AWS Certified Developer Associate Certification and Beyond A Comprehensive Guide to Help You Succeed in the AWS DVA-C02 Certification Exam
Prepare to achieve the AWS Certified Developer - Associate certification and learn everything you need to advance your career in AWS development with this in-depth guide Key Features Gear up for a thriving career in AWS development with this hands-on guide Put your newfound knowledge into action wit...
| Otros Autores: | , |
|---|---|
| Formato: | Libro electrónico |
| Idioma: | Inglés |
| Publicado: |
Birmingham, UK :
Packt Publishing Ltd
[2024]
|
| Edición: | First edition |
| Materias: | |
| Ver en Biblioteca Universitat Ramon Llull: | https://discovery.url.edu/permalink/34CSUC_URL/1im36ta/alma991009841736506719 |
Tabla de Contenidos:
- Cover
- FM
- Copyright
- Contributors
- About the Reviewers
- Table of Contents
- Preface
- Chapter 1: Introduction to AWS Accounts and Global Infrastructure
- Making the Most Out of This Book - Your Certification and Beyond
- Introducing a Client Scenario for this Study Guide
- Setting the Scene - Background Information
- Business Needs
- How the Cloud Meets These Needs
- Introduction to Cloud Computing and the AWS Global Infrastructure
- AWS Global Infrastructure
- Regions
- AZs
- Edge Locations and Regional Edge Caches
- Overview of an AWS Account
- When One AWS Account Is Not Enough
- Introducing AWS Organizations
- Service Control Policies (SCPs)
- AWS Control Tower
- Accessing Your AWS Account Using the Web Management Console, CLI, and SDKs
- AWS Web Management Console
- AWS CLI
- AWS CloudShell
- AWS SDKs
- Technical Requirements
- A Gmail Account
- Project Tasks - Building a Multi-Account Strategy for TodoPlus Limited
- Project Task 1.1 - Setting up Your First AWS Account
- Project Task 1.2 - Configuring MFA for Your Root User
- Project Task 1.3 - Setting up an AWS Organization
- Project Task 1.4 - Creating the Development and Production AWS Accounts
- Project Task 1.5 - Assigning AWS Accounts to Their Respective OUs
- Project Task 1.6 - Setting up SCPs
- Project Task 1.7 - Testing SCPs
- Project Task 1.8 - Creating a Billing Alarm
- Summary
- Further Reading
- Exam Readiness Drill - Chapter Review Questions
- Chapter 2: Securing Access with AWS Identity and Access Management
- Introduction to IAM
- But First, Let's Talk about the Root User
- What Are the IAM Components?
- IAM Users
- IAM Groups
- IAM Roles
- IAM Policy
- Permissions Boundary
- Improving Your Security Posture with MFA
- Security Token-Based MFA.
- Accessing AWS Accounts Using Identity Federation with SAML 2.0 and Microsoft AD
- Using Web Identity Federation for Application Authentication
- Application Authentication and Authorization with Amazon Cognito
- Amazon Cognito User Pools
- Access Backend Resources with a User Pool
- Amazon Cognito Identity Pools
- How AWS STS Generates Temporary Tokens
- Amazon Cognito and the Todo List Application
- Overview of the AWS IAM Identity Center
- Exercise 2.1 - Creating an IAM User and an IAM Group within your Development Account
- Technical Requirements
- Project Task 2.1 - Creating an Amazon Cognito User Pool for the Todo List Application
- Step 1 - Configure Sign-In Experience
- Step 2 - Configure Security Requirements
- Step 3 - Configure Sign-Up Experience
- Step 4 - Configure Message Delivery
- Step 5 - Integrate Your App
- Step 6 - Review and Create
- Step 7 - Testing the Cognito User Pool
- Summary
- Exam Readiness Drill - Chapter Review Questions
- Chapter 3: Understanding Object Storage with Amazon S3, Hybrid Storage, and Static Website Hosting
- An Introduction to Storage Options
- Block Storage
- File Storage
- Object Storage
- An Introduction to Object Storage with Amazon S3
- Amazon S3 Buckets
- Amazon S3 Objects
- An Amazon S3 Object's Key
- Amazon S3 Region Choice
- Read-after-Write Consistency
- Eventual Consistency
- Managing Data Storage Costs with Amazon S3 Storage Classes
- The Amazon S3 Standard Storage Class
- Amazon S3-IA Storage
- Amazon S3 One Zone-IA
- Amazon S3 Intelligent-Tiering
- Amazon S3 Express One Zone
- Amazon S3 Glacier
- Protecting Data from Accidental Deletion in Amazon S3
- Encryption Options for Amazon S3
- Using Amazon S3 Versioning with S3 Lifecycle Management
- Implementing Data Protection with Resource-Based Policies
- Securing Access with Pre-Signed URLs.
- Building Static Websites with Amazon S3
- CORS
- Additional Amazon S3 Features
- Amazon S3 Transfer Acceleration
- Amazon S3 Event Notifications
- Amazon S3 Select and Glacier Select
- Amazon Object Tags and Metadata
- Amazon S3 Replication
- Requirements for Replication
- Amazon S3 Multipart Upload
- Enforcing MFA Delete
- S3 Server Access Logging
- Hybrid Storage Solutions with AWS Storage Gateway
- Project Task - Create an Amazon S3 Static Website for the Todo List Application
- Project Task 3.1 - Create an Amazon S3 Bucket
- Project Task 3.2 - Upload Your Frontend Source Code
- Project Task 3.3 - Configure Bucket Policy and Permissions
- Project Task 3.4 - Configure Static Website Hosting
- Project Task 3.5 - Test the Website
- Summary
- Exam Readiness Drill - Chapter Review Questions
- Chapter 4: Building Private Networks in the Cloud with Amazon VPC
- Introduction to VPC Fundamentals
- Managing External Resources' Exposure Using IGWs and NAT Gateways
- How an IGW Works
- Securing Your AWS Resources within the VPC with NACLs and Security Groups
- Security Groups
- Network Access Control Lists (NACLs)
- Configuring VPC interconnectivity
- VPC Peering
- Securing Connectivity between VPCs and Other Public AWS Services
- Connecting VPCs to external networks
- Monitoring Traffic with VPC Flow Logs
- Project - Build a VPC to Host the Todo List Application
- Technical Requirements
- Project Task 4.1 - Creating the VPC (us-east-1 Region)
- Project Task 4.2 - Creating and Attaching an Internet Gateway
- Project Task 4.3 - Creating a Public Route Table
- Project Task 4.4 - Creating Subnets
- Project Task 4.5 - Associating Public Subnets with a Public Route Table
- Project Task 4.6 - Creating Security Groups
- Summary
- Exam Readiness Drill - Chapter Review Questions.
- Chapter 5: Understanding AWS Compute Services with Amazon EC2 and Storage Options
- Introduction to Amazon EC2
- EC2 Instance Types
- Key Features of Amazon EC2
- Use Cases for Amazon EC2
- Benefits of Using Amazon EC2
- The Different Pricing Models of EC2
- On-Demand Instances
- Reserved Instances (RIs)
- Savings Plans
- Spot Instances
- Overview of the EC2 Lifecycle
- Leveraging AMIs to Launch Amazon EC2 Instances
- Types of AMIs
- Managing AMIs
- Additional EC2 Features
- Security Groups
- Instance Metadata
- Accessing Instance Metadata
- Instance User Data
- AWS Systems Monitoring: An Overview
- Accessing Your EC2 Instances
- Accessing Your EC2 Instances with AWS Systems Manager Session Manager
- Introduction to Amazon EBS
- Amazon EBS Volumes
- Optimizing Backups and Restoration with Amazon EBS Snapshots
- Encrypting Your Amazon EBS Snapshots
- Introduction to Amazon EFS
- Technical Requirements
- Project Task - Deploy EC2 Instances and Create a Corporate AMI Image for TodoPlus Limited
- Project Task 5.1 - Prepare AWS Systems Manager Session Manager for Your EC2 Instances
- Project Task 5.2 - Launch an EC2 Instance
- Project Task 5.3 - Create a Custom AMI
- Summary
- Exam Readiness Drill - Chapter Review Questions
- Chapter 6: Managing Multiple Datasets with AWS Relational and Non-Relational (NoSQL) Databases
- Introduction to Amazon RDS
- About Relational Database Schemas
- Amazon RDS' Features
- Deploying an Amazon RDS Instance
- High Availability with Multi-AZ
- Multi-AZ Instance Deployment
- Multi-AZ DB Cluster Deployments
- What about Read Replicas?
- Automatic and Manual Backups
- Manual Snapshots
- Automatic Backups
- Amazon RDS Security
- Amazon RDS Encryption
- Amazon RDS Authentication and Authorization
- Improving Security with AWS Secrets Manager.
- Enterprise Solutions with Amazon Aurora
- Caching Data with Amazon ElastiCache
- Memcached versus Redis
- Caching Strategies
- Introduction to Modern NoSQL Databases with Amazon DynamoDB
- DynamoDB Core Components
- All about Primary Keys and Sort Keys
- DynamoDB Capacity Provisioning
- DynamoDB Access Methods
- More on DynamoDB APIs and Data Retrieval Options
- DynamoDB Scan versus Query
- DynamoDB Optimistic Locking
- DynamoDB Conditional Writes
- DynamoDB Time to Live (TTL)
- DynamoDB Streams
- Improving Performance with DynamoDB Accelerator (DAX)
- Project Task - Deploying and Securing Access to an Amazon RDS Database for the Todo List Application
- Technical Requirements
- Project Task 6.1 - Deploying an RDS Database on AWS
- Configuring the RDS Subnet Group
- Launch an RDS Free Tier Database
- Project Task 6.2 - Integrating AWS Secrets Manager
- Prerequisite: Configure the VPC to Prepare for Secrets Manager
- Enable Secrets Manager with Rotation
- Summary
- Exam Readiness Drill - Chapter Review Questions
- Chapter 7: Building Application Solutions with High Availability, Elasticity, and Data Security
- Introduction to High Availability with Amazon Elastic Load Balancers
- Application Load Balancers (ALBs)
- Network Load Balancers (NLBs)
- Gateway Load Balancers (GWLBs)
- Classic Load Balancer (CLB)
- Scaling Your Application with Amazon Auto Scaling
- What Is Auto Scaling for EC2?
- Automatically Adjusting Capacity Using AWS Components
- Using Auto Scaling to Deliver Highly Available Applications
- Introduction to Encryption on AWS and KMS
- Overview of AWS KMS
- Symmetric KMS Keys
- Asymmetric KMS Keys
- What Are Data Keys?
- Amazon S3 Encryption
- Amazon S3 Server-Side Encryption
- Server-Side Encryption with Amazon S3-Managed Keys (SSE-S3)
- Server-Side Encryption with AWS KMS Keys (SSE-KMS).
- Dual-Layer Server-Side Encryption with AWS KMS Keys (DSSE-KMS).
