AWS Certified Developer Associate (DVA-C02) on 🏠

1. IAM (Identity & Access Management)

Mon, 01 Jan 0001 00:00:00 +0000

IAM (Identity & Access Management)#

AWS Identity and Access Management (IAM) is the service that controls who can do what in your AWS account. Every API call made to AWS — whether from the console, CLI, or SDK — is authenticated and authorized through IAM. Without it, there would be no way to distinguish between a developer who should read S3 buckets and an automated process that should write to DynamoDB. IAM is free and global (not region-scoped), and understanding it deeply is a prerequisite for everything else in AWS. 🔗

11. Error Handling & Retry Patterns

Mon, 01 Jan 0001 00:00:00 +0000

Error Handling & Retry Patterns — Cross-Cutting Theme#

Before diving into individual services, it’s worth internalizing a set of patterns that appear repeatedly across SQS, SNS, Lambda, API Gateway, DynamoDB, Kinesis, Step Functions, and EventBridge. The exam tests these concepts in context — meaning you’ll see them embedded in scenario questions about specific services — so understanding them as a unified mental model first will save you significant effort later.

17. API Gateway

Mon, 01 Jan 0001 00:00:00 +0000

API Gateway#

Amazon API Gateway 🔗 is a fully managed service for creating, publishing, and securing APIs at any scale. The core problem it solves: your backend logic (a Lambda function, an EC2 service, or any HTTP endpoint) isn’t directly accessible to clients in a controlled, secure, or scalable way. API Gateway sits in front of those backends and handles routing, authentication, throttling, and protocol management — so you don’t have to build any of that yourself.

19. CI/CD (CodeCommit, CodeBuild, CodeDeploy, CodePipeline)

Mon, 01 Jan 0001 00:00:00 +0000

CI/CD (CodeCommit, CodeBuild, CodeDeploy, CodePipeline)#

Manual deployments are slow, inconsistent, and error-prone. When every release requires a developer to SSH into a server, run scripts by hand, or remember the exact sequence of steps, mistakes happen — and scaling that process across teams and environments becomes untenable. AWS provides a suite of managed services — CodeCommit, CodeBuild, CodeDeploy, and CodePipeline — that together let you automate the entire path from a code commit to a production deployment. This is the foundation of a modern CI/CD (Continuous Integration / Continuous Delivery) pipeline on AWS.

25. CloudWatch

Mon, 01 Jan 0001 00:00:00 +0000

CloudWatch#

CloudWatch is AWS’s primary observability service — a unified platform for collecting metrics, logs, and events from virtually every AWS service and your own applications. Before CloudWatch, understanding what was actually happening inside your infrastructure meant stitching together custom scripts, third-party agents, and ad-hoc logging setups. CloudWatch solves this by providing a single place to monitor resource health, detect anomalies, trigger automated responses, and query logs — all without managing any underlying infrastructure.

28. KMS

Mon, 01 Jan 0001 00:00:00 +0000

KMS (Key Management Service) — Deep Dive#

AWS Key Management Service (KMS) is a managed service that lets you create, control, and use cryptographic keys to protect your data. Its core purpose is simple: rather than managing raw encryption keys yourself — which is error-prone and operationally burdensome — KMS centralises key management, enforces access control via IAM and key policies, and maintains an audit trail through CloudTrail. Every call to KMS is logged, which makes it the default choice for encryption across nearly every AWS service.

3. VPC Fundamentals

Mon, 01 Jan 0001 00:00:00 +0000

VPC Fundamentals#

Amazon Virtual Private Cloud (VPC) lets you launch AWS resources inside a logically isolated virtual network that you define. Think of it as your own private data center within AWS — you control the IP address ranges, subnets, routing, and access rules. The core problem it solves is network isolation: without a VPC, your resources would be exposed on a flat shared network. With a VPC, you decide what’s reachable from the internet, what’s reachable only internally, and what can talk to what.

32. ECS

Mon, 01 Jan 0001 00:00:00 +0000

ECS (Elastic Container Service)#

Modern applications are increasingly built as collections of small, independent services packaged in containers. Containers are lightweight, portable, and consistent across environments — but running them reliably at scale introduces real operational complexity: Where do containers run? How do you restart failed ones? How do you distribute traffic? ECS is AWS’s answer to these questions. It is a fully managed container orchestration service that handles scheduling, placement, scaling, and lifecycle management of Docker containers on your behalf — without requiring you to operate Kubernetes.

35. RDS

Mon, 01 Jan 0001 00:00:00 +0000

RDS#

Amazon Relational Database Service (RDS) is a managed service that runs relational databases in the cloud. The problem it solves is operational: running a production-grade relational database requires provisioning hardware, installing software, configuring backups, applying patches, and managing failover — none of which is differentiated work for most applications. RDS handles all of that, so you interact with a standard SQL database engine while AWS takes care of the infrastructure underneath. 🔗

38. AWS CLI, SDK & API Limits

Mon, 01 Jan 0001 00:00:00 +0000

AWS CLI, SDK & API Limits#

When you move beyond the AWS Console, you interact with AWS programmatically — through the CLI for scripts and automation, through SDKs for application code, and directly via HTTP APIs when you need full control. Understanding how these tools work, how credentials are resolved, and how to handle the rate limits AWS enforces on every API call is essential for building reliable, production-grade applications.

5. EC2

Mon, 01 Jan 0001 00:00:00 +0000

EC2 (Elastic Compute Cloud)#

Amazon EC2 (Elastic Compute Cloud) 🔗 is AWS’s service for renting virtual servers in the cloud. Before managed compute services like Lambda existed, every application needed a server — EC2 is that server, virtualized and billed by the second. Understanding EC2 gives you the mental model for what higher-level services like Lambda are actually abstracting away: OS management, patching, capacity planning, and runtime configuration.

For the DVA-C02 exam, EC2 is foundational context rather than the primary focus. That said, several EC2 concepts — security groups, IAM roles on instances, and purchasing options — appear regularly in scenario questions.

9. S3

Mon, 01 Jan 0001 00:00:00 +0000

S3 (Simple Storage Service)#

Amazon S3 is an object storage service that lets you store and retrieve any amount of data from anywhere on the internet. Unlike a file system (which organises data in a folder hierarchy) or a block storage volume (which behaves like a hard disk), S3 stores data as discrete objects — each one a self-contained bundle of data, metadata, and a unique key. S3 exists because applications need a place to persist files that is durable, infinitely scalable, and decoupled from any single server. It underpins a huge slice of AWS architectures: application assets, data lakes, backups, static sites, event pipelines, and more. 🔗

10. DynamoDB

Mon, 01 Jan 0001 00:00:00 +0000

DynamoDB#

Amazon DynamoDB is a fully managed, serverless NoSQL database built for applications that need consistent, single-digit millisecond performance at any scale. Unlike relational databases, you don’t provision or manage servers — AWS handles availability, replication, and scaling automatically. DynamoDB is the go-to database for serverless architectures on AWS, and it’s one of the most heavily tested services on the DVA-C02 exam.

The core problem it solves: traditional relational databases struggle to scale horizontally and often become bottlenecks under unpredictable or high traffic. DynamoDB sidesteps this by distributing data across partitions and offering near-instant reads and writes regardless of load.

12. SQS

Mon, 01 Jan 0001 00:00:00 +0000

SQS (Simple Queue Service)#

Amazon Simple Queue Service (SQS) is a fully managed message queuing service that lets you decouple the components of a distributed application. The core problem it solves is temporal coupling: without a queue, if a downstream service (consumer) is slow, overloaded, or temporarily unavailable, the upstream service (producer) either fails or has to wait. SQS breaks that dependency — producers drop messages into the queue and move on, consumers process at their own pace. 🔗

18. Cognito

Mon, 01 Jan 0001 00:00:00 +0000

Cognito#

Managing user authentication from scratch is a significant engineering effort: you need to handle password hashing, account recovery, MFA, token issuance, session management, and more. Amazon Cognito 🔗 solves this by providing a fully managed identity service that handles user sign-up, sign-in, and access control so you can focus on your application logic instead of reinventing auth infrastructure.

Cognito has two distinct building blocks that are often used together but serve fundamentally different purposes: User Pools and Identity Pools.

2. KMS (Key Management Service) — Foundations

Mon, 01 Jan 0001 00:00:00 +0000

KMS (Key Management Service) — Foundations#

AWS Key Management Service (KMS) is a managed service that lets you create and control the cryptographic keys used to protect your data. The core problem it solves is straightforward: encrypting data is necessary, but managing encryption keys securely is hard. KMS offloads that complexity — key storage, access control, rotation, and audit logging — to AWS, so you never handle raw key material directly in your application code.

20. SAM (Serverless Application Model)

Mon, 01 Jan 0001 00:00:00 +0000

SAM (Serverless Application Model)#

Building serverless applications by hand means writing long, verbose CloudFormation templates just to define a Lambda function with an API Gateway trigger and a DynamoDB table. AWS SAM (Serverless Application Model) solves this by providing a shorthand syntax on top of CloudFormation, specifically designed for serverless resources. A few lines of SAM YAML expand into the dozens of CloudFormation lines you’d otherwise have to maintain. Beyond templating, SAM also ships a CLI that lets you build, test locally, and deploy serverless applications — making the entire development loop faster and safer.

26. X-Ray

Mon, 01 Jan 0001 00:00:00 +0000

X-Ray#

Modern applications rarely live in a single process. A user request might pass through an API Gateway, trigger a Lambda function, query DynamoDB, call an external HTTP service, and publish to an SQS queue — all before a response is returned. When something goes wrong (or is simply slow), finding where in that chain the problem originated is genuinely hard with logs alone. AWS X-Ray solves this by tracing requests end-to-end across your distributed system, giving you a visual map of every service involved and exactly how long each hop took. For the DVA-C02 exam, X-Ray is the go-to answer whenever a question involves diagnosing latency, pinpointing errors in a microservice architecture, or understanding request flow.

29. Secrets Manager & SSM Parameter Store

Mon, 01 Jan 0001 00:00:00 +0000

Secrets Manager & SSM Parameter Store#

Applications constantly need access to sensitive configuration: database passwords, API keys, OAuth tokens, and feature flags. Hardcoding these into source code or environment variables is a well-known security risk. AWS provides two services to solve this: Secrets Manager for sensitive credentials that need lifecycle management (rotation, auditing, cross-account sharing), and SSM Parameter Store for general-purpose configuration storage, including secrets. Knowing which to reach for — and when — is a frequently tested decision on the DVA-C02 exam.

33. ECR

Mon, 01 Jan 0001 00:00:00 +0000

ECR (Elastic Container Registry)#

When you containerize applications, you need somewhere reliable to store, version, and distribute your Docker images. ECR is AWS’s fully managed container registry that solves exactly this: it gives you a private, secure, and highly available place to push images from your CI/CD pipeline and pull them into ECS, Fargate, or EKS at deploy time. Because ECR lives inside AWS, image pulls stay on the AWS network — no egress costs, lower latency, and no dependency on Docker Hub availability. 🔗

36. Aurora

Mon, 01 Jan 0001 00:00:00 +0000

Aurora#

Amazon Aurora is a cloud-native relational database engine built by AWS from the ground up to overcome the performance and availability limitations of traditional relational databases. It is fully compatible with MySQL and PostgreSQL, meaning your existing drivers, tools, and queries work without modification. Aurora solves a core problem: standard relational databases weren’t designed with distributed cloud infrastructure in mind, so AWS re-architected the storage and replication layers entirely. The result is a managed database that delivers up to 5× the throughput of MySQL and 3× that of PostgreSQL, while offering durability and availability that would be complex and costly to achieve on your own. 🔗

39. CloudFront

Mon, 01 Jan 0001 00:00:00 +0000

CloudFront#

CloudFront is AWS’s Content Delivery Network (CDN). The core problem it solves is simple: if your application’s origin server sits in us-east-1 and a user requests a large image from Tokyo, that request travels halfway around the world and back. CloudFront fixes this by caching your content at edge locations close to your users, so subsequent requests are served locally — slashing latency and reducing the number of requests that ever reach your origin.

4. Route 53

Mon, 01 Jan 0001 00:00:00 +0000

Route 53#

Route 53 is AWS’s managed DNS (Domain Name System) service. DNS is the internet’s phone book — it translates human-readable domain names like api.myapp.com into IP addresses that computers use to route traffic. Route 53 goes beyond basic DNS by adding health checking, traffic routing logic, and deep integration with AWS services. For developers, understanding Route 53 at an awareness level is enough to wire up custom domains, configure failover, and reason about how traffic reaches your application.

6. Lambda

Mon, 01 Jan 0001 00:00:00 +0000

AWS Lambda#

Modern applications often need to run small, discrete pieces of logic in response to events — a user uploads a file, a message arrives in a queue, an HTTP request hits an API. Traditionally, this meant provisioning and maintaining servers to host that logic, even when it was idle. AWS Lambda eliminates that overhead entirely: you upload your code, define what triggers it, and AWS handles everything else — infrastructure, scaling, patching, and availability. You pay only for the compute time your code actually consumes, billed in 1ms increments. This model is called serverless compute, and Lambda is its cornerstone on AWS. 🔗

13. SNS

Mon, 01 Jan 0001 00:00:00 +0000

Amazon Simple Notification Service (SNS) 🔗 is a fully managed pub/sub messaging service. Where SQS decouples a single producer from a single consumer, SNS solves a different problem: broadcasting one message to many recipients simultaneously. A single Publish call to an SNS topic can trigger an email notification, invoke a Lambda function, and drop a copy of the message into an SQS queue — all at once. This makes SNS the natural choice for fan-out architectures and alert pipelines.

21. CloudFormation

Mon, 01 Jan 0001 00:00:00 +0000

CloudFormation#

AWS CloudFormation lets you define your entire AWS infrastructure as code — VPCs, databases, Lambda functions, IAM roles, and more — in a single declarative template. Instead of clicking through the console or running ad-hoc CLI commands, you describe what you want, and CloudFormation figures out how to create it, in the right order, handling dependencies automatically.

The core problem it solves is repeatability. Without IaC, recreating a production environment in a new region, or letting a teammate spin up an identical dev stack, is error-prone and slow. With CloudFormation, you version-control your infrastructure alongside your application code and deploy it consistently every time.

27. CloudTrail

Mon, 01 Jan 0001 00:00:00 +0000

CloudTrail#

Every action taken in your AWS account — whether from the console, CLI, SDK, or another AWS service — is an API call. CloudTrail records all of these calls, giving you a complete, auditable history of who did what, when, and from where. This makes it the foundational tool for security auditing, compliance, and forensic investigation. Without CloudTrail, answering questions like “who deleted that S3 bucket?” or “which IAM role created this resource at 2am?” would be nearly impossible.

30. ACM / ACM Private CA

Mon, 01 Jan 0001 00:00:00 +0000

ACM / ACM Private CA#

TLS certificates are what enable HTTPS — they authenticate your server’s identity and encrypt traffic between clients and your application. Without them, browsers display security warnings and connections are unencrypted. The problem they solve sounds simple, but managing certificates manually is error-prone: you have to generate them, validate domain ownership, deploy them to the right services, and renew them before they expire (typically every 13 months). A missed renewal causes an outage. AWS Certificate Manager (ACM) 🔗 automates all of this — provisioning, validation, deployment, and renewal — at no cost for certificates used with supported AWS services.

34. Fargate

Mon, 01 Jan 0001 00:00:00 +0000

Fargate#

AWS Fargate is a serverless compute engine for containers that works with both ECS and EKS. It eliminates the need to provision, configure, or manage EC2 instances for running containers — you define what your container needs (CPU, memory, networking), and AWS handles everything underneath. Fargate exists to solve a very specific operational burden: cluster capacity management. With EC2 launch type, you’re responsible for the EC2 instances that form your cluster — choosing instance types, managing scaling of the underlying fleet, patching the OS, and ensuring there’s always enough capacity. Fargate removes that entirely. You pay per task, per second, for exactly the resources your container consumes. 🔗

37. ElastiCache

Mon, 01 Jan 0001 00:00:00 +0000

ElastiCache#

Modern applications routinely hit the same database rows thousands of times per second — user profiles, product catalogues, leaderboards, session tokens. Every one of those hits costs latency and money. Amazon ElastiCache 🔗 solves this by sitting an in-memory data store in front of your database. Reads that would take milliseconds against RDS or DynamoDB take microseconds from ElastiCache, and your database is freed from repetitive work it never needed to do.

40. AppSync

Mon, 01 Jan 0001 00:00:00 +0000

AppSync#

Modern applications often need to fetch data from multiple sources, support real-time updates, and work offline on mobile devices. Building all of this with REST APIs means writing a lot of custom glue code — separate endpoints, multiple round trips, and hand-rolled WebSocket logic. AWS AppSync 🔗 solves this by providing a managed GraphQL API layer that connects directly to your data sources, handles real-time subscriptions over WebSocket, and supports offline data sync out of the box.

7. ASG

Mon, 01 Jan 0001 00:00:00 +0000

Auto Scaling Groups (ASG)#

An Auto Scaling Group is an EC2 fleet management service that automatically adjusts the number of running instances based on demand, health, or a schedule. The core problem it solves is twofold: you don’t want to over-provision (wasting money on idle capacity), and you don’t want to under-provision (degrading user experience under load). ASG handles both by adding instances when demand rises and terminating them when it drops — all without manual intervention. 🔗

14. EventBridge

Mon, 01 Jan 0001 00:00:00 +0000

EventBridge#

Amazon EventBridge is a serverless event bus that connects AWS services, your own applications, and third-party SaaS platforms by routing events from producers to consumers based on rules you define. It exists to solve a fundamental integration problem: how do you let dozens of services react to things that happen in your system without coupling them together? Before EventBridge, you’d wire services directly — Lambda calls SQS, SQS triggers Lambda, Lambda calls another Lambda — creating brittle chains that are hard to change and harder to debug. EventBridge inverts this: producers emit events onto a bus, and any number of consumers subscribe to exactly the events they care about. Neither side knows about the other.

22. CDK

Mon, 01 Jan 0001 00:00:00 +0000

CDK (Cloud Development Kit)#

The AWS Cloud Development Kit (CDK) is an open-source framework that lets you define cloud infrastructure using familiar programming languages — TypeScript, Python, Java, C#, and Go — instead of writing raw YAML or JSON templates. It solves a real pain point: CloudFormation templates are verbose, hard to reuse, and lack the abstraction tools developers rely on (loops, conditionals, functions, classes). CDK brings those tools back. Under the hood, CDK still generates and deploys CloudFormation — it’s a higher-level abstraction on top of it, not a replacement. 🔗

31. Macie

Mon, 01 Jan 0001 00:00:00 +0000

Macie#

As applications grow, so does the amount of data they store in S3 — user uploads, logs, exports, backups. It becomes increasingly difficult to track whether any of that data contains sensitive information like names, email addresses, credit card numbers, or API keys. Amazon Macie exists to solve exactly this problem: it automatically scans S3 buckets using machine learning to detect sensitive and personally identifiable information (PII), and alerts you when it finds something — or when your bucket configurations expose data in risky ways.

41. Amplify

Mon, 01 Jan 0001 00:00:00 +0000

Amplify#

AWS Amplify is a set of tools and services that lets frontend and mobile developers build full-stack applications on AWS without needing to manually wire together individual services. The problem it solves is real: provisioning a Cognito user pool, an API Gateway endpoint, a Lambda function, and an S3 bucket — then connecting them to a React app — involves dozens of steps. Amplify collapses that into a single CLI command or a few lines of library code.

8. ELB

Mon, 01 Jan 0001 00:00:00 +0000

Elastic Load Balancing (ELB)#

When you run multiple EC2 instances (or Lambda functions, containers, or IP targets) to serve user traffic, you need something to sit in front of them and distribute incoming requests evenly, route them intelligently, and stop sending traffic to unhealthy targets. That is exactly what Elastic Load Balancing does. ELB is a managed service — AWS handles provisioning, scaling, and availability of the load balancer itself, so you only configure behavior. 🔗

15. Kinesis Data Streams

Mon, 01 Jan 0001 00:00:00 +0000

Kinesis Data Streams#

Modern applications often generate data faster than any single consumer can process it — user clickstreams, IoT sensor readings, application logs, financial transactions. Amazon Kinesis Data Streams 🔗 exists to solve exactly this problem: it lets you ingest large volumes of real-time data, durably store it, and allow one or more consumers to process it independently at their own pace. Unlike SQS, where a message is consumed and gone, Kinesis retains records in order for a configurable window, making it ideal for replay, auditing, and parallel processing by multiple consumers.

23. Elastic Beanstalk

Mon, 01 Jan 0001 00:00:00 +0000

Elastic Beanstalk#

Deploying a web application on AWS from scratch means provisioning EC2 instances, configuring load balancers, setting up Auto Scaling groups, managing security groups, and wiring everything together — before writing a single line of application logic. Elastic Beanstalk 🔗 solves this by handling all that infrastructure automatically. You upload your code, choose a platform, and Beanstalk provisions and manages the underlying resources. You retain full access to those resources if you need to customize them, but the heavy lifting is done for you.

42. Amazon OpenSearch Service

Mon, 01 Jan 0001 00:00:00 +0000

Amazon OpenSearch Service#

Relational databases like RDS are optimized for structured queries, and DynamoDB excels at key-value lookups — but both fall short when you need to search across large volumes of unstructured or semi-structured text, or to run real-time analytics on log data. Amazon OpenSearch Service 🔗 is a managed service built for exactly these use cases: full-text search, log and event analytics, and observability pipelines. It is the AWS-managed successor to Amazon Elasticsearch Service, based on the open-source OpenSearch project (itself a fork of Elasticsearch 7.10).

16. Step Functions

Mon, 01 Jan 0001 00:00:00 +0000

Step Functions#

Modern applications rarely do just one thing — they chain together multiple operations: validate input, write to a database, call an external API, send a notification, and handle failures at each step. The naive approach is to wire these steps together inside Lambda functions, where one function calls another and so on. This creates tightly coupled, fragile chains that are hard to debug, retry, or modify. AWS Step Functions solves this by letting you define your workflow as a state machine — a visual, auditable graph of steps and transitions that AWS manages for you. You describe what should happen and in what order; Step Functions handles the execution, retries, error handling, and state passing between steps. 🔗

24. AppConfig

Mon, 01 Jan 0001 00:00:00 +0000

AppConfig#

Deploying a new version of your application every time you want to change a configuration value — a feature flag, a timeout, a rate limit — is slow, risky, and wasteful. AWS AppConfig 🔗 solves this by letting you deploy configuration changes independently of code, with built-in validation, gradual rollout, and automatic rollback. It’s especially useful for feature flags: you can enable a new feature for 10% of users, watch your error metrics, and expand (or roll back) without touching a deployment pipeline.

43. Amazon Athena

Mon, 01 Jan 0001 00:00:00 +0000

Amazon Athena#

Amazon Athena is a serverless, interactive query service that lets you analyze data stored in Amazon S3 using standard SQL. It exists to solve a very specific and common problem: you have large volumes of data sitting in S3 — logs, exports, event archives — and you need to query it without first loading it into a database, building an ETL pipeline, or provisioning any infrastructure. You point Athena at your S3 data, define a schema, and run SQL. You pay only for the data scanned.

44. MSK

Mon, 01 Jan 0001 00:00:00 +0000

MSK (Managed Streaming for Apache Kafka)#

Amazon MSK (Managed Streaming for Apache Kafka) 🔗 is a fully managed service that runs Apache Kafka on AWS. The problem it solves is operational: running Kafka yourself means provisioning brokers, managing ZooKeeper (or KRaft), handling upgrades, configuring storage, and wiring up monitoring. MSK removes all of that, leaving you with native Kafka APIs and none of the cluster management overhead. If your team is already building on Kafka — or needs a battle-tested, high-throughput event streaming platform — MSK lets you do it without becoming a Kafka infrastructure expert.

45. SES

Mon, 01 Jan 0001 00:00:00 +0000

SES (Simple Email Service)#

Sending email from an application sounds simple until you have to deal with deliverability, spam reputation, bounce management, and mail server infrastructure. Amazon SES exists to solve exactly that: it is a cloud-based email sending service that lets you send transactional and marketing email at scale without operating your own mail server or worrying about IP reputation. It handles the SMTP infrastructure, deliverability optimizations, and feedback loops with inbox providers on your behalf.

46. Advanced Identity

Mon, 01 Jan 0001 00:00:00 +0000

Advanced Identity#

As AWS environments grow, managing identity across dozens of accounts and integrating with existing corporate directories becomes a challenge. This section covers the tools AWS provides to handle enterprise-scale identity: centralizing account governance, enabling single sign-on, sharing resources, federating with external identity providers, and applying fine-grained access control through attributes.

AWS Organizations#

AWS Organizations 🔗 lets you group multiple AWS accounts under a single management structure. Accounts are organized into Organizational Units (OUs) — logical containers you can nest hierarchically (e.g., Root > Production > Backend).

AWS Certified Developer Associate (DVA-C02) on 🏠

1. IAM (Identity & Access Management)

IAM (Identity & Access Management)#

11. Error Handling & Retry Patterns

Error Handling & Retry Patterns — Cross-Cutting Theme#

17. API Gateway

API Gateway#

19. CI/CD (CodeCommit, CodeBuild, CodeDeploy, CodePipeline)

CI/CD (CodeCommit, CodeBuild, CodeDeploy, CodePipeline)#

25. CloudWatch

CloudWatch#

28. KMS

KMS (Key Management Service) — Deep Dive#

3. VPC Fundamentals

VPC Fundamentals#

32. ECS

ECS (Elastic Container Service)#

35. RDS

RDS#

38. AWS CLI, SDK & API Limits

AWS CLI, SDK & API Limits#

5. EC2

EC2 (Elastic Compute Cloud)#

9. S3

S3 (Simple Storage Service)#

10. DynamoDB

DynamoDB#

12. SQS

SQS (Simple Queue Service)#

18. Cognito

Cognito#

2. KMS (Key Management Service) — Foundations

KMS (Key Management Service) — Foundations#

20. SAM (Serverless Application Model)

SAM (Serverless Application Model)#

26. X-Ray

X-Ray#

29. Secrets Manager & SSM Parameter Store

Secrets Manager & SSM Parameter Store#

33. ECR

ECR (Elastic Container Registry)#

36. Aurora

Aurora#

39. CloudFront

CloudFront#

4. Route 53

Route 53#

6. Lambda

AWS Lambda#

13. SNS

SNS (Simple Notification Service)#

21. CloudFormation

CloudFormation#

27. CloudTrail

CloudTrail#

30. ACM / ACM Private CA

ACM / ACM Private CA#

34. Fargate

Fargate#

37. ElastiCache

ElastiCache#

40. AppSync

AppSync#

7. ASG

Auto Scaling Groups (ASG)#

14. EventBridge

EventBridge#

22. CDK

CDK (Cloud Development Kit)#

31. Macie

Macie#

41. Amplify

Amplify#

8. ELB

Elastic Load Balancing (ELB)#

15. Kinesis Data Streams

Kinesis Data Streams#

23. Elastic Beanstalk

Elastic Beanstalk#

42. Amazon OpenSearch Service