To follow along with the service descriptions, sign up for a free account:

https://aws.amazon.com/free (optional step)

AWS Partner: AWS Cloud

Practitioner Essentials
 Introduction: Course Overview

Agenda Module 1: Introduction to Amazon Web Services

Module 2: Compute in the Cloud
Module 3: Global Infrastructure and Reliability
Module 4: Networking
Module 5: Storage and Databases
Module 6: Security
Module 7: Monitoring and Analytics
Module 8: Pricing and Support
Module 9: Migration and Innovation
Module 10: AWS Certified Cloud Practitioner Basics

Sample CPE question walk thru

2 © 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved.
Module 1

Introduction to Amazon Web

Services
Cloud computing

What is cloud computing?

Access services Avoid large upfront Provision computing Pay only for what
on demand investments resources as needed you use

© 2021, Amazon Web Services, Inc. or its affiliates. All rights reserved. 4
Cloud computing deployment models

Cloud On premises Hybrid

© 2021, Amazon Web Services, Inc. or its affiliates. All rights reserved. 5
Cloud computing benefits

© 2021, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Variable expenses

Upfront expenses Variable expenses

Invest in technology
resources before using Pay only for what you use
them

© 2021, Amazon Web Services, Inc. or its affiliates. All rights reserved. 7
 Cost optimization

Run data centers Focus on applications and

customers
Investment

© 2021, Amazon Web Services, Inc. or its affiliates. All rights reserved. 8
Capacity

Stop guessing on your

infrastructure capacity Scale in and scale out as
needs needed

© 2021, Amazon Web Services, Inc. or its affiliates. All rights reserved. 9
Economies of scale

Smaller scale Economies of scale

Pay higher prices based on Benefit from customers’

only your own usage aggregated usage

© 2021, Amazon Web Services, Inc. or its affiliates. All rights reserved. 10
Speed and agility

Data centers Cloud computing

Weeks between wanting Minutes between wanting

resources and having resources and having
resources resources

© 2021, Amazon Web Services, Inc. or its affiliates. All rights reserved. 11
Global in minutes

Quickly deploy applications Use the AWS global

worldwide infrastructure.

© 2021, Amazon Web Services, Inc. or its affiliates. All rights reserved. 12
AWS core service categories

Compute Networking and Storage

Content Delivery

Database Security, Identity, Management

and Compliance and Governance

© 2021, Amazon Web Services, Inc. or its affiliates. All rights reserved. 13
 Module 2

Compute in the Cloud

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved.
Amazon Elastic Compute Cloud
(Amazon EC2)

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved.
Amazon EC2

• Use secure, sizable compute capacity

• Boot server instances in minutes
• Pay only for what you use
Amazon EC2

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 16
Amazon EC2 instance types

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved.
Amazon EC2 instance types

General Compute Memory

purpose optimized optimized

• Balances compute, • Offers high- • Delivers fast

memory, and performance performance for
networking processors memory-intensive
resources workloads
• Ideal for compute-
• Suitable for a broad intensive applications • Well suited for high-
range of workloads and batch processing performance
workloads databases

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 18
Amazon EC2 instance types (cont.)

Accelerated computing Storage optimized

• Uses hardware accelerators to • Offers low latency and high

expedite data processing input/output operations per
second (IOPS)
• Ideal for application streaming
and graphics workloads • Suitable for workloads such as
distributed file systems and data
warehousing applications

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 19
What’s your use case?

General Compute Memory Accelerated Storage

Purpose Optimized Optimized Computing Optimized

R5, R4, X1e,

T3, T2, M5, X1,L, z1d,
Instance types C5, C4 P3, P2, G3, F1 H1, I3, D2
M5A, M4 High Memory
Instances

High In-memory Machine Distributed file

Use case Broad
performance databases learning systems

https://aws.amazon.com/ec2/instance-types/
Amazon EC2 pricing

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved.
Amazon EC2 instance pricing options

On-Demand Spot

• No upfront costs or minimum • Ideal for workloads with flexible

contracts start and end times

• Ideal for short-term, irregular • Offers savings over On-Demand

workloads prices

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 22
Amazon EC2 instance pricing options

Reserved Compute Savings Plan

• Provides a billing discount over • Offers up to 72% savings over On-

On-Demand pricing Demand costs for a consistent
amount of compute usage
• Requires a 1-year or 3-year term
commitment • Requires a 1-year or 3-year term
commitment

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 23
Amazon EC2 dedicated computing

Dedicated Instance Dedicated Host

• An EC2 instance that runs in a VPC • A physical server with EC2 instance
on hardware for a single customer capacity for a single customer

• Higher cost compared to standard • Most expensive Amazon EC2

Amazon EC2 instances option

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 24
Amazon EC2 Auto Scaling

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved.
Amazon EC2 Auto Scaling

• Scale capacity as computing

requirements change
• Use dynamic scaling and predictive
scaling
Su M T W Th F Sa
Demand
Unused capacity

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 26
Elastic Load Balancing

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved.
Elastic Load Balancing

• Automatically distributes traffic across

multiple resources
• Provides a single point of contact for your
Auto Scaling group
Elastic Load Balancing

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 28
AWS messaging services

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved.
Amazon Simple Notification Service

• Messages are published to topics.

• Subscribers immediately receive messages
for their topics.

Amazon Simple
Notification Service
(Amazon SNS)

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 30
Amazon Simple Queue Service

• Send, store, and receive messages

between software components
• Queue messages without requiring other
services to be available
Amazon Simple
Queue Service
(Amazon SQS)

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 31
Serverless compute services

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved.
AWS Lambda

• Run code without provisioning or

managing servers
• Pay only for compute time while code is
running
• Use other AWS services to automatically
trigger code AWS Lambda

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 33
How AWS Lambda works

Set code to trigger Pay only for the

Upload code to Code runs only
from an event compute time
Lambda. when triggered.
source. you use.

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 34
AWS container services

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved.
AWS container orchestration services

Amazon Elastic Amazon Elastic

Container Service AmazonKubernetes
EC2 Savings Plan
Service
(Amazon ECS) (Amazon EKS)

• Run and scale containerized • Run and scale Kubernetes

applications applications

• Use simple API calls to control • Readily update applications with

Docker-enabled applications new features

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 36
AWS Fargate

• Run serverless containers with Amazon

ECS or Amazon EKS
• Pay only for the resources you use

AWS Fargate

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 37
Module 3

Global Infrastructure and

Reliability
Explore the AWS Global
Infrastructure

https://aws.amazon.com/about-aws/global-infrastructure/regions_az
© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 39
Select a Region

Determine the right Region for your services, data, and applications
based on:

Compliance with data Proximity to your Available services

Pricing
governance and legal customers within a Region
requirements

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 40
Availability Zones

us-west-1
N. California

Data centers Data centers

us-west-1a us-west-1b

Data centers
us-west-1c Regions

Availability Zones
© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 41
Amazon EC2 instances in multiple AZs

us-west-1
N. California

Instance Instance
us-west-1a us-west-1b

us-west-1c Regions

Availability Zones
© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 42
Get closer to your customers

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved.
Same request, same location, same
server… W’out AWS

Customer Customer
1 2

Amazon EC2
instance

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. https://www.cloudping.info/ 44
Amazon CloudFront delivers content

Edge location

Cache Customer

Amazon EC2
instance

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. https://www.cloudping.info/ 45
Module 4

Networking
Amazon Virtual Private Cloud
(Amazon VPC)

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved.
Amazon Virtual Private Cloud (Amazon
VPC)
AWS Cloud
Region

VPC (IP Range for VPC)

Availability Zone A

Public subnet Private subnet

Public
internet Instances Instances

Corporate
datacenter

© 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. 48
Internet gateway
AWS Cloud

VPC

Internet Public subnet

A client sends a request through the

Internet
internet and into the VPC. Amazon EC2 instances
Client gateway

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 49
AWS Direct Connect
AWS Cloud

VPC
Public subnet
AWS Direct Connect location
Corporate data
center

Amazon EC2 instances

Customer or AWS Direct Virtual private Private subnet

Content router/
Partner router Connect endpoint gateway
firewall

Databases

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 50
Subnets
AWS Cloud

VPC
Public subnet

A subnet is a section in a VPC in

which you can place groups of
Amazon EC2 instances
isolated resources.
Private subnet
A subnet can be public or private.

Databases

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 51
Security groups

A security group is a virtual firewall Security group

for an Amazon EC2 instance.

By default, a security group denies

all inbound traffic and allows all
outbound traffic.
Amazon EC2 instance

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 52
Interact with the AWS global
network

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved.
Amazon Route 53

Connect user requests

Route users to internet Manage DNS records for
to infrastructure in AWS
applications domain names
and outside of AWS

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 54
Module 5

Storage and Databases

AWS storage

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved.
Amazon EBS volumes

Amazon EC2 Amazon EC2 Amazon EC2

instance instance instance

EBS volume EBS volume EBS volume

with data with data with data

An Amazon EC2 instance The instance is stopped or All data on the attached
with an attached terminated. (If terminated, the EBS volume remains
EBS volume is running. EBS volume is removed by available.
default.)
© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 57
Amazon EBS snapshots

EBS snapshots
Day 3
.
Day 2 3
. 3
Day 1
. 2 2
1 1 1
1 1 1

All data is Only data that has changed

backed up. since the most recent snapshot
EBS volume
is backed up.
(source data)

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 58
Object storage

In object storage, each object consists

of data, metadata, and a key.

Data Metadata Key Object storage

Object

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 59
Amazon Simple Storage Service

Store objects in buckets Set permissions to control Choose from a range of

access to objects storage classes for
different use cases

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 60
Amazon S3 storage classes

S3 Standard S3 Standard-IA S3 One Zone-IA

• Designed for • Ideal for infrequently • Stores data in a

frequently accessed accessed data single Availability
data Zone
• Similar to S3 Standard
• Stores data in a but has a lower • Has a lower storage
minimum of three storage price and price than S3
Availability Zones higher retrieval price Standard-IA

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 61
Situation

Situation 1 Situation 2
Image 1 Image 1
I use this once every month I use this once in every 3/ 5 years when
audit is happening
I am paying 10/- for storing the same I am paying 10/- for storing the same

© 2019 Amazon Web Services, Inc. or its Affiliates. All rights reserved. 62
Amazon S3 storage classes

S3 Intelligent- S3 Glacier
S3 Glacier
Tiering Deep Archive

• Ideal for data with • Low-cost storage • Lowest-cost object

unknown or designed for data storage class
changing access archiving
patterns • Able to retrieve
• Able to retrieve objects within 12
• Requires a small objects within a few hours
monthly monitoring minutes to hours
and automation fee
per object

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 63
File storage

In file storage, multiple

File folders
clients can access data that is
stored in shared file folders.

Clients

User Server Application

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 64
Amazon Elastic File System

Store data in a scalable Provide data to thousands Store data in and across
file system of Amazon EC2 instances multiple Availability
concurrently Zones

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 65
AWS databases

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved.
Amazon Relational Database Service

Operate and scale a Automate time-consuming Store and transmit

relational database in administrative tasks data securely
the AWS Cloud

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 67
Amazon RDS database engines

• Amazon Aurora

• PostgreSQL

• MySQL

• MariaDB
Amazon RDS
• Oracle Database

• Microsoft SQL Server

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 68
Amazon Aurora

Store data in an Reduce database costs by Replicate six copies of

enterprise-class eliminating unnecessary data across three
relational database input/output (I/O) operations Availability Zones

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 69
Amazon DynamoDB

Amazon DynamoDB is a It automatically scales to adjust It is designed to handle

serverless key-value for capacity changes and maintain over 10 trillion requests
database. consistent performance. per day.

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 70
AWS Database Migration Service
Migrate relational databases, nonrelational databases, and other types
of data stores

Example

MySQL database AWS Database Amazon Aurora

(Source) Migration Service (Target)
(AWS DMS)

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 71
Additional database services

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved.
Additional database services

Amazon Redshift Amazon DocumentDB

Query and analyze data Run MongoDB workloads

across a data warehouse in a document database
service

Amazon Neptune Amazon QLDB

Run applications that use Review a complete
highly connected history of changes to
datasets your application data

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 73
Module 6

Security
Shared responsibility model

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved.
Shared responsibility model

Customer Data
Customers

Platform, Applications, Identity and Access Management

Operating Systems, Network and Firewall Configuration

Client-side Data Encryption Server-side Encryption Networking Traffic Protection

Software
Compute Storage Database Networking
AWS

Hardware/AWS Global Infrastructure

Regions Availability Zones Edge Locations

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 76
Customers: Security IN the cloud

Customer Data
Customers

Platform, Applications, Identity and Access Management

Operating Systems, Network and Firewall Configuration

Client-side Data Encryption Server-side Encryption Networking Traffic Protection

Examples of customer responsibilities include:

• Instance operating system • Host-based firewalls

• Applications • Account management
• Security groups

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 77
AWS: Security OF the cloud

Software
Compute Storage Database Networking
AWS

Hardware/AWS Global Infrastructure

Regions Availability Zones Edge Locations

Examples of AWS responsibilities include:

• Physical security of data centers • Network infrastructure
• Hardware and software • Virtualization infrastructure
infrastructure

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 78
AWS Identity and Access
Management (IAM)

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved.
IAM

IAM features

IAM user IAM policy

AWS Identity and Access

Management (IAM) allows you to IAM group IAM role
manage access to AWS services
and resources.
Multi-factor authentication

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 80
AWS account root user

Log in as the
new IAM user
and continue
to create
other users.

Create an AWS account. Create your first IAM user

This establishes your and give it permissions to Only access
root user identity. create other users. the root user
for a limited
number of
tasks.

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 81
IAM users

An IAM user is an identity that

represents a person or application that
interacts with AWS services and
resources.
Best practice: Create individual IAM
IAM user
users for each person who needs to
access AWS.

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 82
IAM policies

An IAM policy is a document that grants

or denies permissions to AWS services
and resources.
Best practice: Follow the security
principle of least privilege.
IAM policy

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 83
IAM groups

An IAM group is a collection of

IAM users.
Best practice: Attach IAM
“Cashiers” IAM group
policies to IAM groups, rather
than to individual IAM users.
Members inherit the policies
assigned to the group.
Cashier 1 Cashier 2 Cashier 3

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 84
IAM roles
An IAM role is an identity that you can assume to gain temporary access
to permissions.

“Cashier” role “Cashier” role “Inventory” role

The owner gives the The employee assumes the The employee assumes the “Inventory”
employee permissions “Cashier” role. role.
to switch to specific
This grants them access to This grants them access to the inventory
roles.
the cash register system. system and revokes their access to the
cash register system.

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 85
Multi-factor authentication
Multi-factor authentication provides an extra layer of protection for your
AWS account.

IAM user ID: AIDACKCEVSQ6C2EXAMPLE

Password: **********************

To sign in to an AWS website, a The user is prompted to The user is successfully

user enters their IAM user ID and provide an authentication authenticated and can
password. response from their AWS access the requested
MFA device. AWS services or
resources.

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 86
AWS Organizations

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved.
AWS Organizations

• AWS Organizations helps

customers consolidate and
Root
manage multiple AWS
accounts in a central location.
• Use service control policies
(SCPs) to centrally control
permissions for the accounts in Account 1 Account 2 Account 3
your organization.

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 88
Compliance

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved.
Assurance programs

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 90
AWS Artifact

AWS Artifact provides on-demand access to security and compliance

reports and select online agreements.

Access AWS compliance Review, accept, and manage Access compliance reports
reports on demand agreements with AWS from third-party auditors

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 91
Customer Compliance Center

The Customer Compliance Center contains resources to help you learn

more about AWS compliance.

Discover compliance Access compliance technical Complete the auditor

stories from companies in papers and documentation learning path
regulated industries

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 92
https://aws.amazon.com/compliance/customer-center/
 Which tasks can you complete in
Knowledge check AWS Artifact? (Select TWO.)
A. Access AWS compliance reports on-
demand
B. Consolidate and manage multiple
AWS accounts in a central location
C. Create users to allow people and
applications to interact with AWS
services and resources
D. Set permissions for accounts by
configuring service control policies
E. Review, accept, and manage
agreements with AWS

93 © 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved.
 Which tasks can you complete in
Knowledge check AWS Artifact? (Select TWO.)
A. Access AWS compliance reports on-
demand (correct)
B. Consolidate and manage multiple
AWS accounts in a central location
C. Create users to allow people and
applications to interact with AWS
services and resources
D. Set permissions for accounts by
configuring service control policies
E. Review, accept, and manage
agreements with AWS (correct)

94 © 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved.
Application security

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved.
DDoS attacks

Distributed denial of service attack

Hacker Target

Bots

The attack originates from multiple sources.

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 96
AWS Shield

AWS Shield provides protection against distributed denial of service

(DDoS) attacks.

Protect applications Integrate AWS Shield Write custom web ACL

against DDoS attacks Advanced with other rules with AWS WAF to
AWS services mitigate complex
DDoS attacks

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 97
Amazon Inspector

Amazon Inspector allows you to perform automated security

assessments on your applications.

Automatically conduct Identify security Receive recommendations

application security vulnerabilities and deviations for how to fix security
assessments from best practices issues

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 98
Additional security services

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved.
AWS Key Management Service

• AWS Key Management Service (AWS

KMS) helps customers perform
encryption operations through the use
of cryptographic keys.
• You can choose the specific levels of
access control that you need for your AWS KMS
keys.

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 100
Amazon GuardDuty
Amazon GuardDuty provides intelligent threat detection for AWS
products and services.

Enable GuardDuty continuously Review detailed

GuardDuty intelligently
Amazon GuardDuty. analyzes network and findings and take
detects threats.
account activity. action.

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 101
Module 7

Monitoring and Analytics

Amazon CloudWatch

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved.
Amazon CloudWatch

Monitor your AWS and on- Access all of your metrics Configure automatic
premises infrastructure from a single location alerts and actions in
and resources in real time response to metrics

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 104
Amazon CloudWatch dashboard

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 105
AWS CloudTrail

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved.
AWS CloudTrail

Track user activities and Filter logs generated by Automatically detect

API requests throughout API calls to assist with unusual account activity
your AWS infrastructure operational analysis and
troubleshooting

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 107
AWS CloudTrail event

What happened? • New IAM user (Mary) created

Who made the request? • IAM user John

When did this occur? • January 1, 2021 at 9:00 AM

How was the request

• Through the AWS Management Console
made?
© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 108
 Which tasks can you perform using
Knowledge check AWS CloudTrail? (Select TWO.)
question A. Monitor your AWS infrastructure and
resources in real time
B. Track user activities and API requests
throughout your AWS infrastructure
C. View metrics and graphs to monitor the
performance of resources
D. Filter logs to assist with operational
analysis and troubleshooting
E. Configure automatic actions and alerts
in response to metrics

109 © 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved.
 Which tasks can you perform using
Knowledge check AWS CloudTrail? (Select TWO.)
answer A. Monitor your AWS infrastructure and
resources in real time
B. Track user activities and API requests
throughout your AWS infrastructure
(correct)
C. View metrics and graphs to monitor the
performance of resources
D. Filter logs to assist with operational
analysis and troubleshooting (correct)
E. Configure automatic actions and alerts
in response to metrics
110 © 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved.
AWS Trusted Advisor

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved.
AWS Trusted Advisor

Receive real-time Compare your Evaluate and implement

guidance for improving infrastructure to AWS best guidance at all stages of
your AWS environment practices in five categories deployment

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 112
AWS Trusted Advisor dashboard

Number of items for which no Number of recommended Number of recommended

problems have been detected investigations actions

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 113
Module 8

Pricing and Support

AWS pricing

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved.
AWS Free Tier categories

Always free 12 months free Trials

https://aws.amazon.com/free/
© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 116
AWS pricing concepts

Pay less with

Pay less when
Pay as you go volume-based
you reserve
discounts
Pay only for the Reduce costs by Receive savings through
resources that you use reserving capacity in volume-based discounts
without provisioning services such as Amazon as your usage increases
capacity in advance Elastic Compute Cloud
(Amazon EC2) and
Amazon Relational
Database Service
(Amazon RDS)

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 117
AWS Pricing Calculator

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. https://calculator.aws/#/ 118
Consolidated billing

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved.
Consolidated billing

Receive a single bill Review itemized Share savings across

for all the AWS charges that have been the accounts in your
accounts in your incurred by each organization
organization account

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 120
Example: Consolidated billing
AWS

Management Account

Account 1 Account 2 Account 3

$19.64 $19.96 $20.06

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 121
AWS Support plans

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved.
Basic Support

Basic Support is free for all AWS customers

and includes access to:
• Technical papers, documentation, and support
communities
• AWS Personal Health Dashboard
• Seven core AWS Trusted Advisor checks

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 123
AWS Support plans

Developer Business Enterprise

• Best-practice • Use-case guidance • Application

guidance • All AWS Trusted architecture
• Client-side Advisor checks guidance
diagnostic tools • Limited support for • Infrastructure event
• Building-block third-party management
architecture software • Technical Account
support Manager (TAM)

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 124
https://aws.amazon.com/premiumsupport/plans/
AWS Marketplace

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved.
AWS Marketplace

AWS Marketplace is a digital catalog that provides listings of third-party

software that runs on AWS.

Discover thousands Access detailed Explore software

of software products information and solutions by industry
that run on AWS reviews for each and use case
product listing
© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 126
https://aws.amazon.com/marketplace
AWS Marketplace categories

Business Data and DevOps Infrastructure

Applications Analytics Software

Internet of Machine Migration Security

Things (IoT) Learning

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 127
Module 9

Migration and Innovation

Perspectives

Business People Governance

Business
capabilities

Technical
capabilities
Platform Security Operations

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 129
Migration strategies

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved.
 Six migration strategies

Rehost

Replatform

Refactor/Rearchitect

Repurchase
Applications Discovery
to migrate phase
Retain

Retire
© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 131
Module 10

AWS Certified Cloud Practitioner

Basics
As far as I remember…

Support EC2 pricing Amazon Amazon

AWS Shield
plans models Cloud Front Inspector

AWS EC2 AWS Direct Developer Well Arch

AWS Artifact
Auto Scaling Connect Tool Framework

Consolidated Amazon
AWS KMS AWS IAM
Billing QuickSight
End of course assessment

Complete the end of course assessment to review your understanding of

AWS Cloud concepts:

AWS Partners: https://www.aws.training/Details/eLearning?id=60697

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. 134
Thank you

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. This work may not be reproduced or redistributed, in whole or in part,
without prior written permission from Amazon Web Services, Inc. Commercial copying, lending, or selling is prohibited. Corrections, feedback,
or other questions? Contact us at https://support.aws.amazon.com/#/contacts/aws-training. All trademarks are the property of their owners.