Cloudschool 2014

67 %
33 %
Information about Cloudschool 2014
Technology

Published on March 6, 2014

Author: sebsto

Source: slideshare.net

Description

AWS Cloud School is a free full day of training sessions, guided examples and self-directed learning led by members of the Amazon Web Services team. Join us to learn how teams of all sizes can build scalable, reliable, high performance applications using the AWS Cloud platform.

AWS Cloud School AWS Cloud School Sébastien Stormacq stormacq@amazon.lu @sebsto Copyright  ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.   This  work  may  not  be  reproduced  or  redistributed,  in  whole  or  in  part,  without  prior  wriFen  permission  from  Amazon  Web  Services,  Inc.   Commercial  copying,  lending,  or  selling  is  prohibited.   QuesIons?    EWeb  Services,  Iws-­‐training-­‐info@amazon.com.   mail  us  at  anc.  and  its  affiliates.  All  rights  reserved.   ©  2013  Amazon  

AWS Cloud School We  value  your  feedback  !   #cloudschool   @sebsto   2   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Course Overview | Training Agenda 1 2 3 4 5 AWS Introduction AWS Storage AWS Compute & Networking Managed Services & Database Deployment Management 3   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Course Overview | Training Agenda Module 1 1 2 3 4 5 Introduction to AWS AWS Storage AWS Compute & Networking Managed Services & Database Deployment Management This module describes the history and fundamental elements of Amazon Web Services (AWS), as well as how to navigate the AWS Management Console and identify its security features and basic principles. 4   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Course Overview | Training Agenda Module 2 1 2 3 4 5 Introduction to AWS AWS Storage AWS Compute & Networking Managed Services & Database Deployment Management This module describes the fundamental elements of AWS Storage with a focus on Amazon Simple Storage Service (S3) and Amazon Elastic Block Store (EBS). 5   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Course Overview | Training Agenda Module 3 1 2 3 4 5 Introduction to AWS AWS Storage AWS Compute & Networking Managed Services & Database Deployment Management This module describes the fundamental elements of AWS Compute and Networking, with a focus on Amazon Elastic Compute Cloud. This module will build off what you learned in Module 2 by verifying how to use Amazon Elastic Block Storage. 6   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Course Overview | Training Agenda Module 4 1 2 3 4 5 Introduction to AWS AWS Storage AWS Compute & Networking Managed Services & Database Deployment Management This module describes the fundamental elements of AWS Managed Services and Databases (RDS). This module will focus on key aspects of Amazon Relational Database Service and how to execute Amazon RDS. 7   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Course Overview | Training Agenda Module 5 1 2 3 4 5 Introduction to AWS AWS Storage AWS Compute & Networking Managed Services & Database Deployment Management This module describes the fundamental elements of AWS deployment management products and services. 8   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Module 1: Introduction to AWS Copyright  ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.   This  work  may  not  be  reproduced  or  redistributed,  in  whole  or  in  part,  without  prior  wriFen  permission  from  Amazon  Web  Services,  Inc.   Commercial  copying,  lending,  or  selling  is  prohibited.   QuesIons?    EWeb  Services,  Iws-­‐training-­‐info@amazon.com.   mail  us  at  anc.  and  its  affiliates.  All  rights  reserved.   ©  2013  Amazon  

AWS Cloud School Introduction to AWS | Overview Module Overview This module describes the history and fundamental elements of Amazon Web Services (AWS), as well as how to navigate the AWS Management Console and identify its security features and basic principles. 10   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Introduction to AWS | Learning Objectives By the end of this module you will be able to: 1 2 3 Navigate the AWS Management Console. Recognize AWS Global Infrastructure. Describe the security measures AWS provides. 11   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Introduction to AWS | Cloud Computing Compute Scaling Security DNS CDN Backup Database Storage Workflow Load Balancing Monitoring Networking Messaging 12   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School AWS History ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Introduction to AWS | Amazon History 14   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Introduction to AWS | History of Amazon Web Services 15   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Introduction to AWS | AWS Cloud Computing }   On Demand Uniform Pay As You Go Available Compute Scaling Security DNS CDN Backup Database Storage Workflow Load Balancing Monitoring Networking Messaging 16   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Introduction to AWS | AWS Core Infrastructure and Services Traditional Infrastructure Amazon Web Services Security   Security   Security Groups NACLs Access Mgmt Network   Network   “Public” Provision   EC2 “Classic” ELB VPC   VPC On-Demand Servers   Servers   Expand   EC2   AMI Storage  &  Database   Storage  &  Database   DAS   SAN   NAS   Instances RDMS S3 EBS RDS ElastiCache 17   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Introduction to AWS | Amazon Web Services Your Applications Deployment & Automation Web Interface AWS Management Console AWS CloudFormation Elastic Beanstalk Monitoring CloudWatch OpsWorks Identity & Access IAM Deployment & Management Content Delivery CloudFront   Networking Distributed Computing Amazon EMR Auto Scaling Amazon VPC Route 53 Elastic Load Balancing AWS Direct Connect Application Services & Networking Compute Amazon EC2 Storage Amazon S3 Amazon  Glacier   Amazon EBS Database Amazon Redshift DynamoDB Amazon RDS ElastiCache Compute, Storage & Database 18   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Introduction to AWS | Amazon Web Services AWS Management Console Demonstration 19   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Global Infrastructure ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Introduction to AWS | Regions and Edge Locations 10 AWS Regions 51 AWS Edge Locations 21   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Introduction to AWS | AWS Regions and Availability Zones (AZ) US Regions US East (VA) AZ - A US West (CA) US West (OR) AZ - A AZ - A Asia Pacific (Singapore) AZ - B AZ - B AZ - A AZ - D AZ - B AZ - C EU (Ireland) GovCloud (US) AZ - A AZ - B AZ - A AZ - C Asia Pacific (Tokyo) AZ - B AZ - A AZ - C Global Regions South America (Sao Paulo) Asia Pacific (Sydney) AZ - B AZ - A AZ - B AZ - B AZ - A AZ - B AZ - C Customer Decides Where Applications and Data Reside Note: Conceptual drawing only. The number of Availability Zones (AZ) may vary. 22   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Introduction to AWS | AWS Regions and Availability Zones Cont. Region Availability Zone - A Availability Zone - B Availability Zone - C 23   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Security ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Customer Introduction to AWS | Shared Responsibility Customer Data Platform, Applications, Identity & Access Management Operating System, Network & Firewall Configuration Server-side Encryption (File System and/or Data) Client-side Data Encryption & Data Integrity Authentication Network Traffic Protection (Encryption/Integrity/Identity) AWS Foundation Services Compute AWS Global Infrastructure Storage Database Availability Zones Regions Network Edge Locations 25   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Introduction to AWS | Physical Security !   24x7 trained security guards !   Locations in nondescript, undisclosed facilities !   Two-factor authentication for ingress !   Authorization for data center access 26   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Introduction to AWS | Hardware, Software and Network !   Automated change control process !   Bastion servers that record all access attempts !   Firewall and other boundary devices !   AWS monitoring tools 27   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Introduction to AWS | Security and Compliance Resources LOCATION IMPLEMENTATION DAILY VALIDATION COMPRESSION SOFTWARE DATA SYSTEM COPY STORAGE OFF-LINE PROCESS RECOVERY MEDIA RESTORE INDEX PROCEDURE BACKUP WEEKLY DEVICE INCREMENTAL REMOTE REPORTING POLICY LOCAL DEFFERENTIAL LOG SERVER PROTECTION SCHEDULING FULL ONLINE MONTHLY MONITORING MANAGING CATALOG SECURITY DATABASE !   Secure API access points for encrypted transmission over HTTPS using SSL !   Cryptographic keys and certificates are required for any user or software program to access an AWS API !   Security Groups to let you control external access to your instances 28   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Introduction to AWS | SSL Endpoints SSL Endpoints Security Groups IAM VPC Secure Transmission Instance Firewalls User Accounts Subnet Control Configure firewall settings on instances via Security Groups Create individual IAM accounts so that each of your users has their own security credentials   Create low level networking constraints for resource access, such as public and private subnets, internet gateways, and NATs Establish secure communication sessions (HTTPS) using SSL 29   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Introduction to AWS | Security Groups SSL Endpoints Security Groups IAM VPC Secure Transmission Instance Firewalls User Accounts Subnet Control Configure firewall settings on instances via Security Groups Create individual IAM accounts so that each of your users has their own security credentials   Create low level networking constraints for resource access, such as public and private subnets, internet gateways, and NATs Establish secure communication sessions (HTTPS) using SSL     30   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Introduction to AWS | AWS Multi-tier Security Groups er b Ti We EC2 HTTP EC2 Ports 80 and 443 only open to the internet EC2 EBS SSH Engineering staff have SSH access to the App Tier, which acts as Bastion DB-sync Authorized 3rd parties can be granted SSH access, such as the Database Tier All other internet ports blocked by default 31   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Introduction to AWS | Identity and Access Management (IAM) SSL Endpoints Security Groups IAM VPC Secure Transmission Instance Firewalls User Accounts Subnet Control Configure firewall settings on instances via Security Groups Create individual IAM accounts so that each of your users has their own security credentials   Create low level networking constraints for resource access, such as public and private subnets, internet gateways, and NATs Establish secure communication sessions (HTTPS) using SSL 32   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Introduction to AWS | Account Control AWS Identify and Access Management (IAM) AWS Identity and Access Management (IAM) enables you to securely control access to AWS services and resources for your users. Using IAM, you can create and manage AWS users and groups and use permissions to allow and deny their permissions to AWS resources. First time users should visit the IAM best practices section online. Note: Master IAM accounts should not be used for production systems!!! 33   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Introduction to AWS | Virtual Private Cloud (VPC) SSL Endpoints Security Groups IAM VPC Secure transmission Instance firewalls User  accounts     Create  individual  IAM   accounts  so  that  each   of  your  users  has  their   own  security   credenIals   Subnet control Establish secure communication sessions (HTTPS) using SSL Configure firewall settings on instances via Security Groups   Create low level networking constraints for resource access, such as public and private subnets, internet gateways, and NATs 34   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Introduction to AWS | Certifications and Accreditations !   AWS publishes a Service Organization Controls SOC 1 report !   AWS has achieved ISO 27001 certification !   AWS has achieved FedRAMP compliance, received authorization from the U.S. !   FISMA Moderate level !   Authorities to Operate (ATOs) under the Defense Information Assurance Certification and Accreditation Program (DIACAP) 35   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Introduction to AWS | Additional Resources Additional Resources Here are some additional resources: !   More details and up to date information on Global Infrastructure can be found online: http://aws.amazon.com/about-aws/globalinfrastructure/ !  AWS Management Console: https://console.aws.amazon.com/console/home. !  AWS Security Assurance and Compliance Programs: https://aws.amazon.com/compliance/ !  Security Center: http://aws.amazon.com/security !  IAM Best Practices: http://docs.aws.amazon.com/IAM/latest/UserGuide/IAMBestPractices.html 36   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Introduction to AWS | Module Completion and Summary Summary You have reached the end of this training module. In summary, you have learned: !   How to navigate the AWS Management Console !   Describe the security measures AWS provides !   What is Global Infrastructure 37   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Module 2: AWS Storage ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School AWS Storage | Overview Module Overview This module describes the fundamental elements of AWS Storage with a focus on Amazon Simple Storage Service (S3) and Amazon Elastic Block Store (EBS). 39   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School AWS Storage | Learning Objectives By the end of this training you will be able to: 1 2 3 Identify key AWS storage options. Describe Amazon Elastic Block Store. Create an Amazon S3 bucket and manage associated objects. 40   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School AWS Storage | AWS Storage Products and Services Amazon Elastic Block Store Amazon Simple Storage Service AWS Storage Gateway Amazon Glacier Amazon Import/ Export 41   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School AWS Storage | AWS Storage Products and Services Amazon Elastic Block Store Amazon Simple Storage Service AWS Storage Gateway Amazon Glacier Amazon Import/ Export 42   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School AWS Storage | Amazon Simple Storage Service (S3) Storage for the Internet. Natively online, HTTP access Store and retrieve any amount of data, any time, from anywhere on the web Amazon Simple Storage Service Highly scalable, reliable, fast and durable 43   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School AWS Storage | Amazon S3 Storage Concepts Amazon S3 Concepts !   Amazon S3 stores data as objects within buckets !   An object is comprised of a file and optionally any metadata that Amazon S3 Bucket with Objects describes that file Bucket !  You can have one or more buckets in your account Object !  You can manage control access to the bucket 44   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School AWS Storage | Amazon S3 Concepts - Buckets Amazon S3 Buckets A bucket is a logical container for objects stored in Amazon S3. Every object is contained in a bucket. For example, if the object named photos/puppy.jpg is stored in the johnsmith bucket, then it can be accessed using the URL: http://johnsmith.s3.amazonaws.com/photos/puppy.jpg !   Organize Amazon S3 namespace at highest level !   Identify account – storage and data transfer charges !   Access Control !   Unit of aggregation for usage reporting Amazon S3 Bucket 45   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School AWS Storage | Amazon S3 Concepts - Objects Amazon S3 Objects Objects are the fundamental entities stored in Amazon S3. When using the console, you can think of them as being files. Objects consist of data and metadata. The data portion is opaque to Amazon S3. The metadata is a set of name-value pairs that describe the object. !   Default metadata such as the date last modified !   Standard HTTP metadata such as Content-Type !   Custom metadata at the time the object is stored !   An object is uniquely identified within a bucket by a key (name) Object Bucket w/Objects 46   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School AWS Storage | Amazon S3 Lifecycle Management Lifecycle management defines how Amazon S3 manages objects during their lifetime. Some objects that you store in an Amazon S3 bucket might have a welldefined lifecycle:  !     Log files !   Archive documents !   Digital media archives !   Financial and healthcare records !   Raw genomics sequence data !   Long-term database backups !   Data that must be retained for regulatory compliance 47   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School AWS Storage | Amazon S3 Pricing Bandwidth Used Capacity !   $.085 per GB / Month, pricing for !   All data into AWS is free !   First GB out each month is free !   Additional data out starts at $.12 per US East (Northern Virginia) Region* !   Review Pricing Calculator GB/month* * Pricing in the US at the time this training was developed. 48   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School AWS Storage | Amazon S3 Facts Amazon S3 !   Unlimited number of objects in up to 100 Buckets !   Able to store unlimited number of Objects in a Bucket !   Objects from 0B-5 TB; no bucket size limit !   Designed for 99.999999999% durability and 99.99% availability of objects over a given year !   HTTP/S endpoint to store and retrieve any amount of data, at any time, from anywhere on the web !   Highly scalable, reliable, fast, and inexpensive 49   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School AWS Storage | Amazon Glacier Amazon Glacier Extremely low-cost storage Secure, durable storage for data archiving and backup Optimized for data that is infrequently accessed 50   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School AWS Storage | Amazon Glacier Storage Amazon Glacier !   Offload the administrative burdens of operating and scaling archival storage to AWS, and make retaining data for long periods, whether measured in years or decades, especially simple. !   Optimized for data that is infrequently accessed and for which retrieval times of several hours are suitable. !   Customers can reliably store large or small amounts of data for as little as $0.01 per gigabyte per month (current pricing), a significant savings compared to on-premises solutions, which makes this suitable for information archival. 51   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School AWS Storage | Amazon Elastic Block Store (EBS) Block storage volumes for use with Amazon EC2 instances Snapshots stored durably in Amazon S3 Amazon Elastic Block Store Attach to running instance and expose as a block device 52   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School AWS Storage | Amazon EBS Call CreateVolume 1 GB to 1 TB Vast amounts of unused space Call AttachVolume to affiliate with one EC2 instance Create Attach Attached & In Use Deleted CreateSnapshot •  Format from EC2 instance OS •  Mount formatted drive Snapshot to Amazon S3 Detach Call DeleteVolume Call DetachVolume 53   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School AWS Storage | Amazon EBS Facts Facts about Amazon EBS !   Use for persistent storage !   Can use to create RAID configuration for a server –  You can use RAID 0 or RAID 1+0 (RAID 10) !   Off-instance block storage that persists independently !   Volumes behave like unformatted block devices for Linux or Windows instances 54   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School AWS Storage | Amazon EBS Use Case Amazon EBS !   OS Boot device / root file system; secondary volumes/filesystems !   Typical basis for database storage !   Raw block devices for RAID, some databases 55   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School AWS Storage | Amazon EBS Pricing Pay for what you Provision !   $0.05 per GB/month for standard EBS volume !   $0.05 per 1 million I/O requests !   $0.125 per GB-month for IOPS EBS volume !   $0.10 per provisioned IOPS-month !   Review Pricing Calculator online * Pricing for US East (Northern Virginia) Region at the time this training was developed. Check online for current pricing for all areas. 56   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School AWS Storage | Amazon EBS Best Practices Amazon EBS Volumes are in a Single Availability Zone EBS Volume 1 EBS Volume 2 Availability  Zone  A   Availability  Zone  B   57   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School AWS Storage | Amazon EBS and Amazon S3 Amazon EBS Amazon S3 File system Object store Performance very fast fast Redundancy Within data center Across data centers Security Visible only to your EC2 Public Key / Private Key Pricing * $0.10/GB/month allocated $0.095/GB/month stored Access from the Net? No(2) Yes(1) Typical use case It’s a disk drive Write once, read many Paradigm (1)  Only with proper credentials, unless ACLs are world readable (2)  Accessible from Net if mounted to server and set up as FTP, etc. * Pricing in the US at the time of this training. 58   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School AWS Storage | AWS Storage Gateway Connect an on-premises software appliance with cloud-based storage AWS Storage Gateway Securely upload data to the AWS cloud for cost effective backup and rapid disaster recovery Mirror your on-premises data to Amazon EC2 instances 59   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School AWS Storage | Amazon Import/Export Accelerates moving large amounts of data into and out of Amazon S3 or Amazon EBS Transfers your data directly onto and off of storage devices Uses Amazon highspeed internal network Amazon Import/ Export 60   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School AWS Storage | AWS Import/Export Support Import/Export Support !   Accelerates moving large amounts of data into and out of Amazon S3 or Amazon EBS !   Transfers your data directly onto and off of storage devices !   Uses AWS high-speed internal network AWS Import/Export supports: Import to Amazon EBS Import to Amazon S3 AWS Import/ Export Amazon S3 Amazon EBS Import to Amazon Glacier Export from Amazon S3 Amazon S3 AWS Import/ Export AWS Import/ Export AWS Import/ Export Amazon Glacier 61   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School S3 Demo ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School AWS Storage | Additional Resources Additional Resources Here are some additional resources: !   Yelp Amazon Case Study: http://aws.amazon.com/solutions/case-studies/yelp/ !   Getting Started with Amazon S3 Video: http://www.youtube.com/watch?v=1qrjFb0ZTm8&feature=youtu.be !   Online Pricing Calculator: http://calculator.s3.amazonaws.com/calc5.html !   Glacier: http://aws.amazon.com/glacier/ 63   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School AWS Storage | Module Completion Summary You have reached the end of this training module. In summary, you have learned: !   The key AWS storage options !   What is an Amazon Elastic Block Store !   How to create an Amazon S3 bucket and manage associated objects 64   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Module 3: Compute Services & Networking ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Compute Services & Networking | Overview Module Overview This module describes the fundamental elements of AWS Compute and Networking, with a focus on Amazon Elastic Compute Cloud. This module will build off what you learned in Module 2 by verifying how to use Amazon Elastic Block Storage. 66   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Compute Services & Networking | Learning Objectives By the end of this training you will be able to: 1 2 3 4 Identify the different AWS compute and networking options. Describe what Amazon Virtual Private Cloud is. Create an Amazon Elastic Compute Cloud instance. Verify how to use Amazon Elastic Block Storage. 67   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Compute Services & Networking | AWS Compute Products and Services Amazon Elastic MapReduce Amazon Elastic Compute Cloud Auto Scaling 68   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Compute Services & Networking | AWS Compute Products and Services Amazon Elastic MapReduce Amazon Elastic Compute Cloud Auto Scaling 69   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Compute Services & Networking | Amazon Elastic Compute Cloud (EC2) Resizable compute capacity Complete control of your computing resources Amazon Elastic Compute Cloud Reduces the time required to obtain and boot new server instances to minutes 70   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Compute Services & Networking | Amazon EC2 Facts Facts about Amazon EC2 !   Resizable compute capacity with several instance types !   Reduces the time required to obtain and boot new server instances to minutes or seconds !   Scale capacity as your computing requirements change !   Pay only for capacity that you actually use !   Choose Linux or Windows !   Deploy across Regions and Availability Zones for reliability 71   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Compute Services & Networking | Using Amazon EC2 How to Use Amazon EC2 !   Select a pre-configured, Amazon Machine Image (AMI) to get up and running immediately. Or create an AMI containing your applications, libraries, data, and associated configuration settings. !   Configure security and network access on your Amazon EC2 instance. !   Choose which instance type(s) you want, then start, terminate, and monitor as     many instances of your AMI as needed, using the web service APIs or the variety of management tools provided. !   Determine whether you want to run in multiple locations, utilize static IP endpoints, or attach persistent block storage to your instances. !   Pay only for the resources that you actually consume, like instance-hours or data transfer. 72   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Compute Services & Networking | Amazon Machine Images (AMI) AMIs !   Building blocks of EC2 instances !   An AMI is a template of a computer's root volume !   Can be public or private AMI !   Create gold “Images” of your EC2 infrastructure 73   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Compute Services & Networking | Infrastructure and Applications Infrastructure and Applications !   Oracle !   SAP !   Microsoft !   AMI Marketplace 74   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Compute Services & Networking | Amazon EC2 Instances 256 128 Memory (GB) 64                             32                             16                             8                             4                             2                             1                             1 2 4 8 16 32 EC2 Compute Units (HP) ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.   64 128 75  

AWS Cloud School Compute Services & Networking | Amazon EC2 Instances Pricing Reserved Instances !   1- or 3-year terms On-Demand Instances On-Demand Instances !   Unix/Linux instances !   Light/Medium/Heavy start at $0.02/hour !   Pay low up-front fee, USD in the US receive significant hourly discount !   Helps ensure compute capacity is available when needed ee S Fr er AW e Ti g Usa East Region !   Pay as you go for compute power !   Pay only for what you use, no up-front commitments or longterm contracts Spot Instances !   Bid on unused EC2 capacity !   Spot Price based on supply/demand, determined automatically !   Spot Price below bid, instances start !   Spot Price above bid, instances stop 76   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

Architec<ng  With  AWS   AWS Cloud School Designing for Cost | Billing Options Reserved Instances ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Compute Services & Networking | Leverage all 3 Instances 7000   Compute Resources 6000   5000   Spot 4000   On Demand 3000   2000   Reserved Instances 1000   0   78   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Compute Services & Networking | Compute Example “Public” “Public” EC2 “Classic” EC2 “Classic” AMI Instances Virtual Machine Configuration Running or Stopped VM VPC   VPC   VPC   EBS EBS EBS EBS EBS EBS AZ Availability Zone EBS Snapshots S3 S3 Buckets Region 79   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Elastic Compute Cloud Demo ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Compute Services & Networking | Amazon Elastic MapReduce (EMR) Amazon Elastic MapReduce Easily and cost-effectively process vast amounts of data Process vast amounts of data Utilizes a hosted Hadoop framework 81   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Compute Services & Networking | Amazon EMR Example Metrics Amazon CloudWatch The Amazon EMR job flow runs on a cluster of Amazon EC2 Instances Input Data Amazon EC2 Instance Output Results Amazon Simple Storage Service (S3) Amazon EMR Job Flow 82   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Compute Services & Networking | Amazon Auto Scaling Scale your Amazon EC2 capacity automatically Well suited for applications that experience variability in usage Auto Scaling Available at no additional charge 83   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Compute Services & Networking | Amazon Auto Scaling Cont. 1 2 3 4 5 Elastic Capacity Ease of Use Cost Savings Geographic Actions 84   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Compute Services & Networking | Amazon Auto Scaling Cont. 1 2 3 4 5 Elastic Capacity Ease of Use Cost Savings Geographic Actions With Auto Scaling, you can ensure that the number of Amazon EC2 instances you are using increases seamlessly during demand spikes to maintain performance, and decreases automatically during demand lulls to minimize costs. 85   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Compute Services & Networking | Amazon Auto Scaling Cont. 1 2 3 4 5 Elastic Capacity Ease of Use Cost Savings Geographic Actions Manage your instances spread across either one or several Availability Zones as a single collective entity, using simple command line tools or programmatically via an easy-to-use web service API. Replace lost or unhealthy instances automatically based on predefined thresholds. 86   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Compute Services & Networking | Amazon Auto Scaling Cont. 1 2 3 4 5 Elastic Capacity Ease of Use Cost Savings Geographic Actions Save compute costs by terminating underused instances automatically and launching new instances when you need them, without the need for manual intervention. 87   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Compute Services & Networking | Amazon Auto Scaling Cont. 1 2 3 4 5 Elastic Capacity Ease of Use Cost Savings Geographic Actions Distribute, scale, and balance applications automatically over multiple Availability Zones within a region to support scalability and geographic redundancy. 88   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Compute Services & Networking | Amazon Auto Scaling Cont. 1 2 3 4 5 Elastic Capacity Ease of Use Cost Savings Geographic Actions Schedule scaling actions for future times and dates when you expect to need more or less capacity. 89   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Compute Services & Networking | Trinity of Services Amazon Auto Scaling Elastic Load Balancer Auto Scaling Utilization CloudWatch Metrics 90   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Networking ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Compute Services & Networking | AWS Networking Products and Services Elastic Load Balancing AWS Direct Connect Amazon Virtual Private Cloud Amazon Route 53 92   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Compute Services & Networking | AWS Networking Products and Services Elastic Load Balancing AWS Direct Connect Amazon Virtual Private Cloud Amazon Route 53 93   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Compute Services & Networking | Amazon Virtual Private Cloud (VPC) Provision a private, isolated section of the AWS Cloud where you can launch AWS resources in a virtual network that you define Amazon Virtual Private Cloud Define a virtual network topology that closely resembles a traditional network that you might operate in your own datacenter You have complete control over your virtual networking environment: selection of IP address range, creation of subnets, configuration of route tables, and network gateways 94   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Compute Services & Networking | Amazon VPC Divide your Amazon VPC’s private IP address range into one or more public or private subnets to facilitate running applications and services in your VPC. Create an Amazon Virtual Private Cloud on AWS scalable infrastructure, and specify its private IP address range from any range you choose. Bridge your Amazon VPC and your onsite IT infrastructure with an encrypted VPN connection, extending your existing security and management policies to your Amazon VPC instances as if they were running within your infrastructure. Internet Control inbound and outbound access to and from individual subnets using network access control lists. Amazon  VPC   Attach an Amazon Elastic IP address to any instance in your VPC so it can be reached directly from the Internet. Store data in Amazon S3 and set permissions such that the data can only be accessed from within your Amazon VPC. ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.   95  

AWS Cloud School Compute Services & Networking | Amazon Virtual Private Cloud (VPC) 96   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Compute Services & Networking | AWS Direct Connect AWS Direct Connect All AWS services, including Amazon EC2 and Amazon S3 can be used with AWS Direct Connect Virtual interfaces can be reconfigured at any time Use the same connection to access public resources such as objects stored in Amazon S3 98   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Compute Services & Networking | Networking with AWS Direct Connect AWS Direct Connect !   Create virtual interfaces directly to the AWS cloud, bypassing Internet service providers in your network path. !   An AWS Direct Connect location provides access to Amazon Web Services in the region it is associated with. !   Establish connections with AWS Direct Connect locations in multiple regions. !   A connection in one region does not provide connectivity to other regions. 99   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Compute Services & Networking | Amazon Route 53 Route end users to Internet applications Provides secure and reliable routing to your application instances Amazon Route 53 Answers DNS queries with low latency by using a global network of DNS servers 100   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Compute Services & Networking | Networking with Amazon Route 53 Amazon Route 53 !   Answers DNS queries with low latency by using a global network of DNS servers. !   Queries for your domain are automatically routed to the nearest DNS server, and thus answered with the best possible performance. !   You pay only for managing domains through the service and the number of queries that the service answers. 101   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Compute Services & Networking | Elastic Load Balancing (ELB) Dynamically grows and shrinks required resources based on traffic Elastic Load Balancing Supports health checks to ensure detect and remove failing instances Supports the routing and load balancing of HTTP, HTTPS, and TCP traffic to Amazon EC2 instances 102   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Compute Services & Networking | Amazon ELB 103   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Load Balancer Demo ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Compute Services & Networking | Additional Resources Additional Resources Here are some additional resources: !   Amazon EC2 Instance Types: http://aws.amazon.com/ec2/instance-types/ !  Service Documentation: http://aws.amazon.com/documentation !  White Papers: http://aws.amazon.com/whitepapers !  AWS Free Usage Tier: http://aws.amazon.com/free/ !  AWS Support: http://aws.amazon.com/premiumsupport/ !  APN Partners supporting AWS Direct Connect: http://aws.amazon.com/directconnect/partners/ !  AWS Security Process: http://d36cz9buwru1tt.cloudfront.net/pdf/AWS_Security_Whitepaper.pdf 105   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Compute Services & Networking | Module Completion Summary You have reached the end of this training module. In summary, you have learned: !   Amazon Virtual Private Cloud lets you provision a logically isolated section with complete control over your virtual networking environment, including IP address range, creation of subnets, and configuration of route tables and network gateways !   VPN and Direct Connect allows you to leverage the AWS cloud as an extension of your corporate datacenter !   Elastic Load Balancing service provides load balancing across multiple instances in a region !   Amazon Route 53 is a highly available scalable Domain Name System (DNS) web service 106   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Module 4: Managed Services & Database AWS Essentials ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Managed Services & Database | Overview Module Overview This module describes the fundamental elements of AWS Managed Services and Databases (RDS). This module will focus on key aspects of Amazon Relational Database Service and how to execute Amazon RDS. 108   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Managed Services & Database | Learning Objectives By the end of this training you will be able to: 1 2 3 Describe Amazon DynamoDB. Verify the key aspects of Amazon Relational Database Service. Execute Amazon Relational Database Service. 109   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Managed Services & Database | Product and Services Amazon DynamoDB Amazon Relational Database Service Amazon Redshift Amazon ElastiCache 110   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Managed Services & Database | Product and Services Amazon DynamoDB Amazon Relational Database Service Amazon Redshift Amazon ElastiCache 111   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Managed Services & Database | Amazon Relational Database Service Cost-efficient and resizable capacity Amazon Relational Database Service Manages time-consuming database administration tasks Access to the full capabilities of a familiar MySQL, PostgreSQL, Oracle and SQL Server database 112   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Managed Services & Database | Amazon RDS Amazon Relational Database Services (RDS) !   Easy to set up, operate, and scale a relational database in the cloud !   Cost-efficient and resizable capacity while managing time-consuming database administration tasks !   Access to the full capabilities of a familiar MySQL database !   Automatically patches the database software and backs up your database !   Ability to scale the compute resources or storage capacity associated with your relational database instance via a single API call. 113   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Managed Services & Database | Amazon RDS & VPC Amazon RDS & VPC !   You can select your own IP address range. !   Create subnets, and configure routing and access control lists. !   The basic functionality of Amazon RDS is the same whether it is running in a VPC or not: Amazon RDS manages backups, software patching, automatic failure detection, and recovery. !   There is no additional cost to run your DB instance in a VPC. 114   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Managed Services & Database | Amazon DynamoDB Amazon DynamoDB Store any amount of data – no limits Fast, predictable performance using SSDs Easily provision and change the request capacity needed for each table 115   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Managed Services & Database | Database Considerations If You Need Consider Using A relational database service with minimal administration Amazon RDS, a fully managed service that offers a choice of MySQL, Oracle or SQL Server database engines, scale compute & storage, Multi-AZ availability and more. A fast, highly scalable NoSQL database service Amazon DynamoDB, a fully managed service that offers extremely fast performance, seamless scalability and reliability, low cost and more. A relational database you can manage on your own Your choice of relational AMIs on Amazon EC2 and Amazon EBS that provide scale compute & storage, complete control over instances, and more. 116   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Managed Services & Database | Amazon RDS and DynamoDB Factors Relational (RDS) • Existing database apps • Business process-centric apps Application Type NoSQL (DynamoDB) •  New Web scale applications •  Large # of small writes and reads Example: Financial transactions, Example: Web, social, mobile apps, ERP apps, Multi-stage approval shopping cart, order mgt, user preferences flows • Relational data models, transactions Application Characteristics • Complex queries, joins and updates • Simple data models, transactions • Range queries, simple updates Scaling Application or DBA architected (clustering, partitions, sharding) Seamless, on-demand scaling per application needs QoS •  Performance – depends on •  Performance – Automatically optimized by data model, indexing, query, the system and storage optimization •  Reliability and availability – Managed •  Reliability and availability – •  Durability – Managed Managed Durability – Managed Skill Set Existing programming skills – SQL + Programming languages Web style programming – queries managed through programming and developers 117   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Managed Services & Database | Amazon ElastiCache Memcached compliant cache cluster on-demand Amazon ElastiCache Seamlessly caches in front of Amazon RDS instances Manages patching, cache node failure detection and recovery 118   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Managed Services & Database | Amazon Redshift Petabyte-scale service that manages all the work need to set up, operate, and scale a data warehouse cluster Amazon Redshift Continuously monitors the health of the cluster and replaces any component Dramatically reduces IO 120   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Managed Services & Database | Amazon Redshift Facts Amazon Redshift Amazon Redshift manages all the work needed to set up, operate, and scale a data warehouse cluster, from provisioning capacity to monitoring and backing up the cluster, to applying patches and upgrades. Scaling a cluster to improve performance or increase capacity is simple and incurs no downtime. The service continuously monitors the health of the cluster and automatically replaces any component, if needed. Redshia   Redshia   Redshia   121   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Amazon RDS Demo ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Managed Services & Database | Additional Resources Additional Resources Here are some additional resources: !   Service Documentation: http://aws.amazon.com/documentation !   Pricing Calculator: http://aws.amazon.com/calculator/ !   Economics: http://aws.amazon.com/economics/ !   Pricing details for all services: http://aws.amazon.com/pricing/ !   Solutions Case Studies: http://aws.amazon.com/solutions/case-studies !   Marketing Overview Materials: http://aws.amazon.com !   Videos & Webinars: http://www.youtube.com/AmazonWebServices !   AWS Blog: http://aws.typepad.com/ 123   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Managed Services & Database | Module Completion Summary You have reached the end of this training module. In summary, you have learned: !   Describe Amazon DynamoDB !   Verify key aspects of Amazon Relational Database Service (RDS) !   How to execute Amazon RDS 124   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Module 5: Deployment Management AWS Essentials ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Deployment Management | Overview Module Overview This module describes the fundamental elements of AWS deployment management products and services. 126   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Deployment Management | Learning Objectives By the end of this training you will be able to: 1 2 3 Identify AWS CloudFormation. Describe Amazon CloudWatch metrics and alarms. Describe Amazon IAM. 127   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Deployment Management | Product and Services Amazon CloudWatch AWS Identity and Access Management Amazon CloudFormation Amazon Elastic Beanstalk 128   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Deployment Management | AWS Identity and Access Management Create and manage AWS users and groups and use permissions to allow and deny their permissions to AWS resources Enables identity federation between your corporate directory and AWS services AWS Identity and Access Management Use existing corporate identities to grant secure access to AWS resources, such as Amazon S3 buckets, without creating new AWS identities for those users 129   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Deployment Management | Using AWS Identity and Access Management 1 2 3 Manage AWS IAM roles and their permissions Manage AWS IAM users and their access Manage federated users and their permissions Create roles in AWS IAM, and manage permissions to control which operations can be performed by the entity, or AWS service, that assumes the role. Create users in AWS IAM, assign them individual security credentials or request temporary security credentials to provide users access to AWS services and resources. Enable identity federation to allow existing identities (e.g. users) in your enterprise to access the AWS Management Console, to call AWS APIs, and to access resources, without the need to create an IAM user for each identity.. Define which entity is allowed to assume the role. Manage permissions in order to control which operations a user can perform. 130   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Deployment Management | Amazon CloudWatch Amazon CloudWatch Accessible via AWS Management Console, APIs, SDK, or CLI Visibility into resource utilization, operational performance, and overall demand patterns Custom application-specific metrics of your own 131   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Deployment Management | AWS CloudWatch Facts AWS CloudWatch !   Visibility into resource utilization, operational performance, and overall demand patterns !   Metrics including CPU utilization, disk reads and writes, and network traffic !   Custom application-specific metrics of your own !   Accessible via AWS Management Console, APIs, SDK, or CLI 132   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Deployment Management | Amazon Elastic Beanstalk Simply upload your application Retain full control over the AWS resources powering your application Automatically handles the deployment details of capacity provisioning, load balancing, auto scaling, and application health monitoring Amazon Elastic Beanstalk 133   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Deployment Management | AWS Elastic Beanstalk Facts AWS Elastic Beanstalk !   Quickly deploy and manage applications in the AWS cloud without worrying about the infrastructure that runs those applications. !   Reduce management complexity without restricting choice or control. 134   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Deployment Management | Amazon CloudFormation Amazon CloudFormation Create templates of stack of resources Deploy stack from template with runtime parameters Use templates as a starting point or create your own 135   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Deployment Management | Deployment and Management Amazon CloudFormation Deployment and Management !   Templates are simple JSON formatted text files !   CloudFormer supports generating templates from running environments "Resources" : {! "Ec2Instance" : {! "Type" : "AWS::EC2::Instance",! "Properties" : {! "SecurityGroups" : [ { "Ref" : "InstanceSecurityGroup" } ],! "ImageId" : { "Fn::FindInMap" : [ "RegionMap", { "Ref" : "AWS::Region" }, "AMI" ]},! "Tags" : [{! "Key" : "MyTag",! "Value" : "TagValue"! }]! }! },! 136   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Deployment Management | Deployment and Management Amazon CloudFormation Deployment and Management Use AWS CloudFormation’ s sample templates or create your own templates to describe the AWS resources, and any associated dependencies or runtime parameters, required to run your application. Template   AWS  CloudFormaIon   Stack   Deploy and update a template and its associated collection of resources “called a stack” via the AWS Management Console, AWS CloudFormation command line tools or APIs. CloudFormation is available at no additional charge, and you pay only for the AWS resources needed to run your applications. 137   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Deployment Management | Additional Resources Additional Resources Here are some additional resources: !   AWS CloudFormation Sample Templates: https://aws.amazon.com/cloudformation/aws-cloudformation-templates/ !  AWS User Groups: http://aws.amazon.com/usergroups/ 138   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Deployment Management | Module Completion Summary You have reached the end of this training module. In summary, you have learned: !   The key fundamental elements of AWS deployment management products and services. 139   ©  2013  Amazon  Web  Services,  Inc.  and  its  affiliates.  All  rights  reserved.  

AWS Cloud School Completion | Training Next Steps 140   ©  2013  Amazon  Web  Services,  Inc.  and  its

Add a comment

Related presentations

Related pages

Cloud Certified Professional (CCP) - Cloud School - Home

The Cloud Certified Professional (CCP ™) program from the Arcitura ™ Cloud School is dedicated to excellence in the fields of cloud computing ...
Read more

Cloudschool

Share. Cloudschool.org makes sharing ready-to-teach content with your colleagues simple. Easily send Lessons and entire Courses to other Users. We’re ...
Read more

Terms of Use - Cloudschool

Cloudschool Pty Ltd Terms of Use Agreement. Last Modified: October 13, 2014. Welcome. Thanks for using our Cloudschool products and services (“Services”).
Read more

Cloud Certified Professional (CCP) - Cloud School ...

Cloud School > Workshops > Certification Workshop - (Las Vegas, NV, United States) Cloud Certification Workshop Las Vegas, NV, United States. Register.
Read more

Cloudschool.org

Cloudschool.org. 13,408 likes · 6 talking about this. Cloudschool.org is the easiest way for educators and institutions to manage teaching content.
Read more

2014 Microsoft Partner of the Year Award winner: Webzavod

2014 Microsoft Partner of the Year Award winner: Webzavod Webzavod has been named as Microsoft’s Collaboration and Content Partner of the Year Award Winner.
Read more

Cloud Certified Professional (CCP) - Online Store

Global Provider of Vendor-Neutral Cloud Computing Training and Certification
Read more

cloud-school · GitHub - GitHub · Where software is built

Updated Jan 28, 2014. Go 0 394 heka. forked from mozilla-services/heka. Data collection and processing made easy. Updated Jan 28, 2014. Go 0 ...
Read more