StudyXY
RegisterLog in

AWS Certified Solutions Architect Study Guide: Associate (SAA-C03) Exam, 4th Edition (2022)

AWS Certified Solutions Architect Study Guide: Associate (SAA-C03) Exam, 4th Edition (2022) helps you master complex topics with simplified explanations.

Michael Davis
Contributor
4.7
60
9 months ago
Preview (31 of 477 Pages)
100%
Purchase to unlock

Page 1

AWS Certified Solutions Architect Study Guide: Associate (SAA-C03) Exam, 4th Edition (2022) - Page 1 preview image

Loading page image...

T=StudyX

Page 2

AWS Certified Solutions Architect Study Guide: Associate (SAA-C03) Exam, 4th Edition (2022) - Page 2 preview image

Loading page image...

DownloadedfromStudyXY.com&+StudyXYnas,as.aTBStudy[|AnythingThisContentHasbeenPostedOnStudyXY.comassupplementarylearningmaterial.StudyXYdoesnotendroseanyuniversity,collegeorpublisher.Allmaterialspostedareundertheliabilityofthecontribu:ors.wv6)www.studyxy.com

Page 3

AWS Certified Solutions Architect Study Guide: Associate (SAA-C03) Exam, 4th Edition (2022) - Page 3 preview image

Loading page image...

T=StudyX

Page 4

AWS Certified Solutions Architect Study Guide: Associate (SAA-C03) Exam, 4th Edition (2022) - Page 4 preview image

Loading page image...

CertifiedSolutionsArchitectAssociate(SAA-C03)ExamFourthEdition

Page 5

AWS Certified Solutions Architect Study Guide: Associate (SAA-C03) Exam, 4th Edition (2022) - Page 5 preview image

Loading page image...

T=StudyX

Page 6

AWS Certified Solutions Architect Study Guide: Associate (SAA-C03) Exam, 4th Edition (2022) - Page 6 preview image

Loading page image...

CertifiedSolutionsArchitectAssociate(SAA-C03)ExamFourthEditionBenPiperDavidClinton

Page 7

AWS Certified Solutions Architect Study Guide: Associate (SAA-C03) Exam, 4th Edition (2022) - Page 7 preview image

Loading page image...

Copyright©2023byJohnWiley&Sons,Inc.Allrightsreserved.PublishedbyJohnWiley&Sons,Inc.,Hoboken,NewJersey.PublishedsimultaneouslyinCanadaandtheUnitedKingdom.ISBN:978-1-119-98262-3ISBN:978-1-119-98264-7(ebk.)ISBN:978-1-119-98263-0(ebk.)Nopartofthispublicationmaybereproduced,storedinaretrievalsystem,ortransmittedinanyformorbyanymeans,electronic,mechanical,photocopying,recording,scanning,orotherwise,exceptaspermittedunderSection107or108ofthe1976UnitedStatesCopyrightAct,withouteitherthepriorwrittenpermissionofthePublisher,orauthorizationthroughpaymentoftheappropriateper-copyfeetotheCopyrightClearanceCenter,Inc.,222RosewoodDrive,Danvers,MA01923,(978)750-8400,fax(978)750-4470,oronthewebatwwwcopyright.com.RequeststothePublisherforpermissionshouldbeaddressedtothePermissionsDepartment,JohnWiley&Sons,Inc.,111RiverStreet,Hoboken,NJ07030,(201)748-6011,fax(201)748-6008,oronlineatwww.wiley.com/go/permission.Trademarks:WILEY,theWileylogo,andtheSybexlogoaretrademarksorregisteredtrademarksofJohnWiley&Sons,Inc.and/oritsaffiliates,intheUnitedStatesandothercountries,andmaynotbeusedwithoutwrittenpermission.AWSisaregisteredtrademarkofAmazonTechnologies,Inc.Allothertrademarksarethepropertyoftheirrespectiveowners.JohnWiley&Sons,Inc.isnotassociatedwithanyproductorvendormentionedinthisbook.LimitofLiability/DisclaimerofWarranty:Whilethepublisherandauthorhaveusedtheirbesteffortsinpreparingthisbook,theymakenorepresentationsorwarrantieswithrespecttotheaccuracyorcompletenessofthecontentsofthisbookandspecificallydisclaimanyimpliedwarrantiesofmerchantabilityorfitnessforaparticularpurpose.Nowarrantymaybecreatedorextendedbysalesrepresentativesorwrittensalesmaterials.Theadviceandstrategiescontainedhereinmaynotbesuitableforyoursituation.Youshouldconsultwithaprofessionalwhereappropriate.Further,readersshouldbeawarethatwebsiteslistedinthisworkmayhavechangedordisappearedbetweenwhenthisworkwaswrittenandwhenitisread.Neitherthepublishernorauthorsshallbeliableforanylossofprofitoranyothercommercialdamages,includingbutnotlimitedtospecial,incidental,consequential,orotherdamages.Forgeneralinformationonourotherproductsandservicesorfortechnicalsupport,pleasecontactourCustomerCareDepartmentwithintheUnitedStatesat(800)762-2974,outsidetheUnitedStatesat(317)572-3993orfax(317)572-4002.Wileyalsopublishesitsbooksinavarietyofelectronicformats.Somecontentthatappearsinprintmaynotbeavailableinelectronicformats.FormoreinformationaboutWileyproducts,visitourwebsiteatwww.wiLey.com.LibraryofCongressControlNumber:2022944334Coverimage:©JeremyWoodhouse/GettyImages,Inc.Coverdesign:WileyStudy

Page 8

AWS Certified Solutions Architect Study Guide: Associate (SAA-C03) Exam, 4th Edition (2022) - Page 8 preview image

Loading page image...

AcknowledgmentsWewouldliketothankthefollowingpeoplewhohelpeduscreateAWSCertifiedSolutionsArchitectStudyGuide:AssociateSAA-C03Exam,FourthEdition.First,aspecialthankstoourfriendsatWiley.KenyonBrown,senioracquisitionseditor,gottheballrollingonthisprojectandpushedtogetthisbookpublishedquickly.Hisexperi-enceandguidancethroughouttheprojectwascritical.KimWimpsett,projecteditor,helpedpushthisbookforwardbykeepingusaccountabletoourdeadlines.Hereditsmademanyofthetechnicalpartsofthisbookmorereadable.DougHollandreviewedthechaptersandquestionsfortechnicalaccuracy.Notonlydidhiscommentsandsuggestionsmakethisbookmoreaccurate,healsoprovidedaddi-tionalideasforthechapterreviewquestionstomakethemmorechallengingandrelevanttotheexam.Lastly,theauthorswouldliketothankeachother!

Page 9

AWS Certified Solutions Architect Study Guide: Associate (SAA-C03) Exam, 4th Edition (2022) - Page 9 preview image

Loading page image...

T=StudyX

Page 10

AWS Certified Solutions Architect Study Guide: Associate (SAA-C03) Exam, 4th Edition (2022) - Page 10 preview image

Loading page image...

AbouttheAuthorsBenPiperisanetworkingandcloudconsultantwhohasauthoredmultiplebooks,includingtheAWSCertifiedCloudPractitionerStudyGuide:FoundationalCLF-C01Exam(Sybex,2019)andLearnCiscoNetworkAdministrationinaMonthofLunches(Manning,2017).YoucancontactBenbyvisitinghiswebsite:benpiper.com.DavidClintonisaLinuxserveradminandAWSsolutionsarchitectwhohasworkedwithITinfrastructureinbothacademicandenterpriseenvironments.Hehasauthoredbooks—including(withBenPiper)theAWSCertifiedCloudPractitionerStudyGuide:FoundationalCLF-C01Exam(Sybex,2019),TheUbuntuLinuxBible(withChrisNagos;Wiley,2020),andTeachYourselfDataAnalyticsin30Days(BootstrapIT,2021).Ina“previouslife,”Davidspent20yearsasahighschoolteacher.HecurrentlylivesinToronto,Canada,withhiswifeandfamilyandcanbereachedthroughhiswebsite:bootstrap-it.com.

Page 11

AWS Certified Solutions Architect Study Guide: Associate (SAA-C03) Exam, 4th Edition (2022) - Page 11 preview image

Loading page image...

T=StudyX

Page 12

AWS Certified Solutions Architect Study Guide: Associate (SAA-C03) Exam, 4th Edition (2022) - Page 12 preview image

Loading page image...

AbouttheTechnicalEditorDougHollandisaCloudSolutionsArchitectbasedinNorthernCaliforniawithover20yearsofindustryexperience.Heholdsamaster’sdegreeinsoftwareengineeringfromOxfordUniversityandhasbeenrecognizedforhistechnicalleadershipasaMicrosoftMVPandIntelBlackBeltDeveloper.Study)

Page 13

AWS Certified Solutions Architect Study Guide: Associate (SAA-C03) Exam, 4th Edition (2022) - Page 13 preview image

Loading page image...

T=StudyX

Page 14

AWS Certified Solutions Architect Study Guide: Associate (SAA-C03) Exam, 4th Edition (2022) - Page 14 preview image

Loading page image...

ContentsataGlanceIntroductionxxvAssessmentTestxxxiAnswerstoAssessmentTestxxXVilPart|TheCoreAWSServices1Chapter1IntroductiontoCloudComputingandAWS3Chapter2ComputeServices25Chapter3AWSStorage67Chapter4AmazonVirtualPrivateCloud(VPC)91Chapter5DatabaseServices143Chapter6AuthenticationandAuthorization—AWSIdentityandAccessManagement175Chapter7CloudTrail,CloudWatch,andAWSConfig193Chapter8TheDomainNameSystemandNetworkRouting:AmazonRoute53andAmazonCloudFront223Chapter9DataIngestion,Transformation,andAnalytics243PartIlArchitectingforRequirements255Chapter10ResilientArchitectures257Chapter11High-PerformingArchitectures289Chapter12SecureArchitectures323Chapter13Cost-OptimizedArchitectures357AppendixAAnswerstoReviewQuestions375AppendixBAdditionalServices405Index417T=Study)

Page 15

AWS Certified Solutions Architect Study Guide: Associate (SAA-C03) Exam, 4th Edition (2022) - Page 15 preview image

Loading page image...

T=StudyX

Page 16

AWS Certified Solutions Architect Study Guide: Associate (SAA-C03) Exam, 4th Edition (2022) - Page 16 preview image

Loading page image...

ContentsIntroductionxxvAssessmentTestxxxiAnswerstoAssessmentTestxxxviiPart|TheCoreAWSServices1Chapter1IntroductiontoCloudComputingandAWS3CloudComputingandVirtualization4CloudComputingArchitecture4CloudComputingOptimization5TheAWSCloud6AWSPlatformArchitecture10AWSReliabilityandCompliance13TheAWSSharedResponsibilityModel13TheAWSServiceLevelAgreement14WorkingwithAWS14AWSOrganizations14AWSControlTower15AWSServiceCatalog15AWSLicenseManager16AWSArtifact16TheAWSCLI16AWSSDKs17TechnicalSupportandOnlineResources17SupportPlans17OtherSupportResources18MigratingExistingResourcestoAWS18AWSMigrationHub19AWSApplicationMigrationService19AWSDatabaseMigrationService19AWSApplicationDiscoveryService20Summary20ExamEssentials21ReviewQuestions22Chapter2ComputeServices25Introduction26EC2Instances27ProvisioningYourInstance27ConfiguringInstanceBehavior32PlacementGroups33InstancePricing

Page 17

AWS Certified Solutions Architect Study Guide: Associate (SAA-C03) Exam, 4th Edition (2022) - Page 17 preview image

Loading page image...

xivContentsInstanceLifeCycle34ResourceTags35ServiceLimits36EC2StorageVolumes36ElasticBlockStoreVolumes36InstanceStoreVolumes38AccessingYourEC2Instance39SecuringYourEC2Instance41SecurityGroups41IAMRoles41NATDevices42KeyPairs42EC2AutoScaling43LaunchConfigurations43LaunchTemplates43AutoScalingGroups45AutoScalingOptions46AWSSystemsManager49Actions50Insights52AWSSystemsManagerInventory53RunningContainers54AmazonElasticContainerService54AmazonElasticKubernetesService55OtherContainer-OrientedServices55AWSCLIExample56Summary57ExamEssentials58ReviewQuestions60Chapter3AWSStorage67Introduction68$3ServiceArchitecture69PrefixesandDelimiters69WorkingwithLargeObjects69Encryption71Logging71$3DurabilityandAvailability72Durability72Availability73EventuallyConsistentData73$3ObjectLifeCycle74Versioning74LifeCycleManagement74

Page 18

AWS Certified Solutions Architect Study Guide: Associate (SAA-C03) Exam, 4th Edition (2022) - Page 18 preview image

Loading page image...

ContentsxvAccessingS3Objects75AccessControl75PresignedURLs77StaticWebsiteHosting77Amazon$3Glacier79StoragePricing80OtherStorage-RelatedServices81AmazonElasticFileSystem81AmazonFSx81AWSStorageGateway81AWSSnowFamily82AWSDataSync82AWSCLIExample83Summary84ExamEssentials85ReviewQuestions86Chapter4AmazonVirtualPrivateCloud(VPC)91Introduction92VPCCIDRBlocks92SecondaryCIDRBlocks93IPv6CIDRBlocks93Subnets95SubnetCIDRBlocks96AvailabilityZones97IPv6CIDRBlocks99ElasticNetworkInterfaces99PrimaryandSecondaryPrivateIPAddresses100AttachingElasticNetworkInterfaces100EnhancedNetworking101InternetGateways102RouteTables102Routes103TheDefaultRoute104SecurityGroups106InboundRules106OutboundRules107SourcesandDestinations108StatefulFirewall108DefaultSecurityGroup109NetworkAccessControlLists110InboundRules110OutboundRules113UsingNetworkAccessControlListsandSecurityGroupsTogether114

Page 19

AWS Certified Solutions Architect Study Guide: Associate (SAA-C03) Exam, 4th Edition (2022) - Page 19 preview image

Loading page image...

xviContentsAWSNetworkFirewall115PublicIPAddresses115ElasticIPAddresses116AWSGlobalAccelerator118NetworkAddressTranslation119NetworkAddressTranslationDevices120ConfiguringRouteTablestoUseNATDevices121NATGateway121NATInstance122AWSPrivateLink123VPCPeering123HybridCloudNetworking124AWSSite-to-SiteVPN125AWSTransitGateway125AWSDirectConnect133High-PerformanceComputing134ElasticFabricAdapter135AWSParallelCluster136Summary136ExamEssentials137ReviewQuestions138Chapter5DatabaseServices143Introduction144RelationalDatabases144ColumnsandAttributes144UsingMultipleTables145StructuredQueryLanguage146OnlineTransactionProcessingvs.OnlineAnalyticProcessing147AmazonRelationalDatabaseService148DatabaseEngines148LicensingConsiderations149DatabaseOptionGroups150DatabaseInstanceClasses150Storage151ReadReplicas154HighAvailability(Multi-AZ)155Single-Master156Multi-Master157BackupandRecovery157AutomatedSnapshots157MaintenanceItems158AmazonRDSProxy158AmazonRedshift159ComputeNodes159DataDistributionStyles

Page 20

AWS Certified Solutions Architect Study Guide: Associate (SAA-C03) Exam, 4th Edition (2022) - Page 20 preview image

Loading page image...

ContentsxviiRedshiftSpectrum160AWSDatabaseMigrationService160Nonrelational(NoSQL)Databases161StoringData161QueryingData161TypesofNonrelationalDatabases162DynamoDB162PartitionandHashKeys163AttributesandItems164ThroughputCapacity165ReadingData167GlobalTables168Backups168Summary168ExamEssentials169ReviewQuestions170Chapter6AuthenticationandAuthorization—AWSIdentityandAccessManagement175Introduction176IAMIdentities176IAMPolicies177UserandRootAccounts178AccessKeys180Groups181Roles182AuthenticationTools183AmazonCognito183AWSManagedMicrosoftAD183AWSSingleSign-On184AWSKeyManagementService184AWSSecretsManager184AWSCloudHSM185AWSResourceAccessManager(AWSRAM)185AWSCLIExample185Summary187ExamEssentials187ReviewQuestions189Chapter7CloudTrail,CloudWatch,andAWSConfig193Introduction194CloudTrail195ManagementEvents195DataEvents196EventHistory196

Page 21

AWS Certified Solutions Architect Study Guide: Associate (SAA-C03) Exam, 4th Edition (2022) - Page 21 preview image

Loading page image...

xviiiContentsTrails196LogFileIntegrityValidation198CloudWatch199CloudWatchMetrics200GraphingMetrics201MetricMath203CloudWatchLogs205CloudWatchAlarms208AmazonEventBridge211AWSConfig212TheConfigurationRecorder213ConfigurationItems213ConfigurationHistory213ConfigurationSnapshots213MonitoringChanges214Summary216ExamEssentials216ReviewQuestions218Chapter8TheDomainNameSystemandNetworkRouting:AmazonRoute53andAmazonCloudFront223Introduction224TheDomainNameSystem224Namespaces225NameServers225DomainsandDomainNames226DomainRegistration226DomainLayers226FullyQualifiedDomainNames227ZonesandZoneFiles227RecordTypes227AliasRecords228AmazonRoute53228DomainRegistration229DNSManagement229AvailabilityMonitoring231RoutingPolicies232TrafficFlow234Route53Resolver234AmazonCloudFront235AWSCLIExample237Summary238ExamEssentials238ReviewQuestions239

Page 22

AWS Certified Solutions Architect Study Guide: Associate (SAA-C03) Exam, 4th Edition (2022) - Page 22 preview image

Loading page image...

ContentsxixChapter9DataIngestion,Transformation,andAnalytics243Introduction244AWSLakeFormation244Ingestion245Transformation245Analytics245AWSTransferFamily246Kinesis246KinesisVideoStreams246KinesisDataStreams247KinesisDataFirehose248KinesisDataFirehosevs.KinesisDataStreams248Summary249ExamEssentials249ReviewQuestions250PartIlArchitectingforRequirements255Chapter10ResilientArchitectures257Introduction258CalculatingAvailability258AvailabilityDifferencesinTraditionalvs.Cloud-NativeApplications259KnowYourLimits262IncreasingAvailability262EC2AutoScaling263LaunchConfigurations263LaunchTemplates263AutoScalingGroups265AutoScalingOptions266DataBackupandRecovery270S3270ElasticFileSystem271ElasticBlockStorage271DatabaseResiliency271CreatingaResilientNetwork272VPCDesignConsiderations272ExternalConnectivity273SimpleQueueService273Queues274QueueTypes275Polling276Dead-LetterQueues276DesigningforAvailability276Designingfor99PercentAvailability277

Page 23

AWS Certified Solutions Architect Study Guide: Associate (SAA-C03) Exam, 4th Edition (2022) - Page 23 preview image

Loading page image...

xxContentsDesigningfor99.9PercentAvailability278Designingfor99.99PercentAvailability279Summary280ExamEssentials281ReviewQuestions282Chapter11High-PerformingArchitectures289Introduction290OptimizingPerformancefortheCoreAWSServices290Compute291Storage295Database298NetworkOptimizationandLoadBalancing299InfrastructureAutomation302CloudFormation302Third-PartyAutomationSolutions309ReviewingandOptimizingInfrastructureConfigurations310AWSWell-ArchitectedTool311LoadTesting311Visualization312OptimizingDataOperations313Caching313Partitioning/Sharding315Compression315Summary316ExamEssentials316ReviewQuestions318Chapter12SecureArchitectures323Introduction324IdentityandAccessManagement324ProtectingAWSCredentials325Fine-GrainedAuthorization325PermissionsBoundaries327Roles328EnforcingService-LevelProtection334DetectiveControls335CloudTrail335CloudWatchLogs335SearchingLogswithAthena336AuditingResourceConfigurationswithAWSConfig338AmazonGuardDuty339AmazonInspector342AmazonDetective343SecurityHub344AmazonFraudDetector344AWSAuditManager[—Fstudyx|

Page 24

AWS Certified Solutions Architect Study Guide: Associate (SAA-C03) Exam, 4th Edition (2022) - Page 24 preview image

Loading page image...

ContentsxxiProtectingNetworkBoundaries344NetworkAccessControlListsandSecurityGroups345AWSWebApplicationFirewall345AWSShield345AWSFirewallManager346DataEncryption346DataatRest346DatainTransit348Macie349Summary349ExamEssentials350ReviewQuestions351Chapter13Cost-OptimizedArchitectures357Introduction358Planning,Tracking,andControllingCosts358AWSBudgets359MonitoringTools360AWSTrustedAdvisor361OnlineCalculatorTools362Cost-OptimizingCompute363MaximizingServerDensity364EC2ReservedInstances364EC2SpotInstances365AutoScaling368ElasticBlockStoreLifecycleManager368Summary368ExamEssentials369ReviewQuestions370AppendixAAnswerstoReviewQuestions375Chapter1:IntroductiontoCloudComputingandAWS376Chapter2:ComputeServices377Chapter3:AWSStorage380Chapter4:AmazonVirtualPrivateCloud(VPC)381Chapter5:DatabaseServices383Chapter6:AuthenticationandAuthorization—AWSIdentityandAccessManagement386Chapter7:CloudTrail,CloudWatch,andAWSConfig388Chapter8:TheDomainNameSystemandNetworkRouting:AmazonRoute53andAmazonCloudFront390Chapter9:DataIngestion,Transformation,andAnalytics392Chapter10:ResilientArchitectures393Chapter11:High-PerformingArchitectures397Chapter12:SecureArchitectures399Chapter13:Cost-OptimizedArchitectures401

Page 25

AWS Certified Solutions Architect Study Guide: Associate (SAA-C03) Exam, 4th Edition (2022) - Page 25 preview image

Loading page image...

xxiiContentsAppendixBAdditionalServices405DeploymentTools406AWSAmplify406AWSServerlessApplicationRepository406AWSProton407DeveloperTools407AmazonAPIGateway407AWSDeviceFarm407AWSStepFunctions407InfrastructureTools408AWSOutposts408AWSWavelength408VMwareCloudonAWS408ConnectivityTools409AmazonPinpoint409AWSTransferFamily409AWSAppSync409DatabaseTools410AmazonDocumentDB(withMongoDBCompatibility)410AmazonKeyspaces(forApacheCassandra)410AmazonQuantumLedgerDatabase(QLDB)410DataStreamingTools410AmazonManagedStreamingforApacheKafka(MSK)410AmazonMQ411AWSDataExchange411AmazonTimestream411AWSDataPipeline411AmazonAppFlow411MachineLearningandArtificialIntelligence412AmazonComprehend412AmazonForecast412AmazonLex412AmazonPolly412AmazonRekognition413AmazonTextract413AmazonTranscribe413AmazonTranslate413OtherTools413AWSBatch413AWSX-Ray414AmazonKendra414AmazonOpenSearchService(AmazonElasticsearchService)414AmazonManagedGrafana414AmazonManagedServiceforPrometheus415Index

Page 26

AWS Certified Solutions Architect Study Guide: Associate (SAA-C03) Exam, 4th Edition (2022) - Page 26 preview image

Loading page image...

TableofExercisesExercise1.1UsetheAWSCLI...iiieee17Exercise2.1LaunchanEC2LinuxInstanceandLogInUsingSSH.................31Exercise2.2AssesstheFreeCapacityofaRunningInstanceandChangeItsINSEANCETYPE©«oveeeeeeeeeieeeeee...32Exercise2.3AssessWhichPricingModelWillBestMeettheNeedsofaDeployment.34Exercise2.4CreateandLaunchanAMIBasedonanExistingInstanceStorageVOIUME©oie...38Exercise2.5CreateaLaunchTemplate..............coin.....44Exercise2.6InstalltheAWSCLIandUseIttoLaunchanEC2Instance.............56Exercise2.7CleanUpUnusedEC2Resources............coovueeiiaiiinnnn....57Exercise3.1CreateaNewS3BucketandUploadaFile..........................70Exercise3.2EnableVersioningandLifeCycleManagementforanS3Bucket........75Exercise3.3GenerateandUseaPresignedURL................................77Exercise3.4EnableStaticWebsiteHostingforanS3Bucket......................78Exercise3.5CalculatetheTotalLifeCycleCostsforYourData.....................80Exercise4.1CreateaNewVPCLL...iii...94Exercise4.2CreateaNewSubnet...................cocina...98Exercise4.3CreateandAttachaPrimaryENI.................................100Exercise4.4CreateanInternetGatewayandDefaultRoute......................104Exercise4.5CreateaCustomSecurityGrOUP.............ccoeeevneeennao.....109Exercise4.6CreateanInboundRuletoAllowRemoteAccessfromAnyIPAddress..112Exercise4.7AllocateandUseanElasticIPAddress............................116Exercise4.8CreateaTransitGateway.............ouiiiiiinnnnnnnnnnnnn....127Exercise4.9CreateaBlackholeRoute...................cciiiiiiiiinn.....132Exercise5.1CreateanRDSDatabaseInstance................................153Exercise5.2CreateaReadReplica.................oiiiiiieeiiiiiiiinnn....155Exercise5.3PromotetheReadReplicatoaMaster.............................155Exercise5.4CreateaTableinDynamoDBUsingProvisionedMode...............166Exercise6.1LockDowntheRootUser...............cooiiiiiiiineeenea.....178Exercise6.2AssignandImplementanIAMPolicy.............................179Exercise6.3Create,Use,andDeleteanAWSAccessKey.......................181Exercise6.4CreateandConfigureanIAMGroup......................o0......182Exercise7.1CreateaTrail..........oiii...197

Page 27

AWS Certified Solutions Architect Study Guide: Associate (SAA-C03) Exam, 4th Edition (2022) - Page 27 preview image

Loading page image...

xxivTableofExercisesExercise7.2CreateaGraphUsingMetricMath...............................204Exercise7.3DeliverCloudTrailLogstoCloudWatchLogs.......................207Exercise8.1CreateaHostedZoneonRoute53foranEC2WebServer............230Exercise8.2SetUpaHealthCheck............................in.....231Exercise8.3ConfigureaRoute53RoutingPolicy..............................233Exercise8.4CreateaCloudFrontDistributionforYourS3-BasedStaticWebsite.....236Exercise10.1CreatealaunchTemplate........................ooiini.......264Exercise11.1ConfigureandLaunchanApplicationUsingAutoScaling............293Exercise11.2SyncTwoS3BucketsasCross-RegionReplicas.....................296Exercise11.3UploadtoanS3BucketUsingTransferAcceleration.................297Exercise11.4CreateandDeployanEC2LoadBalancer..........................301Exercise11.5CreateaNestedStack.......................coiinininen.....305Exercise11.6CreateaCloudWatchDashboard.................................312Exercise12.1CreateaLimitedAdministrativeUser.............................327Exercise12.2CreateandAssumeaRoleasanIAMUser.........................333Exercise12.3ConfigureVPCFlowLogging................coeeueeeenneen.....336Exercise12.4EncryptanEBSVOIUME........oooeeeeeseee...347Exercise13.1CreateanAWSBudgettoSendanAlert...........................360Exercise13.2BuildYourOwnStackinSimpleMonthlyCalculator.................363Exercise13.3RequestaSpotFleetUsingtheAWSCLI...........................366

Page 28

AWS Certified Solutions Architect Study Guide: Associate (SAA-C03) Exam, 4th Edition (2022) - Page 28 preview image

Loading page image...

IntroductionStudyingforanycertificationalwaysinvolvesdecidinghowmuchofyourstudyingshouldbepracticalhands-onexperienceandhowmuchshouldbesimplymemorizingfactsandfig-ures.Betweenthetwoofus,we'vetakendozensofITcertificationexams,soweknowhowimportantitistouseyourstudytimewisely.We'vedesignedthisbooktohelpyoudiscoveryourstrengthsandweaknessesontheAWSplatformsothatyoucanfocusyoureffortsprop-erly.Whetheryou'vebeenworkingwithAWSforalongtimeorwhetheryou'rerelativelynewtoit,weencourageyoutocarefullyreadthisbookfromcovertocover.PassingtheAWSCertifiedSolutionsArchitectAssociateexamrequiresunderstandingthecomponentsandoperationofthecoreAWSservicesaswellashowthoseservicesinteractwitheachother.ReadthroughtheofficialdocumentationforthevariousAWSser-vices.AmazonoffersHTML,PDF,andKindledocumentationformanyofthem.Usethisbookasaguidetohelpyouidentifyyourstrengthsandweaknessessothatyoucanfocusyourstudyeffortsproperly.Youshouldhaveatleastsixmonthsofhands-onexperiencewithAWSbeforetakingtheAWSCertifiedSolutionsArchitectAssociateexam.Ifyou'rerelativelynewtoAWS,westronglyrecommendourownAWSCertifiedCloudPractitionerStudyGuide:CLF-CO1Exam(AuthorSybex,2019)asaprimer.EventhoughthisbookisdesignedspecificallyfortheAWSCertifiedSolutionsArchitectAssociateexam,someofyourfellowreadershavefounditusefulforpreparingfortheSysOpsAdministratorandDevOpsEngineerexams.Hands-onexperienceiscrucialforexamsuccess.Eachchapterinthisstudyguidecon-tainshands-onexercisesthatyoushouldstrivetocompleteduringorimmediatelyafteryoureadthechapter.It’svitaltounderstandthattheexercisesdon’tcovereverypossiblesce-narioforeveryAWSservice.Infact,it’squitetheopposite.Theexercisesprovideyouwithafoundationtobuildon.Usethemasyourstartingpoint,butdon’tbeafraidtoventureoutonyourown.Feelfreetomodifythemtomatchthevariablesandscenariosyoumightencounterinyourownorganization.KeepinmindthatsomeoftheexercisesandfiguresusetheAWSWebConsole,whichisinconstantflux.Assuch,screenshotsandstep-by-stepdetailsofexercisesmaychange.UsetheseeventualitiesasexcusestodigintotheAWSonlinedocumentationandbrowsearoundtheWebConsoleonyourown.AlsorememberthatalthoughyoucancompletemanyoftheexerciseswithintheboundsoftheAWSFreeTier,gettingenoughpracticetopasstheexamwilllikelyrequireyoutospendsomemoney.Butit’smoneywellspent,asgettingcertifiedisaninvestmentinyourcareerandyourfuture.Eachchaptercontainsreviewquestionstothoroughlytestyourunderstandingoftheservicesandconceptscoveredinthatchapter.Theyalsotestyourabilitytointegratetheconceptswithinformationfromprecedingchapters.Althoughthedifficultyoftheques-tionsvaries,restassuredthattheyarenot“fluff.”We'vedesignedthequestionstohelpyourealisticallygaugeyourunderstandingandreadinessfortheexam.Avoidthetemptationtorushthroughthequestionstojustgettotheanswers.Onceyoucompletetheassessmentineachchapter,referringtotheanswerkeywillgiveyounotonlythecorrectanswersbuta

Page 29

AWS Certified Solutions Architect Study Guide: Associate (SAA-C03) Exam, 4th Edition (2022) - Page 29 preview image

Loading page image...

xviIntroductiondetailedexplanationastowhythey’recorrect.Itwillalsoexplainwhytheotheranswersareincorrect.Thebookalsocontainsaself-assessmentexamwith39questions,twopracticeexamswith50questionseachtohelpyougaugeyourreadinesstotaketheexam,andflashcardstohelpyoulearnandretainkeyfactsneededtopreparefortheexam.ThisAWSCertifiedSolutionsArchitectStudyGuide:AssociateSAA-C03Exam,FourthEditionisdividedintotwoparts:“TheCoreAWSServices”and“ArchitectingforRequirements.”PartI,“TheCoreAWSServices”ThefirstpartofthebookdivesdeepintoeachofthecoreAWSservices.Theseservicesincludeonesyouprobablyalreadyhaveatleastapassingfamiliaritywith:ElasticComputeCloud(EC2),virtualprivatecloud(VPC),IdentityandAccessManagement(IAM),Route53,andSimpleStorageService(53),tonamejustafew.SomeAWSservicesseemtoservesimilarorevennearlyidenticalpurposes.You'lllearnaboutthesubtlebutimportantdifferencesbetweenseeminglysimilarservicesand,mostimportantly,whentouseeach.PartIl,“ArchitectingforRequirements”Thesecondpartofthebookisasetofbestpracticesandprinciplesaimedathelpingyoudesign,implement,andoperatesystemsinthecloud.PartIIfocusesonthefollowingfourpillarsofgooddesign:=Resilientarchitectures=High-performingarchitectures=Securearchitectures=Cost-optimizedarchitecturesEachchapterofPartIIrevisitsthecoreAWSservicesinlightofadifferentpillar.Also,becausenoteveryAWSserviceislargeenoughtowarrantitsownchapter,PartIIsimulta-neouslyintroducesotherservicesthat,althoughlesswellknown,maystillshowupontheexam.AppendixB,“AdditionalServices,”containsbriefdescriptionsofmanysmallerser-vicesthatdon’tfiteasilyelsewhereinthebook.Achievingtherightbalanceamongthesepillarsisakeyskillyouneedtodevelopasasolutionsarchitect.PriortobeginningPartII,weencourageyoutoperusetheWell-ArchitectedFrameworkwhitepaper,whichisavailablefordownloadathttps://docs.aws.amazon.com/wellarchitected/latest/framework/welcome.html.Study

Page 30

AWS Certified Solutions Architect Study Guide: Associate (SAA-C03) Exam, 4th Edition (2022) - Page 30 preview image

Loading page image...

IntroductionviiWhatDoesThisBookCover?ThisbookcoverstopicsyouneedtoknowtopreparefortheAmazonWebServices(AWS)CertifiedSolutionsArchitectAssociateexam:Chapter1:IntroductiontoCloudComputingandAWSThischapterprovidesanover-viewoftheAWSCloudcomputingplatformanditscoreservicesandconcepts.Chapter2:ComputeServicesThischaptercoversEC2instances—thevirtualmachinesthatyoucanusetorunLinuxandWindowsworkloadsonAWS.ItalsocoverstheElasticBlockStoreservicethatEC2instancesdependonforpersistentdatastorage.Chapter3:AWSStorageInthischapter,you'lllearnaboutSimpleStorageService(53)andGlacier,whichprovideunlimiteddatastorageandretrievalforAWSservices,yourapplications,andtheInternet.You'llalsodiscovertheSnowballfamilyofphysicalappli-ancesyoucanusetotransferverylargevolumesofdatatoandfromyourAWSaccount.Chapter4:AmazonVirtualPrivateCloud(VPC)ThischapterexplainsAmazonVirtualPrivateCloud(AmazonVPC),avirtualnetworkthatcontainsnetworkresourcesforAWSservices.Chapter5:DatabaseServicesInthischapter,youwilllearnaboutsomedifferentmanageddatabaseservicesofferedbyAWS,includingRelationalDatabaseService(RDS),DynamoDB,andRedshift.Chapter6:AuthenticationandAuthorization—AWSIdentityandAccessManagementThischaptercoversAWSIdentityandAccessManagement(IAM),whichprovidestheprimarymeansforprotectingtheAWSresourcesinyouraccount.Chapter7:CloudTrail,CloudWatch,andAWSConfigInthischapter,you'lllearnhowtolog,monitor,andaudityourAWSresources.Chapter8:TheDomainNameSystemandNetworkRouting:AmazonRoute53andAmazonCloudFrontThischapterfocusesontheDomainNameSystem(DNS)andRoute53,theservicethatprovidespublicandprivateDNShostingforbothinternalAWSresourcesandtheInternet.ItalsocoversCloudFront,Amazon’sglobalcontentdeliverynetwork.Chapter9:DataIngestion,Transformation,andAnalyticsDatacomesinmanyshapesandsizes,andthemoredatayouhave,themoreunwieldyitbecomes.ThischapterexplainshowAWScanhelpyouingest,transform,andanalyzedataatscale.Chapter10:ResilientArchitecturesThischapterwillshowyouhowtoarchitectandintegrateAWSservicestoachieveahighlevelofreliabilityforyourapplications.You'lllearnhowtoplanaroundandrecoverfrominevitableoutagestokeepyoursystemsupandrunning.You'llalsolearnhowSimpleQueueService(SQS)fitsintothepicture.Study

Page 31

AWS Certified Solutions Architect Study Guide: Associate (SAA-C03) Exam, 4th Edition (2022) - Page 31 preview image

Loading page image...

viiiIntroductionChapter11:High-PerformingArchitecturesThischaptercovershowtobuildhighlyperformingsystemsandusetheAWSelasticinfrastructuretorapidlyscaleupandouttomeetpeakdemand.Chapter12:SecureArchitecturesInthischapter,you'lllearnhowtouseencryptionandsecuritycontrolstoprotecttheconfidentiality,integrity,andavailabilityofyourdataandsystemsonAWS.You'llalsolearnaboutthevarioussecurityservicessuchasGuardDuty,Inspector,Shield,andWebApplicationFirewall.Chapter13:Cost-OptimizedArchitecturesThischapterwillshowyouhowtoestimateandcontrolyourcostsinthecloud.InteractiveOnlineLearningEnvironmentandTestBankTheauthorshaveworkedhardtoprovidesomereallygreattoolstohelpyouwithyourcertificationprocess.TheinteractiveonlinelearningenvironmentthataccompaniestheAWSCertifiedSolutionsArchitectStudyGuide:AssociateSAA-C03Exam,FourthEditionprovidesatestbankwithstudytoolstohelpyouprepareforthecertificationexam—andincreaseyourchancesofpassingitthefirsttime!Thetestbankincludesthefollowing:SampleTestsWe'veincludedmanyknowledge-testingquestions,includingtheassessmenttestattheendofthisIntroductionandthechapterteststhatincludethereviewquestionsattheendofeachchapter.Inaddition,therearefivepracticeexamswith50questionseach.Usethesequestionstotestyourknowledgeofthestudyguidematerial.Theonlinetestbankrunsonmultipledevices.FlashcardsTheonlinetextbanksinclude100flashcardsspecificallywrittentohityouhard,sodon’tgetdiscouragedifyoudon’taceyourwaythroughthematfirst.They'retheretoensurethatyou'rereallyreadyfortheexam.Andnoworries—armedwiththereviewquestions,practiceexams,andflashcards,you'llbemorethanpreparedwhenexamdaycomes.Questionsareprovidedindigitalflashcardformat(aquestionfol-lowedbyasinglecorrectanswer).Youcanusetheflashcardstoreinforceyourlearningandprovidelast-minutetestprepbeforetheexam.ResourcesYou'llfindsomeAWSCLIandothercodeexamplesfromthebookforyoutocutandpasteforuseinyourownenvironment.AglossaryofkeytermsfromthisbookisalsoavailableasafullysearchablePDF.Study
Preview Mode

This document has 477 pages. Sign in to access the full document!

Study Now!

XY-Copilot AI
Unlimited Access
Secure Payment
Instant Access
24/7 Support
Document Chat

Document Details

Subject
AWS Certification

Related Documents

View all
Certification Guides

AWS Certified Cloud Practitioner Study Guide With 500 Practice Test Questions: Foundational (CLF-C02) Exam 2nd Edition (2023)

Maximize your certification success with AWS Certified Cloud Practitioner Study Guide With 500 Practice Test Questions: Foundational (CLF-C02) Exam 2nd Edition (2023), a practice exam designed to mirror real test scenarios.

Certification Guides

AWS Certified Machine Learning Specialty: MLS-C01 Certification Guide (2021)

AWS Certified Machine Learning Specialty: MLS-C01 Certification Guide (2021) delivers all the key information you need, including topic summaries, question banks, and study tips to ace your exam.

Certification Guides

AWS Certified SysOps Administrator - Associate SOA-C02 Exam Cram (2022)

Prepare for success with AWS Certified SysOps Administrator - Associate SOA-C02 Exam Cram (2022), a comprehensive guide to your certification test.