AWS Solution Architect Full Course 2026 [FREE] | AWS Solution Architect Training 2026 | Simplilearn

services is used by millions of business worldwide to host and manage their cloud infrastructure. From startups to Fortune 500 companies, AWS powers applications, website and services across various industries, making it one of the most essential cloud platforms in the world. Welcome to the AWS full course. In this comprehensive course, you'll learn how to harness the power of AWS to deploy, manage, and scale application and services in the cloud. Whether you're just starting out in the cloud computing or looking to deepen your AWS expertise in this course, we'll provide you with practical skills and knowledge needed to work with AWS effectively. First, we'll start with an introduction to AWS and its key services including EC2, S3, and IM and explore how these services power scalable cloud applications. We'll then dive into AWS management console and teach you how to navigate and manage your cloud resources. effectively. Next, we'll cover how to deploy and manage EC2 instances which are the backbone of cloud computing on AWS. You'll learn how to work with Amazon S3 for storing and also managing data and how to secure it with AM. We'll also cover AWS security best practices including setting up and configuring security groups and access controls to over all your resources. Then we'll dive into advanced topics like VPC, AWS Lambda, and cloud formation, which will help you automate deployments and manage infrastructure at scale. We'll finish with hands-on projects to help you apply your skills in real world scenarios and prepare you for AWS certificate exams. Before we begin, here's a small quiz for you to answer. Which of the following AWS services is primarily used for object storage? Is it Amazon EC2 or is it Amazon S3, AWS Lambda or is it Amazon VPC? Let us know your answers in the comment section below. Also, if you're interested in taking your cloud and DevOps skills to the next level, check out the AI powered cloud computing and DevOps certification program by simply learn in collaboration with IITM Parvat. This course is designed to provide hands-on experience with AWS, Azure, and Google Cloud while focusing on the latest strength in AI powered cloud solutions and DevOps practices. Throughout the program, you'll dive into real world projects, learning the tools and techniques that top companies use to build, deploy, and manage cloud infrastructure. You'll also gain certification from both IITM Parvat and also Microsoft Azure alongside a comprehensive curriculum that covers everything from cloudnative solutions to DevOps automation tools like Jenkins and Teraphform. The program also includes a 2-day campus immersions at IIT Madras research park, access to AI powered job assistance and expertled master classes giving you support that you need to advance your career. Whether you're looking to enter this field of cloud computing or expand your expertise in DevOps, this program provides all the tools to succeed. Start building your cloud career today. The link is given in the description box below and in the pin comments. I welcome you to simply learn world's number one boot camp and even I welcome you to AWS solution architect associate course. Right. So myself Musamil Dakni I have total 11 years of experience in teaching and training. Right now I have three certification. Solution architect professional level certification, solution architect associate level certification and sysops administrator associate level certification. So I'll be your trainer for entire these number of course. Right? So for total AWS solution architect associate course I'll be the trainer who is going to handle all your sessions. Right? Let's start with introduction to AWS. Before that first question, what is cloud computing? So folks, cloud computing is an ondemand remote availability of resources such as computing power, data storage and networking without direct user management. So folks here one more definition to understand in a better way from my end right see cloud computing is all about ondemand delivering IT resources over the internet. Right? So what kind of a resources here it's all about on demand that means whenever it is required at that time you are going to use that and you are going to pay for it right so what kind of a resources like computing where you are going to process the data then where you are going to store the data right then where you are going to provide a security networking and that to without direct user management what exactly it means someone is there without direct user management means someone is there behalf of you to manage your data. Are you getting the point? Someone is there behalf of you to manage your data. Let me take one simple example. Right? Let me take one simple example. Electricity board. Electricity board where you are paying for how much you are consuming the power. You are not maintaining any infrastructure there. Right? Someone is there to manage that electricity board. But here how much you are consuming how much you are consuming the whatever the energy whatever you have the resources everything you are going to pay for it right you are not directly managing the infrastructure electricity board you are not managing that just how many resources you are consuming based on that you are going to pay for it like this in cloud computing also you are not going to manage your infrastructure just how many resources you are consuming based on that you are going to pay for it. Right? Electricity board you can compare with the cloud computing concept. Right? Now here the companies that provides uh like companies that provide these services are called cloud providers. So right now folks from my end AWS is one of the cloud provider. Do you know any other cloud provider right now in the market? Any other cloud provider in the market? AWS, GCP, Alibaba, Azure, Oracle, IBM these all are the cloud providers. These all are the cloud provider. So these all are even if you make the list there are lot of cloud providers are available right and these services are accessible over the internet. So how you are accessing this connect cloud services by using our internet connectivity right now cloud providers ensures large scale management of these services. See when it come for the cloud providers cloud providers are going to provide a large scale of a management of the resources right not only we are restricted to only large scale management. Even cloud providers they'll provide a service to startup also and even individuals also it's up to you how you are going to utilize that right now here now we are going to discuss about one of the cloud provider that is AWS what is AWS folks AWS stand for Amazon web services it's a leading cloud provider right now in the market which offers over 200 on demand and cloud services and these services are extended to individuals, companies, government based on a pay-per use model. Right now, why should I go for AWS? What are the features I'll get if I'm going to AWS? First of all, reliability. See, if you have huge amount of a data, even if you have low amount of a data, the performance will be always consistent, right? If you have huge amount of a data, even low amount of a data, the performance will be consistent and even efficient, accurate, right? That is the power of one of the even you can say that one of the feature of AWS. Then scalability, let us consider I have one application, right? So for specific duration, I'm getting huge amount of a traffic at that time here automatically my application resources will be increased. Right? when I am not expecting any traffic for my application automatically the resources are decreased. So this part is about scalability. Now security part how I can make my cloud environment secure. For this we have a concept called defense in depth. Defense in depth where a security will be provided at different different layer. Let us consider this is layer 1. This is layer 1. This is layer two. Right? This is layer three. So now if I want to make my cloud environment secure so security will be provided at different different layer right this is layer 1 this is layer two this is layer three so what kind of a security I can provide that I'll discuss in future classes right cost effectiveness so as you know that pay as you go model how much you are consuming based on that you are going to pay for it right now if I talk about the market trends right now AWS professional salaries right the Average salary for AWS professional salary is like $160 $60,000 and there is a huge demand of AWS professionals right 60% of a cloud computing job requires AWS related skill now I hope you people are heard almost like majority of the companies right now they are migrating they're migrating from onremism to AWS environment right not only AWS might be the any cloud but if I talk about the AWS right now which is leading Right. So all the organization now they are shifting right migrating from on-romises to AWS environment. So everywhere AWS professionals are required and the condition is the person should be skillful. Again I'm repeating a person should be skillful. That means you should know how to survive in the AWS environment. Being a solution architect you are going to provide a solution. What kind of a instances what kind of a databases? what kind of a storage you are using for your organization. It's your duty to provide cost optimized solution to the organization or a client. Right? Now, what are the skills are covered in this course? Virtual private cloud, storage services, security and IM. IM stands for identity and access management. Then container services. So now folks, why should I go for this course? Maybe you have a question. Why should I go for solution architect as I clearly specified just now in a single line? All the organizations are migrating from on premises to AWS. So in that situation solution architect is must right as per the client requirement whether I am providing a solution or not. I should meet the requirement of a client right I should satisfy all the requirements of a client. So then only I'm a solution architect right. So even if you adhere on the requirement of client that is not sufficient and make sure that what you are designing the architecture it should be secure it should be resilient it should be high performing and that two very very very important is cost optimized architecture because cost is very important factor right so anyone see might be anyone can provide this solution hey I know about the AWS services let us consider one ABC person is there who is having some knowledge about the AWS. Hey, I know that how to launch my EC2 instances. Fine, launch your EC2 instance. So, do you know for which workload, which EC2 should be launched? If you are aware about that, that's really really well and good. But do you know for which workload which instance type should be used? What kind of a storage should be used? Right? So, who is going to provide that kind of a solution? It's a solution architect because solution architect is the person who is going to provide a solution for your workload right. What kind of a like what kind of a workload you are working are you working with graphical related are you working with batch processing are you working with any floatingpoint calculation it's up to you like being a solution architect you are going to decide that right see solution architect one more important point solution architect is not only providing a new entire architecture they're responsible to review the existing architecture also existing solutions also so what They can do they can review they can review the entire architecture someone is suggested so we have designed our architecture no being a solution architect even if the organization is now migrated it's your duty being a solution architect you have to review that right then you can improve the existing solution how I can improve like based on the what kind of instances storage databases networking security there are lot of things are there any loopholes are there Being a solution architect you have to identify right now learning path. So folks in this course we have 10 modules. We have 10 modules. You can say 10 modules or 10 lesson both are fine. Okay. Now what I'm doing course introduction then AWS core concepts compute related features storage services VPC networking content delivery then databases security and IM serverless and application services monitoring and automation and finally container services right so these are a total 10 models what we have for solution architect now course component so folks in this course there are different components are available in that the First one is lesson end project. So what is this lesson end project? How many modules we have? We have 10 lessons right. So first and second are basics. So now if you complete module number three which is relevant to compute which is relevant to compute right now once you complete module number three called compute based on this module you will get one lesson end project like you will get one mini project where you are going to perform after this session and if you get any difficulty I'll be there to help you for this okay once you complete this is for module number three now module number four is storage Right? So once you complete module number four, based on this you are going to perform one lesson and project. Right? So these are like mini projects what you are going to perform after the session. Then we have course end project. This is mandatory to unlock your simple learn certification. Right? As ma'am clearly specified at the last day of a session out of these two project I'll discuss one project with you people. How to submit and what are the task you have to consider. I'll even even I'll demonstrate about that how to perform that task right and the very interesting and very important called assisted practices. Assisted practices is something let us consider we are working with the module number three called compute right in this compute module there is a topic called AMI. If there is a topic called AMI based on this one assisted practice like lab exercise will be there you are going to perform in the session in front of me like first I'll demonstrate the task once my demonstration is done you are going to perform the task in front of me and sometime I'll give the assignment after the session also you have to perform that I'll provide like I'll provide some exercise or assignment what you can consider right now knowledge check so let us consider I'm done with module number three which is relevant to compute right so based on this module you will get some MCQ questions multiplechoice questions in this session I'll take this so you have to answer for these questions right now course and assessment so this is first factor and this is second factor if you want to like if you want to unlock your simple learn certification these are the mandatory points you have to complete first course and project then course and assessment this is also I'm going to discuss in LMS right and the very important part ebooks a material section everything all about these all are like all about the material everything about this course will be available in ebooks that I'm going to show you in LMS okay lesson and project is also mandatory it's up to you this is for knowledge purpose pin this is for knowledge purpose okay no need to submit this but if you complete you will get the confidence So based on what we have completed the module so I completed this particular mini project. You will get confidence in this. Okay. Now exam format. So usually folks I'll not discuss about this exam format about solution architect C3 because at the last day I'll discuss this but if you want I'll just uh have a overview on this right. So C3 is the course 65 MCQ questions 2 hour 10 minutes of a time 130 minutes and this exam can be taken in English, French, German, Italian, Japanese, Korean, Portuguese and simplified Chinese also right so usually about this examination in detail I'll discuss at the last day in detail okay how to book examination how to like uh how to solve the questions where you'll get the dams question each and everything I'll discuss at the last day of session Okay. Yes. This is also like if you talk about the cost in India, $150 plus $27 total $177 you have to pay for this exam, right? 20 USD for mock questions and testing set like testing center or online proctor. Again, this part is also I discussed at the last day of session. Fine. Okay. Let me take you to the LMS now. Learning management system. Where is my LMS? Yes. So I hope folks when you log into your learning management system are you able to see there is a tab called AWS solution architect associate level course. Okay. I hope all are able to see this AWS course. Right. Click on continue learning. Click on continue learning. Right. So first tab is learning track. If you click on learning track there is a option called self-arning self-arning right so self-arning as I clearly specified in the theoretical part like in the slides these are the pre-recorded videos by some of the AWS expert these are always available you don't have to download this right because the lifetime access will be available so no need to download right and it's up to you how you will complete right so better like whenever you for free you can take this video that is also fine but this is also one of the mandatory thing to unlock your simple learn certification 85% of a self-arning should be completed now I hope all are attended the session from this live classes only are you with me folks all are joined the session from this live classes very good that's superb that's really superb right and the one more important point folks once our session is complete right let us consider today at 11:00 We are done with our session right. So tomorrow after 24 hours the recordings will be available here in the my classes section only. Again I'm repeating once we are done with uh 24 hours after the session then the recordings are available for you in my classes section. Just what you have to do if you go to the my classes right which class recording you want just select the date might be you are able to see the date now right today is 3 like 4 5 6 4 5 6 7 8 February month right let us consider tomorrow you want to check the recording of today just click on 3rd February then you are able to see below that a link will be available for you so you can access anytime from anywhere right now assessment part so Folks, this part also I'll discuss last week because assessment is mandatory to unlock your simple learn certification. First two tests are there right within these two test you have to clear at least one and let me tell you every test carries three attempts. every test that carries three attempts. Right? So here you have two tests. Out of these two you have to clear at least one at least one. Then there is another point to unlock your simply learn certification. Here we have two projects. Out of these two projects you have to submit at least one at least one to unlock your simply learn certification. Right? If you see here if you click on certificate there are three mandatory things are available. First self-arning should be completed 85%. And project should be submitted. Out of two project you have to submit at least one project. Out of two test at least one should be clear. Then only your simply learn certification will be unknown. Right? Now this is for certificate part. Now the very important part is material section. Material section. Here we have reference material. Let us consider I want assisted practices. The lab exercises what I'm going to perform in this session. Right? Just click on this download button. You can see here assisted practices are downloading. You can see once it completes you can see the folder here. Yes, assisted practices 84 MB folder is successfully downloaded in my system like this. Whatever you want, ebooks, lesson and projects, live guide, lab guide, anything whatever you want regarding the material you can download from here. Right? And the third tab is practice labs. I have the third tab called practice labs where in simply learn environment where you are going to perform your labs. Here in the practice lab section just click on this. Right. So once you click on this there is a option called launch lab. You can click on this. There is a blue button at the bottom bottom bottom side right bottom side. Click on launch. That's it. the remaining part I'll discuss. So now folks let me take your inputs. Okay folks let's move on towards the next module where I'm going to discuss about AWS overview. Right now so folks in every module you will get this scenario. Scenario for whom? A solution architect. So now you are a cloud architect in an organization and have been asked to implement a solution in the AWS cloud. As a beginner in AWS, focus on AWS core services such as computing, storage, databases, networking services and even more. You must set up an AWS account and use the AWS CLI. CLA stand for command line interface to interact with AWS services and resources. Additionally, learn how to securely regulate access to AWS resources using AWS identity and access management. To achieve this, you will learn a few concepts in this lesson that will help you to find the solution for given scenario. Right now, learning objectives. By the end of this lesson, you will be able to set up an AWS account. Enabling access to and utilization of AWS services. Configure billing alerts to monitor AWS charges for cost control and budget management. Delegate access using IM roles to enhance the security permissions management and setup and work with AWS CLA for efficient interaction with AWS services. So folks, these are the learning objectives or you can call it as a outcomes. Once you complete the module, you are able to answer the questions based on these topics. Okay. So folks, I have one question before going to this. How is my pace? Please feel free feel free to put on your inputs because again and again I'm repeating it's your session. How is my pace? Whether I'm going too fast, too slow or all good. Okay. See please provide your genuine responses. See again I'm repeating feel free to put down your inputs by taking your inputs only I can improve the session right. So what I believe taking the inputs after this session right I can implement in the next session. But if you put down your inputs within a session so I can implement within a session itself. Right? So why should I wait for 24 hours? If you put down your input so I can improve within a session itself. Right? So as I can see start with the AWS infrastructure. So what is infrastructure? Can I say that infrastructure is nothing but combination of software and hardware components. So now here I'm talking about the AWS infrastructure. In that the first term is region. So what is region? Now reason is nothing but a geographical location where all the AWS services are available. Right now folks total 39 regions are available around the world. One more definition for better understanding you can say that region is nothing but collection of two or more availability zones. Region is nothing but collection of two or more availability zone. This is also one of the definition right. This is A1, this is A2 and this is A3 right? So folks do you know how many regions we have in India? First is Mumbai and the second one is Hyderabad. Right? So right now total 39 regions are available around the world and that two in India we have Mumbai and Hyderabad two regions right and one more definition what is region? First region is a geographical location where your AWS services are available. One more definition, region is nothing but collection of two or more. Availability zone is nothing but region. Right? So why we are calling it as two or more? Why not one or more? What is the reason? For high availability purpose. Even if yes backup exactly correct. So here E1 let us consider here disaster occur at the A1 right AZ2 will be ready to provide the service. If A2 goes down A3 will be ready to provide the services right. So here folks what is a now what is availability zone? Availability zone is nothing but collection of one or more data centers. Again I'm repeating folks what is availability zone. Now availability zone is nothing but collection of one or more data centers. So every availability zone which consist of one or more data centers. Now might be you have a question what is data center right? So now data center is nothing but collection of collection of thousands of servers. Are you with me folks? Can I say that every data center which consists of thousands of servers? Can I say that every data center which consist of thousands of servers? Right? So now you can see here availability zone is nothing but collection of one or more data center. Every availability zone centers. Right? Every data centers consist of thousands of server. Now how many availability zones? Right now we have around the world. Exact value is 123. Right now availability zones are available in India. We have six availability zone. Three in Mumbai, three in Hyderabad. Right now my question is folks any idea what is the distance between these two availability zones? The answer of distance between two availability zone is 100 kilometers. Right? So 100 kilometers that means more than 60 to 70 mi approximate. Right? So like the distance should be maintained 100 kilometers. See I have one question here. Why they are keeping 100 km? See they can create within one or two kilometers also. What is the reason why they are keeping between why they are maintaining the distance between two availability zone is 100 kilometers for disaster recovery. Exactly correct. See if you maintain 1 kilometer or 5 kilometer right if you maintain 1 kilometer or 5 kilometer if something went wrong. Let us consider disaster occur at the A1 that affects A2 also. Then there is no one use there is no matter to maintain the multiple availability zone. If one affect definitely then second is also affected right. So if one affect then second is also affected right. So if one affects the second is also affected. That is the reason the standard minimum is 100 approximate that to a 60 m 100 kilometers. Right? So minimum is 100. They are not specified any specific maximum value. Right? minimum it should maintain 100 kilome a standard value. So folks this is all about the basics of AWS infrastructure. Do they ask about these in the exam? No because this is two simple question right? How many how many regions AWS will never ask this kind of a questions. Okay so no need to uh worry about this but uh make sure that you should be updated for these values because every day AWS is updating. Every day AWS is updating right because every day, every hour AWS is updating its infra. So the numbers of region will be changed, number of availability zones will be changed, number of edge locations will be changed, everything will be changed, right? So you should be updated but in the examination you will not get this kind of a questions. Okay. Yes. The same thing you are going to see here for two slides. AWS infrastructure a global cloud infrastructure offers unamatch security broad and reliability as a cloud platform. It features over 200 services supported by data center worldwide. So just now what I completed what is region? Region is a corresponding corresponds to a geographical area housing multiple availability zones. Each availability zone comprises one or more separate data centers each equipped with sufficient power network setup reliable connection within a distinct zone what we are completed just now for the region. Now folks, if I am using AWS infrastructure, right? What benefits I'll get? Right? If I'm using AWS infrastructure, what I'll get the benefits? This is my AWS cloud. Now, so using this AWS cloud, what I'll get the benefit? First of all, scalability. Let me tell you folks, scalability is one of the major advantage of the AWS infrastructure because AWS provides the ability to quickly increase or decrease the resources to your application as per your requirement as per your need. Right? Let us consider for your organization you can manage the cost effectively while maintaining the performance as well as efficiency. This feature is especially beneficial for the organization. They experience some variable workload. Variable workload means sometimes the traffic will be high. Sometime the traffic will be low. Right? At that time the scalability is very important. Right? Now reliability. See in terms of reliability folks AWS has this strong track record. The architecture itself designed in a way that right the architecture itself they are designed in a way that they ensure the high availability and continuous functionality. What it means? It means that AWS can provide the uninterrupted services even in the event of network failure or any natural disaster. Any natural disaster that is the power of AWS right now when it come. So folks in security part AWS delivers high level security through its firewall. There is a new term called firewall. What is firewall? Because some people are from nontechnical background, right? They'll understand what we are talking with the cloud infra term. That is the reason. I hope you got the point, right? So that is the reason. Otherwise I can use a more technical technical what do you call a logical terms also. some symbols also right so let them easily let them understand easily for today we have a first day then we'll go with I can use some er diagram also I can use some relationship diagrams also that is different but let okay as I can see there is some question just now I discussed about the firewalls yes I'm discussing about this security layer protection layer get of network security component protection against malware okay layer of security gatekeeper of input and Output filtering incoming and outgoing traffic set of rules defined via software. Okay. Network security devices for filtering a traffic security layer restricting on authorite data controls what network is traffic in or out. Perfect. It's a security feature where not network can connect with server directly check filter in control traffic. Okay folks so firewalls can I say that for better understanding right for simple I'm using two simple terms. Let me tell you I'm using two simple words anyone can understand. Can I say that firewalls are filters which filters your incoming and outgoing traffic. Simple words right now there is something called encryption. How you will define the encryption term? Mask of hiding data. Turning data into unreadable format. Perfect. Protecting sensitive information. Encoding data with algorithm. Perfect. Abstraction. Yes. converting readable data into unreadable format confidentiality. So now folks if I more technically now right so can I say that encryption is a process where I'm going to convert from plain text to cipher text. Can I say that encryption is a process where I'm going to convert from plain text to cipher text. Right? So this is somewhat technical definition right now encryption is a process where we are converting from encoding to decoding format. No sir this is also not clear. Let me take more simple words. Can I say that encryption is a process where you are converting from readable format to non-readable format. There are three levels of different like three levels of definitions. Plain text to cipher text, encoding to decoding and even even readable format to non-readable format right then yes I am capability IM identity and access management. So here by using this IM service you are going to decide who can access what you are going to decide by using IM service like Damian Damian can access S3 Abeu can access uh what do you call EBS EC2 right Namata can access RDS can access a KMS Awara can access right Aishwara can access uh another EC2 or RDS so you are going to decide as per your work requirement by using IM We are going to assign the work who can access what you are going to decide by using IM service. Right? Now performance efficiency. So folks let me tell you performance efficiency is one of the key attribute of AWS. Key attribute of AWS because it has the capability to run services efficiently on a cloud platform that can scale according to your need of the traffic. scale according to your requirement of your traffic. Right? So what it means it can handle a high volume of a traffic without disline in a performance. Right? Even it ensures smooth operations and greater user experience. Right? Now flexibility here it allows the user to select your preferred operating system. Right? Let us consider uh au Mac operating system. Right? Then Damian want Windows operating system. Then Linux, Fedora, it's up to you which operating system you want. Then programming language someone want to use.NET, Java, Ruby, Rails, Python. It's up to you, right? Then databases. We have RDS, Dynamob, Red Shift, Elastic Cache. Right? So there are different types of databases are available. It's up to you. As per your client requirement, you are going to decide which database should be used. Right? Then finally cost optimization. So folks pay as you go model. How much you are consuming based on that you are going to pay for it. That's it. Right now here in this diagram you can see we are increasing agility and reducing the complexity and risk. How? Accelerate time to market. So folks AWS is providing a solution as per the market requirement. Right. Right now we have a trend like uh even you can call that right now we have a trend of machine learning right artificial intelligence AI. So AWS is trying to provide a solution with ML and a IML right how to train a models we have in AWS we have a service called bedrock right bedrock is a service which is used in machine learning there are multiple services are available what market is expecting from you AWS is providing a solution right right now AWS like right now market is pro expecting about a IML artificial intelligence machine learning for that AWS is providing some containerization services like ECS elastic container services to train a model uh best solution I'm just taking one example ECS with Fargate solution to train a to train a machine right to design models to train models at that time we are using this kind of a service so as per the market trend what market is expecting from you AWS is providing a solution for this right as per requirement of market now increase innovation now folks your workload infrastructure will be managed by someone else. This is your cloud now and someone is there behalf of you who is going to manage this infrastructure. Right? So now your task is managed by someone else. So that means here you can focus purely let us consider I'm a developer who is working in a AWS environment. Right? Being a developer I can think because management part will be taken care by someone else. So being a developer I have to think whether as per the requirement of a client I am developing my application or not as per the requirement I'm satisfying the client or not as whatever a new things I can add whatever a new features I can add so I'll get the sufficient time to do some innovation idea here innovative idea here right then scale seamlessly as per the requirement here whenever you are expecting a high traffic or resources you can consume right and when you are not expecting any traffic the resources will be resources will be scaled out and you can do like you are achieving a cost optimization now optimizing the cost we are reducing the cost how by paying how much you're consuming that is nothing but again pay as you go model right then how we are minimizing the security vulnerabilities by using defense indepth concept where a security will be provided at different layer layer 1 layer 2 layer three those who are aware about the AWS term let me tell you at the EC2 level I'm going to use security group right sir so certainly don't take the question sir what is security group again I'm repeating those who are already aware just here you can consider level one level two level three right those who are already available let us consider I'm providing a security at EC2 level security groups the knackl subnet level right I'm using nal subnet level then VPC flow log at VPC level so at the different different layer I'm providing a security to minimize my vulnerabilities right now folks how I am reducing the management complexity let's discuss and please provide your inputs how I am reducing the management complexity yeah that's why clearly specified consider level one level two level three those who are already aware just now I given a introduction security at EC2 level security groups knackle VPC level so no need to worry don't worry about these terms right now consider level one level two level three that's it that's enough now okay yes as I can see there are some input need to not maintain physical data center okay maintain infra no direct involvement in managing infra see you don't have to worry about managing infrastructure right behalf of you someone is there to manage your infrastructure that is the reason no need to worry about the management of infrastructure so by doing this you are reducing a management complexity because management of infrastructure headache is taken by someone else that is AWS that is the reason we are reducing the management complexity right so this is all about AWS features and the advantages what I'll get if I'm using AWS infrastructure so now folks let's move on to the core services how many of you are observed I don't know but in scenario again In the life of cloud architect there specified some core services in the slide of a day in the cloud architect a day in the life of cloud architect they are specified some core services let's take four storage next database compute networking it's networking so compute networking storage database so here we have few core services which are available to us so now folks let me tell you one important point here in this module I'm discussing only introduction about core services So usually what happens in the session let me tell you that also all are very excited to learn everything in a single day right in it happens in every session even if I'm also the participant it happens right so here now I'm discussing at the introduction level introduction level let me take one example let us consider I'm discussing about storage services as I clearly specified this is introduction only right So now if I'm discussing about the different storage EBS, S3 then EFS. Sir, what is the difference between S3 and EFS? Sir, why should I use S3 and when should I use EFS? Sir, which one is better EVS or S3? Everything I'll get the question here. So folks, let me tell you here I'll discuss only introduction part because a module number three is completely compute only. Module number four is completely storage only. Module number five is completely networking only. Module number six is completely database only. So no need to worry when the time comes 100% each and everything I'll discuss. But right now today we have first session let's discuss at introduction level. Right? So again we'll come back to the details 100%. We have separate module for this awar storage. Five networking. Six database in detail we are going to discuss this. So that is the reason first we'll discuss at the introduction level because everyone right so after this we'll go in detail about each and every core services right now let me take you to the core AWS services here you can see compute storage database analytics networking mobile developer tools IoT security management tools enterprise application Right. So now folks here I have a one popular core service called compute. Compute service. So what is this compute? How you will define this term? Compute is all about processing. Right? So compute service which offers secure and resizable computing capacity in the cloud that simplifies the webcale computing for developers. So folks compute means processing a processing capacity right so here it's a secure and resizable computing capacity resizable means as per the requirement of a client it will increase and decrease so how much amount of a data you have that will be processed here and that to developer can easily and efficiently they can process the data right now let me take one simple comparison there is a service called EC2. EC2 is one of the popular service of compute. EC2 means a server in cloud environment. Server in cloud environment, right? So now elastic compute cloud. EC2 stands for elastic compute cloud. No need to go in depth. Just consider EC2 is one server in cloud environment. Okay. Let me take one scenario. So now folks, I have one onremises server. onromises server. Again, I'm repeating this is my onromisy server and this is my EC2 instance. Okay, a server in cloud platform. Okay, let me do the comparison. And now folks, my scenario is I'm your client and all the 52 participants are my network engineers. Again, I'm repeating folks. Be ready for this scenario. I'm your client client and you all 52 participants are my network engineers right so folks I don't know anything I want to design one web server so how you will take up this challenge understanding the requirement you are ready with the configuration also how much do you how much time you Okay. 5 to 10 days depending on scale. Okay. Let us consider one week. Fine. One week. Okay. Fine. No. Based on hardware collection. Fine. At max 1 week. Okay. Fine. Okay. Let's consider my server is ready. And you have deployed the server and it's available for me. And now folks, you have designed this server for 500 people. You have designed a server for 500 people. But there is sudden hike in a traffic and thousand people are hitting to the server. What will happen to the server? What is the solution? Additional processes. We can extend the hardware. We are discussing in on premises environment. Right. Exactly. Horizontal scaling you have to do or vertical scaling you have to do. You have to add some additional configuration. Am I right folks? You have to add some additional configuration increasing the hardware requirement again. Yes. Then again expensive cost you have to add like again there is a investment again there is a investment you have to pay more right now let us compare with our AWS cloud environment this is my AWS cloud environment right this is my AWS cloud environment now if you want to launch one server right select the operating system instance type right security groups your instance is ready right instance is ready and here pay as you go model pay as you go model how much you're consuming you're going to pay for it then when I'm expecting a huge traffic automatically the configuration will be resources will be increased and when I'm getting a low traffic automatically resources will be decreased so which one is best which one is best onremises server or EC2 just now we are done with comparison reason. So you have to answer for this which one is better is it? Yes. Because here you are going to pay on demand how much you are consuming and you are going to pay on resources. There is no any upfront cost. Upfront cost that means there is no any advanc investment. But here a lot of configuration lot of hardware purchase lot of things are there. Right now some key features they empower user to control their control their compute resources. Right. They operate under pay as you go model. Already we have completed this part. Pay as you go model allow user to put a new server instances within a minute. As I discussed your EC2 can be launched within a minutes. Right. They enable yes a minute. Let me complete this. They enable quick scaling to meet the changing computing requirement with quick and easy configuration of the services. As I clearly specified when the application required when you are expecting the huge amount of a traffic the resources will be increased then automatically it decreases. Right now these are the compute services like EC2 ECR. EC2 stands for elastic compute cloud elastic container registry. Then elastic container service, elastic kubernet service, light sale serverless application repository, lambda, fargate, elastic binstock and finally batch service. So these all are AWS compute services which are available in AWS environment. Right now let's move on to the next service called storage. Here you can see folks we have a service called storage service. a storage service which offers the secure, reliable and scalable storage solution for a data in the AWS cloud. Now it provides the high efficiency, availability, durability and performance also. So folks let me tell you in AWS we have a different types of storage services in that the first one is object storage. Object storage. Then we have block Block storage. And the third we have file storage. Okay. So folks, object storage here all the data will be stored in terms of objects. A popular service. Let me tell you there is a popular service. Might be you people have heard about this ES3 simple storage service. These all are storage services. Again I'm repeating folks. These all are storage services. Right? These are the different categories. First one is object storage. And the popular services simple storage service. S3 stands for simple storage service where you are going to create a buckets and you are going to store the objects. Every data will be considered as a object like whatever you are storing the data this will be considered as a object and you can store any kind of a data there is no restriction right then block storage. So folks in block storage we have a popular service called EBS elastic block storage. In block storage we have popular service called EBS elastic block storage. Right? So it's a persistent block storage. This is my EBS value. This is my EBS value and this is my EC2 machine. EC2 is server. This is my EC2 machine. Right? So now it's a persistent block storage persistent block level storage right. So now this persistent block level storage volume you can attach to your EC2 instance right again I'm repeating folks EBS elastic block storage is one of the popular block storage right and it's a persistent block storage persistent means the data will be permanent which acts like your hard disk drive or SSD HDD or SSD hard disk drive or solid state drive right secondary memory right anti L unless you will not delete the data will be available. Right? So here this EBS value is a persistent storage value. Now we are going to attach to our EC2 instance. Why we are attaching? Let us consider I want to install my operating system. So at that time this storage is required. Let us consider I'm using some data inensive application. Right? Now let us consider I'm running some low latency application. Right? So even I want to access a low latency accessing a data at that time this is required right. So here as I taken the examples sorry use cases when should I go for block storage like installing the operating system or if I want to run the databases or a data intensive applications where the application requires some low latency access of a data at that time EBS is best solution. Now when should I go for object storage? The best example is let us consider I want to store the images, videos, PDF. S3 is also persistent. Let us consider I want to store uh unlimited data like entertainment purpose. Right? I want to store images, audio, video, any type of a data you can store in S3. Right? Now this is for EBS. Then we have file storage. Then we have file storage. So what is file storage here folks? like ES3, like EBS. In file storage, we have a popular service called EFS, EFS, elastic file system, which offers a scalable shared file storage. That means it's a shared file system. This is EFS, right? So, this EFS is well suited for the application that required the shared file access. Right? Let us consider this is my first EC2, second EC2, third EC2, fourth EC2. Right? So now all the developers are working for a same software. Again I'm repeating folks, elastic file system is a scalable shared file storage. So EFS can be accessed concurrently from multiple EC2 machine. Again I'm repeating this shared file storage that can be accessed concurrently from multiple EC2 instances. Right? So now let me take one simple example. I have one software. Right? I have one software but different different developer developer one developer 2 3 4 and all are working for the same software but all are working on a different models and finally the result is stored in this shared file system. Yes, it's like a shared folder, right? So, this is all about just introduction about our storage services. So, it allows the user to store, access and analyze the data to reduce the cost, increase the agility and accelerate the innovations and it can be broadly categorized into the object storage, file storage, blog storage and backup and the data migration. What we have the services, right? So, now what are the storage services? we have that's why I was clearly specified we are thinking at the introduction level see these are the storage services simple storage service elastic file system Amazon FSX then EBS backup then we have storage gateway data sync then transfer family and slow family these all are AWS storage services okay then we have uh another service called database. So folks, what is database? As per your knowledge, see database is nothing but collection of related data. The data might be structured or unstructured. That is different. I'm not talking about the whether it is structured, unstructured or semistructured. But now can I say that database is nothing but collection of related data. But now let me make it a simple collection of related data. Might be it is systematic like a structured, unstructured, semistructured, whether it is uh what is that semantic or symmetric that is different right? So now database is nothing but collection of data related data right. So here folks AWS provide the comprehensive selection of purpose-built a databases right which is suit for like various application needs. So here it's up to you as per your requirement you can select any kind of a databases and let me tell you folks these database services are fully managed. Fully managed means no need to think about provisioning, no need to think about updating, no need to think about patching, everything will be taken care by AWS. Fully managed, fully managed. Whenever the term comes fully managed, everything will be taken care by AWS. Even provisioning, updating, patching, everything will be taken care by AWS. Right? Scalable means as per the requirement, it scales then even highly efficient. Right? Now what are the features like what type of databases I get here. So AWS offer the different database engines like relational database key value database right relational means RDS key value means Dynamo DB in memory means radius memach then graph time series ledger. So there are different types of databases are available in AWS. So as per your requirement you have to choose your databases. So here it supports multi- region that means more than one region in all the 39 regions. Multim masteraster replication multim masteraster replication means you can do the replication in all the 39 regions it's up to you. So you will get a complete control over the data right. So how will replicate this everything that we'll see in future classes. Right now what are the databases service like what database service we have? I have RDS then red shift dynamob elastic cachet then we have document DB key spaces nap tune then finally we have qldb these all are the types of databases which are available in AWS right now a networking folks here we have networking service what is networking as per your knowledge networking is the concept where I'm going to establish a connection between two devices to share the resources. Right? So here AWS will provide a set of networking services that provide the essential security features and robust network solutions. So folks here these services isolate resources. So there is a service if I want to isolate the resources in AWS I have a service called VPC that we'll see in detail in future classes. VPC means isolate when I want to isolate the resources at that time I'll go with VPC. Let us consider this is Karthik VPC Rajes VPC right Manikandan VPC Santo VPC. So here all the resources are deployed. Here all the Karthik resources are deployed right resources are deployed. Then Manikandan then Santosh. So without owner permission no one can enter to this isolated area. That's why we are using VPC. Manikandan can't enter to Kartik area Rajes area. No no not at all. So that's why VPC is a isolated service whether you are using any EC2, RDS, Dynamob, KMS, ES3, anything you are going to deploy in this VPC. So that's why we are calling it as it's a isolating service. VPC is isolating service. No one can enter without your permission. Then encrypting a data. See to encrypt a data we have a service called KMS. It's a native AWS service. Key management service. Key management service is a centralized repository for cryptographic keys for encryption as well as decryption. Right now provides private connection on the AWS global network. So what kind of a connections you will call private connections? VPN then we have direct connect then we have side to side connectivity. VPN connection, direct connect, side to connect, side to side connection, these all are the examples of private connections. Everyone is aware about VPN but direct what is direct connect side to side that I'll discuss in this AWS and what okay now what features I'll get it offers the highest network availability with very few downtime hours due to networking issues. So purposely I'm keeping this statement folks it provide the global coverage of how many regions and how many availability zones you have to answer you have to correct global 39 regions and how many availability zones it's 123 exactly there right so what are the networking services we have we have Amazon VPC API gateway API stand for application programming interface right cloudfront route 53 VPN direct connect cloud map an app mesh. These all are networking services which are available in AWS environment. Okay. Now folks, let me take you to the agenda of today's session. So first today we'll start with first account setup right then we have AWS console then account types. After account types we have billing concepts and billing alerts. How we are creating alerts right after this we have delegation how we are delegating authority delegation as how we are delegating authority to IM user and IM role right then we have a concept called IM right so these are the topics what I'm going to discuss in today's session right so now let us start with the first topic of today's session that is AWS account setup. So folks, I have one question for you people. Let's take again one scenario for a discussion purpose. So now folks, I don't know anything about uh I'm not from technical background, right? So I want to access a Gmail service. So can anyone help me out how I can use this Gmail? I don't know anything. I'm not a technical person. I don't know anything. And I want to access this Gmail service. Can anyone help me out? How I can do that? So what is the procedure? First you have to sign up. First you have to sign up. So what are the details are required like first name, last name, mobile number, alternate email ID, right? Then hint question, then you are ready with your account. Right? For Gmail it ask UPI. So now once once you are ready with your account once you're ready with your account it's a one-time procedure a setup you have to complete right then you have to login so here you have to put on just email ID and password to access your Gmail services right so in AWS also we have two types of account the first account is called root account first account is called root account and the second account is called IM user account. IM users account right. So folks let me tell you root account who is having access to all the AWS services. So whenever whenever you are accessing the AWS resources at the first time so that account is called root account right. So now what is the procedure to create a root account? Just you have to visit AWS like www.awwsconole.com awsconole.com right so you will be redirected to signup page signup page so here everything almost same come like your Gmail only first name last name middle name mobile number email id alternate email id hint question right password then there is one more additional part what is that here it asks here it asks credit card details or debit card details right I think you have now up option also right So you have to specify the mandatory field called credit card or debit card information right. So once your account is created this will be verified. How AWS will debit AWS will debit a token amount from your account to verify this account is genuine. Right? After 2 days again this amount will be refunded to your account. Right? So that is the reason here I think uh root account have access to all the AWS services all the AWS services and that is the reason AWS clearly specified don't use root account for day-to-day activity this is not a best practice again I'm repeating AWS is clearly specified don't use root account for day-to-day activity there is a reason behind that if you compromise your root account credentials at that time at that time you are going to lost each and everything about your organization that is the reason the best practice says create a IM users within this root account IM users are nothing but you are creating another account a separate account within the root account but this user when you create they don't have access for any of the AWS services until and unless you have to explicitly define them right so folks root account have access to all the AWS services right now. IM users. IM users are the users within this root account. And in a single root account, you can create up to 5,000 IM users. Right? And by default, when you create one IM user, this user don't have any access to any of the services, right? Until and unless you have to explicitly define them. You have to define the permission. You have to attach the policy. For example, let us consider I here in an organization I have Karthartik, right? Then Rashmi, then Santosh, then here I'll assign Kartik can work with S3. Then Rashmi can Rashmi can work with EC2. Right? Then Santosh can work with RDS. So like this you can provide a permission to access the resources. So no one can access the other resources apart from this. That is the power of IM user. So I im user also a separate users separate users within the root account but they have separate username and password right. So now so here it's up to you right like root account have the access to all the AWS services but this is not a best practice to use on a daily basis. Right now here just now what I discussed how to create a AWS account. First go to AWS website. Create AWS account. Right? Enter your account information. Right? So whether it is personal or business account, provide your personal information. Then accept the agreement. Then create account and continue. Right? Then provide the billing information. Verify it. Once verified, then provide the mobile number, phone number details. Then support plan. By default, basic plan will be available. By default, basic plan will be available which is free. Some advanced plans are also available. But this is paid service. This is paid service. So basic plan always available with all the accounts. There is no any charges. But when you go for advanced plan, you have to pay for it. Once you select the plans, then you are ready with your account and you have successfully activated your account. Now right now here folks there is a one type yes here I have different types of account in that the first type of account is AWS free tier account right so now what you're creating uh in a account in AWS console we are calling it as free tier account free tier account is valid for 12 months right and here for specific services these are free for specific duration for example EC2 instance which is free for 750 hours. Now S3 which is free for 5GB right? So now S3 is for 5GB right? So now after 5GB you have to pay for it. After 750 hours you have to pay for it. Right? This is free tier account. Now there are different types of accounts we have. First 12 months free tier account right? Then always free what I discussed just now 12 months free which is restricted to only one year. Now always free is something there is no any specific duration but here every service is charged from the beginning itself right now short-term trial what is short-term trial let us consider here we have Rajes Rajes is one of the developer in ABC right is one of the developer in ABC organization and now AWS is launched one new service called bedrock There is a new service launched by AWS called Bedrock and Rajes want to learn this service. So at that time Rajes can request to AWS. Hey team can you provide a access to bedrock service? I want to access this service right. So at that time AWS will provide a short-term credentials for one week for one week. So for one week Rajes can access this service they like if he if the if a person is a developer and he want to understand this bedrock service at that time for one week they'll provide access to Rajes so Rajes can learn something new which is launched in the AWS environment right so that's why we are calling it as short-term trials after one week the credentials are not usable not usable right so these are the different types of uh accounts what we have. So now folks let's let me take you to the now let me take you to the AWS management console. So let's start with our labs now that means just I'm going to show you what about the credential shared in the LMS for the account that only I'm discussing Santo just allow me a minute right so all are with me now in your LMS all are able to see there is a course called AWS solution architect associate level click on continue learning are you able to see this screen a same screen is available on your screen. Now take your own time and let me know once you are ready because I want to show you how to launch your labs. So now folks here you can see there is a option called practice lab. Quick click on this. Click on this. So once you click on practice lab at the right bottom side there is a option called launch lab. Click on this blue button and you will get one popup. Click on launch lab. Once you click on launch lab, your lab will load for you from 1% to up to 100%. It takes one or hardly 2 minutes of a time, not more than that. Yes, lab is working now. For me also it's logging. My console is also 90% done. Yes, still it's 90%. I think work console is in loop. Yes. Should we sign in meanwhile if you want to just allow me a minute? Let me take you one by one like first we'll complete this loading process. Yes. Now I can see my credential sign in link username and password. We get IM user account. Great. Still at 90%. Okay. All are able to see these credentials now. How many of you are at this place as I can see? Okay. Okay, majority of the participants are successfully logged in like uh loaded the lab. So folks, let me tell you. So folks, this is pre-cooked environment which is specially designed for practicing purpose, right? This is simply learn AWS environment. Same exact exact in the sense the main AWS console only but this is specially designed for practice purpose only the services which are relevant to AWS solution architect are available for you right now here you can see I have some credentials along with the signin link right so every time every time sign in link along with the username and password everything will be changed again I'm repeating don't use same signin link L, username, password after 6 hour. Every after 6 hour your sign-in link, username, password will change. And this lab will be available. You can practice any number of a time. There is no restriction. You can practice any number of a time. There is no restriction. But this labs are active for 5 hours. After 5 hours, all the resources will be deleted. Right? All the resources will be deleted. After 5 hours, 1 minute, you can start your new lab. You can start your new lab again. You can start the resources after 5 hours. Right? So how to login your AWS console? Just you have to copy this signin link. Paste it. Next. Now first you can see I am ready with signin link. Okay. Now copy the username and paste it in the username section. Then copy the password and paste it in the password section. Right now click on sign in. So after login process all are able to see this window. Okay. So now how many of you are at this console homepage AWS console homepage? those who are at the 90% right still they are at the 90% just refresh it then you are able to log into your AWS console fine so now folks whenever in AWS console especially in simply learn environment whenever you enter to AWS console the first thing you have to check is the region in which region you are working so the first task is you have to check in which region you are working so click on this region Right? And make sure that always you should work in North Virginia region. North Virginia region. So let me tell you why we are selecting North Virginia region. As I clearly specified in this precooked environment all these services are enabled for you for AWS solution architect associate course. Right? So here in this environment only north Virginia is enabled. Sir, I'm in Pune. I'll use Mumbai. No, it will not work because this environment is for practice purpose. So only one region is enabled for you. Sir, I'm in Hyderabad. I'll use Hyderabad region. No, you can't use because as you know that only the North Virginia region is enabled for you. In this environment, you can use always North Virginia region. So the first task when you enter to your AWS console, you have to check whether I'm in North Virginia region or not. This is the first time. Okay. And the next. So folks, this is my AWS console home, right? And if you want to check how many services are available, you can click on this here. Based on the domain, there are different services are available. For example, compute, appunner, batch processing, EC2, image builder, elastic binto, global view, lambda, outpost. These all are compute services. Now let me take you to the database services. Aurora, RDS, document DB, Dynamob, Elastic, these all are database services. Next let me take networking services. API gateway, app mesh, recovery controller, cloud map, cloud front. These all are networking services. If you want to search any services, everything will be available for you here. Right? No sir, I want to search directly. Here we have search bar. Just type the service name. For example, yes three, right? The service will be available for you. Let us consider you are using this service frequently then make it as bookmark. You can see here this bookmark is available for me. Now if you want to remove just right just click on this star a bookmark will be available then remove it if you don't want. Right now after this here we have cloudshell. See cloudshell is built-in command line interface which is provided you to interact with AWS services by using commands. Again I'm repeating folks. Cloudshell is built-in command line interface which is provided to you people to interact with AWS services by using commands or programmatically. Right. The next notifications. If you have any notifications you will get here and this is help section right if you have if you require any help you will get here support then settings right once we are done so just now what I discussed uh number of regions these are the regions which are available for us now right total 39 regions everything you can see here right so always you have to use north Virginia region in this environment fine now just click on this. So before this here you can see some of the access denied. So no need to worry no need to worry only the services which are relevant to AWS solution architect associate the services are enabled for you. So I'm getting accept denied. No need to worry even I'm also getting the same thing. Fine. Now click on this account. Here you can see this is my account ID. Account ID 4380 7153868. A 12digit account ID is available for all the IM and root account users. Right? Account name because I am the IM user. I don't have account name right now. And account like color also. So this is my IM user details. Now ODL user 2053459 is the user ID. If you check your account also the account ID is different. Right now here you will get the details about account like if you want to enable uh MFA if you want to enable uh accessing IM control to the user in account like it's like a additional settings for your account organization organization is something where if you want to manage a multiple accounts multi-level account right so at that time you can go with this AWS organization service right you can go with AWS organization service now you can see here you can see here organization again I'm repeating folks organization is nothing but AWS organization is a service where you are going to maintain a multi-acount environment right now next part see next part is service kota see service kota in the sense every service has some limit a maximum limit for everything you have some Kota right a limit so after that you can't create the resources that you will get here then next and next and which is very crucial part of every organization that is billing and cost management. Let me tell you folks, no one is having access to billing and cost management because this is one of the very very important par parameter in the organization. Right? Even if I click on this, let me click on this billing and cost management even. Yes. Now you can see folks. Now you can see here access denied as I clearly specified billing part is one of the crucial service in AWS organization in AWS environment. No one is having access to the specially billing part right a specific uh like what do you call a specific position a person who is going to deal and handle your billing to entire organization entire organization where we have a concept called AWS organization to manage a billing in a centralized manner right now here you can see access denied right might we have a question sir why we are getting access denied right So as a clearly specified billing is one of the crucial service. Now no one is having access only a respective person or you can say that the person who is having authority to deal with the costing part right because in a organization costing is very important. So the person who is having a knowledge who is having a authent like authorization to access the resources they can access. Now one more important point when you go for billing and cost management automatically your region change from north Virginia to global because it's a global service. Billing and cost management is a global service which check the costing for every region and then you will get the details here right. So here you will get cost summary like even from month to date cost last month costing forecast for current month last month total cost and even a cost breakdown a detailed information for that particular month. Now some recommended actions also let us consider I have one EC2 instance which is running for more than 24 hours right so suddenly like you are not aware this EC2 is running now so you will get some recommendations based on the best practices you will get the recommendation so and so EC2 instances started date still it is running in which region where everything you'll get the details information right so this is for recommended actions then we have the another tab called bills. See in bill sections if you want to fetch a bills from last month, 3 months bill, 6 month bill, 1 year bill, 2 year bills, you can easily retrieve the bills here in the bill section. Then payment. Let us consider I want to pay my AWS account bills by using debit card, by using credit card, even by using up UPI also which is accepted, right? Credits. Let us consider I have free tier account. How many credits are left? You can check it out in the credit section. Then purchase order. Whatever you are using the services for everything you will get the purchase order, right? Then we have cost explorer. See cost explorer is something where you will get the detailed information. If you want to do some cost optimization in your environment at that time this cost optimization which provides a uh what do you call main role which gives some in detail information about your organization where you can see what is the total cost right average monthly cost service count where you will get the graph cost and usage graph how many services are active right in which region when it was started when it was ended how much it was charged even entire breakdown will be available along with a graphical representation right even if you want to download this file this file you can download in a CSV format in a excel format where you can download the complete information along with the breakdown of your costing right so folks this is all about a billing part now right so folks just now what I completed in the slides AWS management console already we are done right these are the slides so folks AWS billing also just now we are completed in the slides right so what is AWS billing where I'm going to pay the AWS bills right what I shown you in the AWS billing part billing section where I can organize and report your AWS and cost usage right so managing the consolidated billing for the members of AWS of AWS organization. So as I discussed and as I clearly specified in the lab like AWS console AWS organization is a service where you are going to manage a multi-account environment and even you can maintain a consolidated billing for example this is the organization tree organization tree so one root account along with many IM users right so using the AWS organization service I do a consolidated billing right every user every user will get a separate billing and within a single frame I'll get the consolidated billing right now so features folks what I discussed in the AWS console you can manage your AWS account you can view the bills right you can manage the payment by using credit card debit card UPI and you can manage the purchasing orders right then you can manage the cost and even You can manage the payment profile also. Right? Then consulting like consolidating uh billing for AWS organization. Let us consider I have one ABC organization. Right? So first Su then Aishwara right. So next we have Capil Vidya then Vishal. Capil Vidya Vishal. These all are employees of the organization. These all are employee of a single organization right right single organization so every employee $39 for vishal right then $8.9 for second employee 35 119 so after consolidating you will get the total billing here right now what is payment profile see payment profile where you where your billing and payment information is stored and managed right payment profile is like your AWS billing identity plus payment method right it contains the detail of AWS uses like what is the charge you for services how like generating the invoices managing the taxes taxes and billing address okay so next we have folks here we have AWS support so can I call this AWS support as customer care service how many of you agree with No, exactly correct. Because this support team is collection of technical people. They are well qualified technical people. They are going to support. No doubt they'll resolve the queries, right? Yes. Tech support. Exactly. These all are technical people, right? So where they are going to resolve your queries, right? So folks, if you have any queries, you can always take a support, right? So here there are two types of support plans we have. The first one is basic which is totally free what you'll get when you create a account and the next one is detailed or advanced. Advanc is paid service. There are different types of support plans are available. Right. So here you can see AWS support provides a variety of plans that allow access to tools and expertise that support the success success and operational health of AWS solution. All support plans provides 24 bar 7 access to the customer services AWS documentation technical papers and support forms. So when they'll provide a solution right so they'll provide solution with some proof also like AWS documentation AWS documents are very very good even excellent documents for everything you will get the documentation even they'll provide technical paper also why this answer is correct some support forms also and this support is always available for you 244 by7 right and folks let me tell you when you go for paid service there are different advanced plans are available Like here you can see technical support plan sorry developer plan, business plan, enterprise onramp plan, enterprise plan right so based on best practices check there are different plans are available a different information is available right so now based on uh what do you call best practice technical support case severity programmatic case management proactive programs and self-services then AWS managed services then training and even finally pricing. So every every support plan have the different parameters right. So folks in every session what I'll do I'll give this part as a assignment. Everyone please take down the first assignment for your AWS solution architect associate course. Everyone should go with this support plans. Support plans there are different plans are available. Again I'm repeating developer business enterprise on ramp and enterprise. Now folks, we have billing alerts. So we have a option you can set some billing like uh I hope everyone is aware we have uh Jio connections right we have Jio connections once you complete 50% of a data you will get the notification once you complete 90% of a data you will get the notification am I right folks in geoc connections I'm talking once you complete 50% of a data 90% of a data you will get the notification so those who are international participants those who are international participants. Jio is one of the telecommunication popular telecommunication industry in India right so once you complete 50% of a data you will get the notification once you complete 90% you will get the notification like this you can create a billing alerts for your AWS services like let us consider I have one EC2 instance right so I'll specify here once my EC2 crosses $200 right so my EC2 should be shutdown or stop or you can take any action you can inform to the client or user that is also possible right now AWS billing alerts allows the user to monitor the charges on their bills right so user can set up an alert to receive a email notification when the estimated charges reach a specific threshold value when you cross $200 what you specify Right? So when you cross the threshold value, it will be informed. Now using the email in future classes, you are going to see how you are going to inform to the customer by using email, SMS, right? You can inform to the customer, right? So what are the steps you are going to consider for billing alerts? Going to the AWS console. Then we have a billing preferences. Select choose a receiving billing alerts and save the preferences. Now what you specify you will get the updates or notification on your resistant email. Right now folks here we have something special called delegation or delegate. So what is delegation as per your knowledge? How you will define this delegation term? Let's see how many of you are going to answer for this. How you will define how you will define the delegation term? What is delegation? as per you or not here one of the participant is called Shivanchu okay and here being a trainer I am busy in taking this session okay so now here we have Shivanchu I'll tell to Shivanchu now hey Shivanchu can you take the attendance for today's session I'm busy in taking the session what I'm doing now being a trainer I'm busy in taking the session like I'm engaging the session So I am delegating my authority to Shivansu. Hey Shivanchu can you take the attendance for today's session. Right? So suddenly Aishwara will come into the picture. Aishwara will come into the picture and she'll start taking the attendance. Do you think Aishwara is a authorized or a valid person to take the attendance? Do you think Aishwara is the right person to take the attendance? No. No. because I have delegated a authority to only Shivianshu not any other person right again I'm repeating folks Shivanchu is the right person because I have delegated the authority to Shivansu not other users right so that is the reason Aishwara is not a right person to take the attendance I have not delegated the authority so only Shivanchu can take the attendance right so same thing same thing now we are delegating delegating ing their access to other users. Right? Now to whom you are delegating delegating access to the billing console. Let us consider we have a billing service right we have a billing service and as I clearly specified it's a crucial service only the specific person can access that right so now AWS account owner can delegate the access to specific IM users that need to access or manage the AWS billing and cost management data for AWS account now what I'm doing let us consider I have one ABC organization Folks, AWS account owner can delegate the access to specific IM users that need to access or manage the AWS billing and cost management data for AWS account. Right? So now folks, I have ABC organization. Right? So instead of keeping thousands of employee, if I keep only Karthik as a admin, do you think Karthik can manage these thousand people work? Instead of maintaining thousand employers if I keep only Karthik to perform all the task do you think is it the right strategy to work in the organization? No. So that is the reason Karthik is admin. Kartik is admin who can take the administrative overall task. Right? So like this let me take Vishal. Vishal can work with ES3. Then we have Suange. Suange can work with KMS. Then who is next? Usually I'll take uh Rajes. EC2. Okay. Then next is Santos. Santosh. Santos is responsible for billing. Now folks within a ABC organization let us consider Karthik he is having a admin account right or a root account who is having access to all the AWS services okay so now Vishal can access S3 then Su can access KMS Rajes can access EC2 Santosh can access billing right so here the policy is attached this permission is given to Vishal this permission is given to Suy this permission given to Rajes Same for Santosh. Now Vishall can't access KMS not possible because only S3 policy is assigned. Same thing. Su can't access S3. Su can't access EC2. Su can't access billing information. Right? That is the reason for every IM user we have already assigned a policy explicitly to perform that task. Now Santokumar is responsible for billing information. So as I clearly specified by taking your inputs only Kartharti can perform all employees work that is the reason we are assigning assigning or you can say that we are delegating authority to work purpose we are delegating their workload. So Santosh can work on billing Rajes can work on EC2 Surange can work on KMS Val can work on ES3 like this we are delegating authority to IM users. So now might we have a question how we are assigning how we are delegating to these IM users by using these four steps. First enabling the access there is a option to enable that I'll show you right next create policy no need to create a policy already we have AWS created a policy right then attach create a policy created not required creating already I have a policy then then attach a policy to whom Santosh Santosh is responsible person…

Transcript truncated. Watch the full video for the complete content.