lundi 11 mai 2020

AWS IAM AUDIT REPORT

aws-senior.com

www.aws-senior.com
Visite out website www.aws-senior.com
http://www.aws-senior.com

AWS Certified Solutions Architect

Cloudreach have been working with Amazon Web Services (AWS) for 9 years, and during this time we’ve grown to over 600 people and have more than 500 AWS certs between us.

“Promote personal growth” is one of Cloudreach’s core values and as such we strongly encourage everyone in the business, from Project Managers to Sales, to take certifications and courses to improve themselves. As such, I recently took the AWS Solutions Architect Professional Exam to attempt to fill a few gaps in my AWS knowledge.

Whilst studying for the exam I found a number of useful online resources and received some valuable advice from fellow Cloudreachers that I thought might be worth sharing â€" hence writing this blog post.

What does the exam cover?

AWS Certified Solutions Architect documentation

Where the SA Associate exam gives you a basic understanding of AWS and ensures you have the prerequisite knowledge to use AWS on a daily basis, the Professional exam assumes you are architecting large enterprise scale solutions on AWS.

For the Solutions Architect Professional exam, experience delivering projects on AWS is a must. It is not possible to just memorise lots of AWS specific facts as you could for the Associate exam â€" a true, deep understanding of good practices on the platform is required.

Learning Resources

  • A Cloud Guru â€" no blog post about the SA Pro exam would be complete without a reference to the course from A Cloud Guru â€" it gives a high level understanding of the exam. It covers about 80% of the topics you need, to 50% of the depth you need to know â€" it misses in depth sections on Elasticache, DynamoDB, Redshift and SQS.
  • AWS Sample Questions  â€" AWS provide 6 example questions which are useful to review once you’ve covered all the base material, these questions will give you a good feel for how well you know the topics.
  • AWS Practice Exam â€" There is a $40 AWS practice exam (though if you’ve passed any other AWS exam you’ll have a voucher for a free exam in the certification portal). This practice exam is harder than the actual exam â€" many colleagues get about 10% less on this than the actual exam despite taking it the night before the real thing. The practice exam is useful to get used to how the questions are structured and how much time  you have per question in the exam.
  • AWS re:Invent 2016: Advanced Tips for Amazon EC2 Networking and High Availability (GPST401) â€" useful for understanding networking on AWS.
  • AWS re:Invent 2016: Deep Dive: AWS Direct Connect and VPNs (NET402) â€" to get a true understanding of Direct Connect.
  • A Day in the Life of a Billion Packets (CPN401) | AWS re:Invent 2013â€" a deep dive on how VPCs and networking in AWS works.
  • AWS re:Invent 2016: Another Day, Another Billion Packets (NET401) â€" another deep dive on VPCs and networking in AWS.
  • Whiz Labs â€" Solution Architect Professional Practice tests â€" useful to target your study on the topics you don’t understand and to hone your exam technique.  
  • Linux Academy â€" covers similar topics to the A Cloud Guru course â€" but in much more depth, the material helps you to understand the topics rather than just memorise them.

Read the Security Whitepaper to understand security best practices on AWS.

Exam Tips

  • Topics worth reviewing for “easy marks”:
    • Elastic Beanstalk (always 2 or three questions on the exam)
    • Opsworks (rarely used it in production but gets you some easy marks)
    • Cloudfront (there are always 4+ questions relating to Cloudfront).
  • Useful Things to remember in the exam:
    • For IAM â€"
      • Always pick an IAM Role to assign rights over creating multiple  users (think about the scalability to hundreds or thousands of accounts)
      • Mobile app IAM â€" always use Web Federation to make your application assume a role
      • On premise use your SAML compliant LDAP/AD.
    • SQS to reduce write throughput on database or decouple application services.
    • Learn what IDS/IPS do and how these functionalities can be implemented in AWS.
    • Think about DDOS mitigation â€" how would you reduce the attack surface area or build your own WAF?
    • Datastores: understand which is the right service to use to store and access data from multiple point of view: performance, cost, availability â€" cheap doesn’t necessarily mean wrong.
    • Cost efficient workloads: when can SPOT instances be used to deliver a cost efficient infrastructure â€" think about EC2 Autoscaling Groups and EMR clusters.
    • In the current exam â€" post-2014 AWS technologies aren’t included. Bear this in mind when answering questions and revising.

    • www.aws-senior.com
      AWS Certified Cloud Practitioner
      AWS Certified Solutions Architect Associate
      AWS Certified Developer Associate
      AWS Certified SysOps Administrator Associate
      AWS Certified Solutions Architect Professional
      AWS Certified DevOps Engineer Professional
      AWS Certified Big Data Specialty
      AWS Certified Advanced Networking Specialty
      AWS Certified Security Specialty www.aws-senior.com
      / aws-senior.com www.aws-senior.com
      Visite out website www.aws-senior.com
      http://www.aws-senior.com
      aws-senior.com
      www.aws-senior.com
      Visite out website www.aws-senior.com
      www.aws-senior.com
      AWS Certified Cloud Practitioner
      AWS Certified Solutions Architect Associate
      AWS Certified Developer Associate
      AWS Certified SysOps Administrator Associate
      AWS Certified Solutions Architect Professional
      AWS Certified DevOps Engineer Professional
      AWS Certified Big Data Specialty
      AWS Certified Advanced Networking Specialty
      AWS Certified Security Specialty www.aws-senior.com
      / www.aws-senior.com www.aws-senior.com
      Visite out website www.aws-senior.com
      http://www.aws-senior.com
      aws-senior.com
        AWS MONITOR SECURITY GROUP CHANGES  AWS TRAINING ONLINE  AWS PARTNER ECOSYSTEM KEY BENEFITS  AWS SECURITY GROUP TUTORIAL  AWS SECURITY LOGS  AWS CONFIG TUTORIAL  AWS CERTIFICATION STUDY GUIDE  AWS CONFIG  AMAZON WEB SERVICES CONSULTING  AWS CLOUDTRAIL PPT  AWS CONSULTANT JOB DESCRIPTION  AWS TRAINING VIDEOS  AWS CLOUDWATCH PRICING  AMAZON PARTNER COMPANIES  AWS CAREER PATH  AWS CERTIFIED SYSOPS ADMINISTRATOR - ASSOCIATE  AWS CLOUDWATCH DOCUMENTATION  AWS FIREWALL LOGS  AWS CERTIFICATIONS  AWS CERTIFICATION COST  AWS CLOUDWATCH METRICS  AWS SOLUTIONS ARCHITECT CERTIFICATION  AWS ACCOUNT ACTIVITY  AWS COMPETENCY  AWS APN LOGIN  AWS INSPECTOR  BEST IT CERTIFICATIONS FOR BEGINNERS  AWS SECURITY GROUPS  AMAZON CAREERS LOGIN  AWS JOBS FOR FRESHERS  AWS CLOUDTRAIL CLI  AMAZON WEB SERVICES JOB INTERVIEW QUESTIONS  AMAZON.COM WORK FROM HOME JOBS  AWS CLOUDTRAIL USE CASES  AWS CONFIG CLOUDFORMATION  
      aws-senior.com www.aws-senior.com Visite out website www.aws-senior.com http://www.aws-senior.com AWS Certified Cloud Practitioner AWS Certified Solutions Architect Associate AWS Certified Developer Associate AWS Certified SysOps Administrator Associate AWS Certified Solutions Architect Professional AWS Certified DevOps Engineer Professional AWS Certified Big Data Specialty AWS Certified Advanced Networking Specialty AWS Certified Security Specialty www.aws-senior.com/ www.aws-senior.com Visite out website www.aws-senior.com http://www.aws-senior.com
      Share:

0 commentaires:

Enregistrer un commentaire

Archives du blog

Fourni par Blogger.

Blog Archive