AWS Certified Solutions ArchitectAssociate Level

Labs● Blog

○ labs.siteblindado.com○ imasters.com.br

● Eventos○ 1° Fórum de Segurança (Agosto)○ Grupo de Estudo AWS CSA - Associate (Set/Out)

Pessoas

ProcessosTecnologia

Ability to Execute● Product/Service● Overall Viability● Sales Execution/Pricing● Market Responsiveness/Record● Marketing Execution ("mind share")● Customer Experience● Operations

Completeness of Vision● Market Understanding● Marketing Strategy● Sales Strategy● Offering (Product) Strategy● Business Model● Vertical/Industry Strategy● Innovation● Geographic Strategy

Por que AWS?

Fonte: http://www.gartner.com/technology/reprints.do?id=1-1UKQQA6&ct=140528&st=sb

AWS Certification Roadmap

Exam Overview● Multiple choice and multiple answer questions● 80 minutes to complete the exam● 40 - 60 questions● 65% or above is passing score● No prerequisites● Valid for 2 years● $150,00

● Grupo 03 (20%)○ Data Security

● Grupo 04 (10%)○ Troubleshooting

Assuntos● Grupo 01 (60%)

○ Designing highly available○ Cost efficient○ Fault tolerant○ Scalable systems

● Grupo 02 (10%)○ Implementation○ Deployment

Calendário Encontros1. 08/Set - Abertura, Overview AWS e S32. 16/Set (terça) - Cloudfront e Route533. 22/Set - EC2 e VPC4. 29/Set - RDS, DynamoDB e Other Storage Options5. 06/Out - Elastic Beanstalk, CloudFormation, SWF e SQS6. 13/Out - IAM e Security7. 20/Out - Architecting for the Cloud e Revisão

Horário: 18:00 as 20:00

Materiais de ApoioReferências1. Página oficial2. Post sobre o programa e prova3. AWS Architecture Center4. AWS Security Center5. AWS Documentation Page6. Curso online

White Papers1. Overview of Amazon Web Services2. Overview of Security Processes3. AWS Risk and Compliance4. Storage Options in the AWS Cloud5. Architecting for the AWS Cloud: Best

Practices6. Storage Use Cases7. Designing Fault-Tolerant Applications in

the AWS Cloud

Antes de começar ...

Exemplos de questões

Questão 01 / 10Does S3 provide read-after-write consistency?a. No, not for any regionb. Yes, but only for certain regionsc. Yes, but only for certain regions and for new objectsd. Yes, for all regions

Questão 02 / 10What is the maximum size of a single S3 object?a. There is no such limitb. 5 TBc. 5 GBd. 100 GB

Questão 03 / 10Is data stored in S3 is always encrypted?a. Yes, S3 always encrypts data for securityb. No, there is no such featurec. Yes, but only when right APIs are calledd. Yes, but only in Gov Cloud datacenters

Questão 04 / 10What is true for S3 buckets (select multiple if more than one is true)?a. Bucket namespace is shared and is global among all AWS users.b. Bucket names can contain alphanumeric charactersc. Bucket are associated with a region, and all data in a bucket resides in that regiond. Buckets can be transferred from one account to another through API

Questão 05 / 10EBS can always tolerate an Availability Zone failure?a. No, all EBS volume is stored in a single Availability Zoneb. Yes, EBS volume has multiple copies so it should be finec. Depends on how it is setupd. Depends on the Region where EBS volume is initiated

Questão 06 / 10Which of the following Auto scaling CANNOT do (select multiple if more than one is true)?a. Start up EC2 instances when CPU utilization is above thresholdb. Release EC2 instances when CPU utilization is below thresholdc. Increase the instance size when utilization is above thresholdd. Add more Relational Database Service (RDS) read replicas when utilization is above threshold

Questão 07 / 10Which of the following benefits does adding Multi-AZ deployment in RDS provide (choose multiple if more than one is true)?a. MultiAZ deployed database can tolerate an Availability Zone failureb. Decrease latencies if app servers accessing database are in multiple Availability Zonesc. Make database access times faster for all app serversd. Make database more available during maintenance tasks

Questão 08 / 10What happens to data when an EC2 instance terminates (select multiple if more than one is true)?a. For EBS backed AMI, the EBS volume with operation system on it is preservedb. For EBS backed AMI, any volume attached other than the OS volume is preservedc. All the snapshots of the EBS volume with operating system is preservedd. For S3 backed AMI, all the data in the local (ephemeral) hard drive is deleted

Questão 09 / 10For an EC2 instance launched in a private subnet in VPC, which of the following are the options for it to be able to connect to the internet (assume security groups have proper ports open).a. Simply attach an elastic IPb. If there is also a public subnet in the same VPC, an ENI can be attached to the instance with the ip address range of the public subnetc. If there is a public subnet in the same VPC with a NAT instance attached to internet gateway, then a route can be configured from the instance to the NATd. There is no way for an instance in private subnet to talk to the internet

Questão 10 / 10When an ELB is setup, what is the best way to route a website’s traffic to it?a. Resolve the ELB name to an ip address and point the website to that ip addressb. There is no direct way to do so, Route53 has to be usedc. Generate a CNAME record for the website pointing to the DNS name of the ELB

Resultado

Como estamos?

Mais exemplos aqui e aquiOnline Associate Practice Exam (U$ 20,00)

Recapitulando Agenda1. 08/Set - Abertura, Overview AWS e S32. 16/Set (terça) - Cloudfront e Route533. 22/Set - EC2 e VPC4. 29/Set - RDS, DynamoDB e Other Storage Options5. 06/Out - Elastic Beanstalk, CloudFormation, SWF e SQS6. 13/Out - IAM e Security7. 20/Out - Architecting for the Cloud e Revisão

Horário: 18:00 as 20:00

Modelo de referência

AWS Global InfrastructureRegions

● Datacenters independentes

Availability Zones● Failure zones● Fisicamente independentes

○ Energia○ Refrigeração○ Networking

Edge Locations● Pontos de distribuição de baixa latência ● CDN - CloudFront● DNS - Route53

AWS Global Infrastructure

10 - Regions26 - Availability Zones52 - Edge Locations

Fonte: http://aws.amazon.com/about-aws/global-infrastructure/

Networking

VPC - Private and isolated section of the AWS Cloud

Direct Connect● Conexão segura e privada com a AWS● Bypass public internet● Alta velocidade (banda)● Latencia previsível

Compute

EC2 - Elastic Cloud Computing

Auto Scaling

Elastic Load Balancer

Storage & Content Delivery

S3 - Simple Storage Service

● 1 byte - 5 TB● 99,999999999% Durability● 99,99% Durability com RRS● 99,99% Disponibilidade● > 100GB Usar Multipart Upload

EBS - Elastic Block Store

CloudFront

Global InfrastructureQuem lembra os números?

AWS Global Infrastructure

10 - Regions26 - Availability Zones52 - Edge Locations

Fonte: http://aws.amazon.com/about-aws/global-infrastructure/

Database

Relational Database Service - RDS

● Automatic Software Patching● Automated Backups● Multi-AZ● Reserved Instance Support

No SQL● Fully managed cloud NoSQL database

service● Fast, Predictable Performance

○ Particionamento de informações○ SSD

● Scalable● High Availability

○ Replica em 3 AZs● Storage Limit

○ 10 GB

● Request Capacity○ Limit 25 writes/sec

App Services

Deployment & Adm

Deployment & Adm

OthersAnalytics Applications Mobile

Eu preciso saber de tudo isso?● SIM!!● O mais importante é entender tradeoffs

○ Custo○ Tolerância a falha○ Escalabilidade○ Controle - Gestão○ Velocidade○ Flexibilidade○ ...

Recapitulando Agenda● 08/Set - Abertura, Overview AWS e S3● 16/Set (terça) - Cloudfront e Route53● 22/Set - EC2 e VPC● 29/Set - RDS, DynamoDB e Other Storage Options● 06/Out - Elastic Beanstalk, CloudFormation, SWF e SQS● 13/Out - IAM e Security● 20/Out - Architecting for the Cloud e Revisão

Horário: 18:00 as 20:00

AWS Certified Solutions ArchitectAssociate Level

OBRIGADO!!