加入 Systematic Facebook 擁躉群  

這個頁面上的內容需要較新版本的 Adobe Flash Player。

取得 Adobe Flash Player


想定期知道最新課程及優惠嗎?
免費訂閱本中心的課程通訊!

課堂錄影隨時睇 10 大優點之免費重睇:您可於享用時期內於報讀地點不限次數地重看課堂錄影,從而可反覆重溫整個課程!

AWS Certified Solutions Architect - Associate (Amazon AWS SAA) 國際認可證書課程

  • 課程時間
  • 課程簡介
  • 考試須知
  • 課程內容
  • 詳細內容

課程優惠!現凡同時報讀以下兩個課程:
即減 $930!

傳統服務:課程上堂時間表 (地點:旺角   總費用:$5,980)

超震撼: 凡於 2018年 12月 14日 (五) 或之前報讀本課程,
原價 $7,180,現只需
$5,980!

編號 日期 (dd/mm) 星期 時間 費用 導師  
FQ1260EM  15/12 - 12/01
15/12, 29/12, 5/1/19, 12/1/19
 下載詳細上課日期
2:30pm - 9:30pm (dinner: 5:30pm-6:30pm) $5,980 Franco 按此報名
FQ0360EM  16/03 - 06/04
16/3/19, 23/3, 30/3, 6/4/19
 下載詳細上課日期
2:30pm - 9:30pm (dinner: 5:30pm-6:30pm) $5,980 Franco 按此報名

*** 質素保證:免費於任何地點試睇首 3 小時課堂錄影,從而可預先了解導師及教材的質素,才報讀課程來上堂。***
請致電與本中心職員預約。 查看各地點電話
旺角 2332-6544
觀塘 3563-8425
北角 3580-1893
沙田 2151-9360
屯門 3523-1560

免費補堂: 學員可於任何地點補看課堂錄影,從而可銜接往後的課堂!
免費重讀: 學員可於課程結束後三個月內於任何地點不限次數地重看課堂錄影,從而可反覆重溫整個課程!
課時: 24 小時
課堂導師: Franco (任教課程清單)

傳統服務的免費補堂或免費重讀,若選擇旺角或觀塘的閒日星期一至四,便需於 6:30p.m. 或之前完成觀看課堂錄影。


推介服務:課堂錄影隨時睇
編號 地點 可預約星期及時間 學費低至 85 折  
FQ1812MV 旺角 一至五:11:30 - 22:30   六及日:10:30 - 21:30   (公眾假期休息) 95 折後只需 $5,681 按此報名
FQ1812OV 觀塘 一至五:13:30 - 22:00   六及日:12:30 - 21:00   (星期三及公眾假期休息) 9 折後只需 $5,382 按此報名
FQ1812PV 北角 一至五:13:30 - 22:00   六及日:12:30 - 21:00   (星期三及公眾假期休息) 9 折後只需 $5,382 按此報名
FQ1812SV 沙田 一至五:13:30 - 22:00   六及日:12:30 - 21:00   (星期三及公眾假期休息) 85 折後只需 $5,083 按此報名
FQ1812YV 屯門 一至五:13:30 - 22:00   六及日:12:30 - 21:00   (星期三及公眾假期休息) 85 折後只需 $5,083 按此報名
* 各政府部門可使用 P Card 付款  
免費試睇: 首 3 小時,請致電與本中心職員預約。 查看各地點電話
旺角 2332-6544
觀塘 3563-8425
北角 3580-1893
沙田 2151-9360
屯門 3523-1560
免費重睇: 學員可於享用時期內於報讀地點不限次數地重看課堂錄影,從而可反覆重溫整個課程!
導師解答: 學員可於觀看某一課堂錄影後提出課堂直接相關的問題,課程導師會樂意為學員以單對單的形式解答!
課時: 24 小時
享用時期: 8 星期 (可於報讀日至 4 星期內觀看整個課程,另加 4 星期備用時期)。進度由您控制,可快可慢。
課堂錄影導師: Franco (任教課程清單)
課堂錄影隨時睇: 詳情及示範片段


地區 地址 電話 教育局註冊編號
旺角 九龍旺角亞皆老街 109 號,皆旺商業大廈 18 樓 2332-6544 533459
觀塘 九龍觀塘成業街 7 號寧晉中心 12 樓 G2 室 3563-8425 588571
北角 香港北角馬寶道 41-47 號華寶商業大廈 3 樓 01-02 號舖 3580-1893 591262
沙田 新界沙田石門安群街 3 號京瑞廣場 1 期 10 樓 M 室 2151-9360 604488
屯門 新界屯門屯喜路 2 號屯門柏麗廣場 17 樓 1708 室 3523-1560 592552
注意! 客戶必須查問報讀學校的教育局註冊編號,以確認該校為註冊學校,以免蒙受不必要的損失!


雲端運算 (Cloud Computing) 提供一種簡單的方式,透過互聯網、VPN (Virtual Private Network) 等的方式存取雲端伺服器、儲存、資料庫和各種應用程式服務。它有以下的好處:

  • 不用花費大筆金錢來建立、執行和維護自已的資料中心 (Data Center)。
  • 大多數的雲端運算服務是按用量收費,可大可小,可多可少。從此不用再估算容量,方便靈活。
  • 符合或取得多個合規要求,例如 ISO 9001 (全球品質標準)、ISO 27001 (安全管理控制)、ISO 27017 (雲端特定控制)、ISO 27018 (個人資料保護)、PCI DSS 第 1 級 (支付卡標準,第 1 級表示每年儲存、處理和 / 或傳輸超過 30 萬筆交易的任何服務提供者)、SOC 1 (稽核控制報告)、SOC 2 (安全性、可用性和機密性報告)、SOC 3 (一般控制報告)、C5 (https://aws.amazon.com/compliance/bsi-c5/) 等。詳情可以參閱 https://aws.amazon.com/compliance/pci-data-privacy-protection-hipaa-soc-fedramp-faqs/
  • 大量成功的商業例子及經驗。

現時有不少公司提供雲端運算 (Cloud Computing) 服務,Amazon Web Service (AWS) 被 Gartner* 評為全球第一的 Cloud Infrastructure as a Service。



“Magic Quadrant for Cloud Infrastructure as a Service, Worldwide”

Source: https://www.gartner.com/doc/reprints?id=1-2G2O5FC&ct=150519&st=sb&refid=ha_awssm-449
* Gartner 是知名的信息技術研究和顧問的美國上市公司,2017 年的收入是 3.3 billion 美元。


為了你有知識和能力使用 AWS 技術以構建和部署安全可靠的服務,AWS 便推出 AWS Certified Solutions Architect – Associate 國際認可證書。本中心的 AWS Certified Solutions Architect – Associate 國際認可證書課程由 Franco Tsang 籌備多時,精心編排。由上堂、溫習、考試研習、做試題至最後考試,均為你度身訂造,作出有系統的編排。務求真正教識你,又令你考試及格。

以下是本課程內容簡介:

  1. Public cloud computing overview
  2. Regions and Availability Zones
  3. EC2
  4. AWS Command Line Interface (CLI)
  5. EBS
  6. CloudWatch and SNS
  7. Virtual Private Cloud (VPC) [with Elastic IP (EIP), Elastic Network Interface (ENI) and Virtual Private Network (VPN)]
  8. ELB 和 Auto Scaling
  9. S3, Glacier and Storage Gateway
  10. RDS, DynamoDB and ElastiCache Service
  11. Route 53
  12. CloudFront
  13. SQS, Lambda and API Gateway
  14. IAM
  15. Miscellaneous
  16. AWS Certified Solutions Architect – Associate Examination

本課程緊貼時代需要,相關的概念 / 內容 / 產品能被應用到不同的情景中,例如:

課程時數: 課堂 24 小時 (共 8 堂)
適合人士: 對雲端運算 (Cloud Computing) 技術有興趣的人士
授課語言: 以廣東話為主,輔以英語
課程筆記: 本中心導師親自編寫英文為主筆記,而部份英文字附有中文對照。
提供模擬考試題目: 本中心為學員提供約 300 條模擬考試題目,每條考試題目均附有標準答案。

只要你於下列科目取得合格成績,便可獲 AWS 頒發 AWS Certified Solutions Architect - Associate 國際認可證書:

考試名稱
AWS Certified Solutions Architect - Associate

本中心為 PSI 指定的 AWS Certified Solutions Architect - Associate 考試試場,導師會在課堂上講解考試程序。考試費為 USD $150。




儘管 AWS Certified Solutions Architect – Associate 考試理論色彩比較濃厚,但導師仍然會以示範為主導的方式教授這課程,令同學可以實在一點學習 / 享受 AWS 技術。

  • 第 1 部份:背景知識,例如 Regions and Availability Zones 等。

  • 第 2 部份:EC2 (Elastic Compute Cloud) 和 EBS (Elastic Block Store) 。本章節主要教授如何操作 EC2 instances (可以粗略地理解為 Virtual Machines) 及 EBS (可以粗略地理解為 instance 的 hard disk) ,而在課堂上會有準確的解釋。

    • 新增 EC2 instances (Linux 和 Windows Server) 並了解其相關的知識,例如 AMI、Instance Types、User data (示範使用如何 Shell Scripting 及 PowerShell)、Storage、Tags、Security Groups、Key Pairs、接駁 instances 等概念



    • 改變 EC2 instances 的 instance types (示範由少 RAM 的 instance types 變為多 RAM 的 instance types)



    • 了解 On-demand、Reserved Instances、Dedicated Hosts、Spot Instances 的特點 (示範啟動 spot instances)



    • Instance Store、Encrypted / Unencrypted volumes (示範新增 Encrypted EBS 及擴大 EBS 的容量,例如 1G → 2G)



    • EBS snapshots (示範新增 snapshot、 “使用” Snapshot 及 Snapshot → Volume)



    • 其他理論性質的知識及細項技術,例如為何不能將 volume attach 到 instance 中?



  • 第 3 部份:CloudWatch 和 SNS (Simple Notification Service)。本章節主要教授如何監控 Cloud Infrastructure。


    • 新增 SNS topics 和 subscriptions



    • CloudWatch Alarm (示範如何建立 CloudWatch Alarm,如果 CPU Utilization 過高就 send email 給 Franco)。



    • CloudWatch Metric (示範如何操作 CloudWatch Metric)。



    • CloudWatch Log (示範如何操作 CloudWatch Log) 。



    • CloudWatch Event (示範如何操作 CloudWatch Event) 。



    • 預設 CloudWatch 不能監察 Instance 的memory,究竟如何監察 Instance 的memory? 導師會在課堂上教授監察 Instance memory 的技巧。

    • 其他理論性質的知識及細項技術 。

  • 第 4 部份:VPC (Virtual Private Cloud) 和VPN。本章節主要教授如何設定 Cloud networking 及架設 VPN (virtual private network) + BGP (Border Gateway Protocol) 以進行連接 “天和地 (AWS VPC 及 企業內部網絡)” 。


    • VPC、NACL 及 Security Groups (示範如何建立 VPC) 。



    • Public Subnets 、Internet gateway 及 public route table (示範如何建立 Public Subnet) 。



    • Private Subnets 、NAT gateway 及 private route table (示範如何建立 Private Subnet) 。



    • Flow log (示範如何取得 Flow log) 。



    • 架設 VPN 以將企業內部網絡接駁到 AWS VPC 內 (示範以 Cisco router架設 VPN 到 AWS)。





    • 使用 BGP 交換路由資料。





    • 其他理論性質的知識及細項技術 ,例如如果有兩條一樣的 routes,用邊條? / 兩條一齊用?



  • 第 5 部份:ELB (Elastic Load Balancing) 和 Auto Scaling。本章節主要教授 AWS 的負載平衡和動態擴展縮減方案 。



    • Elastic Load Balancing 概念

    • Classic Load Balancing (示範如何實踐 Classic Load Balancing)



    • Application Load Balancing (示範如何實踐 Application Load Balancing with path listener)





    • Manual Scaling (示範 Manual Scaling 由 2 個 instances 擴展到 3 個 instances)





    • Auto Scaling (示範如果 CPU Utilization 過高,就會由 2 個 instances 擴展至 CPU Utilization 下降到一個理想的水平)





    • 其他理論性質的知識及細項技術 。

  • 第 6 部份:S3、Glacier 和 Storage Gateway。本章節主要教授 AWS 的儲存方案 。


    • S3 bucket (示範新增 S3 bucket 以儲存檔案)



    • S3 versioning (示範在 S3 內實踐版本控制)



    • S3 web host 並了解其限制 (使用 S3 以寄存網頁)





    • 儘管 Glacier 是成本極低的雲端儲存服務,但 Glacier 談不上 user friendly,因為上傳、下載等工作只能以指令介面操作,web 介面不支援 Glacier 上傳、下載等操作。而且操作需時頗長,在標準擷取下我們需要花 3 至 5 小時存取存檔。導師會在課堂會完整教授如何上傳和下載 Archives 及一些要注意的地方。



    • 導師會在課堂教授一種有趣的技術令大家 “在地” 的 Windows 或 Linux 有 “7.99 EB” 的儲存空間。其實真實的儲存空間是不是 7.99 EB 呢?導師在課堂再詳談當中的故事。



    • 其他理論性質的知識及細項技術 ,例如權限等。

  • 第 7 部份:RDS (Relational Database Service) 、Dynamo DB 和 ElastiCache。本章節主要教授 AWS 的 database 及 caching 方案。


    • 在EC2內安裝 database 還是使用 RDS?

    • 新增 RDS (示範新增 Multi-AZ RDS)。



    • DB Snapshot 及其作用 (示範建立及使用 DB Snapshot)



    • From MySQL to MariaDB?

    • Read Replica 及其作用 (示範建立及使用 Read Replica)



    • DynamoDB 的特色及其操作 (示範建立及使用 DynamoDB)



    • ElastiCache 的特色及其操作 (示範建立及使用 ElastiCache: Redis)



    • 其他理論性質的知識及細項技術


  • 第 8 部份:Route 53。本章節主要教授 AWS 的 DNS 方案。


    • 在AWS 內購買 domain



    • 在 Route 53 內使用現有的 domains (無需在 AWS 內購買 domains)

    • Hosted Zones (示範建立 Hosted Zones以開始管理 domains)



    • 示範按比例進行 DNS name resolution



    • 示範按地區進行 DNS name resolution



    • 示範按 latency 進行 DNS name resolution



    • 示範按 failover (示範 failover policy)



    • 其他理論性質的知識及細項技術,例如 Record Types 等

  • 第 9 部份:CloudFront。本章節主要教授 AWS 的 CDN (Content Delivery Network) 方案。

    • 教授CDN (Content Delivery Network) 的技術概念,甚麼場合適合使用 CDN



    • 示範建立 CloudFront



    • 教授使用 Origin Access Identity (OAI) 進行存取控制 (Access Control)



  • 第 10 部份:SQS (Simple Queue Service) 、API Gateway 和 Lambda。本章節主要教授 AWS message queue、應用程式後端服務及無伺服器應用程式方案。


    • 教授 message queue、應用程式後端服務及無伺服器應用程式的技術概念,甚麼場合適合使用它們

    • 示範使用 SQS



    • 示範使用 API Gateway



    • 示範以 Node.js 作為程式語言使用 Lambda


    • 其他理論性質的知識及細項技術


  • 第 11 部份:IAM (Identity and Access Management) 。本章節主要教授如何安全地管理對 AWS 服務和資源的存取。


    • 示範新增 Administrators



    • 示範 MFA (Multi-Factor Authentication)



    • 新增 Policy 並限制某些用戶不能 stop production 的 instances。



    • 教授和示範以下 security status 項目



    • 其他理論性質的知識及細項技術


  • 第 12 部份:Miscellaneous 。本章節主要教授其他 AWS 的概念和技術,例如 Trusted Advisor、CloudTrail、Shared Responsibility Model (共同的責任模型) 等


The course content above may change at any time without notice in order to better reflect the content of the examination.




1 Public cloud computing overview

2 Regions and Availability Zones
2.1 Regions
2.2 Availability Zones (AZ)
2.3 Relationship between Regions and Availability Zones
2.4 Concepts of “Resource Locations” and “Scope”

3 EC2
3.1 Introduction to EC2?
3.2 Amazon Machine Images (AMI)
3.2.1 Amazon Linux AMIs
3.2.2 AWS Marketplace
3.3 Instance store (Ephemeral) vs Amazon Elastic Block Store (Amazon EBS)
3.3.1 Instance store (Ephemeral)
3.3.2 Amazon EBS (Amazon Elastic Block Store [EBS])
3.4 Instance types
3.4.1 T2 standard and T2 unlimited
3.4.1.1 CPU Credits and Baseline Performance
3.4.1.1.1 One CPU credit
3.4.1.1.2 Earning CPU Credits
3.4.1.1.3 Spending CPU credits
3.4.1.1.4 Launch CPU credits
3.4.1.2 T2 standard
3.4.1.3 T2 unlimited
3.5 Limitations on number of instances
3.6 On-Demand, Reserved and Spot Instances
3.6.1 On-Demand instances
3.6.2 Reserved instances
3.6.3 Spot instances
3.6.4 Dedicated hosts and dedicated instances
3.6.4.1 Dedicated hosts
3.6.4.2 Dedicated instances
3.7 Network and Security
3.7.1 Network
3.7.1.1 Network speed and placement group
3.7.1.2 IP addresses
3.7.1.2.1 Private IPv4 Addresses and Internal DNS Hostnames
3.7.1.2.2 Public IPv4 Addresses and External DNS Hostnames
3.7.1.2.3 Elastic IP addresses (EIP)
3.7.2 Security
3.7.2.1 Key Pairs
3.7.2.2 Security Groups
3.7.2.2.1 Rules of Security Groups
3.8 Pricing
3.8.1 “Charging unit”
3.8.2 “Begin” and “end”
3.9 “Charging items”
3.10 Demonstration: Launch and connect to a Linux instance
3.10.1 Demonstration: Browse and select AMIs
3.10.2 Demonstration: Choose instance types
3.10.3 Demonstration: Configure instance details / user data
3.10.4 Demonstration: Add Storage
3.10.5 Demonstration: Add Tags
3.10.6 Demonstration: Configure Security Group
3.10.7 Demonstration: Review and Launch
3.10.8 Demonstration: Key Pair and status checks
3.10.9 Demonstration: Convert private key from pem to ppk
3.10.10 Demonstration: Connect to a Linux instance (CLI)
3.10.11 Demonstration: Connect to a Linux instance (File transfer)
3.10.12 Demonstration: “user-data” verification
3.11 Instance metadata
3.11.1 Demonstration: Instance metadata (General)
3.11.2 Demonstration: Instance metadata (ami-id)
3.11.3 Demonstration: Instance metadata (public-keys)
3.11.4 Demonstration: Instance metadata (local-ipv4)
3.11.5 Demonstration: Instance metadata (public-ipv4)
3.11.6 Demonstration: Instance metadata (local-hostname)
3.11.7 Demonstration: Instance metadata (public-hostname)
3.12 Demonstration: Stop and start instance
3.12.1 Demonstration: Stop an instance
3.12.2 Demonstration: Start an instance
3.13 Demonstration: Screenshot and system log (console output)
3.13.1 Demonstration: Screenshot
3.13.2 Demonstration: System log (console output)
3.14 Change instance type
3.14.1 Demonstration: Change instance type
3.15 Launch more like this
3.15.1 Demonstration: Launch more like this
3.16 Terminate an instance
3.16.1 Demonstration: Terminate an instance
3.17 Custom AMIs
3.17.1 Demonstration: Create a custom AMI
3.17.2 Demonstration: Create an instance based on a custom AMI
3.17.3 Demonstration: Deregister an AMI
3.18 Demonstration: Windows instances
3.19 Spot instances
3.19.1 Demonstration: Create a spot instance
3.19.2 Demonstration: Terminate a spot instance

4 AWS Command Line Interface (AWS CLI)
4.1 Install AWS CLI
4.1.1 Demonstration: Install AWS CLI in Windows
4.1.2 Demonstration: Install AWS CLI in Linux (Ubuntu 16.04 LTS)
4.1.3 Demonstration: Install AWS CLI in Linux (Ubuntu 18.04 LTS)
4.2 Access key ID and Secret access key
4.2.1 Demonstration: Generate Access key ID and Secret access key
4.3 Using AWS CLI
4.3.1 Demonstration: “Login” to AWS CLI and list out all regions
4.3.2 Demonstration: JSON format vs table format
4.3.3 Demonstration: Describe existing security groups
4.3.4 Demonstration: Describe existing key pair

5 EBS
5.1 Introduction to EBS
5.2 Volume types (io1, gp2, st1 and sc1)
5.3 Snapshot
5.4 EBS-Optimized Instances
5.5 Availability and Durability
5.6 Encryption
5.7 Pricing
5.7.1 SSD (gp2)
5.7.2 SSD (io1)
5.7.3 HDD (st1)
5.7.4 HDD (sc1)
5.7.5 Snapshots
5.8 Demonstration: “View” Instance store (Ephemeral)
5.9 Demonstration: Create EBS volumes
5.9.1 Demonstration: SSD (gp2), IOPS and burst concepts
5.9.2 Demonstration: SSD (io1) and its IOPS provision concepts
5.9.3 Demonstration: Throughput Optimized HDD (ST1)
5.9.4 Demonstration: Cold HDD (SC1)
5.9.5 Demonstration: Select the correct available zone!!
5.10 Demonstration: Attach EBS volumes
5.11 Demonstration: Build and mount a Linux file system
5.12 Demonstration: Detach EBS volumes
5.13 Demonstration: Resize and reattach volumes
5.14 Demonstration: Create snapshots from EBS volumes
5.15 Demonstration: Exploring “copy snapshot”
5.16 Demonstration: Create volumes from snapshots and attach to instances
5.17 Demonstration: From unencrypted → encrypted volumes
5.18 Demonstration: Delete volumes and snapshots
5.19 Losing private key
5.19.1 Method 1
5.19.2 Method 2

6 CloudWatch and SNS
6.1 Amazon CloudWatch
6.1.1 Introduction to CloudWatch
6.1.2 Metrics
6.1.2.1 Basic and Detailed Monitoring
6.1.2.1.1 Basic Monitoring
6.1.2.1.2 Detailed Monitoring
6.1.2.2 Custom Metrics
6.1.3 Logs
6.1.4 Alarms
6.1.5 Events
6.1.6 Pricing
6.2 Amazon Simple Notification Service (SNS)
6.2.1 Introduction to SNS
6.2.2 Characteristics of SNS
6.2.3 Pricing
6.3 Demonstration: CloudWatch in EC2 instances and SNS
6.3.1 Demonstration: Create a SNS topic and subscription
6.3.2 Demonstration: Basic Monitoring of EC2 instances
6.3.3 Demonstration: Alarms of EC2 instances
6.3.4 Demonstration: Delete alarms, SNS topics and SNS subscriptions.
6.3.5 Demonstration: Detailed Monitoring
6.3.6 Monitor EC2 instances’ memory (Custom metrics) with EC2 instance profile
6.3.6.1 Background of EC2 instance profile
6.3.6.2 Background of EC2 memory monitoring
6.3.6.3 Demonstration: Monitor EC2 instances’ memory (Custom metrics) with EC2 instance profiles (IAM roles)
6.3.6.3.1 Demonstration: Create an IAM role with inline policies
6.3.6.3.2 Demonstration: Create an EC2 instance with instance profiles (IAM roles)
6.3.6.3.3 Demonstration: Monitor EC2 instances’ memory (Custom metrics)
6.3.6.3.4 Demonstration: Delete EC2 instances, IAM roles and its relevant inline policies

7 Virtual Private Cloud (VPC) [with Elastic IP (EIP), Elastic Network Interface (ENI) and Virtual Private Network (VPN)]
7.1 Introduction to VPC
7.2 Pricing
7.3 Create VPC, Edit DNS Resolution and Edit DNS Hostnames
7.3.1 Demonstration: Exploring VPC Wizards
7.3.2 Demonstration: Create VPC, Edit DNS Resolution and Edit DNS Hostnames
7.4 Security Groups in a VPC
7.4.1 Demonstration: Security Groups in a VPC
7.5 Network Access Control Lists (NACLs)
7.5.1 Introduction to Network Access Control Lists (NACLs)
7.5.2 Demonstration: Network Access Control Lists (NACLs)
7.6 Subnets and Routing
7.6.1 Introduction to subnet concepts
7.6.1.1 subnets
7.6.1.2 Public subnets
7.6.1.3 Private subnets
7.6.1.4 VPN-only subnets
7.6.2 Introduction to routing concepts in VPC
7.6.2.1 Route tables
7.6.2.2 Main route tables
7.6.2.3 Route Priority
7.6.3 Demonstration: Public Subnets
7.6.3.1 Demonstration: Create an internet gateway and attach to a VPC
7.6.3.2 Demonstration: Create a subnet
7.6.3.3 Demonstration: Create a route table and associate to a public subnet (internet gateway, igw)
7.6.3.4 Demonstration: Create an EC2 instance in a public subnet
7.6.4 Demonstration: Private Subnets
7.6.4.1 Demonstration: Create a subnet
7.6.4.2 Demonstration: Create an EC2 instance with a custom ENI (Elastic Network Interface)
7.6.4.3 Demonstration: Connect to private subnet instance from public subnet instance
7.6.4.4 Demonstration: NAT gateway (ngw), route tables and Elastic IP (EIP)
7.6.4.4.1 Demonstration: Allocate an Elastic IP (EIP)
7.6.4.4.2 Demonstration: Create a NAT gateway (ngw)
7.6.4.4.3 Demonstration: Prepare a route table and use NAT gateway (ngw)
7.6.4.4.4 Demonstration: Delete NAT gateway (ngw) and release Elastic IP (EIP)
7.7 VPC Flow Logs
7.7.1 Demonstration: VPC Flow Logs
7.7.2 Demonstration: Delete VPC Flow Logs, IAM role and Log Group
7.7.2.1 Demonstration: Delete VPC Flow Logs
7.7.2.2 Demonstration: Delete IAM role
7.7.2.3 Demonstration: Delete Log Group
7.8 Virtual Private Network (VPN) and Border Gateway Protocol (BGP)
7.8.1 Introduction to Virtual Private Network (VPN)
7.8.2 Introduction to Border Gateway Protocol (BGP)
7.8.3 Demonstration: Connect on-premise infrastructure to AWS VPC
7.8.3.1 Demonstration: Prepare a customer gateway (Cisco Routers)
7.8.3.2 Demonstration: Create Customer Gateway in VPC (cgw)
7.8.3.3 Demonstration: Create Virtual Private Gateway (vgw) and attach Virtual Private Gateway to a VPC
7.8.3.4 Demonstration: Create a VPN connection in VPC
7.8.3.5 Demonstration: Create a VPN connection and configure BGP in Cisco Router
7.8.3.6 Demonstration: Configure BGP route propagation in VPC
7.8.3.7 Demonstration: Delete VPN Connection, Virtual Private Gateway (vgw), Customer Gateway (cgw)
7.8.3.7.1 Demonstration: Delete VPN Connection
7.8.3.7.2 Demonstration: Delete Virtual Private Gateway (vgw)
7.8.3.7.3 Demonstration: Delete Customer Gateway (cgw)
7.9 Demonstration: Delete VPC

8 ELB 和 Auto Scaling
8.1 ELB (Elastic Load Balancing)
8.1.1 Introduction to ELB
8.1.1.1 Classic Load Balancer
8.1.1.1.1 Cross-Zone Load Balancing
8.1.1.1.1.1 Without Cross-Zone Load Balancing
8.1.1.1.1.2 With Cross-Zone Load Balancing
8.1.1.2 Network Load Balancer
8.1.1.3 Application Load Balancer
8.1.1.4 Compare Classic, Network and Application Load Balancer
8.2 Pricing
8.2.1 Load Balancer Capacity Units (LCU)
8.2.2 Classic Load Balancer
8.2.3 Network Load Balancer
8.2.4 Application Load Balancer
8.3 Demonstration: Classic Load Balancer
8.3.1 Demonstration: Design
8.3.2 Demonstration: Two instances in two availability zones
8.3.2.1 Demonstration: Create an instance in availability zone “a”
8.3.2.2 Demonstration: Create an instance in availability zone “b”
8.3.2.3 Demonstration: Verify if two instances are ready
8.3.3 Demonstration: Classic Load Balancer with health check
8.3.4 Demonstration: Delete Classic Load Balancer
8.4 Demonstration: Application Load Balancer with path listeners
8.4.1 Demonstration: Design
8.4.2 Demonstration: Two instances in two availability zones
8.4.2.1 Demonstration: Create an instance in availability zone “a”
8.4.2.2 Demonstration: Create an instance in availability zone “b”
8.4.2.3 Demonstration: Verify if two instances are ready
8.4.3 Demonstration: Create Target Groups to “group” instances
8.4.3.1 Demonstration: Create Target Groups for availability zone “a”
8.4.3.2 Demonstration: Create Target Groups for availability zone “b”
8.4.3.3 Demonstration: Create Target Groups for availability zone “a” and “b”
8.4.4 Demonstration: Create an Application Load Balancer
8.4.5 Demonstration: Adjust path listener’s rules
8.4.6 Demonstration: Verify Application Load Balancer and path listener’s rules
8.4.7 Demonstration: If one target group “a” is down
8.4.8 Demonstration: Delete Application Load Balancer
8.4.8.1 Demonstration: Delete Application Load Balancer
8.4.8.2 Demonstration: Target groups
8.4.8.3 Demonstration: Delete instances
8.5 Auto Scaling
8.5.1 Introduction to Auto Scaling
8.5.2 Features provided by Auto Scaling
8.5.3 Launch Configurations
8.5.4 Auto Scaling Groups
8.5.5 Pricing
8.5.6 Demonstration: Auto Scaling (Manual)
8.5.6.1 Demonstration: Create an SNS notification (optional)
8.5.6.2 Demonstration: Create a Target Group
8.5.6.3 Demonstration: Create an Application Load Balancer
8.5.6.4 Demonstration: Create a Launch Configuration
8.5.6.5 Demonstration: Create an Auto Scaling Group
8.5.6.6 Demonstration: Exploring Scheduled Actions
8.5.6.7 Demonstration: Manual Scale Up
8.5.6.8 Demonstration: Manual Scale Down to minimum capacity
8.5.6.9 Demonstration: Delete Auto Scaling (Manual)
8.5.6.9.1 Demonstration: Delete Auto Scaling Group
8.5.6.9.2 Demonstration: Delete Launch Configuration
8.5.6.9.3 Demonstration: Delete Application Load Balancer and target group
8.5.7 Demonstration: Auto Scaling (Based on CPU Utilization)
8.5.7.1 Demonstration: Create a Target Group
8.5.7.2 Demonstration: Create an Application Load Balancer
8.5.7.3 Demonstration: Create a Launch Configuration
8.5.7.4 Demonstration: Create an Auto Scaling Group
8.5.7.5 Demonstration: Monitor CPU Utilization in CloudWatch
8.5.7.6 Demonstration: Adjusting Scaling Policy
8.5.7.7 Demonstration: Scaling down when CPU Utilization is low (By default)
8.5.7.8 Demonstration: Scaling up when CPU Utilization is high
8.5.7.9 Demonstration: Delete Auto Scaling (Based on CPU Utilization)

9 S3, Glacier and Storage Gateway
9.1 S3
9.1.1 Introduction to S3
9.1.2 “Size” of S3
9.1.2.1 Multipart Upload
9.1.3 Storage classes and pricing
9.1.4 Durability
9.1.5 Versioning
9.1.6 Lifecycle Management
9.1.7 Cross-Region Replication
9.1.8 Demonstration: S3 bucket and its operations
9.1.8.1 Demonstration: Create a S3 bucket
9.1.8.2 Demonstration: Upload a file to S3
9.1.8.3 Demonstration: Explore a file’s properties
9.1.8.4 Demonstration: Download a file from S3
9.1.8.5 Demonstration: Exploring bucket’s properties
9.1.8.6 Demonstration: Exploring lifecycle rules
9.1.9 Demonstration: Versioning
9.1.10 Demonstration: Making “Public”
9.1.11 Demonstration: Delete a bucket
9.1.12 Hosting static website
9.1.12.1 Demonstration: Hosting static website
9.2 Glacier
9.2.1 Introduction to Glacier
9.2.2 Archives and Vaults
9.2.2.1 Archives
9.2.2.2 Vaults
9.2.2.2.1 Introduction to Vaults
9.2.2.2.2 Vault Lock
9.2.3 Encryption
9.2.4 Glacier vs S3
9.2.5 Data Retrievals
9.2.5.1 Standard retrievals
9.2.5.2 Expedited retrievals
9.2.6 Data Inventories
9.2.7 Pricing
9.2.8 Demonstration: Using Glacier
9.2.8.1 Demonstration: Create a vault and configure SNS notification
9.2.8.2 Demonstration: Upload an archive
9.2.8.3 Demonstration: Inventory retrieval
9.2.8.4 Demonstration: Archive-Retrieval
9.3 Storage Gateway
9.3.1 Introduction to Storage Gateway
9.3.2 Storage interfaces
9.3.2.1 File gateway
9.3.2.2 Volume gateway
9.3.2.3 Tape gateway
9.3.3 Storage Gateway Virtual Machine (VM) and Local cache
9.3.3.1 Storage Gateway Virtual Machine (VM)
9.3.3.1.1 Hardware and storage requirements
9.3.3.1.1.1 Hardware requirements
9.3.3.1.1.2 Storage requirements
9.3.3.2 The role of local cache
9.3.3.2.1 What’s happen when local cache is too small?
9.3.4 Pricing
9.3.5 Demonstration: Storage File Gateway
9.3.5.1 Demonstration: NFS client
9.3.5.2 Demonstration: Create a S3 bucket
9.3.5.3 Demonstration: Creating Storage Gateway through EC2 instances
9.3.5.4 Demonstration: Connect and activate the gateway
9.3.5.5 Demonstration: Adjusting storage gateway properties
9.3.5.6 Demonstration: CloudWatch for storage gateway
9.3.5.7 Demonstration: Create file share
9.3.5.8 Demonstration: Connect to the file share
9.3.5.9 Demonstration: Refresh file share cache
9.3.5.10 Demonstration: Delete the whole setup
9.3.5.10.1 Demonstration: Delete “shared drive”
9.3.5.10.2 Demonstration: Delete file share
9.3.5.10.3 Demonstration: Delete storage gateway
9.3.5.10.4 Demonstration: Delete EC2 instances
9.3.5.10.5 Demonstration: Delete S3 bucket

10 RDS, DynamoDB and ElastiCache Service
10.1 RDS (Relational Database Service)
10.1.1 Introduction to Relational Database Service (RDS)
10.1.2 Maintenance window
10.1.3 Amazon Aurora
10.1.4 Auto Backup / Snapshots
10.1.5 Multi-AZ Deployments and Read Replicas
10.1.5.1 Multi-AZ Deployments
10.1.5.1.1 Failover conditions
10.1.5.2 Read Replicas
10.1.5.3 Multi-AZ Deployments vs Read Replicas
10.1.6 Pricing
10.1.7 Demonstration: Preparations
10.1.7.1 Demonstration: MySQL clients
10.1.7.2 Demonstration: Security groups
10.1.7.3 Demonstration: Subnet groups
10.1.8 Demonstration: RDS instances (Multi-AZ deployment)
10.1.8.1 Demonstration: Create RDS instances (Multi-AZ deployment)
10.1.8.2 Demonstration: Connect RDS instances (Multi-AZ deployment)
10.1.9 Demonstration: Snapshots
10.1.9.1 Demonstration: Create Snapshots
10.1.9.2 Demonstration: Explore Snapshots Migration (Aurora / MariaDB)
10.1.9.3 Demonstration: Explore Restoration from Snapshots
10.1.10 Demonstration: Read Replica
10.1.10.1 Demonstration: Create a Read Replica instance
10.1.10.2 Demonstration: Connect to the read replica
10.1.11 Demonstration: Delete RDS components
10.1.11.1 Demonstration: Delete Read Replica instances
10.1.11.2 Demonstration: Delete Master instances
10.1.11.3 Demonstration: Delete Snapshots
10.1.11.4 Demonstration: Delete Subnet groups
10.2 DynamoDB
10.2.1 Introduction to DynamoDB
10.2.2 Data model of DynamoDB
10.2.2.1 Tables
10.2.2.1.1 Primary key, partition key and sort key
10.2.2.2 Items
10.2.2.2.1 Limitation
10.2.2.3 Attributes
10.2.3 Consistency models of DynamoDB
10.2.3.1 Eventually consistent
10.2.3.2 Strongly consistent
10.2.4 Indexes
10.2.4.1 Global secondary indexes
10.2.4.2 Local secondary indexes
10.2.5 Pricing
10.2.6 Demonstration: DynamoDB
10.2.6.1 Demonstration: Create a DynamoDB table
10.2.6.2 Demonstration: Create DynamoDB items
10.2.6.3 Demonstration: Delete DynamoDB tables
10.3 ElastiCache Service
10.3.1 Introduction to ElastiCache Service
10.3.2 In-memory data store
10.3.3 Pricing
10.3.4 Demonstration: ElastiCache Service with Redis
10.3.4.1 Demonstration: Redis clients (EC2)
10.3.4.2 Demonstration: Security groups
10.3.4.3 Demonstration: Create a Redis node
10.3.4.4 Demonstration: Connect to a Redis node
10.3.4.5 Demonstration: Delete the Redis node
10.3.4.6 Demonstration: Delete the Redis client (EC2)

11 Route 53
11.1 Introduction to Route 53
11.2 Hosted Zone
11.3 DNS record types
11.3.1 “Standard” record types
11.3.2 “Alias” records
11.4 TTL (Time to Live)
11.5 Time to reflect changes?
11.6 Zone apex
11.6.1 What is Zone apex?
11.6.2 How Route 53 handles zone apex?
11.7 Health Checks & DNS Failover
11.7.1 Health Checks
11.7.2 DNS Failover
11.8 Pricing
11.9 Demonstration: Exploring how to register a new domain in AWS
11.10 Demonstration: “Integrate” public hosted zone to registered domains
11.11 Demonstration: Routing Policies
11.11.1 Demonstration: Routing Policy (Simple)
11.11.2 Demonstration: Routing Policy (Weight)
11.11.3 Demonstration: Routing Policy (Geolocation)
11.11.4 Demonstration: Routing Policy (Latency)
11.11.5 Demonstration: Routing Policy (Health Checks + Failover)
11.11.5.1 Demonstration: Prepare S3 static web host
11.11.5.2 Demonstration: Prepare an EC2 instance with web server
11.11.5.3 Demonstration: Routing Policy (Failover with Health Checks)
11.11.5.4 Demonstration: Routing Policy with Health Checks and Failover
11.11.5.5 Demonstration: Clean Up
11.11.5.5.1 Demonstration: Delete the record set
11.11.5.5.2 Demonstration: Terminate the EC2 instance
11.11.5.5.3 Demonstration: Delete the S3 bucket
11.11.5.5.4 Delete Route 53 Health Check

12 CloudFront
12.1 Introduction to CloudFront
12.2 Why high performance?
12.3 Edge Locations
12.4 Expiration period and Invalidation API
12.4.1 Expiration period
12.4.2 Invalidation API
12.5 Pricing
12.6 Demonstration: CloudFront
12.6.1 Demonstration: Preparation
12.6.1.1 Demonstration: Create a S3 bucket for images
12.6.1.2 Demonstration: Create a S3 bucket for JSON (Optional)
12.6.1.3 Demonstration: Upload contents to S3 buckets
12.6.2 Demonstration: Create CloudFront Distribution
12.6.3 Demonstration: Verify OAI access
12.6.4 Demonstration: Clean up
12.6.4.1 Demonstration: Disable a CloudFront distribution
12.6.4.2 Demonstration: Delete a CloudFront distribution
12.6.4.3 Demonstration: Delete a S3 bucket

13 SQS, Lambda and API Gateway
13.1 SQS (Simple Queue Service)
13.1.1 Introduction to SQS (Simple Queue Service)
13.1.2 Standard queues and FIFO queues
13.1.2.1 Standard queue
13.1.2.2 FIFO queue
13.1.3 Pricing
13.1.4 Demonstration: SQS
13.1.4.1 Demonstration: Create a SQS queue
13.1.4.2 Demonstration: Send a message to the queue
13.1.4.3 Demonstration: Polling for messages / read messages
13.1.4.4 Demonstration: Delete messages
13.1.4.5 Demonstration: Delete a SQS queue
13.2 Lambda
13.2.1 Introduction to Lambda and serverless computing
13.2.2 Demonstration: Lambda (with Node.js)
13.2.2.1 Demonstration: Create a Lambda execution role
13.2.2.2 Demonstration: Create a Lambda function
13.2.2.3 Demonstration: Create a test event and test the Lambda function
13.3 API Gateway
13.3.1 Introduction to API Gateway
13.3.2 Demonstration: API as a trigger to a Lambda function
13.3.3 Demonstration: Clean up
13.3.3.1 Demonstration: Delete Lambda functions
13.3.3.2 Demonstration: Delete API
13.3.3.3 Demonstration: Delete IAM roles
13.4 Pricing of Lambda and API Gateway

14 IAM
14.1 Introduction to IAM (Identity and Access Management)
14.2 IAM users, roles, groups
14.2.1 IAM users
14.2.2 IAM roles
14.2.3 Groups
14.3 Permissions
14.3.1 An example of permission
14.4 Multi-Factor Authentication (MFA)
14.5 Demonstration: IAM
14.5.1 Demonstration: Create a group with “administrator” permissions
14.5.2 Demonstration: Create an administrator IAM user with “administrator” group
14.5.3 Demonstration: IAM user sign-in link and perform sign-in operations
14.5.4 Demonstration: Limit EC2 operations
14.5.4.1 Demonstration: Preparation
14.5.4.1.1 Demonstration: Create an instance for testing
14.5.4.1.2 Demonstration: Remove “administrator” permissions
14.5.4.2 Demonstration: Create Policy
14.5.4.3 Demonstration: Attach policies to users
14.5.4.4 Demonstration: Verify if the policy functions properly
14.5.5 Demonstration: Multi-Factor Authentication (MFA)
14.5.6 Demonstration: Clean up
14.5.6.1 Demonstration: Delete groups
14.5.6.2 Demonstration: Delete users
14.5.6.3 Demonstration: Delete policies
14.5.6.4 Demonstration: Terminate EC2 for testing
14.6 STS (Security Token Service)
14.6.1 AssumeRole
14.6.2 Federation
14.6.2.1 Enterprise identity federation
14.6.2.2 Web identity federation

15 Miscellaneous
15.1 Trust Advisor
15.1.1 Demonstration: Trust Advisor
15.2 Shared responsibility model
15.2.1 AWS
15.2.2 Shared (AWS and Customers)
15.3 Cross-Origin Resource Sharing (CORS)
15.4 VPC peering
15.5 AWS Snowball / AWS import and export
15.6 AWS Auto Scaling default termination policy
15.7 Kinesis
15.7.1 Kinesis Firehose
15.7.2 Kinesis Streams
15.7.2.1 Other types of Kinesis
15.8 EFS
15.9 Redshift
15.10 CloudWatch Agent
15.11 AWS Config
15.12 CloudTrail
15.13 ECS (Elastic Container Service)
15.13.1 Docker container images and containers
15.13.2 ECS and Docker orchestration
15.14 Elastic Beanstalk

16 AWS Certified Solutions Architect – Associate Examination
16.1 Examination details
16.2 Examination registration

The course content above may change at any time without notice in order to better reflect the content of the examination.


 

更多綜合課程
  CFA 特許金融分析師認證課程
  • CFA Level I
  (特許金融分析師一級) 認證
  法律課程
  • 代理人的法律責任
  • 公司董事和合夥人的法律責任
  • 婚姻的法律責任
  • 遺產繼承的合法權益
  英文課程
  • IPA 拼音:級別 1 2 3 4
  普通話課程
  • 基礎普通話拼音 (免費)
  • 進階普通話拼音
  • 普通話會話:級別 1 2 3
  西班牙語文課程
  • 級別 1 2 3
  中醫課程
  • 濕疹與皮膚敏感病
  • 暗瘡與色斑 | 鼻敏感與感冒
  • 脫髮與白髮 | 從五官看健康
  攝影課程
  • 攝影初級
  • 攝影中級 (風景專題)
  風水命理課程
  • 紫微斗數:級別 1 2 3
  • 子平八字:級別 1 2 3
  • 八字風水:級別 1 2 3
  • 奇門遁甲:級別 1 2 3

這個頁面上的內容需要較新版本的 Adobe Flash Player。

取得 Adobe Flash Player