Search icon Close icon
Search icon
Subscription
0
Cart icon
Close icon
You have no products in your basket yet
Arrow left icon
All Products
Best Sellers
New Releases
Books
Videos
Audiobooks
Learning Hub
Newsletters
Free Learning
Arrow right icon
AWS Certified Developer - Associate Guide - Second Edition

You're reading from  AWS Certified Developer - Associate Guide - Second Edition

Product type Book
Published in Jun 2019
Publisher Packt
ISBN-13 9781789617313
Pages 812 pages
Edition 2nd Edition
Languages
Concepts
Authors (2):
Vipul Tankariya Vipul Tankariya
Profile icon Vipul Tankariya
LinkedIn
Vipul Tankariya has a broad range of experience in cloud consulting, development, and training. He has worked with a number of customers across the globe, solving real-life business problems in terms of technology and strategy. He is also a public speaker at various AWS events and meetups. He has not only extensively worked on AWS, but is also certified in five AWS certifications. He is an accomplished senior cloud consultant and technologist with more than 21 years of experience. He is focused on strategic thought leadership concentrated around next-generation cloud-based solutions. He has a lot of experience in working on DevOps, CI/CD, and automation at each level of the delivery lifecycle of products, solutions, and services on the cloud.
See other products by Vipul Tankariya
Bhavin Parmar Bhavin Parmar
Profile icon Bhavin Parmar
LinkedIn
Bhavin Parmar has a broad range of experience in cloud consulting, development, and training. He actively participates in solving real-life business problems. He has not only extensively worked on AWS, but he is also certified in AWS and Red Hat. This book combines his AWS experience in solving real-life business problems with his hands-on deployment and development experience. Bhavin is an accomplished technologist and senior cloud consultant with more than 11 years of experience. He is focused on strategic thought leadership concentrated around next-generation cloud-based and DevOps solutions. He has also been instrumental in setting up cloud migration strategies for customers, building enterprise-class cloud solutions, and AWS training.
See other products by Bhavin Parmar
View More author details

Table of Contents (30) Chapters

Preface 1. Overview of AWS Certified Developer - Associate Certification 2. Understanding the Fundamentals of Amazon Web Services 3. Identity and Access Management (IAM) 4. Virtual Private Clouds 5. Getting Started with Elastic Compute Cloud (EC2) 6. Handling Application Traffic with ELB 7. Monitoring with CloudWatch 8. Simple Storage Service, Glacier, and CloudFront 9. Other AWS Storage Options 10. AWS Relational Database Service 11. AWS DynamoDB - A NoSQL Database Service 12. Amazon Simple Queue Service (SQS) 13. Simple Notification Service (SNS) 14. AWS Simple Workflow Service (SWF) 15. CloudFormation Overview 16. Understanding Elastic Beanstalk 17. Overview of AWS Lambda 18. Key Management Services 19. Working with AWS Kinesis 20. Working with AWS CodeBuild 21. Getting Started with AWS CodeDeploy 22. Working with AWS CodePipeline 23. CI/CD on AWS 24. Serverless Computing 25. Amazon Route 53 26. ElastiCache Overview 27. Mock Tests 28. Assessments 29. Another Book You May Enjoy

CloudFormation Overview

AWS infrastructure can be created and customized using the AWS dashboard (GUI), CLI, or API. These methods may be able to build an infrastructure quickly as a one-off; however, over a long period of time, if used to create a whole or partial infrastructure repeatedly in a different region to build Disaster Recovery (DR), or in a subsidiary AWS account, then those methods would be costly, not only in terms of time and money, but also in terms of management, modification, and maintenance. It is a case of reinventing the wheel every time and it is error-prone. To resolve this issue, Amazon provides the CloudFormation service.

AWS CloudFormation allows you to create and customize the AWS infrastructure using code. It also enables you to create your infrastructure as code. This program or code is known as a template in AWS CloudFormation. These templates are...

Understanding templates

AWS CFT describes all AWS resources and their properties in JSON or YAML format. Templates can be written using any text editor. It is recommended that you give relevant and meaningful filenames to each template. Template extensions can be .json, .yaml, or .txt. When these templates are executed, the defined AWS resources are created in the respective AWS account. You can either upload the template to an S3 bucket and specify the template URL or you can upload the template file using the browse button in the template creation wizard. Even if you upload the template file using the browse button in the template creation wizard, it is internally stored in S3. The following diagram helps us to understand this:

Figure 15.1: The AWS CloudFormation flow
While creating a stack, if the template path is pointing to the local machine, then it will automatically...

Understanding a stack

A stack is created upon the successful execution of a template in CloudFormation. Executing a template creates a defined set of AWS resources. A group of these AWS resources defined in CloudFormation is called a stack. During template execution, if CloudFormation is unable to create any resource, the whole stack creation fails. When a CloudFormation execution fails, it rolls back all of the execution steps and deletes any resources created during the process. CloudFormation execution may fail due to several reasons, including insufficient privileges. Due to limited IAM privileges, if the rollback process is unable to delete the created resources, then the incomplete stack remains in the AWS account until it is deleted by an IAM user with sufficient privileges to delete the stack.

At the time of creating a stack from the template, AWS CloudFormation only checks...

The template structure

The following code block helps us to understand the basic AWS CFT structure in JSON and YAML format. For a basic AWS CloudFormation template structure in JSON and YAML, you can refer to https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/template-anatomy.html:

  • The JSON structure: The JSON structure is as follows:
{
"AWSTemplateFormatVersion" : "version date",
"Description" : "JSON string",
"Metadata" : {
template metadata
},
"Parameters" : { set of parameters
},
"Mappings" : { set of mappings
},
"Conditions" : {
set of conditions
},
"Transform" : { set of transforms
},
"Resources" : { set of resources
},
"Outputs" : {
set of outputs
}
}
  • The YAML structure: The YAML structure is as follows:
---
AWSTemplateFormatVersion: "version date"
Description...

A sample CloudFormation template

The following reference URLs provide various ready-to-use CFTs to match the general needs of an enterprise. These templates can be used directly or be modified as per the actual business need. Once templates are written, the partial code can be referred, or copied and pasted into another template for quickly creating new templates.

The following are important reference URLs for sample CFTs:

CloudFormer

CloudFormer can automatically generate a CFT from existing AWS resources in your AWS account. It stores the CFT in a target S3 bucket specified by you. Unlike writing a template from scratch, CloudFormer performs a reverse-engineering task and makes your life easier by generating a template from existing AWS resources in your account. This template can be used as it is for DR, or you can use them for customizing your infrastructure based on your needs. At the time of writing this book, CloudFormer is still in beta version.

More about CloudFormer can be found at https://docs.aws.amazon.com/ AWSCloudFormation/latest/UserGuide/cfn-using-cloudformer.html.

Rolling updates for auto scaling groups

AWS CloudFormation provides you with a mechanism to control how an auto scaling group updates your resources using the UpdatePolicy attribute. If you do not configure your settings correctly, a rolling update on an auto scaling group may be performed unexpectedly. You can address this scenario by using the AutoScalingRollingUpdate policy, which supports a number of options to configure your template.

Here is an example of the updated policy for rolling updates, which can be found in official AWS documentation at https://aws.amazon.com/premiumsupport/ knowledge-center/auto-scaling-group-rolling-updates/. You can also refer to a very good article on rolling updates with CloudFormation at https://cloudonaut.io/ rolling-update-with-aws-cloudformation/.

CloudFormation best practices

CloudFormation best practices are as follows:

  • Always give meaningful and relevant names to AWS CloudFormation templates and resources.
  • Make sure the resources used by a CloudFormation template exist in the region where it is being executed to create a stack, for example, resources such as an EC2 key pair. It can be also be created dynamically using templates, but, if it is hardcoded, make sure it exists in the relevant region.
  • Write a template and create a stack for each layer, for example, a separate stack for web servers, application servers, and networks. It will help us to minimize downtime and efficiently manage and maintain infrastructures.
  • Use a cross-stack reference. This will help us to integrate resources from multiple templates into one template, especially when a separate stack is created for each layer.
  • It is best practice to provide...

Summary

  • CloudFormation can be used to create Infrastructure-as-Code (IaC).
  • AWS does not charge you for using the CloudFormation service.
  • AWS CFTs describes all AWS resources and their properties in JSON or YAML format.
  • You can either upload a CloudFormation template created locally or you can point to an S3 URL to create a CloudFormation stack.
  • Executing a CFT creates a defined set of AWS resources. A group of these AWS resources defined in CloudFormation is called a stack.
  • While creating a CloudFormation stack, if the template path is pointing to the local machine, then it will automatically upload the CloudFormation template to the AWS S3 bucket in the relevant region.
  • CloudFormation automatically identifies the resource dependencies and creates them sequentially.
  • Generally, it is recommended that you write a template for each layer of architecture, that is, the web layer and...
lock icon The rest of the chapter is locked
arrow left Previous Chapter
Chapter 1 of 30
Next Chapter arrow right
You have been reading a chapter from
AWS Certified Developer - Associate Guide - Second Edition
Published in: Jun 2019 Publisher: Packt ISBN-13: 9781789617313
© 2019 Packt Publishing Limited All Rights Reserved
Register for a free Packt account to unlock a world of extra content!
A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.
Sign up now
Unlock this book and the full library FREE for 7 days
Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of
Start free trial
Renews at €14.99/month. Cancel anytime}

Authors (2)

Left arrow icon
Profile icon Vipul Tankariya
LinkedIn
Vipul Tankariya has a broad range of experience in cloud consulting, development, and training. He has worked with a number of customers across the globe, solving real-life business problems in terms of technology and strategy. He is also a public speaker at various AWS events and meetups. He has not only extensively worked on AWS, but is also certified in five AWS certifications. He is an accomplished senior cloud consultant and technologist with more than 21 years of experience. He is focused on strategic thought leadership concentrated around next-generation cloud-based solutions. He has a lot of experience in working on DevOps, CI/CD, and automation at each level of the delivery lifecycle of products, solutions, and services on the cloud.
Read more
See other products by Vipul Tankariya
Profile icon Bhavin Parmar
LinkedIn
Bhavin Parmar has a broad range of experience in cloud consulting, development, and training. He actively participates in solving real-life business problems. He has not only extensively worked on AWS, but he is also certified in AWS and Red Hat. This book combines his AWS experience in solving real-life business problems with his hands-on deployment and development experience. Bhavin is an accomplished technologist and senior cloud consultant with more than 11 years of experience. He is focused on strategic thought leadership concentrated around next-generation cloud-based and DevOps solutions. He has also been instrumental in setting up cloud migration strategies for customers, building enterprise-class cloud solutions, and AWS training.
Read more
See other products by Bhavin Parmar
Right arrow icon

Other recommended products

Related to this chapter
Left arrow icon
Learn CloudFormation
Learn CloudFormation
AWS CloudFormation is the best way to write, deploy and maintain your AWS infrastructure. It helps you create efficient solution architectures, all in one file. It supports most of the AWS Services, and is the safest way to make your AWS infrastructure evolve over time. With this book you will be able to use AWS CloudFormation effectively.
Jul 2018 7 hours 20 minutes
Practical AWS Networking
Practical AWS Networking
Amazon Web Services has dominated the public cloud market by a huge margin and continues to be the first choice for many organizations. Networking has been an area of focus for all the leading cloud service providers. AWS has a suite of network-related products which help in performing network related task on AWS.
Jan 2018 8 hours 36 minutes
Designing AWS Environments
Designing AWS Environments
AWS is one of the most popular public clouds available in the market today. Small to medium-sized businesses, as well as large business organizations, utilize AWS to set up highly scalable and agile infrastructure to meet faster time to market. This book provides hands-on details with respect to the fundamentals of designing an AWS environment with security and governance.
Sep 2018 5 hours 48 minutes
Amazon Web Services Bootcamp
Amazon Web Services Bootcamp
AWS Bootcamp is designed to teach you how to build and manage AWS resources using different ways. This highly practical guide leverages the reliability, versatility, and flexible design of the AWS Cloud. It enables you to perform tasks such as hosting multi-tier websites, running large-scale applications, data storage and archival, and a lot more with ease.
Mar 2018 11 hours 16 minutes
AWS: Security Best Practices on AWS
AWS: Security Best Practices on AWS
With organizations moving their workloads, applications, and infrastructure to the cloud at an unprecedented pace, security of all these resources has been a paradigm shift for all those who are responsible for security; experts, novices, and apprentices alike.
Mar 2018 3 hours 56 minutes
AWS Certified SysOps Administrator - Associate Guide
AWS Certified SysOps Administrator - Associate Guide
AWS certifications are becoming one of the must have certifications for any IT professional working on an AWS Cloud platform. This book will act as your one stop preparation guide to validate your technical expertise in deployment, management, and operations on the AWS platform. Along with exam specific content this book will also deep dive into real world scenarios and hands-on instructions.
Jan 2019 19 hours 28 minutes
Mastering AWS Security
Mastering AWS Security
Security is a key ingredient when it comes to workloads deployed in cloud. Security is highest priority for any organization and it is considered job zero at AWS. Our book will dig deep into the achieving end to end automated security for all workloads deployed, running and stored in AWS cloud.
Oct 2017 8 hours 24 minutes
AWS Tools for PowerShell 6
AWS Tools for PowerShell 6
Amazon Web Services is the leading cloud platform today. Using Windows PowerShell, this book shows you exactly how to automate all aspects of AWS. You can take advantage of the amazing power of the cloud, yet add powerful scripts and mechanisms to perform common tasks faster than ever before. In this book, you will learn to use Amazon Web Services to automate and manage Windows servers. You will also gain a good understanding of automating the AWS infrastructure using simple coding.
Aug 2017 12 hours 24 minutes
AWS Networking Cookbook
AWS Networking Cookbook
With a lot of enterprises moving towards cloud, the need for advanced cloud networking has significantly increased. This book follows a recipe-based approach starting with basic topics to covering the pain points of cloud networking, and will teach you to perform complex networking tasks.
Aug 2017 12 hours 12 minutes
AWS for System Administrators
AWS for System Administrators
AWS for System Administrators covers a variety of tools, techniques, tips, and tricks for building highly available and fault-tolerant infrastructure. You’ll get to grips with AWS fundamentals and concepts with the help of step-by-step explanations and practical code examples.
Feb 2021 12 hours 56 minutes
AWS Security Cookbook
AWS Security Cookbook
AWS Security Cookbook lists all the practical solutions to the common problems faced by individuals or organizations in securing their instances. Here readers will learn to troubleshoot security concerns and understand additional patterns and services for securing AWS infrastructure.
Feb 2020 14 hours 40 minutes
Serverless Architectures with AWS
Serverless Architectures with AWS
Serverless Architectures with AWS teaches you how to build serverless applications on AWS—applications that do not require the developer to provision, scale, or manage any servers. Using an event-driven approach and AWS Lambda as the primary service, the book explains the many benefits of serverless architectures. By the end of the book, you will be ready to create and run your first serverless application that takes advantage of the high availability, security, performance, and scalability of AWS. With this new architecture, you will be able to focus on your product instead of worrying about managing and operating servers to run it.
Dec 2018 7 hours 32 minutes
Right arrow icon

Personalised recommendations for you

Based on your interests and search pattern
Left arrow icon
Designing and Implementing Microsoft Azure Networking Solutions
Designing and Implementing Microsoft Azure Networking Solutions
Designing and Implementing Microsoft Azure Networking Solutions Exam Ref AZ-700 is an all-encompassing guide to the AZ-700 exam and contains all the information you need to succeed in the world of virtual networking with Azure. With this book, you will be fully prepared for the exam and the world of cloud networking.
Aug 2023 17 hours 28 minutes
Microsoft 365 Security, Compliance, and Identity Administration
Microsoft 365 Security, Compliance, and Identity Administration
The Microsoft 365 Security, Compliance, and Identity Administration is a comprehensive guide that helps you employ Microsoft 365's robust suite of features and empowers you to optimize your administrative tasks.
Aug 2023 21 hours 0 minutes
Zero Trust Overview and Playbook Introduction
Zero Trust Overview and Playbook Introduction
Get started on Zero Trust with this step-by-step playbook and learn everything you need to know for a successful Zero Trust journey with tailored guidance for every role, covering strategy, operations, architecture, implementation, and measuring success. This book will become an indispensable reference for everyone in your organization.
Oct 2023 8 hours 0 minutes
The Self-Taught Cloud Computing Engineer
The Self-Taught Cloud Computing Engineer
This self-study book helps you master multiple clouds, including AWS, Azure, and GCP, and serves as a roadmap to becoming a certified cloud computing expert. The book will guide you to develop a professional cloud career by helping you build a broad cloud knowledge base, developing hands-on cloud computing skills, and getting cloud certified.
Sep 2023 15 hours 44 minutes
Technology Operating Models for Cloud and Edge
Technology Operating Models for Cloud and Edge
This book will help you build and create ownership of a technology operating model, as well as connect your leadership with engineering and operations, keeping your internal and external customers in mind. It provides practical tips on why, where, and how to make the cloud and edge platform paradigm sing for you, your team, and your organization.
Aug 2023 7 hours 36 minutes
Azure Architecture Explained
Azure Architecture Explained
Azure is the preferred platform to build mission-critical and secure apps. This book provides comprehensive coverage of essential Azure products, services, and solutions vital for every solution architect's success. Elevate your knowledge and master the critical components of Azure to excel in your role with Azure Architecture Explained.
Sep 2023 14 hours 52 minutes
Pentesting Active Directory and Windows-based Infrastructure
Pentesting Active Directory and Windows-based Infrastructure
This practical guide helps you explore the pentesting of Microsoft infrastructure in detail, and enhances your offensive skillset by showing you the different ways to perform security assessment. This book will help blue teamers and IT engineers get up to speed with possible security issues they may encounter in their Windows environments.
Nov 2023 12 hours 0 minutes
Practical Ansible
Practical Ansible
In Practical Ansible, you'll work with the latest release of Ansible and learn to solve complex issues quickly with the help of task-oriented scenarios. You'll start by installing and configuring Ansible to automate monotonous and repetitive IT tasks and get to grips with concepts such as playbooks, inventories, plugins, collections, and network modules.
Sep 2023 14 hours 0 minutes
Windows 11 for Enterprise Administrators
Windows 11 for Enterprise Administrators
Microsoft’s launch of Windows 11 is a step toward satisfying the enterprise administrator’s needs for better management and enhanced user experience customization. This book provides the enterprise administrator with the knowledge needed to fully utilize the advanced feature set of Windows 11 Enterprise.
Oct 2023 9 hours 32 minutes
The Linux DevOps Handbook
The Linux DevOps Handbook
This book is for software and IT professionals seeking knowledge on Linux systems and DevOps practices. This book will provide you with guidance and tools to learn and gain proficiency in managing Linux-based infrastructures and knowledge of DevOps.
Nov 2023 14 hours 16 minutes
Right arrow icon