Book Image

AWS Certified DevOps Engineer - Professional Certification and Beyond

By : Adam Book
Book Image

AWS Certified DevOps Engineer - Professional Certification and Beyond

By: Adam Book

Overview of this book

The AWS Certified DevOps Engineer certification is one of the highest AWS credentials, vastly recognized in cloud computing or software development industries. This book is an extensive guide to helping you strengthen your DevOps skills as you work with your AWS workloads on a day-to-day basis. You'll begin by learning how to create and deploy a workload using the AWS code suite of tools, and then move on to adding monitoring and fault tolerance to your workload. You'll explore enterprise scenarios that'll help you to understand various AWS tools and services. This book is packed with detailed explanations of essential concepts to help you get to grips with the domains needed to pass the DevOps professional exam. As you advance, you'll delve into AWS with the help of hands-on examples and practice questions to gain a holistic understanding of the services covered in the AWS DevOps professional exam. Throughout the book, you'll find real-world scenarios that you can easily incorporate in your daily activities when working with AWS, making you a valuable asset for any organization. By the end of this AWS certification book, you'll have gained the knowledge needed to pass the AWS Certified DevOps Engineer exam, and be able to implement different techniques for delivering each service in real-world scenarios.
Table of Contents (31 chapters)
Section 1: Establishing the Fundamentals
Section 2: Developing, Deploying, and Using Infrastructure as Code
Section 3: Monitoring and Logging Your Environment and Workloads
Section 4: Enabling Highly Available Workloads, Fault Tolerance, and Implementing Standards and Policies
Section 5: Exam Tips and Tricks

IAM roles, groups, users, and policies

Controlling access to your resources in IAM comes down to how you craft your policies that you attach to your users, groups, and roles. Services themselves assume roles, and users are created in IAM and are much more easily managed if placed into groups.


There is a service limit of 500 IAM users per account.

IAM policies

An IAM policy is a set of permissions expressed as a JSON statement that says which access permissions an entity has.

As you start to dole out the permissions in your account, you will deal with these IAM policies. There are a number of policies that have been pre-crafted by AWS to help you get started, either to attach to users and groups or for services. Many AWS-based policies will have the resource listed as *; however, this allows for any resource to be accessed. There are multiple ways in which we can constrain the amount of resources that can be accessed, even in the case of a simple policy.