Software | AWS Certified 자격증 취득기 - 1

|

1. 이번엔 AWS 다~!


저번 Microsoft 공인 인증 시험 시리즈에 이어, 이번달 부터는 Amazon Web Service (AWS) 공인 인증서 취득 도전을 시작했습니다.

최근 IT vendor 중에서 1위 업체이기도 하고, 취업시 도움이 많이 되어 인기 있는 인증서니까요.


AWS 인증서 체계는 아래 스샷에 잘 설명되어 있습니다.



AWS 에 대한 기초적인 개념은 "Cloud Practitioner" 이고, 이걸 바탕으로 각 IT 부문별 4가지로 분류됩니다.


- Architect

- Developer

- Operations

- Specialty (Advanced Networking / Big Data / Security)


Specialty 를 제외하고, 각 분야별로 레벨이 Associate (기본) 과 Professional (전문가) 로 또 나뉘어 있습니다.

저는 아래 순서대로 자격증 취득을 목표로 하고 있습니다.


Cloud Practitioner > Solutions Architect - Associate > Solutions Architect - Professional

> Advanced Networking > Big Data > Security


총 6개 과목에 대해 도전할 예정입니다.

Solutions Architect - Professional 까지만으로도 충분할 것 같지만, 이왕 하는 김에 Specialty 도 도전해 보려구요.

AWS 의 특화 분야 활용이 최종적으로 어떻게 되는지도 너무 궁금하기도 하고.


각 과목당 해당 시험 코드가 있습니다. 시험 공부와 신청 시, 이 코드로 서로 엮여 있으므로 알고 있는게 좋습니다.


AWS Certified Cloud Practitioner                   CLF-C01

AWS Certified Developer - Associate                DVA-C01
AWS Certified Solutions Architect - Associate      SAA-C01
AWS Certified SysOps Administrator - Associate     SOA-C01

AWS Certified DevOps Engineer - Professional       DOP-C01
AWS Certified Solutions Architect - Professional   SAP-C01

AWS Certified Advanced Networking - Specialty      ANS-C00
AWS Certified Alexa Skill Builder - Specialty      AXS-C01
AWS Certified Big Data - Specialty                 BDS-C00
AWS Certified Machine Learning - Specialty         MLS-C01
AWS Certified Security - Specialty                 SCS-C01


정리하면서 알게된 것인데, Machine Learning 도 생겼나 보네요.

욕심은 나지만, 일단 6개 도전입니다.





2. On-line training


AWS 인증서 준비에 필요한 온라인 강의가 Amazon 으로부터 무료로 제공됩니다.

아래 사이트에서 본인 등록 하고, 강의를 찾아 봅니다.


* AWS training and certification

https://www.aws.training/


처음 시험으로 Cloud Practitioner 를 준비할 것이기에, 아래 강좌를 신청합니다.



이 강좌를 시작하면, 아래와 같이 각 세션별로 강의가 분리되어 있습니다.

전부 다 합쳐봐야 몇 시간 안되므로 집중해서 열씸히 수업합니다.



여기서 다시금 인식한 사실.

AWS 서비스는 고객이 Cloud 에 직접 시버스를 구축할 수 있도록 하기위해 이 많은 서비스들이 생겨났다. 입니다.

이런 인증서 시스템을 통해, 꾸려놓은 서비스들을 효과적으로 보급하고, 시험으로 돈도 벌고... 장사꾼이지만 좋은 방법입니다.



Amazon 에 근무하는 사람들도 이 많은 시스템을 알아야 하니,

미리 인증서로 공부시켜 놓고, 인증서를 딴 사람을 채용 대상으로 하는 이유도 여기에 있을 것 같네요.


마침 시험 당일 하루 전 (9월 2일)에 온라인 워크샵이 있어서 webinar 에 참석했습니다.


* 무료 'AWS 자격증 시험 준비 워크샵'

https://pages.awscloud.com/get_certified_kr_2019.html



Cloud Practitioner 와 Architect - Associate 과정이 있습니다.

기본 내용은 AWS on-line 교육과 동일한 내용입니다만, 여기서는 한글로 강의를 해 줍니다.






3. 정리


AWS 의 각 서비스들에 대해 공부하면서 간단히 정리해 봤습니다.

제가 영어 시험을 신청한 터라, 자료 정리를 영어로 했습니다. 한글 정리본은 제일 밑에 따로 올려 놨습니다.


AWS 자격 인증은, 우선 어떤 서비스들이 있고, 어떤 기능을 가지는지를 물어봅니다.

그래서 아래와 같이 각 서비스의 명칭과 그에 대한 간단한 설명을 남겨 봅니다.


Amazon EC2


https://aws.amazon.com/ec2/

A web service that provides secure, resizable compute capacity in the cloud. It is designed to make web-scale cloud computing easier for developers.


* On-Demand

- Users that prefer the low cost and flexibility of Amazon EC2 without any up-front payment or long-term commitment

- Applications with short-term, spiky, or unpredictable workloads that cannot be interrupted

- Applications being developed or tested on Amazon EC2 for the first time

* Reserved Instances (up to 75% save compared to On-Demand)

- Applications with steady state usage

- Applications that may require reserved capacity

- Customers that can commit to using EC2 over a 1 or 3 year term to reduce their total computing costs

* Spot Instances (up to 90% save compared to On-Demand)

- Applications that have flexible start and end times

- Applications that are only feasible at very low compute prices

- Users with urgent computing needs for large amounts of additional capacity

* Dedicated hosts

- Can be purchased On-Demand (hourly).

- Can be purchased as a Reservation for up to 70% off the On-Demand price.

* Per Second Billing

- On-Demand, Reserved and Spot forms

- All regions and Availability Zones

- Amazon Linux and Ubuntu


Amazon Virtual Private Cloud (VPC)



https://aws.amazon.com/vpc/

lets you provision a logically isolated section of the AWS Cloud where you can launch AWS resources in a virtual network that you define.


Amazon EBS (Elastic Block Storage)


https://aws.amazon.com/ebs/

An easy to use, high performance block storage service designed for use with Amazon Elastic Compute Cloud (EC2) for both throughput and transaction intensive workloads at any scale. A broad range of workloads, such as relational and non-relational databases, enterprise applications, containerized applications, big data analytics engines, file systems, and media workflows are widely deployed on Amazon EBS.


Amazon EFS (Elastic File System)


https://aws.amazon.com/efs/

provides a simple, scalable, elastic file system for Linux-based workloads for use with AWS Cloud services and on-premises resources. It is designed to provide massively parallel shared access to thousands of Amazon EC2 instances, enabling your applications to achieve high levels of aggregate throughput and IOPS with consistent low latencies.


Amazon S3 (Simple Storage Service)


https://aws.amazon.com/s3/

An object storage service that offers industry-leading scalability, data availability, security, and performance. This means customers of all sizes and industries can use it to store and protect any amount of data for a range of use cases, such as websites, mobile applications, backup and restore, archive, enterprise applications, IoT devices, and big data analytics.

S3 에 있는 object 는 HTTP 프로토콜 + bucket prefix 를 이용하여 마음대로 꺼내 쓸 수 있다.



Amazon Route 53


https://aws.amazon.com/route53/

A highly available and scalable cloud Domain Name System (DNS) web service. It is designed to give developers and businesses an extremely reliable and cost effective way to route end users to Internet applications by translating names like www.example.com into the numeric IP addresses like 192.0.2.1 that computers use to connect to each other. Amazon Route 53 is fully compliant with IPv6 as well.


Elastic Load-Balancing


https://aws.amazon.com/elasticloadbalancing/

Automatically distributes incoming application traffic across multiple targets, such as Amazon EC2 instances, containers, IP addresses, and Lambda functions.


Amazon CloudFront


https://aws.amazon.com/cloudfront/

A fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds, all within a developer-friendly environment.

- keywords : CDN / edge location


AWS Direct Connect


https://aws.amazon.com/directconnect/

A cloud service solution that makes it easy to establish a dedicated network connection from your premises to AWS. Using AWS Direct Connect, you can establish private connectivity between AWS and your datacenter, office, or colocation environment, which in many cases can reduce your network costs, increase bandwidth throughput, and provide a more consistent network experience than Internet-based connections.


AWS Data Pipeline


https://aws.amazon.com/datapipeline/

A web service that helps you reliably process and move data between different AWS compute and storage services, as well as on-premises data sources, at specified intervals.


Amazon RDS (Relational Database Service)


https://aws.amazon.com/rds/

makes it easy to set up, operate, and scale a relational database in the cloud. It provides cost-efficient and resizable capacity while automating time-consuming administration tasks such as hardware provisioning, database setup, patching and backups.


Amazon DynamoDB (NoSQL)


https://aws.amazon.com/dynamodb/

A key-value and document database that delivers single-digit millisecond performance at any scale. It's a fully managed, multiregion, multimaster, durable database with built-in security, backup and restore, and in-memory caching for internet-scale applications.


Amazon ElastiCache



https://aws.amazon.com/elasticache/

Fully managed Redis and Memcached. Seamlessly deploy, run, and scale popular open source compatible in-memory data stores. Build data-intensive apps or improve the performance of your existing apps by retrieving data from high throughput and low latency in-memory data stores.


Amazon Aurora


https://aws.amazon.com/rds/aurora/

A MySQL and PostgreSQL-compatible relational database built for the cloud, that combines the performance and availability of traditional enterprise databases with the simplicity and cost-effectiveness of open source databases.


AWS Snowball


https://aws.amazon.com/snowball/

A petabyte-scale data transport solution that uses devices designed to be secure to transfer large amounts of data into and out of the AWS Cloud. Using Snowball addresses common challenges with large-scale data transfers including high network costs, long transfer times, and security concerns.


Amazon Redshift


https://aws.amazon.com/redshift/

The world's fastest cloud data warehouse today and gets dramatically faster every year.  Highly concurrent workloads? Not a problem.  Redshift can handle virtually unlimited concurrency.  


AWS Database Migration Service

helps you migrate databases to AWS quickly and securely. The source database remains fully operational during the migration, minimizing downtime to applications that rely on the database. The AWS Database Migration Service can migrate your data to and from most widely used commercial and open-source databases.

AWS Migration Hub
provides a single location to track the progress of application migrations across multiple AWS and partner solutions. Using Migration Hub allows you to choose the AWS and partner migration tools that best fit your needs, while providing visibility into the status of migrations across your portfolio of applications.


Amazon EMR (Elastic MapReduce)


https://aws.amazon.com/emr/

The industry leading cloud-native big data platform, allowing teams to process vast amounts of data quickly, and cost-effectively at scale. Using open source tools such as Apache Spark, Apache Hive, Apache HBase, Apache Flink, and Presto, coupled with the dynamic scalability of Amazon EC2 and scalable storage of Amazon S3, EMR gives analytical teams the engines and elasticity to run Petabyte-scale analysis for a fraction of the cost of traditional on-premise clusters.


AWS Lambda


https://aws.amazon.com/lambda/

With Lambda, you can run code for virtually any type of application or backend service - all with zero administration. Just upload your code and Lambda takes care of everything required to run and scale your code with high availability.


AWS OpsWorks



https://aws.amazon.com/opsworks/

A configuration management service that provides managed instances of Chef and Puppet. Chef and Puppet are automation platforms that allow you to use code to automate the configurations of your servers.


AWS Elastic Beanstalk


https://aws.amazon.com/elasticbeanstalk/

An easy-to-use service for deploying and scaling web applications and services developed with Java, .NET, PHP, Node.js, Python, Ruby, Go, and Docker on familiar servers such as Apache, Nginx, Passenger, and IIS.


Amazon CloudFormation


https://aws.amazon.com/cloudformation/

provides a common language for you to describe and provision all the infrastructure resources in your cloud environment. CloudFormation allows you to use a simple text file to model and provision, in an automated and secure manner, all the resources needed for your applications across all regions and accounts.


Amazon Inspector

https://aws.amazon.com/inspector/

An automated security assessment service that helps improve the security and compliance of applications deployed on AWS. Amazon Inspector automatically assesses applications for exposure, vulnerabilities, and deviations from best practices.


AWS Trusted Advisor


https://aws.amazon.com/premiumsupport/technology/trusted-advisor/

An online tool that provides you real time guidance to help you provision your resources following AWS best practices.

Whether establishing new workflows, developing applications, or as part of ongoing improvement, take advantage of the recommendations provided by Trusted Advisor on a regular basis to help keep your solutions provisioned optimally.


Amazon CloudWatch


https://aws.amazon.com/cloudwatch/

A monitoring and observability service built for DevOps engineers, developers, site reliability engineers (SREs), and IT managers. CloudWatch provides you with data and actionable insights to monitor your applications, respond to system-wide performance changes, optimize resource utilization, and get a unified view of operational health.


AWS CloudTrail


https://aws.amazon.com/cloudtrail/

A service that enables governance, compliance, operational auditing, and risk auditing of your AWS account. With CloudTrail, you can log, continuously monitor, and retain account activity related to actions across your AWS infrastructure.


AWS X-Ray


https://aws.amazon.com/xray/

helps developers analyze and debug production, distributed applications, such as those built using a microservices architecture. With X-Ray, you can understand how your application and its underlying services are performing to identify and troubleshoot the root cause of performance issues and errors.


Amazon WorkSpaces

https://aws.amazon.com/workspaces/

A managed, secure cloud desktop service. You can use Amazon WorkSpaces to provision either Windows or Linux desktops in just a few minutes and quickly scale to provide thousands of desktops to workers across the globe.


AWS Organizations

https://aws.amazon.com/organizations/

helps you centrally govern your environment as you grow and scale your workloads on AWS. Whether you are a growing startup or a large enterprise, Organizations helps you to centrally manage billing; control access, compliance, and security; and share resources across your AWS accounts.


AWS Identity and Access Management (IAM)

https://aws.amazon.com/iam/

enables you to manage access to AWS services and resources securely. Using IAM, you can create and manage AWS users and groups, and use permissions to allow and deny their access to AWS resources. 


Amazon Lightsail

https://aws.amazon.com/lightsail/

An easy-to-use cloud platform that offers you everything needed to build an application or website, plus a cost-effective, monthly plan. Whether you’re new to the cloud or looking to get on the cloud quickly with AWS infrastructure you trust, we’ve got you covered.


About AWS

https://aws.amazon.com/about-aws/


AWS Whitepapers & Guides

https://aws.amazon.com/whitepapers/


AWS Cost Management

https://aws.amazon.com/aws-cost-management/

Access your monthly bill

View the overall status of your AWS costs and usage


* AWS Cost Explore

https://aws.amazon.com/aws-cost-management/aws-cost-explorer/

Explore your costs and usage


* AWS Budgets

https://aws.amazon.com/aws-cost-management/aws-budgets/

Set custom cost and usage budgets


* AWS Cost & Usage Report

https://aws.amazon.com/aws-cost-management/aws-cost-and-usage-reporting

Access comprehensive cost and usage data


AWS Total Cost of Ownership (TCO) Calculators

https://aws.amazon.com/tco-calculator/


AWS Total Cost of Ownership (TCO) Calculator

https://awstcocalculator.com/



Compare AWS Support Plans

https://aws.amazon.com/premiumsupport/plans/



보다 자세한 내용은 각 서비스의 링크를 통해 확인해 보시면 되겠습니다.

또한 whitepaper 도 꼭 읽으면 시험에 도움이 많이 됩니다. 즉, 시간이 많이 필요합니다.


모든 내용을 여기서 다룰 수가 없어서 여기에 소개되지 않은 서비스들도 있습니다.

기본 서비스 및 시험에서 나온 문제들 위주로 위에 소개했으며, 그렇지 않은 것도 많이 있다는 것을 염두에 두시기 바랍니다.





4. 정리한 자료


개념 잡기에 도움이 되는 자료

------------------------------------------------------

aws-overview.pdf

Architecting on AWS - Key Concepts.pdf


지금까지 AWS 가 제공하는 온라인 강의의 스크린 샷을 정리한 자료

------------------------------------------------------

AWS_CLF-C01_20190808_chocoball.pdf

AWS_CLF-C01_20190902_chocoball.pdf


회사 동료가 제공해준 자료를 공유합니다. 실제 시험에서 동일한 문제가 많이 나왔습니다.

------------------------------------------------------

CLF-CO1_AWS_Certified_Cloud_Practitioner_2019.zip


온라인 워크샵을 통해 강사분이 공유해 주신, 비공식 Architect - Associate 시험 자료도 참고가 많이 되었습니다. (어차피 볼 시험이라)


* serithemage/AWSCertifiedSolutionsArchitectUnofficialStudyGuide

https://github.com/serithemage/AWSCertifiedSolutionsArchitectUnofficialStudyGuide


또한, 이미 이 시험을 보신 분이, 자세히 정리해 주신 글이 있어 정독 3번 했습니다.


* AWS 자격증 시험 - 클라우드 종사자(Cloud Practitioner) 후기

https://yongho1037.tistory.com/783





5. 시험 등록


aws.training 사이트에서 Certification 메뉴에 들어가면, 시험 등록 사이트로 점프 합니다.



등록이 되지 않았으면 등록해 주시구요.



이번에는 PSI 시험장에서 시험을 봤습니다. 이상하게도 Pearson VUE 시험장은 찾을 수 없었습니다.



시험장과 시간을 지정하고, 신용카드로 결제 합니다. 세금 포함 12만 5천 4백원이 PSI 및 Amazon 수익으로 갔습니다.






6. 시험 당일


아침 5시반에 일어나 정갈한 마음으로 목욕한 다음, 편안한 마음으로 집을 나섰습니다.



거의 두 달만이네요. 반갑다 KG 에듀원 아이티뱅크.



저번에 본 Pearson VUE 시험장이 이번에는 PSI 시험장이 됩니다. 이 두 시험평가 기관의 기준을 모르겠습니다.



65문제 80분 시험이었습니다만, 13분정도 남기고 끝냈습니다.

문제 은행식이 아니다 보니, 문제를 잘 읽어야 해서 시간이 넉넉하지 않았네요.


시험을 끝내고 건물 밖으로 나오니, 낡으면서 특이한 건물이 보였습니다.

혹시... 피카다리?



회사로 출근하기 위해 종로 3가에서 2가로 걸어갑니다. 거리엔 90% 어르신들과 5%의 젊은이, 5% 의 외국인이 있었습니다.

노인 비율이 갈수록 커져가는 동네가 되었네요.



흠! 이거슨! 바로 들어갑니다.



좀 이른 점심을 먹습니다. 2층에서 보니 종로 2가의 교차로가 잘 보이네요.



저의 기억에 남아있는 종로는 대학생 때라, 20년도 더된 옛날입니다. 정말 많이 바뀌었네요.

한화빌딩을 처음 봤습니다만, 호감가게 잘 지어진것 같습니다.





7. 시험 결과


시험결과는 PASS 였습니다. 시험 끝나자 마자 모니터에 뜹니다. 그렇지만 Microsoft 때 처럼 print 물로는 제공해 주지 않습니다.



나중에 인증 사이트에서 확인하니, 다음과 같이 업데이트 정보가 올라와 있었습니다.



역시 합격은 턱걸이가 제맛이죠! 1000전 만점에 727점으로 턱걸이 하였습니다.



Security 랑 Billing 부분을 더 공부하라 합니다.

다음 Architect - Associate 를 공부할 때, 이 부분을 좀더 중점적으로 봐야겠습니다.



이만하면 첫발은 성공적이었습니다.

이제 다음 시험을 위한 준비를 다시 시작합니다.


And