23 |
24 | Cloud Concepts |
25 |
26 |
27 | Deployments and Managing Infrastucture at Scale |
28 |
29 |
30 |  |
31 | Cloud Formation |
32 | a service that enables users to model and manage infrastructure resources in an automated and secure manner, developers can define and provision AWS infrastructure resources using a JSON- or YAML-formatted infrastructure as code template |
33 |
34 |
35 |  |
36 | CDK (Cloud Development Kit) |
37 | open-source software development framework for defining cloud infrastructure in code and provisioning it through AWS CloudFormation |
38 |
39 |
40 |  |
41 | Elastic Beanstalk |
42 | PaaS, runs application code and handles deployment and serving to users |
43 |
44 |
45 |  |
46 | CodeDeploy |
47 | automates code deployments to any instance, including Amazon EC2 instances and instances running on-premises |
48 |
49 |
50 |  |
51 | CodeCommit |
52 | a scalable versioning control system for developers, similar to git (obsoleted 2024) |
53 |
54 |
55 |  |
56 | CodeBuild |
57 | a fully managed continuous integration service that compiles source code, runs tests, and produces software packages that are ready to deploy |
58 |
59 |
60 |  |
61 | CodePipeline |
62 | a continuous delivery service that enables you to model, visualize, and automate the steps required to release your software |
63 |
64 |
65 |  |
66 | CodeArtifact |
67 | a secure, highly scalable, managed artifact repository service that helps organizations to store and share software packages for application development |
68 |
69 |
70 |  |
71 | SSM (Systems Manager) |
72 | manage servers running on AWS and in your on-premises data center through a single interface |
73 |
74 |
75 |  |
76 | SSM Session Manager |
77 | manage your Amazon Elastic Compute Cloud (Amazon EC2) instances, edge devices, on-premises servers, and virtual machines (VMs) |
78 |
79 |
80 |  |
81 | SSM Parameter Store |
82 | provides secure, hierarchical storage for configuration data management and secrets management |
83 |
84 |
85 | Global Infrastructure |
86 |
87 |
88 |  |
89 | Route 53 |
90 | a highly available and scalable cloud Domain Name System (DNS) web service |
91 |
92 |
93 |  |
94 | CloudFront |
95 | web service that speeds up distribution of your static and dynamic web content, such as .html, .css, .js, and image files, to your users |
96 |
97 |
98 |  |
99 | S3 Transfer Acceleration |
100 | shortens the distance between client applications and AWS servers that acknowledge PUTS and GETS to Amazon S3 using our global network of hundreds of CloudFront Edge Locations |
101 |
102 |
103 |  |
104 | AWS Global Accelerator |
105 | terminates TCP connections from clients at AWS edge locations and, almost concurrently, establishes a new TCP connection with the endpoints, maximizing the time that traffic is on the AWS network and ensureing that traffic is always routed over the optimum network path. |
106 |
107 |
108 |  |
109 | AWS Outposts |
110 | a pool of AWS compute and storage capacity deployed at a customer site |
111 |
112 |
113 |  |
114 | AWS WaveLength |
115 | a type of AWS infrastructure designed to run workloads that require low latency or edge resiliency |
116 |
117 |
118 |  |
119 | AWS Local Zones |
120 | allow for the placement of resources near end users |
121 |
122 |
123 | Cloud Integrations |
124 |
125 |
126 |  |
127 | SQS (Simple Queue Service) |
128 | a service to send, store, and receive messages between software components at any volume, without losing messages or requiring other services to be available |
129 |
130 |
131 |  |
132 | Kinesis |
133 | process real-time data, such as video, audio, application logs, website clickstreams, and IoT telemetry data, for machine learning (ML), analytics, and other applications |
134 |
135 |
136 |  |
137 | SNS (Simple Notification Service) |
138 | a service that makes it easy to set up, operate, and send notifications from the cloud |
139 |
140 |
141 |  |
142 | Amazon MQ |
143 | a managed message broker service for Apache ActiveMQ Classic and RabbitMQ that streamlines setup, operation, and management of message brokers on AWS |
144 |
145 |
146 | Cloud Monitoring |
147 |
148 |
149 |  |
150 | CloudWatch |
151 | a repository for metrics and logs |
152 |
153 |
154 |  |
155 | CloudWatch Metrics |
156 | essential for ensuring optimal performance and efficient resource utilization, provides insights to AWS Services allowing for real time tracking of health/performance/usage patterns |
157 |
158 |
159 |  |
160 | CloudWatch Alarms |
161 | a monitoring tool that helps you create alarms on your AWS Resouces and AWS Services |
162 |
163 |
164 |  |
165 | Cloudwatch Logs |
166 | centralizes the logs from all of your systems, applications, and AWS services that you use, in a single, highly scalable service |
167 |
168 |
169 |  |
170 | EventBridge |
171 | a service that provides real-time access to changes in data in AWS services, your own applications, and software as a service (SaaS) applications without writing code |
172 |
173 |
174 |  |
175 | CloudTrail |
176 | a service that enables governance, compliance, operational auditing, and risk auditing of your AWS account |
177 |
178 |
179 |  |
180 | X-Ray |
181 | helps developers analyze and debug production, distributed applications, such as those built using a microservices architecture |
182 |
183 |
184 |  |
185 | CodeGuru |
186 | analyzes the application runtime performance and using machine learning, provides recommendations on ways that could speed up the application |
187 |
188 |
189 |  |
190 | AWS Health Dashboard |
191 | can be used to learn about AWS Health events that affect AWS services or the AWS account |
192 |
193 |
194 | Networking |
195 |
196 |
197 |  |
198 | Amazon VPC (Virtual Private Cloud) |
199 | a logically isolated section of the AWS Cloud where you can launch AWS resources in a virtual network that you define |
200 |
201 |
202 | |
203 | |
204 | usecase: manage components of VPC (Subnet, Internet Gateway, NAT Gateways, Elastic IPs, Flow Logs, Peering); control the security of your VPC by configuring the Network ACLs and Security Groups |
205 |
206 |
207 |  |
208 | NACL (Network Access Control List) |
209 | an optional layer of security for your VPC that acts as a firewall for controlling traffic in and out of one or more subnets |
210 |
211 |
212 |  |
213 | PrivateLink |
214 | provides private connectivity between VPCs, supported AWS services, and your on-premises networks without exposing your traffic to the public internet |
215 |
216 |
217 |  |
218 | Client VPN |
219 | a fully-managed remote access VPN solution used by your remote workforce to securely access resources within both AWS and your on-premises network |
220 |
221 |
222 |  |
223 | Transit Gateway |
224 | connects your Amazon VPCs and on-premises networks through a central hub, simplifies the network and prevents complex peering relationships, Transit Gateway acts as a highly scalable cloud router—each new connection is made only once |
225 |
226 |
227 | Security and Compliance |
228 |
229 |
230 | Shared Responcibility Model |
231 |
232 |
233 |  |
234 |
235 |
236 | Identity Access Management |
237 |
238 |
239 |  |
240 | IAM (Identity and Access Management) |
241 | manage users access, controls, and permissions for users within the organization |
242 |
243 |
244 |  |
245 | IAM MFA (Multi-Factor Authorization) |
246 | makes a user have multiple devices to prove their identity |
247 |
248 |
249 | |
250 | AWS Access Keys |
251 | Long-term credentials for individual IAM accounts |
252 |
253 |
254 |  |
255 | CLI (Command Line Interface) |
256 | tool to manage AWS tools, provides a command line interface to configure and control multiple services |
257 |
258 |
259 | |
260 | |
261 | usecase: requires Access keys for users to access |
262 |
263 |
264 |  |
265 | SDK (Software Development Kit) |
266 | contains tools to develop applications with AWS with different programming languages (eg JS, Java, React, Python, etc.) |
267 |
268 |
269 |  |
270 | CloudShell |
271 | online command line shell environment, preloaded with tools and automatically updated |
272 |
273 |
274 | Security Tools |
275 |
276 |
277 |  |
278 | WAF (web access firewall) |
279 | protect web applications from attacks by allowing you to configure rules that allow, block, or monitor (count) web requests based on conditions that you define |
280 |
281 |
282 |  |
283 | AWS Shield |
284 | a managed distributed denial of service (DDoS) protection service that safeguards applications running on AWS |
285 |
286 |
287 |  |
288 | AWS Network Firewall |
289 | a stateful, managed, network firewall and intrusion detection and prevention service for an Amazon VPC |
290 |
291 |
292 |  |
293 | AWS Firewall Manager |
294 | a security management service which allows you to centrally configure and manage firewall rules across your accounts and applications in AWS Organization |
295 |
296 |
297 |  |
298 | KMS (Key Management Service) |
299 | gives you centralized control over the cryptographic keys used to protect your data |
300 |
301 |
302 | |
303 | AWS CloudHSM (Cloud Hardware Security Module) |
304 | a cryptographic service for creating and maintaining hardware security modules |
305 |
306 |
307 |  |
308 | ACM (AWS Certificate Manager) |
309 | a service that allows developers to provision, manage, and deploy public and private Secure Sockets Layer/Transport Layer Security (SSL/TLS) certificates for use with AWS services and internal connected resources |
310 |
311 |
312 |  |
313 | Secrets Manager |
314 | encrypts at rest using encryption keys owned and stored in AWS KMS |
315 |
316 |
317 |  |
318 | Artifact |
319 | contains compliance-related documents in AWS such as ISO certifications, Payment Card Industry (PCI), and Service Organization Control (SOC) reports |
320 |
321 |
322 |  |
323 | AWS GuardDuty |
324 | automatically manage resource utilization based on the overall activity levels within AWS accounts, workloads, and data |
325 |
326 |
327 |  |
328 | AWS Inspector |
329 | continually scans AWS workloads for software vulnerabilities and unintended network exposure |
330 |
331 |
332 |  |
333 | AWS Config |
334 | helps user record configuration changes to software within EC2 instances in the AWS account and also virtual machines (VMs) or servers in the on-premises environment |
335 |
336 |
337 |  |
338 | AWS Macie |
339 | a data security service that discovers sensitive data using machine learning and pattern matching, provides visibility into data security risks, and enables automated protection against those risks |
340 |
341 |
342 | |
343 | AWS SecurityHub |
344 | allows organizations to create custom insights and compliance checks specific to their environment |
345 |
346 |
347 |  |
348 | Amazon Detective |
349 | helps analyze, investigate, and quickly identify the root cause of security findings or suspicious activities |
350 |
351 |
352 | |
353 | AWS Abuse |
354 | addresses many different types of potentially abusive activity such as phishing, malware, spam, and denial of service (DoS)/ distributed denial of service (DDoS) incidents |
355 |
356 |
357 | |
358 | Root User Privileges |
359 | complete access to all AWS services and resources in your AWS account |
360 |
361 |
362 | |
363 | |
364 | usecase: should only be used when absolutely necessary |
365 |
366 |
367 |  |
368 | IAM Access Analyzer |
369 | gives visibility into unused access across your AWS organization and recommendations to help you remediate unused access |
370 |
371 |
372 | Advanced Identity |
373 |
374 |
375 |  |
376 | STS (Security Token Service) |
377 | a tool that provides temporary access to IAM roles with their own permissions |
378 |
379 |
380 |  |
381 | AWS Cognito |
382 | support federated authentication, profile data sync store and AWS access token distribution without writing any backend code |
383 |
384 |
385 |  |
386 | AWS Directory Services |
387 | provides multiple directory choices for customers who want to use existing Microsoft AD or Lightweight Directory Access Protocol (LDAP)–aware applications in the cloud |
388 |
389 |
390 |  |
391 | IAM Identity Center |
392 | streamlines and simplifies workforce user access to applications or AWS accounts |
393 |
394 |
395 | Cloud Technology & Services |
396 |
397 |
398 | EC2 |
399 |
400 |
401 |  |
402 | EC2 (Elastic Compute Cloud) |
403 | cloud-based cloud computation service, regional service |
404 |
405 |
406 | |
407 | |
408 | usecase: can launch a new database in AWS where the customer assumes the responsibility and management of the guest operating system, including updates and security patches |
409 |
410 |
411 | |
412 | EC2 Instance Connect |
413 | tool to connect to an EC2 instance |
414 |
415 |
416 | |
417 | EC2 Dedicated Host |
418 | a physical server with EC2 instance capacity fully dedicated to your use |
419 |
420 |
421 |  |
422 | EC2 Spot Instances |
423 | instances from unused EC2 capacity in the AWS cloud |
424 |
425 |
426 | |
427 | |
428 | usecase: 90% cheaper with less performance than On-Demand Instances |
429 |
430 |
431 |  |
432 |
433 |
434 | |
435 | EC2 Instance Storage |
436 | storage options to optimize performance vs. cost |
437 |
438 |
439 |  |
440 | EBS (Elastic Block Store) |
441 | block level storage volumes to EC2 instances, multiple EBS volumes can be attached to each EC2 instance |
442 |
443 |
444 | |
445 | |
446 | usecase: rapidly changing data |
447 |
448 |
449 |  |
450 | AMI (Amazon Machine Image) |
451 | creates images (templates) of AWS EC2 instances to be used as masters for instance pools |
452 |
453 |
454 |  |
455 | EFS (Elastic File System) |
456 | auto-scaling file system that grows/shrinks as files are added/removed, regional service |
457 |
458 |
459 | Load Balancing |
460 |
461 |
462 |  |
463 | ELB (Elastic Load Balancing) |
464 | automatically balances application traffic to a different targets and appliances across multiple availabiliy zones |
465 |
466 |
467 |  |
468 | Application Load Balancer |
469 | best suited for load balancing of HTTP and HTTPS traffic and provides advanced request routing targeted at the delivery of modern application architectures, including microservices and containers |
470 |
471 |
472 |  |
473 | Network Load Balancer |
474 | best suited for load balancing of Transmission Control Protocol (TCP), User Datagram Protocol (UDP), and Transport Layer Security (TLS) traffic where extreme performance is required |
475 |
476 |
477 |  |
478 | Gateway Load Balancer |
479 | provides both Layer 3 gateway and Layer 4 load balancing capabilities. It is a transparent bump-in-the-wire device that does not change any part of the packet |
480 |
481 |
482 |  |
483 | ASG (Auto Scaling Groups) |
484 | each group contains multiple EC2 instances and provides autoscaling based on needs, only horizontal (number of instances, not performance of instances) |
485 |
486 |
487 | Object Storage |
488 |
489 |
490 |  |
491 | Amazon S3 (Simple Storage Service) |
492 | object storage service, designed for 99.999999999% (11 9's) of durability and stores millions of customers data |
493 |
494 |
495 | |
496 | |
497 | usecase: Bucket Policy allows specific users access to bucket |
498 |
499 |
500 | |
501 | AWS Snow |
502 | provides computation at the edge or migration from edge devices to the cloud |
503 |
504 |
505 |  |
506 | AWS Snowcone |
507 | small, portable device for local transfer and physical shipment an AWS facility |
508 |
509 |
510 |  |
511 | AWS Snowball |
512 | larger, portable device can be optimized for storage or compute |
513 |
514 |
515 |  |
516 | AWS Snowball Edge |
517 | an edge computing and data transfer device provided by the AWS Snowball service |
518 |
519 |
520 | |
521 | AWS Snowmobile |
522 | an exabyte-scale data transfer service that is used to move large volumes of data to Amazon Web Services |
523 |
524 |
525 | Databases |
526 |
527 |
528 |  |
529 | RDS (Relational Database Services) |
530 | managed relational database service for MySQL, PostgreSQL, MariaDB, Oracle BYOL, or SQL server |
531 |
532 |
533 | |
534 | |
535 | usecase: simplifies the management of time-consuming database administration tasks; Makes it easy to set up, operate, and scale a relational database |
536 |
537 |
538 | |
539 | |
540 | usecase: rapidly changing data |
541 |
542 |
543 |  |
544 | ElastiCache |
545 | fast, in-memory data store for use as a database, cache, message broker |
546 |
547 |
548 | |
549 | |
550 | usecase: store the results of I/O-intensive SQL database queries to improve application performance |
551 |
552 |
553 | |
554 | |
555 | usecase: lets you deploy and run Memcached or Redis cache server nodes in the cloud |
556 |
557 |
558 |  |
559 | DynamoDB |
560 | fully managed proprietary NoSQL database |
561 |
562 |
563 | |
564 | |
565 | usecase: highly scalable, used for nonrelational data |
566 |
567 |
568 |  |
569 | Redshift |
570 | petabyte-scale data warehouse and exabyte-scale data lake analytics |
571 |
572 |
573 | |
574 | |
575 | usecase: best used for OLAP (online analytical processing) workloads |
576 |
577 |
578 |  |
579 | EMR (Elastic MapReduce) |
580 | petabyte data processing, interactive analytics and machine learning, uses open source frameworks including Apache Spark, Apache Hive, and Presto |
581 |
582 |
583 |  |
584 | Quicksight |
585 | business analytics tool |
586 |
587 |
588 |  |
589 | DocumentDB |
590 | JSON document database |
591 |
592 |
593 |  |
594 | Neptune |
595 | graph database for billions of relationships |
596 |
597 |
598 |  |
599 | Timestream |
600 | time series database |
601 |
602 |
603 |  |
604 | QLDB (Quantum Ledger Database) |
605 | ledger database that provides transparent, immutable, and cryptographically verifiable transaction log |
606 |
607 |
608 |  |
609 | Managed Blockchain |
610 | allows user to build resilient Web3 application on both public and private blockchains |
611 |
612 |
613 |  |
614 | Glue |
615 | serverless data integration service, allows users to discover, prepare, move, and integrate data from multiple sources |
616 |
617 |
618 | |
619 | |
620 | usecase: create workflows in ETL |
621 |
622 |
623 |  |
624 | DMS (Database Migration Service) |
625 | assists in moving databases and workloads into AWS |
626 |
627 |
628 |  |
629 | Aurora |
630 | A fully managed relational database engine that’s compatible with MySQL and PostgreSQL |
631 |
632 |
633 | |
634 | |
635 | usecase: 5x faster than standard MySQL and 3x faster than PostgreSQL, highly scalable |
636 |
637 |
638 | Machine Learning |
639 |
640 |
641 |  |
642 | Rekognition |
643 | an image recognition service that detects objects, scenes, activities, landmarks, faces, dominant colors, and image quality |
644 |
645 |
646 |  |
647 | Transcribe |
648 | an automatic speech recognition service that uses machine learning models to convert audio to text |
649 |
650 |
651 |  |
652 | Polly |
653 | a service that converts text into lifelike speech |
654 |
655 |
656 |  |
657 | Translate |
658 | a service that translates text between languages |
659 |
660 |
661 |  |
662 | Lex |
663 | a voice based virtual assitant or chat bot |
664 |
665 |
666 |  |
667 | Connect |
668 | acts as a link between different Machine Learning services to to provide infrastructure |
669 |
670 |
671 |  |
672 | Comprehend |
673 | sort or collect text documents by subjects or tags |
674 |
675 |
676 |  |
677 | SageMaker |
678 | build, train and deploy ML models at scale using tools like notebooks, debuggers, profilers, pipelines, MLOps, and more – all in one integrated development environment (IDE) |
679 |
680 |
681 |  |
682 | Forecast |
683 | a service that handles time series data and predicts future trends |
684 |
685 |
686 |  |
687 | Kendra |
688 | a search service that uses Natural Language Processing and machine learning to return more complex queries |
689 |
690 |
691 |  |
692 | Personalize |
693 | uses your data to generate item recommendations for your users |
694 |
695 |
696 |  |
697 | Textract |
698 | extracts content and context from text data |
699 |
700 |
701 | Other Compute Services |
702 |
703 |
704 |  |
705 | ECS (Elastic Container Service) |
706 | allows for managed container orchestration to easliy deploy, manage, and scale containerized applications |
707 |
708 |
709 |  |
710 | Lambda |
711 | serveless computing, runs code in many different languages (Node.js, Python, Go, Java, etc) and manages resources, scaling to deploy the functions |
712 |
713 |
714 |  |
715 | API Gateway |
716 | fully managed service to allow developers to create, publish, maintain, monitor, and secure API's at any scale |
717 |
718 |
719 |  |
720 | Batch |
721 | plans, schedules, and runs containerized batch ML, simulation, and analytics workloads across the full range of AWS compute offerings |
722 |
723 |
724 |  |
725 | Lightsail |
726 | a virtual private server used to store data, run code, build web-based applications |
727 |
728 |
729 | Other Services |
730 |
731 |
732 |  |
733 | AWS WorkSpaces |
734 | a cloud-based virtual desktop that can act as a replacement for a traditional desktop |
735 |
736 |
737 |  |
738 | AppStream 2.0 |
739 | a fully managed application streaming service that provides users instant access to their desktop applications from anywhere |
740 |
741 |
742 |  |
743 | AWS IoT Core |
744 | a fully integrated feature that enables IoT developers to easily provision, onboard, and monitor Amazon Sidewalk devices through AWS IoT Core |
745 |
746 |
747 |  |
748 | Elastic Transcoder |
749 | media transcoding in the cloud and designed to be a highly scalable, easy to use and a cost effective way for developers and businesses to convert (or “transcode”) media files from their source format into versions that will playback on devices like smartphones, tablets and PCs |
750 |
751 |
752 |  |
753 | AppSync |
754 | allows applications to access exactly the data needed |
755 |
756 |
757 | |
758 | |
759 | usecase: create a flexible API to securely access, manipulate, and combine data from multiple sources and pay only for requests to your API and for real-time messages delivered to connected clients |
760 |
761 |
762 |  |
763 | AWS Amplify |
764 | a unified development platform that provides a seamless bridge between front-end and back-end development |
765 |
766 |
767 |  |
768 | AWS Application Composer |
769 | streamline and accelerate the architecture, development, and iteration of modern applications |
770 |
771 |
772 |  |
773 | AWS Device Farm |
774 | an application testing service that lets you improve the quality of your web and mobile apps by testing them across an extensive range of desktop browsers and real mobile devices |
775 |
776 |
777 |  |
778 | AWS Backup |
779 | a fully-managed service that makes it easy to centralize and automate data protection across AWS services, in the cloud, and on premises |
780 |
781 |
782 |  |
783 | AWS DRS (Elastic Disaster Recovery) |
784 | automatically converts your servers to boot and run natively on AWS when you launch instances for drills or recovery |
785 |
786 |
787 |  |
788 | AWS DataSync |
789 | a secure, online service that automates and accelerates moving data between on premises and AWS Storage services |
790 |
791 |
792 | |
793 | Cloud Migration Strategies (7R's) |
794 | refactor, replatform, repurchase, rehost, relocate, retain, and retire |
795 |
796 |
797 |  |
798 | Application Discovery Service |
799 | helps plan application migration projects by automatically identifying servers, virtual machines (VMs), and network dependencies in on-premises data centers |
800 |
801 |
802 |  |
803 | Application Migration Service |
804 | allows you to migrate physical, virtual, and cloud source servers to AWS for a variety of supported operating systems (OS) |
805 |
806 |
807 | |
808 | AWS Migration Evaluator |
809 | gives a clear baseline of what an organization is running at present and what its projected AWS costs will be, measured on-premises provisioning and utilization |
810 |
811 |
812 |  |
813 | AWS Migration Hub |
814 | provides a single place to discover existing servers, plan migrations, and track the status of each application migration |
815 |
816 |
817 |  |
818 | AWS Fault Injection Service (FIS) |
819 | a systematic and controlled process of introducing faults or errors into a system to observe its behavior under adverse conditions |
820 |
821 |
822 |  |
823 | Step Functions |
824 | a visual workflow service that helps developers use AWS services to build distributed applications, automate processes, orchestrate microservices, and create data and machine learning (ML) pipelines |
825 |
826 |
827 |  |
828 | AWS Ground Station |
829 | control satellite communications, process data, and scale your operations without having to worry about building or managing your own ground station infrastructure |
830 |
831 |
832 |  |
833 | AWS Pinpoint |
834 | an AWS service that you can use to engage with your customers across multiple messaging channels |
835 |
836 |
837 | |
838 | AWS Partner Network (APN) |
839 | network focused on helping partners build successful AWS-based businesses to drive superb customer experiences |
840 |
841 |
842 | |
843 | APN Consulting Partners |
844 | professional services firms that help customers of all sizes design, architect, migrate, or build new applications on AWS |
845 |
846 |
847 | |
848 | APN Technology Partners |
849 | provide software solutions that are either hosted on or integrated with the AWS platform |
850 |
851 |
852 | Billing, Pricing, & Support |
853 |
854 |
855 |  |
856 |
857 |
858 | Account Management |
859 |
860 |
861 |  |
862 | AWS Organizations |
863 | centrally manages and governs the environment as it grows and scales AWS resources |
864 |
865 |
866 | |
867 | Consolodated Billing |
868 | one bill for multiple accounts, share the volume pricing and Reserved Instance discounts by combining the usage across all accounts in the organization |
869 |
870 |
871 |  |
872 | AWS Control Tower |
873 | tool to create or manage multi-account AWS environments with best practices
874 | usecase: an easy way to establish a landing zone that implements an AWS well-architected, multi-account environment and applies the AWS best practices |
875 |
876 |
877 |  |
878 | AWS RAM (Resource Access Manager) |
879 | helps securely share resources across AWS accounts, within an organization or organizational units (OUs) in AWS Organizations, and with IAM roles and IAM users for supported resource types |
880 |
881 |
882 |  |
883 | AWS Service Catalog API |
884 | provides programmatic control over all end-user actions as an alternative to using the AWS Management Console |
885 |
886 |
887 |  |
888 | Compute Optimizer |
889 | a service that analyzes your AWS resources' configuration and utilization metrics to provide you with rightsizing recommendations |
890 |
891 |
892 | |
893 | Pricing Calculator |
894 | estimate a bill by entering planned usages by service |
895 |
896 |
897 | |
898 | AWS Billing Dashboard |
899 | allows you to view all previous payments, access AWS credits, and consolidate bills |
900 |
901 |
902 | |
903 | Cost Allocation Tags |
904 | organizes resources, cost allocation tags to track AWS costs on a detailed level |
905 |
906 |
907 | |
908 | Cost and Usage Reports |
909 | tracks your AWS usage and provides estimated charges associated with your account |
910 |
911 |
912 |  |
913 | AWS Budgets |
914 | a tool to set custom budgets that alert you when your costs or usage exceed (or are forecasted to exceed) your budgeted amount |
915 |
916 |
917 |  |
918 | AWS Cost Explorer |
919 | lets you visualize, understand, and manage your AWS costs and usage over time |
920 |
921 |
922 | |
923 | AWS Cost Anomaly Detection |
924 | monitors spending patterns to detect anomalous spend and provide root cause analysis |
925 |
926 |
927 | |
928 | AWS Service Quotas |
929 | enables the view and manage your quotas from a central location |
930 |
931 |
932 |  |
933 | AWS Trusted Advisor |
934 | an online tool that provides you with real-time guidance to help you provision your resources following AWS best practices |
935 |
936 |
937 | |
938 | 5 categories: |
939 | Cost Optimization, Performance, Security, Fault Tolerance, Service Limits |
940 |
941 |
942 | |
943 | |
944 | usecase: capable of inspecting your AWS environment and making recommendations to lower expenditures, improve system performance and reliability, and close security gaps |
945 |
946 |
947 | Architecting |
948 |
949 |
950 | Well-Architected Framework |
951 |
952 |
953 |  |
954 |
955 |
956 |  |
957 | AWS Well-Architected Tool |
958 | provides a trusted framework for you to evaluate your cloud architecture and implement designs that will scale over time |
959 |
960 |
961 | |
962 | AWS Customer Carbon Footprint Tool |
963 | tool to analyze an organizations carbon footprint from its AWS service usage |
964 |
965 |
966 | |
967 | AWS CAF (Cloud Adoption Framework) |
968 | a comprehensive guide designed to help organizations effectively plan and implement their cloud adoption strategies |
969 |
970 |
971 | |
972 | Business Perspective Capabilities: |
973 | Strategy Management, Product Management, Business Insights, Portfolio Management, Strategic Partnership, Data Science, Innovation Management, Data Monetization |
974 |
975 |
976 |  |
977 |
978 |
979 |  |
980 | AWS Professional Services |
981 | shares a collection of offerings to help you achieve specific outcomes related to enterprise cloud adoption |
982 |
983 |
984 | |
985 | AWS Ecosystem |
986 | the collection of all AWS services |
987 |
988 |
989 |  |
990 | AWS re:Post |
991 | a cloud knowledge service that helps builders remove technical roadblocks, accelerate innovation, and operate efficiently |
992 |
993 |
994 | |
995 | AWS Knowledge Center |
996 | FAQ for AWS users |
997 |
998 |
999 |  |
1000 | AWS Managed Services |
1001 | services containing third party tools as part of the AWS Managed Services Advanced operating plan |
1002 |
1003 |
1004 | 
3 |
4 | Learning materials for the AWS Certified Cloud Practitioner Certification (AWS-CLF-C02).
5 |
6 | Information on the exam can be found [here](https://aws.amazon.com/certification/certified-cloud-practitioner/).
7 |
8 | Domains of material covered in the exam:
9 | * Cloud Concepts
10 | * Security and Compliance
11 | * Cloud Technology & Services
12 | * Billing, Pricing, & Support
13 |
14 | 
11 |
12 |
13 |
--------------------------------------------------------------------------------