AWS Cloud Practitioner

Course Description

This course is for individuals who seek an overall understanding of the Amazon Web Services (AWS) Cloud, independent of specific technical roles. You will learn about AWS Cloud concepts, AWS services, security, architecture, pricing, and support to build your AWS Cloud knowledge. This course also helps you prepare for the AWS Certified Cloud Practitioner exam.

You will learn

  • Summarize the working definition of AWS
  • Differentiate between on-premises, hybrid-cloud, and all-in cloud
  • Describe the basic global infrastructure of the AWS Cloud
  • Explain the six benefits of the AWS Cloud
  • Describe and provide an example of the core AWS services, including compute, network, databases, and storage
  • Identify an appropriate solution using AWS Cloud services with various use cases
  • Describe the AWS Well-Architected Framework
  • Explain the shared responsibility model
  • Describe the core security services within the AWS Cloud
  • Describe the basics of AWS Cloud migration
  • Articulate the financial benefits of the AWS Cloud for an organization’s cost management
  • Define the core billing, account management, and pricing models
  • Explain how to use pricing tools to make cost-effective choices for AWS services

Course Outline

Module 1: Cloud Concepts

  • Define the benefits of the AWS cloud including:
    1. Security
    2. Reliability
    3. High Availability
    4. Elasticity
    5. Agility
    6. Pay-as-you go pricing
    7. Scalability
    8. Global Reach
    9. Economy of scale
  • Explain how the AWS cloud allows users to focus on business value
    1. Shifting technical resources to revenue-generating activities as opposed to managing infrastructure
  • Define items that would be part of a Total Cost of Ownership proposal
    1. Understand the role of operational expenses (OpEx)
    2. Understand the role of capital expenses (CapEx)
    3. Understand labor costs associated with on-premises operations
    4. Understand the impact of software licensing costs when moving to the cloud
  • Identify which operations will reduce costs by moving to the cloud
    1. Right-sized infrastructure
    2. Benefits of automation
    3. Reduce compliance scope (for example, reporting)
    4. Managed services (for example, RDS, ECS, EKS, DynamoDB)
  • Explain the design principles
    1. Design for failure
    2. Decouple components versus monolithic architecture
    3. Implement elasticity in the cloud versus on-premises
    4. Think parallel

 Module 2: Security and Compliance

  • Recognize the elements of the Shared Responsibility Model
  • Describe the customer’s responsibly on AWS
    1. Describe how the customer’s responsibilities may shift depending on the service used (for example with RDS, Lambda, or EC2)
  • Describe AWS responsibilities
  • Identify where to find AWS compliance information
    1. Locations of lists of recognized available compliance controls (for example, HIPPA, SOCs)
    2. Recognize that compliance requirements vary among AWS services
  • At a high level, describe how customers achieve compliance on AWS
    1. Identify different encryption options on AWS (for example, In transit, At rest)
  • Describe who enables encryption on AWS for a given service
  • Recognize there are services that will aid in auditing and reporting
    1. Recognize that logs exist for auditing and monitoring (do not have to understand the logs)
    2. Define Amazon CloudWatch, AWS Config, and AWS CloudTrail
  • Explain the concept of least privileged access
  • Understand the purpose of User and Identity Management
    1. Access keys and password policies (rotation, complexity)
    2. Multi-Factor Authentication (MFA)
    3. AWS Identity and Access Management (IAM)
      • Groups/users
      • Roles
      • Policies, managed policies compared to custom policies
    4. Tasks that require use of root accounts
    5. Protection of root accounts
  • Recognize there are different network security capabilities
    1. Native AWS services (for example, security groups, Network ACLs, AWS WAF)
    2. 3rd party security products from the AWS Marketplace
  • Recognize there is documentation and where to find it (for example, best practices, whitepapers, official documents)
    1. AWS Knowledge Center, Security Center, security forum, and security blogs
    2. Partner Systems Integrators
  • Know that security checks are a component of AWS Trusted Advisor

 Module 3: Technology

  • Identify at a high level different ways of provisioning and operating in the AWS cloud
    1. Programmatic access, APIs, SDKs, AWS Management Console, CLI, Infrastructure as Code
  • Identify different types of cloud deployment models
    1. All in with cloud/cloud native
    2. Hybrid
    3. On-premises
  • Identify connectivity options
    1. VPN
    2. AWS Direct Connect
    3. Public internet
  • Describe the relationships among Regions, Availability Zones, and Edge Locations
  • Describe how to achieve high availability through the use of multiple Availability Zones
    1. Recall that high availability is achieved by using multiple Availability Zones
    2. Recognize that Availability Zones do not share single points of failure
  • Describe when to consider the use of multiple AWS Regions
    1. Disaster recovery/business continuity
    2. Low latency for end-users
    3. Data sovereignty
  • Describe at a high level the benefits of Edge Locations
    1. Amazon CloudFront
    2. AWS Global Accelerator
  • Describe the categories of services on AWS (compute, storage, network, database)
  • Identify AWS compute services
    1. Recognize there are different compute families
    2. Recognize the different services that provide compute (for example, AWS Lambda compared to Amazon Elastic Container Service (Amazon ECS), or Amazon EC2, etc.)
    3. Recognize that elasticity is achieved through Auto Scaling
    4. Identify the purpose of load balancers
  • Identify different AWS storage services
    1. Describe Amazon S3
    2. Describe Amazon Elastic Block Store (Amazon EBS)
    3. Describe Amazon S3 Glacier
    4. Describe AWS Snowball
    5. Describe Amazon Elastic File System (Amazon EFS)
    6. Describe AWS Storage Gateway
  • Identify AWS networking services
    1. Identify VPC
    2. Identify security groups
    3. Identify the purpose of Amazon Route 53
    4. Identify VPN, AWS Direct Connect
  • Identify different AWS database services
    1. Install databases on Amazon EC2 compared to AWS managed databases
    2. Identify Amazon RDS
    3. Identify Amazon DynamoDB
    4. Identify Amazon Redshift 
  • Recognize there is documentation (best practices, whitepapers, AWS Knowledge Center, forums, blogs)
  • Identify resources for technology support
    1. AWS Abuse
    2. AWS support cases
    3. Premium support
    4. Technical Account Managers
  • Recognize there is a partner network (marketplace, third-party) including Independent Software Vendors and System Integrators
  • Identify sources of AWS technical assistance and knowledge including professional services, solution architects, training and certification, and the Amazon Partner Network
  • Identify the benefits of using AWS Trusted Advisor


Module 4: Billing and Pricing

  • Identify scenarios/best fit for On-Demand Instance pricing
  • Identify scenarios/best fit for Reserved-Instance pricing
    1. Describe Reserved-Instances flexibility
    2. Describe Reserved-Instances behavior in AWS Organizations
  • Identify scenarios/best fit for Spot Instance pricing
  • Recognize that consolidated billing is a feature of AWS Organizations
  • Identify how multiple accounts aid in allocating costs across departments
  • Identify ways to get billing support and information
    1. Cost Explorer, AWS Cost and Usage Report, Amazon QuickSight, third-party partners, and AWS Marketplace tools
    2. Open a billing support case
    3. The role of the Concierge for AWS Enterprise Support Plan customers
  • Identify where to find pricing information on AWS services
    1. AWS Simple Monthly Calculator
    2. AWS Services product pages
    3. AWS Pricing API
  • Recognize that alarms/alerts exist

Identify how tags are used in cost allocation

Prepare for exam

CLF-C01 AWS Certified Cloud Practitioner