Learn cloud computing basics, differences from traditional data centers, and benefits; then explore deployment models (public, private, hybrid) and the infrastructure, platform, and software as a service stack.

Cloud computing replaces owned data centers with on-demand services, letting you pay for what you use, avoid upfront hardware costs, and rely on providers to maintain and scale infrastructure.

Discover cloud computing as internet-based, on-demand access to rented IT resources—shared hardware across users—such as virtual machines, storage, and applications, with services like Gmail and Netflix.

Learn how cloud computing replaces capital expense with a variable expense, enables rapid scaling, global deployment, and reduced maintenance while maintaining security and compliance.

Describe public, private, and hybrid cloud deployment models, their use cases, and the tradeoffs of maintenance, control, cost, and compatibility with security and compliance.

Explore the three cloud computing models: infrastructure as a service, platform as a service, and software as a service, through a responsibility-sharing analogy.

Explore how regions, availability zones, and data centers give low latency and high availability, and how to choose regions by compliance, proximity, services, and pricing.

Navigate the AWS management console to explore service categories, use the search bar and CLI to access resources, and understand region availability and available support resources.

Explore IAM including users, groups, policies, roles, service control policies, MFA, and authentication methods such as console login and CLI/SDK access keys, audit and credential reports and IAM Access Advisor.

Explore how IAM groups bundle users and apply policies to grant permissions, enforce least privilege, and avoid nested groups; users may belong to multiple groups, with inline policies applying directly.

Create a demo user group and attach a read-only policy, then grant administrator access to the group to show how groups and policies control IAM permissions for users.

Compare managed policies and inline policies in AWS IAM: default and customer managed policies that apply across accounts, versus inline policies with a 1-to-1 relationship to identities.

Understand the structure of policy documents, including version, statement id, effect, principal, action, resources, and optional condition, with AWS policy and S3 bucket examples.

Explore how IAM roles grant applications and services the necessary permissions without permanent credentials, enabling temporary access via role-based policies to databases and resources.

Create a new role for EC2, select EC2 as the trusted entity, attach the IAM read-only access policy, and name it demo role for EC2 to grant read-only permissions.

Explore how password policy defines password requirements and how to adjust settings to increase account security. Learn to set minimum length, enforce character types, enable expiration, and prevent reuse.

Explore multi-factor authentication, protecting the root user, and using virtual MFA apps like Google Authenticator along with physical devices such as Yubikey.

Enable multi-factor authentication to secure cloud accounts with a virtual MFA device or hardware keys, and learn to configure, link, and verify MFA for root and users.

Explore the three authentication options for AWS—management console, CLI, and SDK—and learn how access keys (access key ID and secret access key) enable secure, programmatic access in code.

Install and configure the AWS CLI, generate and manage access keys, and authenticate to AWS with a demo user. Learn IAM basics, root vs demo access, and administrator policies.

Use credentials report and access advisor to audit AWS IAM users, reviewing passwords, MFA, and access keys. Download the CSV report to identify unused services and revise policies for compliance.

Learn IAM best practices to secure your AWS account: create IAM users instead of root, enforce strong password policies, MFA, rotation, and use groups, managed policies, least privilege, and roles.

Explore IAM in AWS, covering users, groups, policies (managed and inline), roles, service control policies, MFA, and methods to access resources via console, CLI, and SDK, with credential reports.

Discover how compute powers the cloud by comparing it with traditional data center and virtualization, then implement compute with EC2 instances, roles, security groups, and cost-saving purchasing options.

Explore what compute means as processing power that handles requests—from customer to coffee shop to a booking system—using machines with CPU, memory, RAM, and security, rented as EC2 by AWS.

Explore how aws ec2 delivers elastic compute capacity as infrastructure as a service, with scalable instances, virtualization, security groups, and user data for quick setup.

Create a Linux EC2 instance using the AWS console or UI, selecting an image, hardware, key pair, security group, user data script, and then start, stop, or terminate as needed.

Learn to connect to a EC2 instance using SSH and Instance Connect, using the default ec2-user, public IP or DNS, and the key pair PEM file.

Explore EC2 instance connection options for Mac, Linux, and Windows using Instance Connect and PuTTY, with guidance on Windows versions below 10 and above 10.

Explore the significant changes to EC2 instance provisioning, comparing the new single-page interface with the old multi-page flow, including image, instance type, networking, storage, and security group settings.

Explore the elastic web scale computing benefits of ec2 instances, including rapid scaling, full administrator control, flexible OS and resources, seamless service integration, high availability, security, and pay-as-you-go cost efficiency.

Explain EC2 instance types across general purpose, compute optimized, memory optimized, accelerated computing, and storage optimized categories, and show how the naming convention indicates class, generation, and size.

Define security groups and their rules to control inbound and outbound traffic for EC2 instances, using ports like 22, 80, 443, and references to other security groups.

Explore AWS EC2 purchasing options—on-demand, reserved (standard and convertible), spot, and dedicated hosts—and learn use cases and licensing considerations for scalable cloud deployments.

Explore cloud compute basics and its infinitely scalable, reliable, and inexpensive iaas benefits while provisioning ec2 instances with an Amazon machine image, size, storage, security groups, and user data.

Explore high availability, scalability, and elasticity, comparing vertical and horizontal scalability. Learn how elastic load balancers distribute traffic, perform health checks, and how auto scaling groups adjust instances as needed.

Elastic load balancer automatically distributes incoming application traffic across multiple targets, performs health checks, and maintains high availability by routing requests to healthy instances.

Launch and configure an application load balancer to distribute traffic across targets and two instances, create target groups, and enable health checks for high availability.

The auto scaling group automatically launches or terminates instances to match workload, maintaining a defined min, desired, and max capacity and registering with a load balancer.

Demonstrates how to create and configure an auto scaling group, attach it to a load balancer and target group, and maintain desired capacity with automatic instance provisioning.

Delete the auto scaling group to terminate all associated instances, not by deleting them individually; delete the load balancer, and let the target group drain as the group is removed.

Explore high availability across zones. Learn horizontal and vertical scalability, elasticity, and how elastic load balancers with auto scaling groups distribute traffic, monitor health, and replace unhealthy instances.

Explore block, file, and object storage with EBS, EFS, and S3, and learn S3 security, versioning, replication, storage classes, lifecycle rules, vault and object lock, Snow family, and storage gateway.

Explore block, file, and object storage—blocks with unique IDs, folders, and flat buckets with scalable access—and map to EBS Elastic BLOCK Store, FS elastic file system, and simple storage service.

Explains elastic block store (EBS) as persistent storage for EC2 instances, showing how volumes attach and detach in the same availability zone, with encryption and snapshots as options.

Back up Amazon elastic block storage (EBS) using snapshots stored in S3 at the regional level, detach before backup, and restore to other availability zones or regions.

Explore amazon machine images (ami) as templates to launch ec2 instances with customized operating systems and software, and learn about permissions, block device mappings, and cross-region copy of amis.

Automate the building, testing, and deployment of custom EC2 images using EC2 Image Builder, reducing manual effort while verifying software and security configurations.

Explore AWS elastic file system EFS, a serverless set-and-forget file storage that scales automatically, connects across multiple availability zones, EC2 instances, on-premises resources, supports NFS, and bills only used capacity.

Learn how Amazon S3, an object-based storage service with globally unique buckets and keys, offers versioning and metadata, delivering scalable, durable storage for backup, archive, disaster recovery, and data analytics.

Explore how to secure S3 buckets and objects by using block public access, user and bucket level permissions, resource-based policies, ACL controls, and encryption to prevent data leaks.

Enable S3 bucket versioning to keep multiple versions of the same file under one key, preventing unintended overwrites and deletions, with easy reversion when needed.

Learn how to enable S3 access logs to a logging bucket, capture actions such as put, get, and delete, and use the log details for audit and compliance.

Explore how S3 replication copies objects from a source bucket to a destination bucket, using same-region or cross-region setups, with versioning and IAM roles.

Explore Amazon S3 storage classes and their use cases, balancing access time and cost with standard, intelligent tiering, infrequent access, one-zone infrequent access, glacier, and glacier deep archive.

Explore how storage gateway enables hybrid cloud by linking on-premises data to cloud storage. Utilize file gateway, tape gateway, and volume gateway for backup, disaster recovery, and security with encryption.

Discover the three storage types and their services, including EBS, EFS, and S3, and learn backups, versioning, lifecycle rules, replication, access logs, and hybrid storage with storage gateway.

Explore AWS database services, comparing relational and non-relational options across PostgreSQL, MySQL DB, Oracle, SQL Server, Aurora, Dynamo DB, Document DB, Neptune, elastic cache, Redshift, Athena, Glue, and DMS.

Explore relational and NoSQL databases, compare OLTP and OLAP, and review AWS offerings for these types, including DynamoDB, document, graph, key-value, wide-column databases, and Redshift.

Learn how AWS RDS provides a managed relational database for OLTP workloads, offering multiple engines, automated backups, vertical and horizontal scaling, and security via IAM and VPC.

Demonstrate provisioning a relational database in RDS by creating an ideas database, selecting MySQL free tier, and configuring engine, storage, VPC, and security groups, with snapshots and monitoring.

Discover AWS RDS deployment options including read replicas for read-heavy workloads, multi-AZ for high availability, and multi-region for disaster recovery, with synchronous vs asynchronous replication and cost considerations.

Explore Amazon Aurora, a serverless, cloud-ready relational database offering five times faster MySQL and three times faster PostgreSQL, with automatic storage expansion, encryption in transit with SSL, and 99.99% availability.

Explore AWS ElastiCache, a managed in-memory database delivering high performance and low latency by caching data with Redis or Memcached, reducing database load and handling maintenance and backups.

Discover DynamoDB, a fast, serverless NoSQL key-value database with single-digit millisecond latency. See how DAX, an in-memory cache, boosts read performance and integrates with DynamoDB for high-volume workloads.

Explore Amazon Redshift, a fast, fully managed olap data warehouse service based on PostgreSQL for batch-loaded, petabyte-scale analytics with pay-as-you-go pricing and bi tool integrations like Tableau.

Explore elastic MapReduce to provision and manage clusters for big data analysis using Hadoop, Spark, and Presto. Scale automatically with spot instances to optimize processing.

Learn how Amazon Athena queries data in S3 using standard SQL in a serverless, pay-as-you-go model, defining schemas and returning results to S3 with IAM security.

Explore Amazon QuickSight, a fast, scalable service to create interactive dashboards with graphs and charts that visually present data for business analytics, data visualization, and ad hoc analysis.

Learn about Neptune, a fully managed NoSQL graph database in the cloud, designed to store and navigate relationships across connected data with three availability zones.

Discover the quantum ledger database (q lab) as a serverless, managed ledger for financial transactions, with replication across three zones, cryptographically verifiable history, no deletions, changes, and sql-based data manipulation.

Use the database migration service (DMS) to migrate on-premises databases to AWS with minimal downtime. It supports homogeneous and heterogeneous migrations and enables continuous data replication for high availability.

Compare relational and non-relational options and map OLTP and analytics workloads to AWS services like Aurora, PostgreSQL, MySQL, Oracle, SQL Server, and DynamoDB.

Explore Docker and AWS compute services, including ECS, ECR, AWS Fargate, AWS Batch, Lightsail, and AWS Lambda, plus API Gateway for event-driven, language-compatible serverless workflows.

Discover how ecs manages docker containers on a cluster of ec2 instances, compare it with the serverless fargate option, and store images in ecr to deploy with ease.

Explore serverless computing, enabling you to build and run apps without managing servers, and learn how event-driven scaling, high availability, and micro billing fuel services like S3, Dynamo, and Lambda.

Create and test a simple AWS Lambda function from a blueprint, assign a basic Lambda execution role, deploy without infrastructure, and monitor invocation duration and memory.

Explore Amazon Lightsail, the easiest way to deploy websites and simple apps with pre-configured machines, ideal for WordPress, blogs, and small ecommerce.

Explore docker container technology to run and deploy applications across environments using ECS and Fargate. See ECR, Batch, Lightsail, and Lambda; learn how API Gateway exposes Lambda as http APIs.

Learn how AWS CloudFormation deploys infrastructure as code via templates to create EC2, S3, security groups, and load balancers, with stacks and rollback.

Learn how to deploy resources with cloud formation by uploading templates, creating and updating stacks, and managing s3 buckets, security groups, and ec2 instances.

Discover how the CDK cloud development kit lets you define infrastructure and applications in familiar languages, using constructs, then compile to cloud formation templates for automated AWS deployments.

Explore AWS developer tools for continuous integration and delivery, including CodeCommit, CodeBuild, CodeDeploy, CodeStar, and Cloud9, and learn how they form an automated deployment pipeline.

Centralize operational data from EC2, S3, and RDS; view configurations and inventory; and automate actions across resources with Systems Manager, including automation, run command, and patch manager.

Explore AWS OpsWorks, a cloud configuration management tool for patching, updating, backup, and compliance across many servers. See how it relates to Chef and Puppet for centralized configuration changes.

Explore deployment tools from cloud formation and cdK to beanstalk, systems manager, and opsworks, then harness codecommit, codedeploy, codepipeline, codestar, and cloud9 for end-to-end app delivery.

Explore infrastructure and distributed applications, and learn to implement Route 53 DNS, register domains, use CloudFront edge caching, a three transfer solution to Amazon S3, Global Accelerator, Outposts, and wavelength.

Explore global applications by deploying across multiple regions to reduce latency and improve user experience. See disaster recovery and attack protection when apps are distributed across regions, preserving availability.

Discover how AWS Route 53 functions as a dns service and domain registrar, routing traffic to resources and health-checking endpoints with policies like simple, failover, geolocation, latency, multivalue, and weighted.

Register a new domain with Route 53, check availability, add it to the cart, choose a one-year registration, and verify the domain is registered and hosted.

Contrast CloudFront and cross-region replication for S3: CloudFront caches content at edge locations worldwide, while cross-region replication mirrors an entire bucket to another region without edge caching.

AWS Global Accelerator improves application availability and performance by routing traffic through edge locations via two static IPs, reducing latency and enhancing a secure user experience.

Learn how S3 transfer acceleration speeds content transfers by routing data through nearby edge locations and a private network to an S3 bucket in another region.

Understand how AWS Outposts extends cloud services to on-premises data centers, enabling hybrid cloud with low latency and data residency through managed racks for EC2, EBS, and EMR.

Learn how to deliver ultra low latency mobile apps with AWS Wavelength, extending your cloud with wavelength zones tied to a region and powered by 5G connectivity.

Learn how global applications distribute across regions, route traffic with DNS and Route 53, and cache at edge locations via CloudFront to reduce latency.