Hand Book

For

AWS
Admin

Kvred
di
 MODULE#1 -Introduction to Cloud Computing

Agenda
What is Cloud Computing ?
Why we go for Cloud Computing?
History and Origins of Cloud Computing
Characteristics of Cloud Computing
Types of cloud services
Software as a
Service SaaS Platform as a
Service PaaS Infrastructure as
a Service IaaS
Cloud implementation types
Conclusion
 What is Cloud Service?
Services and Solutions that are delivered and
consumed in real time over internet are Cloud Services
-When you store your photos online, use webmail
or social networking site, you will use “Cloud
Computing” Service

What is Cloud Computing?

Cloud Computing is a delivery model of Computing services

over the internet
-It enables real time development, development and delivery
of broad range of products, services and solutions

“Cloud computing is a style of computing where massively

scalable IT-related capabilities are provided as a service across
the Internet to multiple external customers”
What is Cloud Computing?

=
Computing and software resources that are
demand,
delivered as
on APPLICATION
service.. S

COMPUTE
R
SERVICES NETWOR
STORAGE
K
(DATABASE)
AWS Administration

Why we go for Cloud Computing?

• Lower Computing Cost

• Improved Performance
• Reduced Software Cost
• Instant Software Updates
• Unlimited Storage Capacity
• Increased Data Reliability
• Device Independence and the “always on!,
anywhere and any place”
• Free From Maintenance and the “no-need-
to-know”
History and Origins of Cloud Computing

Launches of Google App

2008 - Engine/Windows Azure Beta

Google App /

200
S3

200
Launch of Amazon web

The first milestone for Cloud

199
The arrival of

196
Supercomputers/Mainfr
Characteristics of Cloud Computing
Characteristics of Cloud Computing

• On-demand self-service
• Ubiquitous network access
• Resource pooling (advanced virtualization)
• Rapid elasticity
• Flexible pricing - Pay per use
Characteristics of Cloud Computing
• On-demand self-service
• Ubiquitous network access
• Resource pooling (advanced virtualization)
• Rapid elasticity
• Flexible pricing - Pay per use
Characteristics of Cloud Computing
• On-demand self-service
• Ubiquitous network access
• Resource pooling (advanced
virtualization)
• Rapid elasticity
• Flexible pricing - Pay per use
Characteristics of Cloud Computing
• On-demand self-service
• Ubiquitous network access
• Resource pooling (advanced virtualization)
• Rapid elasticity
• Flexible pricing - Pay per use
Characteristics of Cloud Computing
• On-demand self-service
• Ubiquitous network access
• Resource pooling (advanced virtualization)
• Rapid elasticity
• Flexible pricing - Pay per use
Cloud Service Layers

Cloud Service Layers

Cloud Service Layers

Cloud Service Model -Comparison

Cloud implementation types
Public Cloud

• Owned and managed by service provider

• Made available to the general public or a
large industry group
Private Cloud
• Operated solely for an organization
• May be managed by the organization or a
third party
• Limits access to enterprise and partner
network
• Retains high degree of control, privacy and
security
Hybrid Cloud
• Composition of two or more clouds (private,
community, or public) bound together by
standardized or proprietary technology that
enables data and application portability
Conclusion

Cloud Computing is the fastest growing part of network

based computing. It provides tremendous benefits to
customers of all sizes: simple users, developers, enterprises
and all types of organizations.
 MODULE#2 -Introduction to AWS

Agenda
What is AWS ?
Benefits of using AWS?
History and Origins of AWS
AWS Components
AWS Services
AWS
Regions
AWS
Availability
Zones
AWS Edge Locations
AWS Certifications
What is AWS?

Amazon Web Services(AWS) are a collection

of remote services(Also called as web service)
offered by the amazon.com over the internet
build and run an application.

Amazon Web Services (AWS) - robust,

scalable and affordable infrastructure for cloud
computing.

AWS provide compute, storage and database

service quickly provisioning the IT needs
 What is AWS ?

AWS is a set of cloud computing services

AWS is flexibility, availability, and scalability

AWS is Elasticity: scale up or scale down as needed,

We can get recourses instantly

AWS is fully on demand

Benefits of using AWS ?
• Pay-per use model
you are only charged for disk space, CPU
time and bandwidth that you use.
• Instant scalability
Your Service automatically
scales on AWS stack.
• Reliable/Redundant
Infrequent outages (so far).
Data is redundant in the cloud.
All services have built-in
security
• Security
AWS delivers a scalable cloud-computing
platform that provides customers with end-
to-end security and end-to-end privacy.
• Most services accessed via simple
REST/SOAP API
Libraries are available in all major
languages.
Minimal learning curve.
Service Level Agreement (SLA)
SLA between 99.99 and 100% availability
Amazon S3 maintains a durability of 99.99999%

• Availability
Availability Zones exist on isolated fault
lines, flood plains, and electrical grids to
substantially reduce the chance of
simultaneous failure
• Support
AWS provides 24/7 support in the real-time
operational status of all services around the
globe
History and Origins of AWS

Grew out of Amazon’s need to rapidly provision and configure machines of

standard configurations for its own business.
Early 2000s – Both private and shared data centers began using
virtualization
to perform “server consolidation”
2003 – Internal memo by Chris Pinkham describing an “infrastructure service
for the world.”
2006 – S3 first deployed in the spring, EC2 in the fall
2008 – Elastic Block Store available.
– Amazon EC2 Now Offers Windows Server 2008
Various Components of AWS
AWS Services
Amazon provides the various types of services as
below
EC2 – Virtual Private Servers
• Similar to standard VPS’s and are called
instances
• Available in a variety of sizes (613MB to
64GB of RAM)
• All major operating systems supported

S3 – Cloud Storage
• Highly scalable (some companies have PBs
of data)
• Highly available – data is stored in
multiple data centers

RDS – Relational Database

• MySQL, SQL and Oracle databases
• Variety of sizes
• High availability available for an extra
cost
• Read replication
• Scheduled backups

Route 53 – DNS
• High availability
• Works well with other AWS services
• Fast and secure
• Pay per zone and million queries
CloudFront – Content Delivery Network
• Uses a number of global edge locations
• Fast
• Pay per GB of data transfer (prices vary
on the region)

Glacier – Data Archiving

• Store data for a prolong period of time
(years)
• Very cheap
• Data retrieval takes a few hours

DynamoDB – NoSQL Database

• High availability
• Data stored on SSDs for speed
• Pay for number of read/writes per
second

ElastiCache – Memcache
• Cache database results
• Available in a variety of sizes
• Pay per hours
AWS Services

AWS Regions
AWS Regions are completely isolated from each other and are in
different parts of the world and AWS Regions is
– A collection of data centers (Availability Zones or “AZ”
– Each region has a set number of AZs
– All AZs in a region connected by high-bandwidth
– Cost vary from Region to Region
– Default Region in US East
AWS Regions

AWS Availability Zones

Note: There is an extra region called the AWS

GovCloud region, but this can only be used by
government agencies
AWS Edge Locations

Edge locations are the important part of the AWS infrastructure.

There are currently 40 edge locations. They are located in most the
major cities around the world and are used by CloudFront (CDN)
and route53(DNS) to distribute content nearer to the end user

AWS Certifications
 MODULE#3 –Elastic Cloud Computing EC2

Agenda
Introduction to AWS EC2
Benefits of using AWS EC2?
Amazon EC2 use cases
AWS EC2 Pricing Model
AWS Instance type
Amazon Machine Image [AMI]
Selecting EC2 instance
AWS Regions and Availability zones
Launching Amazon EC2 Instance
Step by Step
Introduction to Amazon EC2

Amazon EC2, which is also known as Amazon Elastic

Compute Cloud, provides resizable computing capacity
in the Amazon Web Services (AWS)

It is a simple web service interface allows you to obtain

and configure capacity with minimal friction.

It provides you with complete control of your computing

resources and lets you run on Amazon’s proven
computing environment.

EC2 is the core service of AWS cloud platform and

launched in 2006

These are the virtual servers, also called as an instances

we can use these instances pay per use basis
Benefits of using AWS EC2?
Easier and Faster - Amazon EC2 reduces the
time required to obtain and boot new server
instances to minutes, allowing you to quickly p
scale capacity, both u and down, as your
computing requirements change.

Elastic and Scalable – Quickly add and

subtract resources to applications to meet
customer demand and manage costs. Avoid
provisioning resources up- front for projects
with variable consumption rates or short
lifetimes.

High Availability – Amazon EC2 provides

developers the tools to build failure resilient
applications and isolate themselves from common
failure scenarios.

Cost-Effective – Consume only the amount of

compute, storage and other IT resources needed.
No long-term commitment, minimum spend or up-
front investment is required.
EC2 Pricing Model
• Free Usage Tier
• On-Demand Instances
– Start and stop instances whenever you like,
costs are rounded up to the nearest hour.
(Worst price)
• Reserved Instances
– Pay up front for one/three years in advance.
(Best price)
– Unused instances can be sold on a secondary
market.
• Spot Instances
– Specify the price you are willing to pay, and
instances get started and stopped without
any warning as the marked changes.
(Kind of like Condor!)
– Dedicated Instances
- Charge for instance
AWS Instance type
Amazon Machine Image [AMI]
Launching an Amazon EC2 Instance Step by
Step

Launching an Amazon EC2 Instance Step by Step

• Sign up for AWS at http://aws.amazon.com

• Apply the service credit you received by email.
• Create and download a Key-Pair, save it in your
home directory.
• Create a VM via the AWS Console
• Connect to your newly-created VM like this:
• ssh -i my-aws-keypair.pem ec2-user@ip-
address-of-vm
Login to AWS Console

Click on EC2 from Compute services from AWS

Console
You can see the EC2 dashboard and all EC2
instance

Click on running instances to see the existing running

instances

Running
instances
 Click on Launch Instance to create New
Instance

AWS Regions

Note: There is an extra region called the AWS GovCloud region, but
this can only be used by government agencies
AWS Regions

AWS Availability Zones

Select the respective OS Image to install

Select the Instance

type
When NOT to user EC2 ?

• Physical Access to the system

• Non supporting Operating system
• Multicast/Manipulation of L2
Networking
• Disks attached to multiple VM’s
• You don’t want to do system
administration
 MODULE#4 –Identity and Access Management[IAM]

Agend
a
Introduction to Identity and Access
management (IAM)
Understanding IAM console
Creating and managing security group
Creating and managing users
Managing the user passwords and
security Key ID
Creating and managing roles
Understanding and managing policy
Understanding multi factor
authentication
User login process
  What is IAM?

IAM stands for Identity and Access Management

IAM is a web services that enable you to manage users
and group permissions in AWS

It is targeted at organizations with multiple users or systems

that use AWS products such as Amazon Elastic Compute Cloud,
Amazon Relational Database Service, and the AWS Management
Console

 Why we go for IAM?

To avoid a security and logistical headache

When you create an AWS account, it has

permissions to do anything and everything with all
the resources

IAM Allows you to limit access as needed and gives

you the peace of mind that approved people are
accessing the right resources in the desired manner

 Why we go for IAM?

 IAM will allow us to create multiple users with individual
security credentials and permissions, with this IAM, each
user is allowed to do only what they need to do

 Why we go for IAM?

Each user in the AWS account must have a unique set of credentials
to access the console
  What is IAM?

Different types of users have different set of

permissions

Administrators need to access all AWS

resources

Developers need only access on Amazon Elastic Compute

Cloud (EC2)
 What is IAM ?

We can use IAM to create a unique user for each employee and
define their permissions

 What is a Group ?

A group is a collection of IAM users

After you set permissions on a group, those permissions

are set to all users in the group
Even if we create user, we need to use groups to set permissions.
We need to manage access for number if groups instead of
managing access for every individual user.
 Creating group

Select IAM from AWS

console

 Creating Group
 Creating Group

 Creating Group
 Attach the policy

 Review the group

Group created

 Changing group name

Select group->Group actions->Edit

group
 Deleting group

Select group->Group actions->Delete

group

 Adding users to group

Select group->Group actions->Add users to
Group
Select users to add group
 Creating user

 User key ID
 Deleting user

 Managing user password

 Managing access Keys
 User default password settings

 Understanding roles
 Creating roles

 Attaching policy to role

 Deleting role
 Multi Factor Authentication [MFA]

Multi-Factor Authentication, or MFA.

MFA provides additional security by
requiring users to use a password and
an authentication code from an
external device

MFA is especially recommended for the AWS root accounts and

account with administrator permissions since they have access to
all your AWS resources
 Login process