AWS Certified Cloud Practitioner Notebook

AWS Certified Cloud Practitioner Notebook

Learning Path – Ultimate AWS Certified Cloud Practitioner CLF-C02 by Stephane Malek (Udemy) | LINK

Reading Source – AWS Certified Cloud Practitioner Study Guide Foundational (CLF-C01) Exam by Ben Piper, David Clinton | LINK

AWS Whitepaper/Overview of Amazon Web Services | LINK

AWS Certified Cloud Practitioner Exam Guide | LINK

Breakdown of Shared Responsibility Model | LINK

AWS Product Documentation | LINK

AWS Product Search | LINK


Terms I’ve come across while studying for the AWS Cloud Practitioner

  • EC2 – Elastic Cloud Computing
  • EBS – Elastic Block Store
  • AZ – Availability Zone, which is housed inside a Region (Ohio, Northern Virginia)
  • LZ – Local Zone, resources deployed in zones closer to cities for low latency (Boston, Chicago etc.)
  • AMI – Amazon Machine Images
  • Security Groups – used to control access to EC2 resources (firewalls)
  • IAM – Identity and Access Management are used to grant permissions to AWS Services
  • EFS – Elastic File System
  • HPC – High Performance Computing
  • ELB – Elastic Load Balancer
  • ALB – Application Load Balancer
  • NLB – Network Load Balancer
  • GWLB – Gateway Load Balancer
  • ASG – Auto Scaling Group
  • ACL – Access Control List (for S3 buckets)
  • CRR – Cross Region Replication (for S3 buckets)
  • SRR – Same Region Replication (for S3 buckets)
  • RDS – Relational Database Service
  • ElastiCache – in-memory database
  • DynamoDB – NoSQL database that can scale with very little latency (serverless)
  • Redshift – OLAP (online analytical processing), aka data warehousing
  • Athena – serverless SQL to analyze data in S3
  • Quicksight – AWS BI tool (can integrate with Redshift), which utilizes Amazon Athena (serverless query service)
  • EMR – Elastic MapReduce (Hadoop clusters)
  • DocumentDB – NoSQL database (MongoDB implementation)
  • Neptune – graph database
  • QLDB – Quantum Ledger Database (tracks changes to application data)
  • Glue – ETL service
  • DMS – Database Migration Service
  • ECS – Elastic Container Service (for launching Docker containers) (Fargate is the serverless option)
  • ECR – Elastic Contrainer Registry (for storing Docker images)
  • Lambda – virtual functions (serverless)
  • Deployment and Developer Services
    • CloudFormation – automated way to deploy resources (stacks) using templates
    • CDK – Cloud Development Kit
    • SSM – System Manager (hybrid service), run commands across all servers
    • Elastic Beanstalk – developer-centric tool used to deploy applications (PaaS)
    • OpsWorks – uses Chef/Puppet to perform server configurations automatically
    • CodeDeploy – upgrading EC2 instances for application updates (can service on-prem too)
    • CodeCommit – competitor to GitHub
    • CodeBuild – compiles, tests, produces packages ready to be deployed
    • CodePipeline – CICD tool
    • CodeArtifact – tracks code dependencies
    • Cloud9 – cloud IDE
    • CodeStar – CICD and code
  • Route53 – DNS (Domain Name System)
  • CloudFront – A CDN using the Global Edge network
  • Shield – DDoS protection
  • Outposts – on-prem AWS server installations
  • WaveLength – 5G network edge
  • SQS – Simple Queue Service
  • Kinesis Streams/Firehose/Analytics/Video Streams – data ingestion tool
  • SNS – Simple Notification Service (e-mail broadcasting tool for pub/sub)
  • CloudWatch – billing alarms, metrics
  • EventBridge – new name for CloudWatch Events, default event bus from partners or custom event bus
  • CoudTrail – governance/audit for AWS account, grabs history of events and is on by default
  • X-Ray – analyze/debug production, used in micro-services
  • CodeGuru – code review tool
  • Health Dashboard – monitoring tool
  • Elastic IP – attach a fixed public IPv4 address even when you stop/start EC2 instance
  • VPC – Virtual Private Cloud (can use subnets)
  • AWS PrivateLink – VPC endpoint services
  • Direct Connect – physical connectsion between on-prem VPN and AWS
  • AWS Client VPN
  • Transit Gateway – transit peering between VPC and on-prem
  • AWS Shield – protection against DDoS attacks
  • AWS WAF – Web Application Firewall
  • AWS Network Firewall – operates at VPC level
  • AWS Firewall Manager
  • AWS KMS – Key Management Service
  • CloudHSM – self management of keys for encryption
  • ACM – AWS Certificate Manager (in flight encryption)
  • AWS Parameters – store data for use in Lambdas etc.
  • AWS Secrets Manager – encrypted secrets storage
  • AWS Artifacts – compliance reports
  • Amazon GuardDuty – threat discovery/resource protection
  • Amazon Inspector – automated security assessments
  • AWS Config – management overview of resources
  • Amazon Macie – finds PII (personally identifiable information)
  • AWS Security Hub – organizes all of the security tools available
  • Amazon Detective – analyzes root causes of security issues
  • IAM Access Analyzer – flags findings for security risks
  • WAF – Web Application Firewall (protect web applications from common web exploits)
  • Rekognition – ML for image/video
  • Transcribe – converts speech to text
  • Polly – converts text to speech
  • Translate – text language translation
  • Lex – automatic speech recognition speech to text but understands natural languages, used for chatbots
  • Connect – creates a contact center for Lex
  • Comprehend – Natural Language Processing (NLP)
  • SageMaker – build ML models
  • Forecast – ML financial planning/resource planning
  • Kendra – document search service
  • Personalize – recommendations service
  • Textract – scanned document text extraction
  • AWS Organizations – manages multiple accounts for consolidated billing
  • SCP – Service Control Policies
  • Control Tower – automated organization creation
  • AWS RAM – Resource Access Manager
  • AWS Service Catalog – permissions on what products they can provision
  • AWS Compute Optimizer – recommendations to reduce costs
  • AWS Cost Anomaly Detection – detects cost spikes automatically
  • Trusted Advisor – high level account assessment
  • Support Plans – Basic, Developer Support, Business Support, Enterprise (On Ramp), Enterprise
  • AWS STS – Security Token Service
  • Cognito – Manage users (instead of using IAM)
  • Amazon WorkSpaces – competitor to VDI
  • MGN – AWS Application Migration Service
  • AWS Migration Evaluator – creates discovery for business case to migration to AWS
  • AWS Migration Hub – integrates migration tools for lift and shift