付款。
雲端運算 (Cloud Computing) 是近年十分流行的科技名詞,它重新定義了 IT Infrastructure,改變了營商模式。現在不同的企業都正在探索如何利用雲端運算 (Cloud Computing) 以更具彈性、控制成本地提供更優質的服務。
現時有不少公司提供雲端運算 (Cloud Computing) 服務,Amazon Web Service (AWS) 被 Gartner* 評為全球第一的 Cloud Infrastructure as a Service。
“Magic Quadrant for Strategic Cloud Platform Services”
Source: https://www.gartner.com/doc/reprints?id=1-2ES4ML14&ct=230823&st=sb&trk=44f67619-4f3b-42e8-93b9-32ad8a123845&sc_channel=el
* Gartner 是知名的信息技術研究和顧問的美國上市公司。
AWS Certified Cloud Practitioner 是 AWS 的基礎入門認證,適合沒有 IT 技術訓練背景的朋友修讀,課程會透過不同領域的例子,引導同學宏觀地,按考試要求學習雲端技術概念。導師並會設計適合沒有 IT 技術訓練背景的朋友都能從容應付的實習。
* 如果大家想從 Architect 及技術角度學習 AWS,可以考慮修讀 AWS Certified Solutions Architect - Associate (Amazon Cloud AWS SAA) 國際認可證書課程。
本中心的 AWS Certified Cloud Practitioner 國際認可證書課程由 Franco Tsang 籌備多時,精心編排。由上堂、溫習、考試研習、做試題至最後考試,均為你度身訂造,作出有系統的編排。務求真正教識你,又令你考試及格。
| 課程名稱: |
AWS Certified Cloud Practitioner (AWS Cloud Essentials) 國際認可證書課程 - 簡稱:AWS Training Course |
| 課程時數: | 合共 12 小時 (共 4 堂) |
| 適合人士: | 對雲端運算 (Cloud Computing) 技術有興趣的人士 |
| 授課語言: | 以廣東話為主,輔以英語 |
| 課程筆記: | 本中心導師親自編寫英文為主筆記,而部份英文字附有中文對照。 |
| 提供模擬考試題目: | 本中心為學員提供模擬考試題目,每條考試題目均附有標準答案。 |
只要你於下列科目取得合格成績,便可獲 AWS 頒發 AWS Certified Cloud Practitioner 國際認可證書:
|
本中心為 VUE 指定的 AWS Certified Cloud Practitioner 考試試場,導師會在課堂上講解考試程序。考試費為 USD $100。 |
1 Domain 1: Cloud Concepts
1.1 Define the benefits of the AWS Cloud (Value proposition of the AWS Cloud)
1.1.1 Understanding the economies of scale (for example, cost savings)
1.1.2 Understanding the benefits of global infrastructure (for example, speed of deployment, global reach)
1.1.3 Understanding the advantages of high availability, elasticity, and agility
1.2 Identify design principles of the AWS Cloud (AWS Well-Architected Framework)
1.2.1 Understanding the pillars of the Well-Architected Framework (for example, operational excellence, security, reliability, performance efficiency, cost optimization, sustainability) and identifying differences between the pillars of the Well-Architected Framework
1.2.1.1 Operational excellence
1.2.1.2 Security
1.2.1.3 Reliability
1.2.1.4 Performance efficiency
1.2.1.5 Cost optimization
1.2.1.6 Sustainability
1.3 Understand the benefits of and strategies for migration to the AWS Cloud (Cloud adoption strategies, Resources to support the cloud migration journey)
1.3.2 Identifying appropriate migration strategies (for example, database replication, use of AWS Snowball)
1.3.2.1 Retire
1.3.2.2 Retain
1.3.2.3 Rehost
1.3.2.4 Relocate
1.3.2.5 Repurchase
1.3.2.6 Replatform
1.3.2.7 Refactor or re-architect
1.3.2.8 Examples
1.3.2.8.1 Database replication
1.3.2.8.2 AWS Snowball
1.4 Understand concepts of cloud economics (Aspects of cloud economics, Cost savings of moving to the cloud)
1.4.1 Understanding the role of fixed costs compared with variable costs
1.4.2 Understanding costs that are associated with on-premises environments
1.4.3 Understanding the differences between licensing strategies (for example, Bring Your Own License [BYOL] model compared with included licenses)
1.4.3.1 Bring Your Own License (BYOL)
1.4.3.2 Included licenses / license-included model
1.4.4 Understanding the concept of rightsizing
1.4.5 Identifying benefits of automation (for example, provisioning and configuration management with AWS CloudFormation)
1.5 Identifying managed AWS services (for example, Amazon RDS, Amazon Elastic Container Service [Amazon ECS], Amazon Elastic Kubernetes Service [Amazon EKS], Amazon DynamoDB)
1.5.1 Managed AWS services
1.5.1.1 Amazon RDS
1.5.1.2 Amazon Elastic Container Service (Amazon ECS)
1.5.1.3 Amazon Elastic Kubernetes Service (Amazon EKS)
1.5.1.4 Amazon DynamoDB
2 Domain 2: Security and Compliance
2.1.2 Describing the customer’s responsibilities on AWS
2.1.3 Describing AWS responsibilities
2.1.5 Describing how AWS responsibilities and customer responsibilities can shift, depending on the service used (for example, Amazon RDS, AWS Lambda, Amazon EC2)
2.2 Understand AWS Cloud security, governance, and compliance concepts (AWS compliance and governance concepts, benefits of cloud security, where to capture and locate logs that are associated with cloud security)
2.2.1 Identifying where to find AWS compliance information (for example, AWS Artifact)
2.2.2 Understanding compliance needs among geographic locations or industries
2.2.3 Describing how customers secure resources on AWS (for example, Amazon Inspector, AWS Security Hub, Amazon GuardDuty, AWS Shield)
2.2.3.1 Amazon Inspector
2.2.3.2 Amazon GuardDuty
2.2.3.3 AWS Shield
2.2.3.4 AWS Security Hub
2.2.4 Identifying different encryption options (for example, encryption in transit, encryption at rest)
2.2.4.1 Encryption at rest
2.2.4.2 Encryption in transit
2.2.4.3 AWS Key Management Service (KMS)
2.2.5 Recognizing services that aid in governance and compliance (for example, monitoring with Amazon CloudWatch; auditing with AWS CloudTrail, AWS Audit Manager, and AWS Config; reporting with access reports)
2.2.5.1 Amazon CloudWatch
2.2.5.2 AWS CloudTrail
2.2.5.3 AWS Config
2.2.5.4 AWS Audit Manager
2.2.5.5 Reporting with access reports
2.2.6 Recognizing compliance requirements that vary among AWS services
2.3 Identify AWS access management capabilities (Identity and access management, importance of protecting the AWS root user account, principle of least privilege, AWS IAM Identity Center)
2.3.1 Understanding access keys, password policies, and credential storage (for example, AWS Secrets Manager, AWS Systems Manager)
2.3.1.1 AWS Secrets Manager
2.3.1.2 AWS Systems Manager
2.3.2 Identifying authentication methods in AWS (for example, multi-factor authentication (MFA), IAM Identity Center, cross-account IAM roles)
2.3.2.1 Multi-factor authentication (MFA)
2.3.2.2 IAM Identity Center
2.3.2.3 Cross-account IAM roles
2.3.3 Defining groups, users, custom policies, and managed policies in compliance with the principle of least privilege
2.3.3.1 IAM users
2.3.3.2 IAM groups / IAM user groups
2.3.3.3 IAM managed and custom Policies
2.3.3.3.1 Managed policies
2.3.3.3.2 Custom policies / Customer-managed policies
2.3.4 Identifying tasks that only the account root user can perform
2.3.5 Understanding which methods can achieve root user protection
2.3.6 Understanding the types of identity management (for example, federated)
2.4.1 Describing AWS security features and services (for example, security groups, network ACLs, AWS WAF)
2.4.1.1 Security groups
2.4.1.2 Network ACLs
2.4.1.3 AWS WAF
2.4.2 Understanding that third-party security products are available from AWS Marketplace
2.4.3 Identifying where AWS security information is available (for example, AWS Knowledge Center, AWS Security Center, AWS Security Blog)
2.4.3.1 AWS Knowledge Center
2.4.3.2 AWS Security Center
2.4.3.3 AWS Security Blog
2.4.4 Understanding the use of AWS services for identifying security issues (for example, AWS Trusted Advisor)
2.4.4.1 AWS Trusted Advisor
3 Domain 3: Cloud Technology and Services
3.1 Define methods of deploying and operating in the AWS Cloud (Different ways of provisioning and operating in the AWS Cloud, different ways to access AWS services, types of cloud deployment models, connectivity options)
3.1.1 Deciding between options such as programmatic access (for example, APIs, SDKs, CLI), the AWS Management Console, and infrastructure as code (IaC)
3.1.2 Evaluating requirements to determine whether to use one-time operations or repeatable processes
3.1.3 Identifying different deployment models (for example, cloud, hybrid, on-premises
3.1.4 Identifying connectivity options (for example, AWS VPN, AWS Direct Connect, public internet)
3.2 Define the AWS global infrastructure (AWS Regions, Availability Zones, and edge locations, high availability, use of multiple Regions, benefits of edge locations, AWS Wavelength Zones and AWS Local Zones)
3.2.1 Describing relationships among Regions, Availability Zones, and edge locations
3.2.1.1 AWS Local Zones
3.2.1.2 AWS Wavelength Zones
3.2.2 Describing how to achieve high availability by using multiple Availability Zones
3.2.4 Describing when to use multiple Regions (for example, disaster recovery, business continuity, low latency for end users, data sovereignty)
3.2.5 Describing at a high level the benefits of edge locations (for example, Amazon CloudFront, AWS Global Accelerator)
3.2.5.1 Amazon CloudFront
3.2.5.2 AWS Global Accelerator
3.3 Identify AWS compute services
3.3.1 Recognizing the appropriate use of different EC2 instance types (for example, compute optimized, storage optimized)
3.3.2 Recognizing the appropriate use of different container options (for example, Amazon ECS, Amazon EKS)
3.3.3 Recognizing the appropriate use of different serverless compute options (for example, AWS Fargate, Lambda)
3.3.3.1 AWS Fargate
3.3.3.2 AWS Lambda
3.3.4 Recognizing that auto scaling provides elasticity
3.3.5 Identifying the purposes of load balancers
3.4 Identify AWS network services
3.4.1 Deciding when to use EC2 hosted databases or AWS managed databases
3.4.2 Identifying relational databases (for example, Amazon RDS, Amazon Aurora)
3.4.2.1 Amazon RDS and concepts of “relational”
3.4.2.2 Amazon Aurora
3.4.3 Identifying NoSQL databases (for example, DynamoDB)
3.4.4 Identifying memory-based databases
3.4.5 Identifying database migration tools
3.4.5.1 AWS Database Migration Service (AWS DMS)
3.4.5.2 AWS Schema Conversion Tool (AWS SCT)
3.5 Identify AWS network services.
3.5.1 Identifying the components of a VPC (for example, subnets, gateways)
3.5.2 Understanding security in a VPC (for example, network ACLs, security groups)
3.5.3 Understanding the purpose of Amazon Route 53
3.5.4 Identifying edge services (for example, CloudFront, Global Accelerator)
3.5.5 Identifying network connectivity options to AWS (for example AWS VPN, Direct Connect)
3.6 Identify AWS storage services
3.6.1 Identifying the uses for object storage
3.6.2 Recognizing the differences in Amazon S3 storage classes
3.6.3 Identifying block storage solutions (for example, Amazon Elastic Block Store (Amazon EBS), instance store)
3.6.3.1 Amazon Elastic Block Store (Amazon EBS)
3.6.3.2 Instance store
3.6.4 Identifying file services (for example, Amazon Elastic File System (Amazon EFS), Amazon FSx)
3.6.4.1 Amazon Elastic File System (Amazon EFS)
3.6.4.2 Amazon FSx
3.6.5 Identifying cached file systems (for example, AWS Storage Gateway)
3.6.5.1 AWS Storage Gateway
3.6.6 Understanding use cases for lifecycle policies
3.6.7 Understanding use cases for AWS Backup
3.7 Identify AWS artificial intelligence and machine learning (AI/ML) services and analytics services.
3.7.1 Understanding the different AI/ML services and the tasks that they accomplish (for example, Amazon SageMaker, Amazon Lex, Amazon Kendra)
3.7.1.1 Amazon SageMaker
3.7.1.2 Amazon Lex
3.7.1.3 Amazon Kendra
3.7.2 Identifying the services for data analytics (for example, Amazon Athena, Amazon Kinesis, AWS Glue, Amazon QuickSight)
3.7.2.1 Amazon Athena
3.7.2.2 Amazon Kinesis
3.7.2.3 AWS Glue
3.7.2.4 Amazon QuickSight
3.8 Identify services from other in-scope AWS service categories
3.8.1 Application integration services of Amazon EventBridge, Amazon Simple Notification Service (Amazon SNS), and Amazon Simple Queue Service (Amazon SQS)
3.8.1.1 Amazon EventBridge
3.8.1.2 Amazon Simple Notification Service (Amazon SNS)
3.8.1.3 Amazon Simple Queue Service (Amazon SQS)
3.8.2 Business application services of Amazon Connect and Amazon Simple Email Service (Amazon SES)
3.8.2.1 Amazon Connect
3.8.2.2 Amazon Simple Email Service (Amazon SES)
3.8.3 Customer engagement services of AWS Activate for Startups, AWS IQ, AWS Managed Services (AMS), and AWS Support
3.8.3.1 AWS Activate for Startups
3.8.3.2 AWS IQ
3.8.3.3 AWS Managed Services (AMS)
3.8.3.4 AWS Support
3.8.4 Developer tool services and capabilities of AWS AppConfig, AWS Cloud9, AWS CloudShell, AWS CodeArtifact, AWS CodeBuild, AWS CodeCommit, AWS CodeDeploy, AWS CodePipeline, AWS CodeStar, and AWS X-Ray
3.8.5 End-user computing services of Amazon AppStream 2.0, Amazon Workspaces, and Amazon Workspaces Web
3.8.5.1 Amazon AppStream 2.0
3.8.5.2 Amazon Workspaces
3.8.5.3 Amazon Workspaces Web
3.9 Frontend web and mobile services of AWS Amplify and AWS AppSync
3.9.1 AWS Amplify
3.9.2 AWS AppSync
3.10 IoT services of AWS IoT Core and AWS IoT Greengrass
3.10.1 AWS IoT Core
3.10.2 AWS IoT Greengrass
4 Domain 4: Billing, Pricing, and Support
4.1 Compare AWS pricing models
4.1.1 Compute purchasing options (for example, On-Demand Instances, Reserved Instances, Spot Instances, Savings Plans, Dedicated Hosts, Dedicated Instances, Capacity Reservations)
4.1.1.1 On-Demand Instances
4.1.1.2 Reserved Instances (with AWS Organizations)
4.1.1.3 Spot Instances
4.1.1.4 Savings Plans
4.1.1.5 Dedicated Hosts
4.1.1.6 Dedicated Instances
4.1.1.7 Capacity Reservations
4.1.2 Understanding incoming data transfer costs and outgoing data transfer costs (for example, from one Region to another Region, within the same Region)
4.1.3 Understanding different pricing options for various storage options and tiers
4.2 Understand resources for billing, budget, and cost management.
4.2.1 Understanding the appropriate uses and capabilities of AWS Budgets, AWS Cost Explorer, and AWS Billing Conductor
4.2.1.1 AWS Budgets
4.2.1.2 AWS Cost Explorer
4.2.1.3 AWS Billing Conductor
4.2.2 Understanding the appropriate uses and capabilities of AWS Pricing Calculator
4.2.3 Understanding AWS Organizations consolidated billing
4.3 Identify AWS technical resources and AWS Support options
4.3.1 Locating AWS whitepapers, blogs, and documentation on official AWS websites
4.3.2 Identifying and locating AWS technical resources (for example AWS Prescriptive Guidance, AWS Knowledge Center, AWS re:Post)
4.3.3 Identifying AWS Support options for AWS customers (for example, customer service and communities, AWS Developer Support, AWS Business Support, AWS Enterprise On-Ramp Support, AWS Enterprise Support)
4.3.4 Identifying the role of Trusted Advisor, AWS Health Dashboard, and the AWS Health API to help manage and monitor environments for cost optimization
4.3.4.1 AWS Trusted Advisor
4.3.4.2 AWS Health
4.3.4.2.1 AWS Health Dashboard
4.3.4.2.2 AWS Health API
4.3.5 Identifying the role of the AWS Trust and Safety team to report abuse of AWS resources
4.3.6 Understanding the role of AWS Partners (for example AWS Marketplace, independent software vendors, system integrators)
4.3.6.1 AWS Marketplace
4.3.6.2 Independent software vendors (ISV)
4.3.6.3 System integrators
4.3.7 Identifying the benefits of being an AWS Partner (for example, partner training and certification, partner events, partner volume discounts)
4.3.8 Identifying the key services that AWS Marketplace offers (for example, cost management, governance and entitlement)
4.3.8.1 Cost management
4.3.8.2 Governance and entitlement
4.3.9 Identifying technical assistance options available at AWS (for example, AWS Professional Services, AWS Solutions Architects)
4.3.9.1 AWS Professional Services
4.3.9.2 AWS Solutions Architects
5 AWS Certified Cloud Practitioner Examination
5.1 Examination details
5.2 Examination registration
6 Miscellaneous topics
6.1 Free tier
6.2 Amazon Machine Images (AMI)
6.3 IAM roles and EC2 instances and Lambda
6.4 VPC Flow Logs
6.5 Virtual Private Gateway (VGW) and Customer Gateway (CGW)
6.6 AWS Outposts
6.7 Amazon Redshift
6.8 Amazon DocumentDB (with MongoDB compatibility)
6.9 Amazon EMR
6.10 Amazon Macie
6.11 AWS Directory Service
6.12 Service Control Policies (SCPs)
6.13 Amazon Cognito
6.14 Amazon Rekognition