AWS 3in1 Course Outline
Modules of AWS Solutions Architect:
- MODULE 1
Design Resilient Architectures - MODULE 2
Design High-Performing Architectures - MODULE 3
Deploy and manage AWS compute resources - MODULE 4
Design Cost-Optimized Architectures
Modules of AWS SysOps Admin Associate:
- MODULE 1
Monitoring, Logging, and Remediation - MODULE 2
Reliability and Business Continuity - MODULE 3
Deployment, Provisioning, and Automation - MODULE 4
Security and Compliance - MODULE 5
Networking and Content Delivery - MODULE 6
Cost and Performance Optimization
Modules of AWS Developer Associate:
- MODULE 1
Deployment - MODULE 2
Security - MODULE 3
Development with AWS Services - MODULE 4
Refactoring - MODULE 5
Monitoring and Troubleshooting
Please note:
- AWS Lab access for hands-on practice will be available on weekends only.
Course & Exam Introduction
- Overview of AWS course
- Overview of AWS Exam
- Certification Roadmap
AWS Regions & AZ
- Global footprint
- Regions & availability Zones
- Edge locations
- Regional & local edge cache
Introduction to Cloud Computing
- Types, Categories & Features
AWS Services Overview (165+ Services)
Virtual Private Cloud-VPC
- CIDR Blocks
- Subnets
- Network ACL
- Route & Route tables
- Internet Gateway (IGW)
- NAT Gateway
- VPC Peering
- Security groups
- S3 Endpoint
- Traffic Mirroring
- VPC Flow log
Trusted Advisor:
- Understand the categories
- Core checks
- Support plan
- How to use AWS trusted advisor
AWS CloudFront
- About CDN & cloud front service
- Using of cloud front with origin location like S3 bucket
- Configure S3 based static website with cloud front
Identity & Access Management (IAM)
- About authentication & authorization
- IAM Users, Roles & Policies
- Creation of Users, Groups, Roles & Policies
- AWS & custom managed IAM Policies
- Fine grained Policy verification on IAM users
- Multi Factor Authentication (MFA)
- Creation of JSON based custom Policies & testing
- KMS encryption configuration & implementation
Simple Storage Service-S3
- Create & configure S3 bucket & upload/drag objects
- Bucket versioning & encryption
- Deploy a static website on S3 bucket
- Storage classes
- Lifecycle policies
- Bucket policies (JSON)
- Bucket ACL
- Tagging
- Object Lock
- Cross Region Replication (CRR)
AWS CloudTrail
- About the cloud trail
- Trail history
- Verify user & service audit using cloud trail events
- Create & configure trail with S3 bucket
AWS CloudWatch
- About the usage of Cloud watch
- Working with metric Namespace, Dimension, metric, timestamp & units
- Dashboard, Events, Logs & Alarm
AWS Elastic Compute Cloud (EC2)
- About the usage of EC2
- Types & categories of EC2
- On demand, Spot, reserved & scheduled Instances
- AMII , templates & snapshots
- Provisioning of EC2 based WIndows & linux Instances
- Bastion Host & Nat Gateway
- Key pairs & Security groups with port based rules
- Server accessibility using RDP & SSH connection
- Instance templates
- Usage of Internet Gateway & NAT Gateway with EC2
- Instance termination protection
- Using of Instance profile to connect with S3 bucket privately in Linux VM
- Working with Amazon Marketplace
- SSD & HDD Volume & snapshots
- Encryption at rest & in transit
- Event Bridge
- EC2 Image builder
Elastic Load Balancer & Autoscaling
- ELB & Auto scaling 10,000 Foot Overview
- Create Application Load Balancer
- AS Launch Config & AS Group
- Create an EC2 Instance using AS Group
AWS Route53
- Route 53 & DNS Load Balancing with Route Policies
- Create DNS record
AWS Simple Queue Service-SQS
- SQS Essentials
- Create Standard and FIFO Queue
- Fanning out Using SNS & SQS
AWS Simple Notification Service-SNS
- ELB & Auto scaling 10,000 Foot Overview
- Create Application Load Balancer
- AS Launch Config & AS Group
- Create an EC2 Instance using AS Group
AWS Lambda
- Create Lambda Function using provided code
- Test Lambda function
- Create EBS Volume and take automated snapshot using Lambda
AWS DynamoDB
- Create & configure Primary (Hash) & Sort(Range) Keys.
- Modify Read Capacity Unit (RCU) & Write Capacity Unit (WCU).
- Create multiple sort keys using JSON tree
- Create & configure Local secondary Index (LSI).
AWS RDS
- Create & configure Subnet Security Group
- Create & configure MYSQL based RDS with Read replica
- Verify the connectivity using a MYSQL client
AWS Elastic Beanstalk
- Create Application environments (Dev, stage)
- Deploy sample Node.js application
- Explorer Different deployment method
AWS CloudFormation
- About Infrastructure as Code (IaC)
- Create a stack using pre-write JSON code using cloud formation.
- Verify VPC & WordPress servers that were created using Cloud formation stack.
- Drift Detection
AWS ECR
- Amazon ECR (Elastic Container Registry) is a fully managed Docker container registry. It allows you to store, manage, and deploy Docker container images securely on AWS
AWS App Runner
- A fully managed service to deploy web apps directly from GitHub/Container registry. Fits in Solutions Architect & Developer roles.
AWS Systems Manager (SSM)
- Manage EC2 with Run Command, Patch Manager, and Session Manager
EC2 Rescue
- Troubleshoot EC2 issues
AWS SDKs (Boto3, AWS CLI)
- For interacting programmatically with AWS services
AWS Cloud Computing White Papers
- Overview of Amazon Web Services
- Overview of Security Processes
- AWS Risk & Compliance Whitepaper
- Storage Options in the Cloud
- Architecting for the AWS Cloud: Best Practices
- Well Architected Framework
Final Project
- Final Overview & Exam Discussion
Google Cloud
Identity & Access Management Roles:
- IAM roles
- User types
- Primitive, predefined & custom role
Virtual Networks:
- Multi region network deployment
- Discontiguous network implementation
- Multi-region subnet
- Route & route table
- Cloud router
- Cloud NAT
- Firewall rules with tags
Cloud SQL
- Deployment of Cloud SQL
- Using MySQL to setup a database engine
- Using Dbeavers/ MySQL workbench to connect Database engine
Cloud Storage:
- Folder setup
- Upload file & folder
- File lock
- Change storage classes
Google Compute Engine (GCE):
- Windows machine deployment
- Linux machine deployment
- SSH & RDP access
- Image & Backup
- Cloud shell SSH access
- Firewall tagging
Global Load Balancer:
- HTTP & HTTPS load balancer
- Frontend & Backend services
- Link with scaling services
- Global anycast IP
- Application deployment using scaling & load balancing
AutoScaling:
- Setup launch template
- Configure & deployment of managed instance group
- Link with global load balancer
Billing, IAM & Projects:
- Signup & login Google cloud account
- Use GCP Project 1st time
- Link billing account with multiple projects
- Working with IAM, IAM groups, Roles & service accounts
Alibaba Cloud
Introduction to Cloud Computing:
- Overview of Alibaba Cloud Services
- Alibaba Cloud certification Roadmap & pricing
- Alibaba Cloud Regions and Availability Zones
- Signup & login Alibaba Cloud Account
Networking:
- Design a Virtual Private Cloud (VPC) in detail
- Route, Routing table & Subnets
- Configure NAT Gateway
- Optional Components with VPC
- Design a complete VPC with HA (Complete Lab)
- VPC Final Review with Exam Discussion
- Server Load Balancer (SLB) in detail
- Alibaba Cloud CDN & Alibaba Cloud DNS in detail
Elastic Computing Services (ECS):
- Alibaba ECS essentials & Components
- ECS Scale in, Scale-up VS Scale-out the concept
- Launch ECS with Template & Custom Image
- Block Storage devices Types & Its Encryption
- Private, Public & Elastic IP Address
- Create and Launch ECS Linux & Windows Instance
- Create Image & Snapshot
- Server Load balancer (SLB) & Autoscaling concepts
- Create an ECS Instance using AS Group
- ECS & AS group Q/A & discussions
Object Storage Service (OSS):
- Object Storage Service (OSS) essentials & components
- OSS Permissions (Bucket Policies)
- OSS Storage Types (Standard, IA, Archive)
- Website hosting with OSS
- Object Storage Service (OSS) exams Q/A discussions
Database (RDS):
- RDS essentials
- RDS LAB (MySql)
Management & Monitoring:
- RAM essentials and best practices
- RAM Policies, MFA and Roles
- RAM users and groups
- Create a user, group with RAM policies (Lab)
- RAM Exam Q/A Discussions
- Cloud Monitor
Security (OPTIONAL PART):
- Game Shield (Network security)
- DDoS Protection (Basic, Pro, Premium) [Network security]
- Cloud Firewall (Network security)
- Alibaba Cloud SSL Certificate Service (Application security)
- Web Application Firewall (WAF) [Application security]
- Server Guard (Server security)
- ActionTrail
Course Includes:
- Start Date:
- Days:
- Timings:
- Duration: Approx. 6 Months
- Mode:
- Instructor:
- AWS, GCP & Alibaba fee: PKR 90,000
- 3 Installments plan: PKR 30,000 per month
- AWS & GCP fee: PKR 75,000
- 3 Installments plan: PKR 25,000 per month
- AWS 3in1 fee: PKR 40,000
- 2 Installments plan: PKR 20,000 per month
- E-Learning Portal (lifetime access): $99
- Visit: elearning.sherdil.org