AWS tutorial-Part82: Exam Essentials#2

Exam Essentials#2
HTTPS://WWW.FACEBOOK.COM/SAMTHECLOUDGUY/
HTTPS://WWW.YOUTUBE.COM/C/SAMTHECLOUDGUY
HTTPS://WWW.SLIDESHARE.NET/SAMTHECLOUDGUY/
1

Topics
 AWS ARN
 AWS STS
 AWS Web Identify Federation
 EC2 Public Data Sets
 Dynamo DB: Data model & Secondary Index , In place atomic updates
 AWS Service Health Dashboard
 AWS Support Plans
SaM's AWS Learning series!
2

AWS ARN
 Amazon Resource Names (ARNs) uniquely identify AWS resources. We
require an ARN when you need to specify a resource unambiguously
across all of AWS, such as in IAM policies, Amazon Relational Database
Service (Amazon RDS) tags, and API calls.
 The following are the general formats for ARNs; the specific components
and values used depend on the AWS service.
 arn:partition:service:region:account-id:resource
 arn:partition:service:region:account-id:resourcetype/resource
 arn:partition:service:region:account-id:resourcetype:resource
3

AWS STS
 The AWS Security Token Service (STS) is a web service that enables you to request temporary,
limited-privilege credentials for AWS Identity and Access Management (IAM) users or for users
that you authenticate (federated users).
 You can use the AWS Security Token Service (AWS STS) to create and provide trusted users
with temporary security credentials that can control access to your AWS resources. Temporary
security credentials work almost identically to the long-term access key credentials that your
IAM users can use, with the following differences:
 Temporary security credentials are short-term, as the name implies. They can be configured to
last for anywhere from a few minutes to several hours. After the credentials expire, AWS no
longer recognizes them or allows any kind of access from API requests made with them.
 Temporary security credentials are not stored with the user but are generated dynamically
and provided to the user when requested. When (or even before) the temporary security
credentials expire, the user can request new credentials, as long as the user requesting them
still has permissions to do so.
4

Web Identity Federation
 You can directly configure individual identity providers to access AWS resources using
web identity federation. AWS currently supports authenticating users using web identity
federation through several identity providers:
 Login with Amazon
 Facebook Login
 Google Sign-in
 You must first register your application with the providers that your application supports.
Next, create an IAM role and set up permissions for it. The IAM role you create is then used
to grant the permissions you configured for it through the respective identity provider. For
example, you can set up a role that allows users who logged in through Facebook to
have read access to a specific Amazon S3 bucket you control.
 After you have both an IAM role with configured privileges and an application registered
with your chosen identity providers, you can set up the SDK to get credentials for the IAM
role using helper code,
5

EC2 Public Data Sets
 AWS hosts a variety of public datasets that anyone can access for free.
 Previously, large datasets such as satellite imagery or genomic data have
required hours or days to locate, download, customize, and analyze.
When data is made publicly available on AWS, anyone can analyze any
volume of data without needing to download or store it themselves. These
datasets can be analyzed using AWS compute and data analytics
products, including Amazon EC2, Amazon Athena, AWS
Lambda and Amazon EMR.
6

DynamoDB
 Data model: Tables – Similar to other database systems, DynamoDB stores data in tables.
A table is a collection of data. For example, see the example table called People that you
could use to store personal contact information about friends, family, or anyone else of
interest. You could also have a Cars table to store information about vehicles that people
drive.
 Items – Each table contains multiple items. An item is a group of attributes that is uniquely
identifiable among all of the other items. In a People table, each item represents a person. For
a Cars table, each item represents one vehicle. Items in DynamoDB are similar in many ways
to rows, records, or tuples in other database systems. In DynamoDB, there is no limit to the
number of items you can store in a table.
 Attributes – Each item is composed of one or more attributes. An attribute is a fundamental
data element, something that does not need to be broken down any further. For example, an
item in a People table contains attributes called PersonID, LastName,FirstName, and so on. For
a Department table, an item might have attributes such as DepartmentID, Name,Manager,
and so on. Attributes in DynamoDB are similar in many ways to fields or columns in other
database systems.
7

Primary Key
 Primary Key: When you create a table, in addition to the table name, you
must specify the primary key of the table. The primary key uniquely
identifies each item in the table, so that no two items can have the same
key.
 DynamoDB supports two different kinds of primary keys: Partition key – A
simple primary key, composed of one attribute known as the partition key.
 Partition key and sort key – Referred to as a composite primary key, this
type of key is composed of two attributes. The first attribute is the partition
key, and the second attribute is the sort key.
8

 Secondary Indexes: You can create one or more secondary indexes on a table.
A secondary index lets you query the data in the table using an alternate key, in addition
to queries against the primary key. DynamoDB doesn't require that you use indexes, but
they give your applications more flexibility when querying your data. After you create a
secondary index on a table, you can read data from the index in much the same way as
you do from the table.
 DynamoDB supports two kinds of indexes:
 Global secondary index – An index with a partition key and sort key that can be different
from those on the table.
 Local secondary index – An index that has the same partition key as the table, but a
different sort key.
 You can define up to 5 global secondary indexes and 5 local secondary indexes per
table.
9

DynamoDB: In-place atomic update
support
 Amazon DynamoDB supports fast in-place updates. You can increment or
decrement a numeric attribute in a row using a single API call. Similarly,
you can atomically add or remove to sets, lists, or maps.
 DynamoDB Use cases: Managing web sessions
 Storing JSON documents
 Storing metadata for Amazon S3 objects
10

AWS Service Health Dashboard
 Amazon Web Services publishes our most up-to-the-minute information on
service availability in the table below. Check back here any time to get
current status information, or subscribe to an RSS feed to be notified of
interruptions to each individual service. If you are experiencing a real-time,
operational issue with one of our services that is not described below,
please inform us by clicking on the "Contact Us" link to submit a service
issue report. All dates and times are Pacific Time (PST/PDT).
 https://status.aws.amazon.com/
11

AWS Support Plans
 All customers receive Basic Support included with your AWS account. All
plans, including Basic Support, provide 24x7 access to customer service,
AWS documentation, whitepapers, and support forums.
 https://aws.amazon.com/premiumsupport/compare-plans/
12

Thank You
 Do Subscribe to the channel!
 Give us a thumbs up/like if you like this effort.
 See you in the next video!
 Comment/message your queries and suggestions.
 https://www.facebook.com/samthecloudguy/
 https://www.youtube.com/c/SaMtheCloudGuy
 https://www.slideshare.net/samthecloudguy/
13

AWS tutorial-Part82: Exam Essentials#2

More Related Content

What's hot

Similar to AWS tutorial-Part82: Exam Essentials#2

Recently uploaded

AWS tutorial-Part82: Exam Essentials#2