Introduction to the AWS Command Line Interface (CLI)

Use the Command Line to Deploy/Modify/Manage/Automate infrastructure on AWS.

Created byBipra Tech, Cloud Yeti

Last updated 4/2026

English

What you'll learn

Use the Command Line Interface to deploy AWS resources
Setup multiple Profiles with Multiple Access Keys to quickly switch between permissions or accounts
Automatically Sync local files to S3 at specified time.
Create and invoke Lambda Functions using the command line
Build a VPC using the command line
Deploy Cloudformation templates to create Stacks with AWS CLI
Deploy EC2 instances and create a custom dashboard to view running instances on the command line.
Create IAM users, access keys , roles using the command line

Course content

12 sections • 42 lectures • 6h 21m total length

Course Introduction3:53
Working through the AWS console might not always be the option or choice for many folks. You might want to bypass a lot of the clicks needed to launch an instance or upload a file to S3. Thankfully AWS has a really intuitive CLI for major, if not all services for exactly these kind of problems.

In this course, we will go through the steps to work with various AWS services like S3, EC2, VPC, Lambda, IAM, CloudFormation etc using the AWS CLI.
Course Files on Github0:03
I have assembled all the course files that we will be using on a GitHub repo. Download this repo by executing command: $ git clone https://github.com/ravsau/AWS-CLI-Commands or just downloading the repo from github.

Use CLI to work with S3 and backup you local files automatically to S3 with cron19:33
Intro to S3 Server Side Encryption with the AWS CLI2:54
AWS provides various options to encrypt your data on S3.

There are 2 types of encryption:

Client side: Client encrypts locally using tool/software of their choices
Server Side encryption: Choose from available choices in AWS

In this video, our focus will be Server Side Encryption(SSE) since Client side is open to your preference/choices/requirement.

Server Side has 3 types of encryption as well:

SSE-S3: One click encryption
SSE-KMS: Using KMS
SSE-C: Not available in console. Customer provides the keys
How to implement Server Side Encryption via the AWS Console3:58
SSE-S3 with the AWS CLI3:45
Encrypt a file using SSE S3:

$ aws s3 cp abcd.txt s3://kms-test11 --sse
Create a KMS key to use with SSE-KMS with the CLI6:32
Amazon S3 SSE-KMS with the the AWS CLI7:36
AWS S3 Server Side Encryption : SSE-C with the AWS CLI13:48
Amazon S3 Default Encryption for S3 Buckets with the AWS CLI12:57
S3 Multipart upload with the AWS CLI21:51
Reference Article: https://aws.amazon.com/premiumsupport/knowledge-center/s3-multipart-upload-cli/
Bonus Lesson: Cross Account S3 Bucket access using Bucket Policy and AWS CLI19:39
We will need 2 accounts for this lesson. Account A will provide access to Account B on one of A’s bucket.

On Account A — Create a new Bucket:

Add some items into the bucket.

Enter this policy text in one the bucket policy of the Account A. Change the Account ID and bucket Name:

{

“Version”: “2012-10-17”,

“Statement”: [

{

“Sid”: “Example permissions”,

“Effect”: “Allow”,

“Principal”: {

“AWS”: “arn:aws:iam::771452637355:root”

},

“Action”: “s3:*”,

“Resource”: [

“arn:aws:s3:::my-buicketsdsdsd”,

“arn:aws:s3:::my-buicketsdsdsd/*”

]

}

]

}

** if you remove the second line from the resource section, then you cannot copy the files inside the bucket and only list the bucket. With the second line you get access to every object inside the bucket.

From Account B’s access credentials use AWS CLI and enter this command:

$ aws s3 ls bucketname

You should be able to list the bucket and copy content from another account.

Now try adding this to the bucket policy and get finer controls:

{

“Version”: “2012-10-17”,

“Statement”: [

{

“Sid”: “Example permissions”,

“Effect”: “Allow”,

“Principal”: {

“AWS”: “arn:aws:iam::771452637355:root”

},

“Action”: “s3:*”,

“Resource”: [

“arn:aws:s3:::my-buicketsdsdsd”,

“arn:aws:s3:::my-buicketsdsdsd/*”

]

},

{

“Sid”: “Deny permission”,

“Effect”: “Deny”,

“Principal”: {

“AWS”: “arn:aws:iam::771452637355:root”

},

“Action”: “s3:GetObject”,

“Resource”: “arn:aws:s3:::my-buicketsdsdsd/*”

}

]

}
Bonus Lesson: Generate a pre signed URL for a S3 object4:35
CLI Reference: https://docs.aws.amazon.com/cli/latest/reference/s3/presign.html

CLI EC2 Intro2:03
Do more with EC2 CLI22:34
Creating an Amazon Machine Image (AMI) with the Command Line interface23:55
Github repo link :https://github.com/ravsau/AWS-CLI-Commands
In this lesson, our aim is to create an Amazon Machine Image commonly referred to as an AMI that we can use to launch instances in the future.

So far, we’ve been mostly using the Amazon Linux AMI. Now we can create our own AMI’s.

AMI essentially saves the configurations of a server when the image is created so If I create an image of my web server, I can launch other web servers and have a web server running immediately after they launch.

This means that we don’t have to install a web server every time we provision a new web server. In today’s example, we will only install a web server, but you can create an AMI with any software installed, and use that to launch an EC2 instance.

Step 1: We will use the user data to launch an EC2 instance. We will be using a file that has a bootstrap script containing the commands to launch and start a web server. We will pass that file with the run-instances command.

Launch an EC2 Instance and save the instance ID into an environment variable

instance_id=$(aws ec2 run-instances --i --instance-type t2.micro --key-name MyKeyPair1 --user-data file://userdata.txt --query 'Instances[*].[InstanceId]' --output text )

Step 2: Check the user data worked and the web server is running by typing the web server IP on a browser and verifying you see “Hello World”

Step 3: Create an image from that instance ID and save the image id to a variable image_id

image_id=$(aws ec2 create-image --instance-id $instance_id --name "My server" --description "An AMI for my webserver" --query ImageId --output text)

step 4: use that image to launch an instance

aws ec2 run-instances --image-id $image_id --instance-type t2.micro --key-name MyKeyPair1 --query 'Instances[*].[InstanceId]' --output text

i-03c84ceb5391371b6

Step 5: verify the web server is running by typing the IP address on a browser

Thanks, and see you in the next lesson.

Cloudformation Intro4:06
In this lesson I will briefly explain how Cloudformation works.
AWS CloudFormation gives developers and systems administrators an easy way to create and manage a collection of related AWS resources, provisioning and updating them in an orderly and predictable fashion

You can create your own templates to describe the AWS resources, and any associated dependencies or runtime parameters, required to run your application.

A stack is created through a template and we can update a stack or delete a stack all at once.

CloudFormation is available at no additional charge, and you pay only for the AWS resources needed to run your applications.

Cloudformation is a very useful tool to have.
Cloudformation with Console7:50
Cloudformation with AWS CLI18:30
Cloudformation Update, delete and conclusion.8:15

Monitor EC2 Memory Metrics with the help of CloudWatch agent and custom scripts.13:37
You can find all the commands and files in the link below:
http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/mon-scripts.html?refid=ha_a131L000005Cti5QAC

By default, we cannot monitor Memory metrics on EC2 Instances. But, by using a custom metric we can. In this video, I walk through the process of setting up custom metrics. This is one of the possible questions asked in the AWS assoiciate developer/architect/sysops exam as well.

Requirements

AWS Account
Experience with AWS

Description

Recent Updates

Expanded lessons on AWS S3 Server Side Encryption, featuring SSE-S3, SSE-KMS, and SSE-C.
Comprehensive walkthrough on AWS KMS key creation via the CLI.
Detailed instructions on S3 Multipart upload using the AWS CLI.
A practical guide on using the CLI for Amazon Rekognition, useful for image recognition and video analysis.

About the Course Welcome to our AWS Command Line Interface (CLI) course. This course equips students and developers with the vital skill of managing AWS services through the command line, providing a new perspective on interacting with AWS.

Course Overview The AWS CLI is a unified tool for managing all your AWS services. By mastering it, you gain control over your AWS infrastructure, accelerating and enhancing your workflow through automation and scripting. This course prepares you to efficiently manage, automate, and deploy infrastructure and services on AWS using the CLI.

What You'll Learn

AWS DevOps Pro exam-specific content.
Creating and using access keys with the AWS CLI.
Installing and setting up the CLI on your machine.
Constructing a VPC via the CLI.
Managing EC2 instances: creating, viewing, filtering.
Transferring files to/from S3 buckets and syncing local folders using automated cron jobs.
Creating and invoking Lambda functions via CLI.
Deploying CloudFormation stacks using the CLI.

Practical Applications After completing this course, you'll be proficient in executing AWS services commands like:

$aws ec2 describe-instances
$aws s3 ls
$aws s3 sync . s3://mybucketname
$aws ec2 stop-instances --instance-ids i-123abcdefg
...and more advanced functions such as creating Lambda functions and CloudFormation stacks.

Course Features

A rich catalog of videos/labs demonstrating the use of AWS CLI.
Regular updates on a variety of new topics.
Access to the Discussion board for queries and discussions.
If you wish to learn about a specific topic, feel free to post a request in the discussion section.

Instructor: Saurav Sharma

Who this course is for:

Those who want to use the command line to deploy infrastructure on AWS.
Those preparing for AWS certification exams
Those who want to automate deployment and management AWS resources.

Introduction to the AWS Command Line Interface (CLI)

What you'll learn

Explore related topics

Course content

Introduction2 lectures • 4min

Installing the CLI on your computer4 lectures • 18min

Useful features in AWS CLI2 lectures • 12min

Use CLI to work with AWS S311 lectures • 1hr 57min

Use CLI to work with EC2 Instances3 lectures • 49min

Build a fully functioning VPC with Subnets, Gateway and NAT using CLI1 lecture • 49min

AWS CLI Lab : Work with AWS Lambda4 lectures • 20min

Work with AWS IAM3 lectures • 39min

Use CLI to work with CloudFormation4 lectures • 39min

Bonus Lesson: Monitor Memory Utilization, a custom EC2 metric using scripts.1 lecture • 14min

Requirements

Description

Who this course is for: