, Fargate, and Elastic Beanstalk
| |
| # Deployment and Management including AWS CodeCommit, CodePipeline, Service Catalog, Systems Manager and more
| |
| # Migration and Transfer Service including AWS DMS, SMS, DataSync, and Snowball
| |
| # Analytics Services including Amazon Athena, AWS Glue, RedShift, EMR, and Kinesis
| |
| # Monitoring, Logging and Auditing including CloudWatch, CloudTrail and AWS X-Ray
| |
| # Defense in Depth including how to build a secure application with ACM, KMS, Config, Inspector and WAF/Shield
| |
| # Cost Management including how AWS services are priced, consolidated billing, and AWS Budgets
| |
|
| |
|
| | [https://digitalcloud.training/aws-solutions-architect-professional/ This course] covers topics such as the following: |
|
| |
|
| Detailed notes are broken down according to each section of the course
| | #AWS Accounts and Organizations including Service Control Policies (SCPs) |
| # [[Section 1: Introduction and Course Download]] 1-3 | | #Identity Management and Permissions including RBAC, ABAC and permissions boundaries |
| # [[Section 2: AWS Accounts and Organizations]] 4-16
| | #AWS Directory Services and Federation including Identity Federation, AWS SSO, and Cognito |
| # [[Section 3: Identity Management and Permissions]] 17-24 | | #Advanced Amazon VPC including a routing deep dive and multi-account VPC configurations |
| # [[Section 4: AWS Directory Services and Federation]] 37-41 | | #Hybrid Connectivity including S2S VPN, Direct Connect, and AWS Transit Gateway |
| # [[Section 5: Advanced Amazon VPC]] 42-56 | | #Compute, Auto Scaling, and Load Balancing including ALB, NLB, EC2, and NAT |
| # [[Section 6: Hybrid Connectivity]] 57-63 | | #AWS Storage Services including EBS, EFS, and Amazon S3 |
| # [[Section 7: Compute, Auto Scaling, and Load Balancing]] 64-85 | | #DNS, Caching, and Performance Optimization including Route 53, CloudFront, and AWS Global Accelerator |
| # [[Section 8: AWS Storage Services]] 86-102 | | #AWS Database Services including Amazon RDS, Aurora, ElastiCache and DynamoDB |
| # [[Section 9: DNS, Caching, and Performance Optimization]] 103-115 | | #Serverless Applications including AWS Lambda, EventBridge, SQS, SNS, and API Gateway |
| # [[Section 10: AWS Database Services]] 116-133 | | #Docker Containers and PaaS including Amazon ECS, Fargate, and Elastic Beanstalk |
| # [[Section 11: Serverless Applications]] 134-149 | | #Deployment and Management including AWS CodeCommit, CodePipeline, Service Catalog, Systems Manager and more |
| # [[Section 12: Docker Containers and PaaS]] 150-167 | | #Migration and Transfer Service including AWS DMS, SMS, DataSync, and Snowball |
| # [[Section 13: Deployment and Management]] 168-195 | | #Analytics Services including Amazon Athena, AWS Glue, RedShift, EMR, and Kinesis |
| # [[Section 14: Migration and Transfer Services]] 196-203 | | #Monitoring, Logging and Auditing including CloudWatch, CloudTrail and AWS X-Ray |
| # [[Section 15: Analytics Services]] 204-211 | | #Defense in Depth including how to build a secure application with ACM, KMS, Config, Inspector and WAF/Shield |
| # [[Section 16: Monitoring, Logging and Auditing]] 212-219 | | #Cost Management including how AWS services are priced, consolidated billing, and AWS Budgets |
| # [[Section 17: Security: Defense in Depth]] 220-238 | |
| # [[Section 18: Additional Services]] 239-248 | |
| # [[Section 19: Sample Practice Test]]
| |
| # [[Section 20: Additional Training Resources]] 249
| |
|
| |
|
| | == Code == |
| | https://github.com/nealdct/aws-sap-code |
|
| |
|
| | == Notes == |
| | Detailed notes are broken down according to each section of the course |
|
| |
|
| <ul>
| | #[[/Section 1: Introduction and Course Download]] 1-3 |
| <li> 1. Welcome and Introduction
| | #[[/Section 2: AWS Accounts and Organizations]] 4-16 |
| <li> 2. The SAP-C02 Exam
| | #[[/Section 3: Identity Management and Permissions]] 17-36 |
| <li> 3. Course Download
| | #[[/Section 4: AWS Directory Services and Federation]] 37-41 |
| <li> 4. Introduction
| | #[[/Section 5: Advanced Amazon VPC]] 42-56 |
| <li> 5. Hands-On Practice: Free Tier vs Sandbox
| | #[[/Section 6: Hybrid Connectivity]] 57-63 |
| <li> 6. [HOL] Create Your AWS Free Tier Account
| | #[[/Section 7: Compute, Auto Scaling, and Load Balancing]] 64-85 |
| <li> 7. [HOL] Configure Account and Create a Budget and Alarm
| | #[[/Section 8: AWS Storage Services]] 86-102 |
| <li> 8. [HOL] Setup Individual User Account
| | #[[/Section 9: DNS, Caching, and Performance Optimization]] 103-115 |
| <li> 9. [HOL] Install Tools and Configure AWS CLI
| | #[[/Section 10: AWS Database Services]] 116-133 |
| <li> 10. AWS Organizations
| | #[[/Section 11: Serverless Applications]] 134-149 |
| <li> 11. [HOL] Create AWS Organization and Add Account
| | #[[/Section 12: Docker Containers and PaaS]] 150-167 |
| <li> 12. Service Control Policies (SCPs)
| | #[[/Section 13: Deployment and Management]] 168-195 |
| <li> 13. SCP Strategies and Inheritance
| | #[[/Section 14: Migration and Transfer Services]] 196-203 |
| <li> 14. [HOL] Test SCP Inheritance
| | #[[/Section 15: Analytics Services]] 204-211 |
| <li> 15. AWS Control Tower
| | #[[/Section 16: Monitoring, Logging and Auditing]] 212-219 |
| <li> 16. [HOL] Create a Landing Zone
| | #[[/Section 17: Security: Defense in Depth]] 220-238 |
| <li> 17. Introduction
| | #[[/Section 18: Additional Services]] 239-248 |
| <li> 18. How IAM Works
| | #[[/Section 19: Sample Practice Test]] |
| <li> 19. Overview of Users, Groups, Roles and Policies
| | #[[/Section 20: Additional Training Resources]] 249 |
| <li> 20. IAM Authentication Methods
| |
| <li> 21. AWS Security Token Service (STS)
| |
| <li> 22. Multi-Factor Authentication (MFA)
| |
| <li> 23. [HOL] Setup Multi-Factor Authentication (MFA)
| |
| <li> 24. Identity-Based Policies and Resource-Based Policies
| |
| <li> 25. Access Control Methods - RBAC & ABAC
| |
| <li> 26. Permissions Boundaries
| |
| <li> 27. IAM Policy Evaluation
| |
| <li> 28. IAM Policy Structure
| |
| <li> 29. [HOL] Using Role-Based Access Control (RBAC)
| |
| <li> 30. [HOL] Using Attribute-Based Access Control (ABAC)
| |
| <li> 31. [HOL] Apply Permissions Boundary
| |
| <li> 32. Use Cases for IAM Roles
| |
| <li> 33. [HOL] Cross-Account Access to S3
| |
| <li> 34. Access Keys and IAM Roles with EC2
| |
| <li> 35. [HOL] Amazon EC2 Instance Profile
| |
| <li> 36. AWS IAM Best Practices
| |
| <li> 37. Introduction
| |
| <li> 38. AWS Directory Services
| |
| <li> 39. Identity Providers and Federation
| |
| <li> 40. [HOL] IAM Identity Center
| |
| <li> 41. Amazon Cognito
| |
| <li> 42. Introduction
| |
| <li> 43. The AWS Global Infrastructure
| |
| <li> 44. Defining VPC CIDR Blocks
| |
| <li> 45. [HOL] Create a Custom VPC
| |
| <li> 46. VPC Routing Deep Dive
| |
| <li> 47. Security Groups and Network ACLs
| |
| <li> 48. [HOL] Configure Security Groups and NACLs
| |
| <li> 49. NAT Gateways and NAT Instances
| |
| <li> 50. [HOL] Private Subnet with NAT Gateway
| |
| <li> 51. Using IPv6 in a VPC
| |
| <li> 52. [HOL] Configure IPv6
| |
| <li> 53. VPC Peering
| |
| <li> 54. [HOL] Configure VPC Peering
| |
| <li> 55. VPC Endpoints
| |
| <li> 56. [HOL] Create VPC Endpoint
| |
| <li> 57. Introduction
| |
| <li> 58. AWS Client VPN
| |
| <li> 59. AWS Site-to-Site VPN
| |
| <li> 60. AWS VPN CloudHub
| |
| <li> 61. AWS Direct Connect (DX)
| |
| <li> 62. AWS Direct Connect Gateway
| |
| <li> 63. AWS Transit Gateway
| |
| <li> 64. Introduction
| |
| <li> 65. Amazon EC2 Pricing Options
| |
| <li> 66. Amazon EC2 Pricing Use Cases
| |
| <li> 67. Bootstrapping AMIs
| |
| <li> 68. EC2 Placement Group Use Cases
| |
| <li> 69. Network Interfaces (ENI, ENA, EFA)
| |
| <li> 70. [HOL] Working with ENIs and IP Addresses
| |
| <li> 71. Public, Private and Elastic IP Addresses
| |
| <li> 72. NAT for Public Addresses
| |
| <li> 73. Advanced Auto Scaling
| |
| <li> 74. [HOL] Create an ASG and ALB with the CLI
| |
| <li> 75. [HOL] Create a Lifecycle Hook
| |
| <li> 76. Types of Elastic Load Balancer (ELB)
| |
| <li> 77. Routing with ALB and NLB
| |
| <li> 78. ALB and NLB Access Control and SSL/TLS
| |
| <li> 79. [HOL] Register Domain with Route 53 (Optional)
| |
| <li> 80. [HOL] Request Routing with ALB
| |
| <li> 81. [HOL] NLB Static IPs and Whitelisting
| |
| <li> 82. Session State and Session Stickiness
| |
| <li> 83. AWS Batch
| |
| <li> 84. Amazon LightSail
| |
| <li> 85. Architecture Patterns - Compute
| |
| <li> 86. Introduction
| |
| <li> 87. Amazon EBS Deployment and Volume Types
| |
| <li> 88. Amazon EBS Copying, Sharing and Encryption
| |
| <li> 89. EBS vs instance store
| |
| <li> 90. Amazon EFS Refresher
| |
| <li> 91. [HOL] Working with Files on EFS
| |
| <li> 92. Amazon S3 Overview
| |
| <li> 93. Amazon S3 Storage Classes
| |
| <li> 94. Amazon S3 Lifecycle Policies
| |
| <li> 95. [HOL] Configure Replication and Lifecycle
| |
| <li> 96. S3 Versioning and Replication
| |
| <li> 97. S3 Encryption
| |
| <li> 98. [HOL] Enforce Encryption with AWS KMS
| |
| <li> 99. S3 Presigned URLs
| |
| <li> 100. Server Access Logging
| |
| <li> 101. [HOL] S3 Event Notifications
| |
| <li> 102. AWS Storage Gateway
| |
| <li> 103. Introduction
| |
| <li> 104. Amazon Route 53 Hosted Zones
| |
| <li> 105. Route 53 Routing Policies
| |
| <li> 106. [HOL] Failover Routing Policy with ALB
| |
| <li> 107. Route 53 Resolver
| |
| <li> 108. Amazon CloudFront Origins and Distributions
| |
| <li> 109. Amazon CloudFront Caching and Behaviors
| |
| <li> 110. CloudFront Signed URLs and OAI/OAC
| |
| <li> 111. [HOL] CloudFront Cache and Behavior Settings
| |
| <li> 112. CloudFront SSL/TLS and SNI
| |
| <li> 113. Lambda@Edge
| |
| <li> 114. AWS Global Accelerator
| |
| <li> 115. [HOL] Create a Global Accelerator
| |
| <li> 116. Introduction
| |
| <li> 117. Amazon RDS Scaling and Deployment
| |
| <li> 118. Amazon RDS Backup and Recovery
| |
| <li> 119. Amazon RDS Security
| |
| <li> 120. Amazon Aurora Core Knowledge
| |
| <li> 121. Amazon Aurora Deployment Options
| |
| <li> 122. Amazon RDS Anti-Patterns and Alternatives
| |
| <li> 123. Amazon ElastiCache Core Knowledge
| |
| <li> 124. Scaling ElastiCache
| |
| <li> 125. Amazon DynamoDB Core Knowledge
| |
| <li> 126. DynamoDB Capacity Modes and RCUs/WCUs
| |
| <li> 127. [HOL] Practice Creating DynamoDB Tables
| |
| <li> 128. DynamoDB Streams
| |
| <li> 129. DynamoDB Accelerator (DAX)
| |
| <li> 130. DynamoDB Global Tables
| |
| <li> 131. [HOL] Enable Global Table
| |
| <li> 132. Other Database Services
| |
| <li> 133. Architecture Patterns - AWS Databases
| |
| <li> 134. Introduction
| |
| <li> 135. Event-Driven Architectures
| |
| <li> 136. AWS Lambda Invocations and Concurrency
| |
| <li> 137. Lambda Versions and Aliases
| |
| <li> 138. Advanced Amazon SQS
| |
| <li> 139. Serverless App Architecture for HOL
| |
| <li> 140. [HOL] Build a Serverless App - Part 1
| |
| <li> 141. [HOL] Build a Serverless App - Part 2
| |
| <li> 142. Application Integration Services Comparison
| |
| <li> 143. Amazon AppFlow
| |
| <li> 144. Amazon EventBridge
| |
| <li> 145. Amazon API Gateway Core Knowledge
| |
| <li> 146. [HOL] Build a Serverless App - Part 3
| |
| <li> 147. [HOL] Build a Serverless App - Part 4
| |
| <li> 148. Amazon Simple Email Service (Amazon SES)
| |
| <li> 149. Architecture Patterns - Serverless
| |
| <li> 150. Introduction
| |
| <li> 151. Docker Containers and Microservices
| |
| <li> 152. Amazon Elastic Container Service (ECS)
| |
| <li> 153. Amazon ECS Launch Types
| |
| <li> 154. [HOL] Deploy Tasks on Amazon ECS
| |
| <li> 155. Amazon ECS and IAM Roles
| |
| <li> 156. Scaling Amazon ECS
| |
| <li> 157. Amazon ECS with ALB
| |
| <li> 158. [HOL] ECS-LAB-1 - Create Image and Push to ECR Repository
| |
| <li> 159. [HOL] ECS-LAB-2 - Create Task Definition and ALB
| |
| <li> 160. [HOL] ECS-LAB-3 - Create Fargate Cluster and Service
| |
| <li> 161. Amazon Elastic Kubernetes Service (EKS)
| |
| <li> 162. [HOL] Deploying and Scaling an Amazon EKS Cluster
| |
| <li> 163. AWS Elastic Beanstalk Core Knowledge
| |
| <li> 164. Updating Elastic Beanstalk Applications
| |
| <li> 165. [HOL] Creating and Updating Environments
| |
| <li> 166. AWS App Runner
| |
| <li> 167. Architecture Patterns - Containers and PaaS
| |
| <li> 168. Introduction
| |
| <li> 169. CI/CD Overview
| |
| <li> 170. AWS CodeCommit and CodePipeline
| |
| <li> 171. [HOL] Install Git (and Learn the Basics)
| |
| <li> 172. [HOL] Create CodeCommit Repository
| |
| <li> 173. [HOL] Create Pipeline and Application
| |
| <li> 174. [HOL] Add Build Stage to Pipeline
| |
| <li> 175. Additional Developer Tools
| |
| <li> 176. [HOL] ECS-LAB-4 - CodeDeploy Application and Pipeline
| |
| <li> 177. [HOL] ECS-LAB-5 - Implement Blue/Green Update to ECS
| |
| <li> 178. AWS CloudFormation Core Knowledge
| |
| <li> 179. [HOL] Create CloudFormation Stack
| |
| <li> 180. [HOL] Create Nested Stack using the AWS CLI
| |
| <li> 181. AWS Service Catalog
| |
| <li> 182. [HOL] Deploy Product using Service Catalog
| |
| <li> 183. AWS Cloud Development Kit
| |
| <li> 184. AWS Serverless Application Model (SAM)
| |
| <li> 185. AWS Systems Manager
| |
| <li> 186. [HOL] Launch EC2 Managed Instances
| |
| <li> 187. [HOL] SSM Automation and Config Rules
| |
| <li> 188. [HOL] Systems Manager Automation
| |
| <li> 189. [HOL] Systems Manager Run Command and Patch Manager
| |
| <li> 190. [HOL] Systems Manager Configuration Compliance
| |
| <li> 191. AWS OpsWorks
| |
| <li> 192. AWS Resources Access Manager (RAM)
| |
| <li> 193. AWS Health API and Dashboards
| |
| <li> 194. AWS Well-Architected Tool
| |
| <li> 195. Architecture Patterns - Deployment and Management
| |
| <li> 196. Introduction
| |
| <li> 197. AWS Migration Tools Overview
| |
| <li> 198. AWS Database Migration Service (DMS)
| |
| <li> 199. AWS Application Migration Service (MGN)
| |
| <li> 200. AWS DataSync
| |
| <li> 201. AWS Snow Family
| |
| <li> 202. The 7 Rs of Migration
| |
| <li> 203. Architecture Patterns - Migration and Transfer
| |
| <li> 204. Introduction
| |
| <li> 205. Amazon Athena and AWS Glue
| |
| <li> 206. [HOL] Build a Serverless App - Part 5
| |
| <li> 207. Redshift and OLAP Use Cases
| |
| <li> 208. Amazon EMR Use Cases
| |
| <li> 209. Amazon Kinesis
| |
| <li> 210. Other Analytics Services
| |
| <li> 211. Architecture Patterns - Analytics
| |
| <li> 212. Introduction
| |
| <li> 213. Amazon CloudWatch Features and Use Cases
| |
| <li> 214. [HOL] Export CloudWatch Logs to S3
| |
| <li> 215. [HOL] Trigger SSM on Instance Launch
| |
| <li> 216. AWS CloudTrail Use Cases
| |
| <li> 217. [HOL] Enable CloudTrail Log File Validation
| |
| <li> 218. Metric Analysis and Tracing
| |
| <li> 219. Architecture Patterns - Monitoring, Logging and Auditing
| |
| <li> 220. Introduction
| |
| <li> 221. Secure Multi-Tier Architecture for HOL
| |
| <li> 222. AWS Certificate Manager (ACM)
| |
| <li> 223. AWS Key Management Service (KMS)
| |
| <li> 224. AWS CloudHSM
| |
| <li> 225. [HOL] Build a Secure Multi-Tier Architecture - Part 1
| |
| <li> 226. [HOL] Build a Secure Multi-Tier Architecture - Part 2
| |
| <li> 227. [HOL] Build a Secure Multi-Tier Architecture - Part 3
| |
| <li> 228. Amazon Macie
| |
| <li> 229. AWS Config
| |
| <li> 230. Amazon Inspector
| |
| <li> 231. [HOL] Build a Secure Multi-Tier Architecture - Part 4
| |
| <li> 232. AWS Web Application Firewall (WAF)
| |
| <li> 233. AWS Shield
| |
| <li> 234. [HOL] Build a Secure Multi-Tier Architecture - Part 5
| |
| <li> 235. AWS GuardDuty
| |
| <li> 236. Network Firewall and DNS Firewall
| |
| <li> 237. AWS Audit Manager
| |
| <li> 238. Architecture Patterns - Security
| |
| <li> 239. AWS Amplify and AppSync
| |
| <li> 240. AWS Device Farm
| |
| <li> 241. Internet of Things
| |
| <li> 242. Machine Learning Services
| |
| <li> 243. [HOL] Transcode and Transcribe Video
| |
| <li> 244. AWS License Manager
| |
| <li> 245. AWS Compute Optimizer
| |
| <li> 246. [HOL] AWS Cost Explorer
| |
| <li> 247. [HOL] Cost Allocation Tags
| |
| <li> 248. AWS Cost Management Tools
| |
| <li> Practice Test 1: Sample Practice Test 1
| |
| <li> 249. Bonus Lesson
| |
| </ul>
| |
|
| |
|
| [[Category:AWS]] | | [[Category:AWS]] |
