AWS Certified Cloud Practitioner Notebook
Learning Path – Ultimate AWS Certified Cloud Practitioner CLF-C02 by Stephane Malek (Udemy) | LINK
Reading Source – AWS Certified Cloud Practitioner Study Guide Foundational (CLF-C01) Exam by Ben Piper, David Clinton | LINK
AWS Whitepaper/Overview of Amazon Web Services | LINK
AWS Certified Cloud Practitioner Exam Guide | LINK
Breakdown of Shared Responsibility Model | LINK
AWS Product Documentation | LINK
AWS Product Search | LINK
Terms I’ve come across while studying for the AWS Cloud Practitioner
- EC2 – Elastic Cloud Computing
- EBS – Elastic Block Store
- AZ – Availability Zone, which is housed inside a Region (Ohio, Northern Virginia)
- LZ – Local Zone, resources deployed in zones closer to cities for low latency (Boston, Chicago etc.)
- AMI – Amazon Machine Images
- Security Groups – used to control access to EC2 resources (firewalls)
- IAM – Identity and Access Management are used to grant permissions to AWS Services
- EFS – Elastic File System
- HPC – High Performance Computing
- ELB – Elastic Load Balancer
- ALB – Application Load Balancer
- NLB – Network Load Balancer
- GWLB – Gateway Load Balancer
- ASG – Auto Scaling Group
- ACL – Access Control List (for S3 buckets)
- CRR – Cross Region Replication (for S3 buckets)
- SRR – Same Region Replication (for S3 buckets)
- RDS – Relational Database Service
- ElastiCache – in-memory database
- DynamoDB – NoSQL database that can scale with very little latency (serverless)
- Redshift – OLAP (online analytical processing), aka data warehousing
- Athena – serverless SQL to analyze data in S3
- Quicksight – AWS BI tool (can integrate with Redshift), which utilizes Amazon Athena (serverless query service)
- EMR – Elastic MapReduce (Hadoop clusters)
- DocumentDB – NoSQL database (MongoDB implementation)
- Neptune – graph database
- QLDB – Quantum Ledger Database (tracks changes to application data)
- Glue – ETL service
- DMS – Database Migration Service
- ECS – Elastic Container Service (for launching Docker containers) (Fargate is the serverless option)
- ECR – Elastic Contrainer Registry (for storing Docker images)
- Lambda – virtual functions (serverless)
- Deployment and Developer Services
- CloudFormation – automated way to deploy resources (stacks) using templates
- CDK – Cloud Development Kit
- SSM – System Manager (hybrid service), run commands across all servers
- Elastic Beanstalk – developer-centric tool used to deploy applications (PaaS)
- OpsWorks – uses Chef/Puppet to perform server configurations automatically
- CodeDeploy – upgrading EC2 instances for application updates (can service on-prem too)
- CodeCommit – competitor to GitHub
- CodeBuild – compiles, tests, produces packages ready to be deployed
- CodePipeline – CICD tool
- CodeArtifact – tracks code dependencies
- Cloud9 – cloud IDE
- CodeStar – CICD and code
- Route53 – DNS (Domain Name System)
- CloudFront – A CDN using the Global Edge network
- Shield – DDoS protection
- Outposts – on-prem AWS server installations
- WaveLength – 5G network edge
- SQS – Simple Queue Service
- Kinesis Streams/Firehose/Analytics/Video Streams – data ingestion tool
- SNS – Simple Notification Service (e-mail broadcasting tool for pub/sub)
- CloudWatch – billing alarms, metrics
- EventBridge – new name for CloudWatch Events, default event bus from partners or custom event bus
- CoudTrail – governance/audit for AWS account, grabs history of events and is on by default
- X-Ray – analyze/debug production, used in micro-services
- CodeGuru – code review tool
- Health Dashboard – monitoring tool
- Elastic IP – attach a fixed public IPv4 address even when you stop/start EC2 instance
- VPC – Virtual Private Cloud (can use subnets)
- AWS PrivateLink – VPC endpoint services
- Direct Connect – physical connectsion between on-prem VPN and AWS
- AWS Client VPN
- Transit Gateway – transit peering between VPC and on-prem
- AWS Shield – protection against DDoS attacks
- AWS WAF – Web Application Firewall
- AWS Network Firewall – operates at VPC level
- AWS Firewall Manager
- AWS KMS – Key Management Service
- CloudHSM – self management of keys for encryption
- ACM – AWS Certificate Manager (in flight encryption)
- AWS Parameters – store data for use in Lambdas etc.
- AWS Secrets Manager – encrypted secrets storage
- AWS Artifacts – compliance reports
- Amazon GuardDuty – threat discovery/resource protection
- Amazon Inspector – automated security assessments
- AWS Config – management overview of resources
- Amazon Macie – finds PII (personally identifiable information)
- AWS Security Hub – organizes all of the security tools available
- Amazon Detective – analyzes root causes of security issues
- IAM Access Analyzer – flags findings for security risks
- WAF – Web Application Firewall (protect web applications from common web exploits)
- Rekognition – ML for image/video
- Transcribe – converts speech to text
- Polly – converts text to speech
- Translate – text language translation
- Lex – automatic speech recognition speech to text but understands natural languages, used for chatbots
- Connect – creates a contact center for Lex
- Comprehend – Natural Language Processing (NLP)
- SageMaker – build ML models
- Forecast – ML financial planning/resource planning
- Kendra – document search service
- Personalize – recommendations service
- Textract – scanned document text extraction
- AWS Organizations – manages multiple accounts for consolidated billing
- SCP – Service Control Policies
- Control Tower – automated organization creation
- AWS RAM – Resource Access Manager
- AWS Service Catalog – permissions on what products they can provision
- AWS Compute Optimizer – recommendations to reduce costs
- AWS Cost Anomaly Detection – detects cost spikes automatically
- Trusted Advisor – high level account assessment
- Support Plans – Basic, Developer Support, Business Support, Enterprise (On Ramp), Enterprise
- AWS STS – Security Token Service
- Cognito – Manage users (instead of using IAM)
- Amazon WorkSpaces – competitor to VDI
- MGN – AWS Application Migration Service
- AWS Migration Evaluator – creates discovery for business case to migration to AWS
- AWS Migration Hub – integrates migration tools for lift and shift