Search icon Close icon
Search icon
Subscription
0
Cart icon
Close icon
You have no products in your basket yet
Arrow left icon
All Products
Best Sellers
New Releases
Books
Videos
Audiobooks
Learning Hub
Newsletters
Free Learning
Arrow right icon
AWS Certified Developer - Associate Guide - Second Edition

You're reading from  AWS Certified Developer - Associate Guide - Second Edition

Product type Book
Published in Jun 2019
Publisher Packt
ISBN-13 9781789617313
Pages 812 pages
Edition 2nd Edition
Languages
Concepts
Authors (2):
Vipul Tankariya Vipul Tankariya
Profile icon Vipul Tankariya
LinkedIn
Vipul Tankariya has a broad range of experience in cloud consulting, development, and training. He has worked with a number of customers across the globe, solving real-life business problems in terms of technology and strategy. He is also a public speaker at various AWS events and meetups. He has not only extensively worked on AWS, but is also certified in five AWS certifications. He is an accomplished senior cloud consultant and technologist with more than 21 years of experience. He is focused on strategic thought leadership concentrated around next-generation cloud-based solutions. He has a lot of experience in working on DevOps, CI/CD, and automation at each level of the delivery lifecycle of products, solutions, and services on the cloud.
See other products by Vipul Tankariya
Bhavin Parmar Bhavin Parmar
Profile icon Bhavin Parmar
LinkedIn
Bhavin Parmar has a broad range of experience in cloud consulting, development, and training. He actively participates in solving real-life business problems. He has not only extensively worked on AWS, but he is also certified in AWS and Red Hat. This book combines his AWS experience in solving real-life business problems with his hands-on deployment and development experience. Bhavin is an accomplished technologist and senior cloud consultant with more than 11 years of experience. He is focused on strategic thought leadership concentrated around next-generation cloud-based and DevOps solutions. He has also been instrumental in setting up cloud migration strategies for customers, building enterprise-class cloud solutions, and AWS training.
See other products by Bhavin Parmar
View More author details

Table of Contents (30) Chapters

Preface 1. Overview of AWS Certified Developer - Associate Certification 2. Understanding the Fundamentals of Amazon Web Services 3. Identity and Access Management (IAM) 4. Virtual Private Clouds 5. Getting Started with Elastic Compute Cloud (EC2) 6. Handling Application Traffic with ELB 7. Monitoring with CloudWatch 8. Simple Storage Service, Glacier, and CloudFront 9. Other AWS Storage Options 10. AWS Relational Database Service 11. AWS DynamoDB - A NoSQL Database Service 12. Amazon Simple Queue Service (SQS) 13. Simple Notification Service (SNS) 14. AWS Simple Workflow Service (SWF) 15. CloudFormation Overview 16. Understanding Elastic Beanstalk 17. Overview of AWS Lambda 18. Key Management Services 19. Working with AWS Kinesis 20. Working with AWS CodeBuild 21. Getting Started with AWS CodeDeploy 22. Working with AWS CodePipeline 23. CI/CD on AWS 24. Serverless Computing 25. Amazon Route 53 26. ElastiCache Overview 27. Mock Tests 28. Assessments 29. Another Book You May Enjoy

AWS Relational Database Service

AWS Relational Database Service (RDS) is a fully managed relational database service from Amazon. RDS makes it easier for enterprises and developers who want to use a relational database in the cloud without investing a lot of time and resources in managing the environment. AWS RDS supports six database engines—Amazon Aurora, PostgreSQL, MySQL, MariaDB, Oracle, and Microsoft SQL Server. It provides easy-to-use, cost-effective, and scalable relational databases in the cloud.

The following topics will be covered in the chapter:

  • Introducing RDS
  • RDS engine types
  • Creating an Amazon RDS MySQL DB instance
  • Monitoring RDS instances
  • Creating a snapshot
  • Restoring a DB from a snapshot
  • Changing an RDS instance type
  • Amazon RDS and VPC
  • Connecting to an Amazon RDS DB instance
  • RDS best practices

Introducing RDS

We have already seen what RDS in the introduction of this chapter and how it is useful. The advantages of Amazon RDS are as follows:

  • It's a fully managed service that automatically manages backups, software and OS patching, automatic failover, and recovery.
  • It also allows us to take a manual backup of the database as a snapshot. Snapshots of a database can be used to restore a database as and when required.
  • RDS provides fine-grained access control with the help of AWS IAM.

AWS RDS does not provide root access to the RDS instance. In short, RDS does not allow the user to access the underlined host OS. That means that you cannot log into the server operating system. It also confines access to certain system procedures and tables that may require advanced privileges.

After launching RDS in its service offerings, AWS was not providing an option to stop an RDS...

Amazon RDS components

The Amazon RDS components are detailed in the following subsections.

DB instances

Each Amazon RDS engine can create an instance with at least one database in it. Each instance can have multiple user-created databases. Database names must be unique to an AWS account and are called DB instance identifiers. Each DB instance is a building block and an isolated environment in the cloud. These databases can be accessed using the same tools that are used to access standalone databases hosted in a data center. On top of standard tools, AWS RDS instances can also be accessed by the AWS Management Console, the API, and the CLI.

Each DB engine has its own version. With the help of a DB parameter group, DB engine...

RDS engine types

Amazon RDS supports six DB engine types—Amazon Aurora, MySQL, MariaDB, Microsoft SQL Server, Oracle, and PostgreSQL. The following table helps us to understand the connecting port and protocol for each of these DB instances:

Amazon RDS engine types

Default port

Protocol

Aurora DB

3306

TCP

MariaDB

3306

TCP

Microsoft SQL

1433

TCP

MySQL

3306

TCP

Oracle

1521

TCP

PostgreSQL

5432

TCP

The Amazon RDS engine for Microsoft SQL Server and Oracle supports two licensing models: license included and Bring Your Own License (BYOL). If you are already invested in purchasing licenses for such databases, it can also be used as a BYOL with Amazon RDS to minimize monthly billing.

Supported instance types may vary for each Amazon RDS engine.
...

Creating an Amazon RDS MySQL DB instance

Amazon RDS MySQL DB instances can be created using the Amazon Management Console, CLIs, or APIs, and the steps are as follows:

  1. Log into the AWS Management Console with the appropriate user privileges and go to the Amazon RDS dashboard.
  2. Select Create database, as shown:
Select Create database
  1. Select the engine type as MySQL, as shown:
Select the Amazon RDS engine type as MySQL

The Only enable options eligible for RDS Free Usage Tier option is only allowed during the first year of the free tier, such as t2.micro single-AZ instance, as shown:

Optionally, select Only enable options eligible for RDS Free Usage Tier
  1. Select the Production - MySQL use case to have multi-AZ deployment or Dev/Test - MySQL, as shown. It is also suggested that you switch to Amazon Aurora, as it is seamlessly compatible with MySQL:
Select Amazon RDS MySQL...

Monitoring RDS instances

Once an Amazon RDS instance is created as per the present need, it is very important to observe its performance with constantly changing business requirements and application loads. It is possible to monitor the instance's CPU utilization, DB connections, free storage space, free memory, and many other parameters. It helps to identify bottlenecks and will also give you the opportunity to minimize monthly billing by reducing the resource size if it is underutilized.

An alarm can be configured to take action at a specified threshold. For example, if CPU usage is above 70% for a specified consecutive time period, then send SNS notifications to the DBA. Such an alarm can be created either from the CloudWatch dashboard or from the Amazon RDS dashboard.

To create a CloudWatch alarm from the Amazon RDS dashboard, perform the following steps:

  1. Go to the Amazon...

Creating a snapshot

A snapshot is a frozen image of the DB instance's storage volume. It helps to restore a database to a particular point in time. Usually, point-in-time recovery is performed when a database is corrupted or by mistake some data has been dropped (that is, deleted), to bring a database back to the last healthy state. At the time of creating an Amazon RDS instance, a daily snapshot schedule has already been configured, but it may sometimes be required to take a manual snapshot of the DB instance before performing any maintenance tasks on the database. A snapshot will back up an entire DB instance including all databases, tables, and other resources existing on it.

Creating a snapshot for a multi-AZ DB instance doesn't bring many performance implications, but taking a snapshot for a single-AZ DB instance may suspend DB I/O, for a few seconds to minutes...

Restoring a DB from a snapshot

A snapshot can only be restored by creating a new instance. You cannot restore a snapshot to an existing instance. While restoring the snapshot to a new RDS instance, you can have a different storage volume type from the one used in the snapshot.

Creating an RDS DB instance from a snapshot automatically attaches a default parameter group and security group to it. Once a DB instance is created, it is possible to change the attached parameter group and security group for that instance. By restoring a snapshot, the same option group associated with the snapshot will get associated to the newly created RDS DB instance. Option groups are platform-specific—VPC or EC2-Classic.

Creating an RDS DB instance inside a particular VPC will link a used option group with that particular VPC. It means that when the snapshot is created for that DB instance...

Changing an RDS instance type

An RDS instance type is generally changed to accommodate additional resource requirements or to downgrade an existing instance type that is underutilized. To change the instance type, perform the following steps:

  1. Select the desired Amazon RDS instance to change type and click on Modify as shown:
Select Modify to change the Amazon RDS instance configuration
  1. From the list of RDS DB instances, select the desired instance to modify the instance type and select Modify from the instance's Actions drop-down menu.
  1. Modifying a DB instance does not only allow us to change the DB instance type; it also allows us to change many other parameters that are provided at the time of creating a DB instance, such as subnet group, security group, and many more options. At the end of the parameters that can be changed, an option is available to apply changes...

Amazon RDS and VPC

Before 2013, AWS supported EC2-Classic. All AWS accounts created after December 4, 2013 only support EC2-VPC. If an AWS account only supports EC2-VPC, then a default VPC is created in each region and a default subnet in each AZ. Default subnets are public in nature. To meet enterprise requirements, it is possible to create a custom VPC and subnet. This custom VPC and subnet can have a custom CIDR range and can also decide which subnet can be public and which one can be private. When an AWS account only supports EC2-VPC and it has no custom VPC created, then Amazon RDS DB instances are created inside a default VPC.

Amazon RDS DB instances can also be launched into a custom VPC just like EC2 instances. Amazon RDS DB instances have the same functionality in terms of performance, maintenance, upgrading, recovery, and failover detection capability, irrespective of...

Connecting to an Amazon RDS DB instance

Once the Amazon RDS DB instance is created, you can connect to it to perform read/write operations as well as day-to-day maintenance activities. Before connecting to the DB instance, ensure that the port to connect with the DB instance is allowed in the firewall or security group. Also, ensure that the source IP from where you need to connect to the DB instance is allowed in the security group. This topic describes how you can connect to various RDS DB instances with different database engine types.

Connecting to an Amazon Aurora DB cluster

Aurora DB clusters consist of a primary instance and an Aurora Replica. A separate endpoint is available for the primary instance, Aurora Read instance...

RDS best practices

RDS best practices are as follows:

  • Create an individual AWS IAM user to perform DBA tasks. Grant the minimum privileges required to perform day-to-day tasks. Remove unused access key and secret key. Have a strong password policy and rotate the password periodically.
  • Before creating an RDS instance, identify Amazon RDS essential characteristics to be specified such as VPC, security group, failover or Read Replica requirement, the region and AZs to use, and storage and backup requirements.
  • Before creating an RDS instance, it is recommended that you create a DB options group and DB parameter group.
  • Monitor Amazon RDS instance resources, such as CPU, memory, and storage, to avoid performance bottlenecks.
  • It is recommended that you keep some extra buffer in memory and a storage volume while choosing RDS instance types.
  • It is recommended that you test your environment...

Summary

  • An RDS is a fully managed relational database service.
  • An RDS provides fine-grained access control with the help of AWS IAM.
  • An RDS does not allow the user to access the underlined host operating system.
  • You can stop and start any RDS database engine.
  • You can stop and start an RDS instance irrespective of whether it is in single-AZ or multi-AZ, except for SQL Server. SQL Server RDS in multi-AZ cannot be stopped.
  • An RDS instance can be stopped for a maximum of seven consecutive days. After seven days, the instance is automatically restarted.
  • RDS supports the Aurora, MySQL, MariaDB, PostgreSQL, Oracle, and SQL Server database engines.
  • You can create a Read Replica for an RDS instances.
  • Read Replica can be created for Aurora, MySQL, PostgreSQL, MariaDB, and Oracle RDS database instances.
  • Amazon Aurora is a MySQL-and PostgreSQL-compatible, fully managed RDBMS.
  • MariaDB is...
lock icon The rest of the chapter is locked
arrow left Previous Chapter
Chapter 1 of 30
Next Chapter arrow right
You have been reading a chapter from
AWS Certified Developer - Associate Guide - Second Edition
Published in: Jun 2019 Publisher: Packt ISBN-13: 9781789617313
© 2019 Packt Publishing Limited All Rights Reserved
Register for a free Packt account to unlock a world of extra content!
A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.
Sign up now
Unlock this book and the full library FREE for 7 days
Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of
Start free trial
Renews at €14.99/month. Cancel anytime}

Authors (2)

Left arrow icon
Profile icon Vipul Tankariya
LinkedIn
Vipul Tankariya has a broad range of experience in cloud consulting, development, and training. He has worked with a number of customers across the globe, solving real-life business problems in terms of technology and strategy. He is also a public speaker at various AWS events and meetups. He has not only extensively worked on AWS, but is also certified in five AWS certifications. He is an accomplished senior cloud consultant and technologist with more than 21 years of experience. He is focused on strategic thought leadership concentrated around next-generation cloud-based solutions. He has a lot of experience in working on DevOps, CI/CD, and automation at each level of the delivery lifecycle of products, solutions, and services on the cloud.
Read more
See other products by Vipul Tankariya
Profile icon Bhavin Parmar
LinkedIn
Bhavin Parmar has a broad range of experience in cloud consulting, development, and training. He actively participates in solving real-life business problems. He has not only extensively worked on AWS, but he is also certified in AWS and Red Hat. This book combines his AWS experience in solving real-life business problems with his hands-on deployment and development experience. Bhavin is an accomplished technologist and senior cloud consultant with more than 11 years of experience. He is focused on strategic thought leadership concentrated around next-generation cloud-based and DevOps solutions. He has also been instrumental in setting up cloud migration strategies for customers, building enterprise-class cloud solutions, and AWS training.
Read more
See other products by Bhavin Parmar
Right arrow icon

Other recommended products

Related to this chapter
Left arrow icon
Learn CloudFormation
Learn CloudFormation
AWS CloudFormation is the best way to write, deploy and maintain your AWS infrastructure. It helps you create efficient solution architectures, all in one file. It supports most of the AWS Services, and is the safest way to make your AWS infrastructure evolve over time. With this book you will be able to use AWS CloudFormation effectively.
Jul 2018 7 hours 20 minutes
Practical AWS Networking
Practical AWS Networking
Amazon Web Services has dominated the public cloud market by a huge margin and continues to be the first choice for many organizations. Networking has been an area of focus for all the leading cloud service providers. AWS has a suite of network-related products which help in performing network related task on AWS.
Jan 2018 8 hours 36 minutes
Designing AWS Environments
Designing AWS Environments
AWS is one of the most popular public clouds available in the market today. Small to medium-sized businesses, as well as large business organizations, utilize AWS to set up highly scalable and agile infrastructure to meet faster time to market. This book provides hands-on details with respect to the fundamentals of designing an AWS environment with security and governance.
Sep 2018 5 hours 48 minutes
Amazon Web Services Bootcamp
Amazon Web Services Bootcamp
AWS Bootcamp is designed to teach you how to build and manage AWS resources using different ways. This highly practical guide leverages the reliability, versatility, and flexible design of the AWS Cloud. It enables you to perform tasks such as hosting multi-tier websites, running large-scale applications, data storage and archival, and a lot more with ease.
Mar 2018 11 hours 16 minutes
AWS: Security Best Practices on AWS
AWS: Security Best Practices on AWS
With organizations moving their workloads, applications, and infrastructure to the cloud at an unprecedented pace, security of all these resources has been a paradigm shift for all those who are responsible for security; experts, novices, and apprentices alike.
Mar 2018 3 hours 56 minutes
AWS Certified SysOps Administrator - Associate Guide
AWS Certified SysOps Administrator - Associate Guide
AWS certifications are becoming one of the must have certifications for any IT professional working on an AWS Cloud platform. This book will act as your one stop preparation guide to validate your technical expertise in deployment, management, and operations on the AWS platform. Along with exam specific content this book will also deep dive into real world scenarios and hands-on instructions.
Jan 2019 19 hours 28 minutes
Mastering AWS Security
Mastering AWS Security
Security is a key ingredient when it comes to workloads deployed in cloud. Security is highest priority for any organization and it is considered job zero at AWS. Our book will dig deep into the achieving end to end automated security for all workloads deployed, running and stored in AWS cloud.
Oct 2017 8 hours 24 minutes
AWS Tools for PowerShell 6
AWS Tools for PowerShell 6
Amazon Web Services is the leading cloud platform today. Using Windows PowerShell, this book shows you exactly how to automate all aspects of AWS. You can take advantage of the amazing power of the cloud, yet add powerful scripts and mechanisms to perform common tasks faster than ever before. In this book, you will learn to use Amazon Web Services to automate and manage Windows servers. You will also gain a good understanding of automating the AWS infrastructure using simple coding.
Aug 2017 12 hours 24 minutes
AWS Networking Cookbook
AWS Networking Cookbook
With a lot of enterprises moving towards cloud, the need for advanced cloud networking has significantly increased. This book follows a recipe-based approach starting with basic topics to covering the pain points of cloud networking, and will teach you to perform complex networking tasks.
Aug 2017 12 hours 12 minutes
AWS for System Administrators
AWS for System Administrators
AWS for System Administrators covers a variety of tools, techniques, tips, and tricks for building highly available and fault-tolerant infrastructure. You’ll get to grips with AWS fundamentals and concepts with the help of step-by-step explanations and practical code examples.
Feb 2021 12 hours 56 minutes
AWS Security Cookbook
AWS Security Cookbook
AWS Security Cookbook lists all the practical solutions to the common problems faced by individuals or organizations in securing their instances. Here readers will learn to troubleshoot security concerns and understand additional patterns and services for securing AWS infrastructure.
Feb 2020 14 hours 40 minutes
Serverless Architectures with AWS
Serverless Architectures with AWS
Serverless Architectures with AWS teaches you how to build serverless applications on AWS—applications that do not require the developer to provision, scale, or manage any servers. Using an event-driven approach and AWS Lambda as the primary service, the book explains the many benefits of serverless architectures. By the end of the book, you will be ready to create and run your first serverless application that takes advantage of the high availability, security, performance, and scalability of AWS. With this new architecture, you will be able to focus on your product instead of worrying about managing and operating servers to run it.
Dec 2018 7 hours 32 minutes
Right arrow icon

Personalised recommendations for you

Based on your interests and search pattern
Left arrow icon
Designing and Implementing Microsoft Azure Networking Solutions
Designing and Implementing Microsoft Azure Networking Solutions
Designing and Implementing Microsoft Azure Networking Solutions Exam Ref AZ-700 is an all-encompassing guide to the AZ-700 exam and contains all the information you need to succeed in the world of virtual networking with Azure. With this book, you will be fully prepared for the exam and the world of cloud networking.
Aug 2023 17 hours 28 minutes
Microsoft 365 Security, Compliance, and Identity Administration
Microsoft 365 Security, Compliance, and Identity Administration
The Microsoft 365 Security, Compliance, and Identity Administration is a comprehensive guide that helps you employ Microsoft 365's robust suite of features and empowers you to optimize your administrative tasks.
Aug 2023 21 hours 0 minutes
Zero Trust Overview and Playbook Introduction
Zero Trust Overview and Playbook Introduction
Get started on Zero Trust with this step-by-step playbook and learn everything you need to know for a successful Zero Trust journey with tailored guidance for every role, covering strategy, operations, architecture, implementation, and measuring success. This book will become an indispensable reference for everyone in your organization.
Oct 2023 8 hours 0 minutes
The Self-Taught Cloud Computing Engineer
The Self-Taught Cloud Computing Engineer
This self-study book helps you master multiple clouds, including AWS, Azure, and GCP, and serves as a roadmap to becoming a certified cloud computing expert. The book will guide you to develop a professional cloud career by helping you build a broad cloud knowledge base, developing hands-on cloud computing skills, and getting cloud certified.
Sep 2023 15 hours 44 minutes
Technology Operating Models for Cloud and Edge
Technology Operating Models for Cloud and Edge
This book will help you build and create ownership of a technology operating model, as well as connect your leadership with engineering and operations, keeping your internal and external customers in mind. It provides practical tips on why, where, and how to make the cloud and edge platform paradigm sing for you, your team, and your organization.
Aug 2023 7 hours 36 minutes
Azure Architecture Explained
Azure Architecture Explained
Azure is the preferred platform to build mission-critical and secure apps. This book provides comprehensive coverage of essential Azure products, services, and solutions vital for every solution architect's success. Elevate your knowledge and master the critical components of Azure to excel in your role with Azure Architecture Explained.
Sep 2023 14 hours 52 minutes
Pentesting Active Directory and Windows-based Infrastructure
Pentesting Active Directory and Windows-based Infrastructure
This practical guide helps you explore the pentesting of Microsoft infrastructure in detail, and enhances your offensive skillset by showing you the different ways to perform security assessment. This book will help blue teamers and IT engineers get up to speed with possible security issues they may encounter in their Windows environments.
Nov 2023 12 hours 0 minutes
Practical Ansible
Practical Ansible
In Practical Ansible, you'll work with the latest release of Ansible and learn to solve complex issues quickly with the help of task-oriented scenarios. You'll start by installing and configuring Ansible to automate monotonous and repetitive IT tasks and get to grips with concepts such as playbooks, inventories, plugins, collections, and network modules.
Sep 2023 14 hours 0 minutes
Windows 11 for Enterprise Administrators
Windows 11 for Enterprise Administrators
Microsoft’s launch of Windows 11 is a step toward satisfying the enterprise administrator’s needs for better management and enhanced user experience customization. This book provides the enterprise administrator with the knowledge needed to fully utilize the advanced feature set of Windows 11 Enterprise.
Oct 2023 9 hours 32 minutes
The Linux DevOps Handbook
The Linux DevOps Handbook
This book is for software and IT professionals seeking knowledge on Linux systems and DevOps practices. This book will provide you with guidance and tools to learn and gain proficiency in managing Linux-based infrastructures and knowledge of DevOps.
Nov 2023 14 hours 16 minutes
Right arrow icon