AWS Admin All-in-One: 4-in-1
- 7.5 hours on-demand video
- Full lifetime access
- Access on mobile and TV
- Certificate of Completion
Get your team access to 4,000+ top Udemy courses anytime, anywhere.Try Udemy for Business
- Create, manage and scale database on AWS
- Manage the tools in AWS such as e-mail alarms, dashboard and budget
- Configure, administer computing, storage, and networking in the AWS cloud
- Master your networking skills on Public Cloud
- Gain work with load balance applications across different regions
- Take the AWS Developer Exam Prep Course
- Basic idea of system administration
Amazon Web Services (AWS) is the most dominating platform in the public cloud market by a huge margin and has been the first choice for many organizations.
This comprehensive 4-in-1 training course is packed with clear, practical, instruction-based videos that will enable you to use and implement the latest features of AWS.
About the Authors
Lucas Chan has been working in tech since 1995 in a variety of development, systems admin, and DevOps roles. He is currently a senior consultant and engineer at Versent and technical director at Stax. He's been running production workloads on AWS for over 10 years. He’s also a member of the APAC AWS Warriors program and holds all five of the available AWS certifications.
Rowan Udell has been working in development and operations for 15 years. He has held a variety of positions, such as SRE, front-end developer, back-end developer, consultant, technical lead, and team leader. His travels have seen him work in start-ups and enterprises in the finance, education, and web industries in Australia and Canada. He currently works as a senior consultant with Versent, an AWS Advanced Partner in Sydney. He specializes in serverless applications and architectures on AWS and contributes actively in the Serverless Framework community.
Mitesh Soni is a DevOps enthusiast. He has worked on projects for DevOps enablement using Microsoft Azure and VSTS. He also has experience in working with other tools that are DevOps enablers such as Jenkins, Chef, IBM UrbanCode Deploy, Atlassian Bamboo, and more. He is a CSM, SCJP, SCWCD, VCP, IBM Bluemix, CJE and IBM Urbancode certified professional.
- System administrators, DevOps engineer, or an IT professional who is moving to an AWS-based cloud environment.
In this video, we are going to show you how to set up CloudTrail in your AWS account. Once CloudTrail has been enabled, it will start to record all of the API calls made in your account to the AWS service and then deliver them to you as log files in an S3 bucket.
- Define S3 bucket and policy
- Set up CloudTrail
E-mail alarms may not be the most scalable of all alarms due to the amount of e-mail most people get, but they are the easiest to integrate and almost everyone has an e-mail address. In this video, we use two AWS services: CloudWatch and Simple Notification Service.
- Create an alarm and select the metrics
Once you get used to using CloudWatch, it is highly likely that you will want to see more than just the built-in AWS metrics. In this video, we will show you how to feed the amount of memory inuse on your Linux instances to CloudWatch, so that you can see them alongside the other instance metrics.
- Use put-metric-data command
The real value of collecting metrics is the ability to spot trends and relationships between disparate systems. With this kind of visibility, you are able to identify and troubleshoot issues before they become an incident. This video uses the AWS console because you cannot create dashboards via CloudFormation or the AWS CLI tool yet.
- Create Dashboard
One of the main attractions of using AWS, is its pay-as-you-go model. You only pay for what you use, no more and no less. Unfortunately, this can sometimes result in what's known as bill shock at the end of the month. In this video we will create budgets that helps you be aware of your usage and spending.
- Navigate to My Billing Dashboard
- Create a budget
CloudWatch logs are managed, highly durable, log storage system in AWS. It is capable of ingesting logs from many sources. We're going to focus on what is probably the most common use case which is shipping logs off your EC2 instances into CloudWatch logs.
- Define Role and InstanceProfile
- Add SNS topic
In this video, we are going to create a MySQL RDS database instance configured in multi-AZ mode to facilitate automatic failover.
- Add database credentials as parameters
- Define parameters relating to backup and availability
- Define RDS instance resource
This video will show you how to create an RDS read-replica. You can use read-replicas in order to increase the performance of your application by off-loading database reads to a separate database instance. You can provision up to five read-replicas per source DB.
- Create read-replica
- Promote read-replica to primary database instance
We are going to show you how to make a one-off snapshot of your database. You might opt to do this if you have a specific requirement around keeping a point in time backup of your DB. You might also want to take a snapshot for the purpose of creating a new working copy of your dataset.
- Initiate the creation of snapshot
- Create a new database in security group
DynamoDB(DDB) is the managed NoSQL database service from AWS. As DDB pricing is based on the amount of read and write capacity units provisioned, it is important to be able to calculate the requirements for your use case.
- Study different formula for calculating performance
In this video, we are going to build a secure network in AWS. This network will consist of two public and private subnets split across two Availability Zones. It will also allow inbound connections to the public subnets.
- Add an Internet gateway and attach VPC
- Create route table
When your instances are on the Internet, you have to assume they will be attacked at some stage. This means most of your workloads should run on instances in private subnets. Private subnets are those that are not connected directly to the Internet. In order to give your private instances access to the Internet, you use network address
- Define Elastic IP
- Define the route to NAT gateway
Canary deployment is a popular deployment method in the cloud. In this video, we will create the resources necessary to do a DNS-based canary deployment, and cut traffic from one resource to another.
- Define template version and description
- Add parameter and resources section
In this video, we will turn on logging for our network resources. You could do this all the time, to give yourself another layer for monitoring and auditing, or you could selectively enable it during troubleshooting, saving yourself any additional data storage charges.
- Define log group to send flow-logs
- Define IAM role to give permissions
SSL-based communications are now becoming insecure methods that are no longer good enough. AWS provides the AWS Certificate Manager (ACM) service to provision AWS-backed SSL certificates that you can use with your AWS resources, such as Elastic Load Balancers (ELBs) and CloudFront.
- Include domain name for certificate
This video will show you how to deploy an AWS Simple Active Directory service. Simple AD is powered by Samba 4 and is a Microsoft Active Directory compatible managed service. It also integrates with other services provided by AWS. AWS manages backup and restoration of the directory for you in the form of daily snapshots and the ability to perform point-in-time recovery.
- Define parameter and resources
We will talk briefly about Identity and Access Management (IAM). It's free and is enabled on every account. It allows you to create groups and users and allows you to control exactly what they can and can't do using policy assignment.
- Attach policy to the defined group
- Use AWS Managed Policy
This video contains a really important concept to anyone who is new to the AWS platform. Understanding and utilizing IAM roles for EC2 will significantly reduce your exposure to lost credentials and probably help you sleep a little better at night too. In a nutshell, instance roles help you get AWS credentials off your servers and out of your code
- Define role that contains reference to managed policies
- Create an InstanceProfile resource
AWS Simple Monthly Calculator is a website application provided to help you estimate and forecast your AWS costs. By listing the resources you expect to consume you can calculate your pay-as-you-go costs, which is how AWS bills you. There are no upfront costs involved.
- Go to the calculator website, http://calculator.s3.amazonaws.com/index.html
- Select/deselect free usage tier option
Reserved instances can be the cause of some confusion and are often misunderstood. Reserved instances have no distinguishing technical features compared to regular on-demand instances. Reserved instances are not a specific type or class of instance
- Go to EC2 web console
- Choose the reservation
The AWS TCO Calculator is designed to provide you with a ballpark view of how much it will cost you to run equivalent infrastructure on AWS in comparison to your co-located or on-premise data center. The calculator has been audited by an independent third-party, but you should of course check its output against your own calculations before you make any purchasing decisions.
- Navigate to https://awstcocalculator.com/.
- Describe the server requirement
Amazon Web Services is a public cloud provider. It provides infrastructure and platform services at a pay-per-use rate. You get on-demand access to resources that you used to have to buy outright. You can get access to enterprise-grade services while only paying for what you need, usually down to the hour.
- Create an account on amazon.com
- Study the AWS web console
Infrastructure as Code is the practice of managing infrastructure though code definitions. IaC is needed to get the most utility and value. In this video, we will see visibility, consistency, troubleshooting, scale, costs, devOps and server configuration.
- Study Infrastructure as code
CloudFormation service allows you to provision and manage a collection of AWS resources in an automated and repeatable fashion. In this video, we will show you how to define the resources to be included in your CloudFormation stack. We will also see CloudFormation templates,
YAML versus JSON.
- Study CloudFormation
- Look at the CloudFormation templates
- Study CloudFormation parameters
The AWS command-line interface tool is an important piece of the AWS administrator's toolkit. The CLI tool is often one of the quickest and easiest ways to interact with the API. The AWS application programming interface represents all the functionality available to you as an AWS administrator.
- Install AWS command-line interface
- Configure the CLI tool
- Generate a CLI skeleton
All accounts that use AWS Organizations for billing and control purposes must have a master account. This account controls membership to the organization, and pays the bills of all the members
- Create a master account
- Study relationship between master accounts, members and organizational units
It's really easy to host a static website on AWS. It is also cheap, fast, reliable, and massively scalable too. You do this by
storing your content in an S3 bucket and configuring that bucket to behave like a website.
- Create a S3 buckets and hosting contents
- Create a DNS records
Resource living in a private subnet will be inaccessible from internet. This makes good sense from a security perspective because it gives our instances a higher level of protection. Of course, if they can't be accessed from the Internet, then they're not going to be easy to administer. One common pattern is to use a VPN server as a single, highly controlled, entry point to your private network.
- Define the actual OpenVPN instance
AWS describes security groups as virtual firewalls. We are going to go through a basic scenario involving a web server and load balancer. We want the load balancer to respond to HTTP requests from everywhere, and we want to isolate the web server from everything except the load balancer.
- Look at a security group
- Add our load balancer
We're going to focus on the application load balancer. It's effectively an upgraded, second generation of the ELB service, and it offers a lot more functionality than the classic load balancer. HTTP/2 and WebSockets are supported natively, for example. The hourly rate also happens to be cheaper.
- Create a new CloudFormation
- Add resources
- Create a security group for load balancer
In this video, we will start with the introduction about cloud computing. Then we will look at cloud deployment models and cloud service models and its type. Lastly, we will have a glance at the Regions and Availability Zones.
- Look at the deployment model, service model
- Understand regions and availability zones
In this video, we will cover both types of VPC creation, in brief, to become more familiar with the concepts along with creating VPCs in an easier fashion.
- Create a VPC with public and private subnets and hardware VPN access
- Create the VPC with public and private subnets
- Utilize network address translation (NAT)
In this video, we will first download putty and install Tomcat to deploy sample WAR file. Then we will create ELB and configure target groups.
- Download PuTTY and install Tomcat
- Use Win SCP and transfer any working WAR file to remote instance
- Configure Load Balancer
In this video, we will cover the basic introduction of Auto scaling along with its benefits and types. After that, we will setup an Auto scaling in load balanced application.
- Observe concepts and benefits of Auto Scaling
- Learn types of scaling
- Look at major components of Auto Scaling
Amazon Route 53 provides a facility to register domain names, a Domain Name System (DNS) service.
In this video, we will cover the basic overview of Amazon Route 53
concepts. Then we will configure Route 53 service and demonstrate the
process of domain registration.
- Understand the features of Amazon Route 53
- Configure Amazon Route 53
In this video, we will configure Route 53 service for a web application. Then we will demonstrate the steps to configure health checks on Route 53.
- Create a new hosted zone by clicking on Create Hosted Zone
- Add and update name servers with a registered domain
- Configure health check on Route 53
AWS Direct Connect provides a facility to create a dedicated network (private connectivity) Connection. In this video, we will figure out answers for many queries related to AWS Direct Connect.
- Study the working of AWS Direct Connect
- Follow steps to use AWS Direct Connect
Security can't be an afterthought. It is essential in the multitenant environment of cloud.
In this video, we will first look at shared responsibility model.
Then we will create groups and users. Later we will assign each IAM user
to a specific group
- Copy the repo
- Understand the demo repo
Policies is the document that help us define and assign permissions to a role, group, user, or
In this video, we will learn to create policy in 2 different ways.
Then, we will create user and assign the newly created policies to it.
- Build a policy using Visual editor
- Create a policy document using JSON editor
- Create a user and assign policy to it
Summary of the fundamental concepts surrounding EC2, ELB, and the AWS CLI.
- Overview the instance types, pricing plans, and storage types (EBS versus instance store)
- Overview how to create AMIs and snapshots, the instance metadata and user data, and ELB key characteristics
- Get to know the key AWS CLI commands to remember about EC2
Summary of the key concepts surrounding S3 and CloudFront.
- Understand S3 fundamentals,storage types, versioning, and lifecycle rules (with Glacier)
- Get data into AWS (Snowball, Storage Gateway, and Transfer Acceleration)
- Understand policies, CORS, static website hosting, encryption, and CloudFront
Exam tips containing more information about S3, EC2, and IAM covered in the section.
- Get to know S3 error codes and the difference between bucket URLs and static website hosting URLs
- Understand CloudWatch monitoring, Cloudwatch concepts, System and Instance status checks for EC2
- Understand the relationship between IAMroles and EC2
- View the summary of topics covered in the section
Overview of what was covered in the exam prep section, followed by a quiz to verify the knowledge gained.
- Face 10 questions with a pause in between before the answer is revealed
- View the answers to the questions given after each question
- Where applicable, extra explanations are given to solidify the knowledge
Overview of what was covered in the section and the rest of the courses, followed by a quiz to verify the knowledge gained.
- Face questions with a pause in between before the answers are revealed
- Answers to the questions are given with extra explanations to solidify the knowledge