Amazon RDS In AWS the Amazon Relational Database Service (RDS) allows you to deploy, manage, and operate traditional relational databases with managed options for elasticity, scalability, as well as high availability and resilience. You can easily make these databases highly available by deploying them in a Multi-AZ deployment. When running Multi-AZ, the service maintains a […]

Protecting your Infrastructure Before you dive into infrastructure protection, first recall a key principle of AWS—the shared responsibility model. Security, along with compliance, is considered a shared responsibility between AWS and the customer. Essentially, AWS is responsible for the security of the cloud and you, the customer, are responsible for the security in the cloud. […]

Important note During your exam, if you see questions about the Box-Cox transformation, remember that it is a method that can perform many power transformations (according to a lambda parameter), and its end goal is to make the original distribution closer to a normal distribution. Just to conclude this discussion regarding why mathematical transformations can […]

Configuration items As your resources change over time, there needs to be a way to capture those changes so they can be evaluated against both the rules set out in Config and the differences between the unchanged and changed resources themselves. A configuration item is a point-in-time snapshot stored in JSON format that holds that […]

Latency Latency-based routing is configured at the record level in the Route 53 console. AWS calculates the delay, or latency, over the Internet from the requesting device to the endpoint in the AWS cloud. However, latency-based routing does not calculate the application’s delay such as the latency inherent in a database or backend application. Select […]

ExamAlert Always consider all polices in line to the S3 bucket when troubleshooting S3 access. Remember that on top of S3 bucket policies and ACLs, the IAM policies can also have S3 permissions defined for users, groups, and roles being used to access S3. The policy evaluation flow is shown in Figure 5.2. FIGURE 5.2 Policy […]

Using Federation for Access Control and Authentication What we are going to look at more specifically now is how to manage end user access for a new solution that you design for AWS, whether it is for public access or internal use only. User federation was introduced in Chapter 1, Determining an Authentication and Access […]

Applying other types of numerical transformations Normalization and standardization rely on your training data to fit their parameters: minimum and maximum values, in the case of normalization, and mean and standard deviation in the case of standard scaling. This also means you must fit those parameters using only your training data and never the testing […]

Understanding the Various Components of AWS Config In a standard AWS account, the resources that make up that account constantly change in one form or another. Instances are started, stopped, created, or destroyed as part of an autoscaling event. An admin or developer might add or remove a port to or from a security group […]

Public Hosted Zones Public hosted zones are created to deliver name resolution and other Route 53 DNS services on the Internet. In Route 53 a public zone routes traffic on the Internet for a specific domain. For Internet-based DNS queries, the public hosted zone is used. A public hosted zone contains your defined instructions about how […]