Skip to main content

Aws services overview for AWS Certified Solutions Architect – Associate Exam


AWS Services Overview For AWS Certified Solutions Architect – Associate Exam



The AWS Certified Solutions Architect - Associate examination is intended for individuals who perform a solutions architect role and have one or more years of hands-on experience designing available, cost-efficient, fault-tolerant, and scalable distributed systems on AWS.
Well, preparing for the exam and taking notes by watching content and reading blogs is kinda like more hurdles. So I am sharing this consolidated short overview of each AWS service which are needed to cover for the exam.

AWS Compute services


1)    EC2 - Amazon Elastic Compute Cloud (Amazon EC2) is a web service that provides resizable compute capacity in the cloud. It is designed to make web-scale computing easier for developers. i.e. its a virtual machine inside the aws platform. It can have physical dedicated machines under EC2.
2)    EC2 container service - Where you can manage/run docker containers at scale.
3)    Elastic Beanstalk -  has predefined templates for uploading code of specific programming languages and load balancer, ec2 instances.
4)    AWS Lambda - No need to worry about OS or physical or virtual machines. All you think about is your code.
5)    LightSail - Virtual private server service. This is for people who don't want to understand the vpc or security groups. It simply gives you the IP address to login. Where you can login into your server via RDP for windows and ssh for linux And it also provides a cool management console to manage the server.
6)    AWS Batch -  To do the batch computing in the cloud.




Storage

1)    S3 (Simple Storage Service)  - This is a object based storage. It has buckets to upload the files into the cloud.
2)    EFS (Elastic File System) - This is a network connected file storage. It can be mounted into the virtual machines.
3)    Glacier - For archiving the files. It's a cold storage.It is used  When files needed to be stored but accessed very rarely.
4)    Snowball - When large amount of data to be transmitted to aws rather than using broadband connection to upload the data. Aws sends a physical device to transfer the data and then they import it to aws data center manually.
5)    Storage gateway - on-premises software appliance with cloud-based storage to provide seamless and secure integration between your on-premises IT environment and the AWS storage infrastructure in the cloud.




Database

1)    RDS - relational database such as mysql, postgresQL and amazon has its own relational database Aurora.
2)    DynamoDB - NoSQL database.
3)    Elasticache - It is for caching rather than querying the db. It will free up database service.
4)    RedShift : Data Warehousing for the business intelligence .



Migrations
1)    AWS Migration Hub
2)    Application Discovery Service
3)    Server Migration Service
4)    Database Migration Service
5)    Snowball


Networking and Content Delivery Service

1)    VPC - Amazon virtual private cloud
2)    CloudFront - Stores media at edge locations for low latency media file access.
3)    Route53 - Amazon’s DNS service.
4)    API gateway - creating apis to access aws services and used in serverless website.
5)    Direct Connect - creating direct line from corporate office datacenter to aws or aws vpc.


Developer Tools (Not covered in solution architect associate)

1)    Code Star
2)    Code Commit - version controlling system to store and manage your code
3)    Code Build - Compile, build the code, Run test cases and produce software packages which are ready to deploy.
4)    Code Deploy - Deploying the applications on the EC2 or lambda.
5)    Code Pipeline - Continuous Delivery service to visualize, modularize and automate the steps to required to release the software.
6)    X-Ray - To debug and analyse issues and performance and the bottlenecks of the the each service.
7)    Cloud9 - ide for writing for the code directly on cloud.


Management Tools

1)    CloudWatch - Its a monitoring service for aws services.
2)    Cloud Formation - its a way of scripting infrastructure. Reusing the script to deploy the infrastructure in the another region.
3)    CloudTrail - Triggers internal api call and logs the cloud activities done by the user or aws services. Store logs for a week only by default.
4)    AWS Config - Visualize the aws cloud configuration by moving the the time behind. Example: you have 2 ec2 instances on feb 2018 and Aug 2018 you have 4 instances.
5)    AWS OpsWork - AWS OpsWorks is a configuration management service that provides managed instances of Chef and Puppet. Chef and Puppet are automation platforms that allow you to use code to automate the configurations of your servers. OpsWorks lets you use Chef and Puppet to automate how servers are configured, deployed, and managed across your Amazon EC2 instances or on-premises compute environments. OpsWorks has three offerings, AWS Opsworks for Chef Automate, AWS OpsWorks for Puppet Enterprise, and AWS OpsWorks Stacks.
6)    Service Catalog ( Not Included in Associate Solution Architect )
7)    Systems manager ( Not Included in Associate Solution Architect )
8)    Trusted Adviser - It advices for aws account. For services which are being used. Cost of services and security loopholes or unnecessary ports opened.
9)    Managed Services :  AWS Managed Services provides ongoing management of your AWS infrastructure so you can focus on your applications.


Media Services (Not covered in any exam)

1)    Elastic Transcoder - Convert or transcode media files from their source format into versions that will playback on devices like smartphones, tablets and PCs.
2)    Media Convert
3)    Media Live - stream high quality media across multiple devices like tv, set top box, laptop etc.
4)    Media Package
5)    Media Store
6)    Media Tailor


Machine Learning (Not covered in any exam)

1)    Sage Maker
2)    Comprehend
3)    Deep lense
4)    Lex
5)    Machine Learning
6)    Polly - text to speech in human voice.
7)    Rekognition - Recognizes the images and videos.
8)    Amazon Translate - Translation from one language to another.
9)    Amazon Transcribe - Takes any mp3 file or video and convert it into text.

Analytics

1)    Athena -  Amazon Athena is an interactive query service that makes it easy to analyze data in Amazon S3 using standard SQL. Athena is serverless, so there is no infrastructure to manage, and you pay only for the queries that you run.

2)    *Elastic MapReduce (EMR) - Amazon EMR provides a managed Hadoop framework that makes it easy, fast, and cost-effective to process vast amounts of data across dynamically scalable Amazon EC2 instances. You can also run other popular distributed frameworks such as Apache Spark, HBase, Presto, and Flink in Amazon EMR, and interact with data in other AWS data stores such as Amazon S3 and Amazon DynamoDB.

3)    CloudSearch - Cloud bases search service that automates and indexes data on fly.

4)    ElasticSearch - Elasticsearch is an open-source, RESTful, distributed search and analytics engine built on Apache Lucene. commonly used for log analytics, full-text search, and operational intelligence use cases.

5)    *Kinesis - Amazon Kinesis makes it easy to collect, process, and analyze real-time, streaming data so you can get timely insights and react quickly to new information. Amazon Kinesis enables you to process and analyze data as it arrives and respond instantly instead of having to wait until all your data is collected before the processing can begin.

6)    Kinesis video stream - Amazon Kinesis Video Streams makes it easy to securely stream video from connected devices to AWS for analytics, machine learning (ML), and other processing.

7)    Quicksight ( Not Included in any exam )

8)    *Data Pipeline - AWS Data Pipeline is a web service that helps you reliably process and move data between different AWS compute and storage services, as well as on-premises data sources, at specified intervals. With AWS Data Pipeline, you can regularly access your data where it’s stored, transform and process it at scale, and efficiently transfer the results to AWS services such as Amazon S3, Amazon RDS, Amazon DynamoDB, and Amazon EMR.
9)    Glue (Not Included in any exam ) AWS Glue is a fully managed extract, transform, and load (ETL) service that makes it easy for customers to prepare and load their data for analytics.


Security, Identity & Compliance

1)    IAM (Identity access management) -  AWS Identity and Access Management (IAM) enables you to manage access to AWS services and resources securely. Using IAM, you can create and manage AWS users and groups, and use permissions to allow and deny their access to AWS resources.

2)    Cognito -  Amazon Cognito lets you add user sign-up, sign-in, and access control to your web and mobile apps quickly and easily. Amazon Cognito scales to millions of users and supports sign-in with social identity providers, such as Facebook, Google, and Amazon, and enterprise identity providers via SAML 2.0.

3)    Guard Duty (Not Included in any exam) - monitors malicious activities on aws account.

4)    Inspector - Amazon Inspector is an automated security assessment service that helps improve the security and compliance of applications deployed on AWS. Amazon Inspector automatically assesses applications for vulnerabilities or deviations from best practices. After performing an assessment, Amazon Inspector produces a detailed list of security findings prioritized by level of severity. These findings can be reviewed directly or as part of detailed assessment reports which are available via the Amazon Inspector console or API. It can be scheduled.

5)    Maise - scans the s3 bucket and gather personally identified information like phone no, credit card details, social security number.

6)    *Certificate Manager - generate or upload SSL certificates for the domains added to Route53.

7)    Amazon HSM (Hardware security module) - AWS CloudHSM is a cloud-based hardware security module (HSM) that enables you to easily generate and use your own encryption keys on the AWS Cloud. With CloudHSM, you can manage your own encryption keys using FIPS 140-2 Level 3 validated HSMs.

8)    Directory Service - AWS Directory Service for Microsoft Active Directory, also known as AWS Microsoft AD, enables your directory-aware workloads and AWS resources to use managed Active Directory in the AWS Cloud. AWS Microsoft AD is built on actual Microsoft Active Directory and does not require to synchronize or replicate data from your existing Active Directory to the cloud.


9)    AWS WAF (Web Application Firewall) - AWS WAF is a web application firewall that helps protect your web applications from common web exploits that could affect application availability, compromise security, or consume excessive resources. AWS WAF gives you control over which traffic to allow or block to your web applications by defining customizable web security rules. You can use AWS WAF to create custom rules that block common attack patterns, such as SQL injection or cross-site scripting, and rules that are designed for your specific application. New rules can be deployed within minutes, letting you respond quickly to changing traffic patterns. Also, AWS WAF includes a full-featured API that you can use to automate the creation, deployment, and maintenance of web security rules.

10) *AWS Shield -AWS Shield is a managed Distributed Denial of Service (DDoS) protection service that safeguards applications running on AWS. AWS Shield provides always-on detection and automatic inline mitigations that minimize application downtime and latency, so there is no need to engage AWS Support to benefit from DDoS protection. There are two tiers of AWS Shield - Standard and Advanced.
All AWS customers benefit from the automatic protections of AWS Shield Standard, at no additional charge. AWS Shield Standard defends against most common, frequently occurring network and transport layer DDoS attacks that target your web site or applications. When you use AWS Shield Standard with Amazon CloudFront and Amazon Route 53, you receive comprehensive availability protection against all known infrastructure (Layer 3 and 4) attacks.
For higher levels of protection against attacks targeting your applications running on Amazon Elastic Compute Cloud (EC2), Elastic Load Balancing (ELB), Amazon CloudFront, and Amazon Route 53 resources, you can subscribe to AWS Shield Advanced.
 In addition to the network and transport layer protections that come with Standard, AWS Shield Advanced provides additional detection and mitigation against large and sophisticated DDoS attacks, near real-time visibility into attacks, and integration with AWS WAF, a web application firewall. AWS Shield Advanced also gives you 24x7 access to the AWS DDoS Response Team (DRT) and protection against DDoS related spikes in your Amazon Elastic Compute Cloud (EC2), Elastic Load Balancing (ELB), Amazon CloudFront, and Amazon Route 53 charges.





Mobile Services (Not Included in Associate Solution Architect)

1)    Mobile Hub
2)    Pinpoint
3)    App Sync - real time data sync like firebase
4)    Device Farm - test app on multiple real devices.
5)    Mobile Analytics


AR and VR (Not covered in any exam)

1)    Amazon Sumerian


Application Integrations

1)    Step Functions -(Not Included in any exam) AWS Step Functions makes it easy to coordinate the components of distributed applications and microservices using visual workflows. Building applications from individual components that each perform a discrete function lets you scale and change applications quickly. Step Functions is a reliable way to coordinate components and step through the functions of your application.
Example - Invoke one lambda function after another. Or run it simultaneously. And out put it to third. 

2)    Amazon MQ - (Not Included in any exam)

3)    SNS - Amazon Simple Notification Service (SNS) is a flexible, fully managed [1] pub/sub messaging and mobile notifications service for coordinating the delivery of messages to subscribing endpoints and clients.
With SNS you can fan-out messages to a large number of subscribers, including distributed systems and services, and mobile devices. It is easy to set up, operate, and reliably send notifications to all your endpoints – at any scale

4)    SQS - Amazon Simple Queue Service (SQS) is a fully managed message queuing service that enables you to decouple and scale microservices, distributed systems, and serverless applications. SQS eliminates the complexity and overhead associated with managing and operating message oriented middleware, and empowers developers to focus on differentiating work. Using SQS, you can send, store, and receive messages between software components at any volume, without losing messages or requiring other services to be available.

5)    SWF (Simple Flow Service) - Amazon SWF helps developers build, run, and scale background jobs that have parallel or sequential steps. You can think of Amazon SWF as a fully-managed state tracker and task coordinator in the Cloud.

Customer Engagement

1)    Amazon Connect - Amazon Connect is a self-service, cloud-based contact center service that makes it easy for any business to deliver better customer service at lower cost. Amazon Connect is based on the same contact center technology used by Amazon customer service associates around the world to power millions of customer conversations.
The self-service graphical interface in Amazon Connect makes it easy for non-technical users to design contact flows, manage agents, and track performance metrics – no specialized skills required.

2)    SES (Simple Email Service) - Amazon Simple Email Service (Amazon SES) is a cloud-based email sending service designed to help digital marketers and application developers send marketing, notification, and transactional emails. It is a reliable, cost-effective service for businesses of all sizes that use email to keep in contact with their customers.


Business Productivity

1)    Alexa For Business (Not Included in any exam)
2)    Amazon Chime - online meetings (Not Included in any exam)
3)    Amazon WorkDocs - Share and view documents. It is a fully managed, secure enterprise storage and sharing service with strong administrative controls and feedback capabilities that improve user productivity.
4)   Amazon WorkMail (Not Included in any exam)- Business email and calendar service.


Desktop and App Streaming

1)    Workspaces - Amazon WorkSpaces is a managed, secure cloud desktop service. You can use Amazon WorkSpaces to provision either Windows or Linux desktops in just a few minutes and quickly scale to provide thousands of desktops to workers across the globe.
2)    Appstream 2.0 - Amazon AppStream 2.0 is a fully managed application streaming service. You centrally manage your desktop applications on AppStream 2.0 and securely deliver them to a browser on any computer. You can easily scale to any number of users across the globe without acquiring, provisioning, and operating hardware or infrastructure.


Internet Of Things (Not covered in any exam)

1)    IOT
2)    IOT Device Management
3)    Amazon FreeRTOS
4)    Greengrass

Game Development (Not covered in any exam)
1)     GameLift

Services For Solution Architect Associate


 

That’s it!

If you have any insights, corrections or recommendations about AWS Certified Solutions Architect – Associate. Email me at aniketkarne@hotmail.com

Thank you for taking out some time to read my article. Appreciate It!

Happy Reading..


Comments

  1. The information which you have provided in this blog is really useful to everyone. Thanks for sharing.
    AWS Training in Ameerpet

    ReplyDelete
    Replies
    1. Great Article
      Cloud Computing Projects


      Networking Projects

      Final Year Projects for CSE


      JavaScript Training in Chennai

      JavaScript Training in Chennai

      The Angular Training covers a wide range of topics including Components, Angular Directives, Angular Services, Pipes, security fundamentals, Routing, and Angular programmability. The new Angular TRaining will lay the foundation you need to specialise in Single Page Application developer. Angular Training

      Delete

Post a Comment

Popular posts from this blog

Auto Scaling DynamoDB

Those of you who have worked with the DynamoDB long enough, will be aware of the tricky scaling policies of DynamoDB. It allows user to explicitly set requests per second (units per second, but for simplicity we will just say request per second). User can do so for read as well as write operations. Anytime user can increase or decrease the provision capacity from DynamoDB web console and it will reflect immediately. Sounds all good....... Or not? What if you set provisioned capacity to 50 req per second but load on the server crosses 100 req per second? Requests gets throttled!! Mostly times out. What's worse? This can cause requests getting queued up in your web server. Which can potentially bring your entire server down. What if you set provisioned capacity to 1000 req per second but load on the server is only 100 req per second through out the day? You lose your hard earned money for remaining 900 req per second. What if you set it to 1000 req per sec and then realis

StackDriver Integration with AWS Elastic Beanstalk - Part 2

Eb Extension Config Our goal is to create a configuration such that, it can run on any elastic beanstalk instance. It should send production and non-production logs to two seperate Stackdriver projects. Adding monitoring for new log file should include minimal changes at best. If you have used Elastic Beanstalk before, probably you will be familiar with eb-extensions scripts. These are the set of commands those run everytime application is deployed on the EB. Step 1: Create folder .ebextension in your WEB-ROOT directory.  EB by default looks for ".config" files under .ebextension directory and executes on app-deployment. Add sub-directory called "stackdriver" under .ebextension directory that you just created. Step 2: Add google-fluentd.conf file in stackdriver directory.  Fluent-d agent runs on this configuration. This file tells the fluentd where to look for log files. Following sample file configures fluentd to check for app.log and billing.log files.