University of Kalamoon

College of Engineering
IT Department

Cloud Computing
Lecture 10

AWS
Amazon Web Services
Part 1

• Dr. Mahmoud Al ahmad

DR.Mahmoud Al ahmad 2
Create AWS Account

DR.Mahmoud Al ahmad 3
DR.Mahmoud Al ahmad 4
DR.Mahmoud Al ahmad 5
DR.Mahmoud Al ahmad 6
DR.Mahmoud Al ahmad 7
DR.Mahmoud Al ahmad 8
DR.Mahmoud Al ahmad 9
DR.Mahmoud Al ahmad 10
DR.Mahmoud Al ahmad 11
AWS Free Services
• aws.amazon.com/free

DR.Mahmoud Al ahmad 12
DR.Mahmoud Al ahmad 13
• Multi-factor authentication provides an extra layer of protection for your
AWS account
DR.Mahmoud Al ahmad 14
Multi Factor Authentication (MFA)

DR.Mahmoud Al ahmad 15
Activate MFA in AWS account

DR.Mahmoud Al ahmad 16
Install Virtual MFA Device
Example (Google Authenticator )

DR.Mahmoud Al ahmad 17
AWS sign in with MFA

DR.Mahmoud Al ahmad 18
Identity and Access Management (IAM)

IAM features

IAM user IAM policy

AWS Identity and Access

Management (IAM) allows you to IAM group IAM role
manage access to AWS services
and resources.
Multi-factor authentication

DR.Mahmoud Al ahmad 19
AWS account root user

Log in as the
new IAM user
and continue
to create
other users.

Create an AWS account. Create your first IAM user

This establishes your and give it permissions to Only access
root user identity. create other users. the root user
for a limited
number of
tasks.

DR.Mahmoud Al ahmad 20
IAM Identity

DR.Mahmoud Al ahmad 21
IAM users

An IAM user is an identity that

represents a person or application that
interacts with AWS services and
resources.
Best practice: Create individual IAM
IAM user
users for each person who needs to
access AWS.

DR.Mahmoud Al ahmad 22
IAM groups

An IAM group is a collection of

IAM users.
Best practice: Attach IAM
“Cashiers” IAM group
policies to IAM groups, rather
than to individual IAM users.
Members inherit the policies
assigned to the group.
Cashier 1 Cashier 2 Cashier 3

DR.Mahmoud Al ahmad 23
IAM groups
• Maximum 10 polices
for each group
• Maximum 10 user
per group

DR.Mahmoud Al ahmad 24
A role can be assumed by
 An IAM role is an identity that you can assume to gain temporary access to
permissions

DR.Mahmoud Al ahmad 25
Example : Roll for access lambda to S3
• Maximum 1 Hour

DR.Mahmoud Al ahmad 26
IAM policies

An IAM policy is a document that grants

or denies permissions to AWS services
and resources.

IAM policy

DR.Mahmoud Al ahmad 27
DR.Mahmoud Al ahmad 28
Identity-based policy (Example )

DR.Mahmoud Al ahmad 29
Explore the AWS Global Infrastructure

DR.Mahmoud Al ahmad 30
AWS Regions

DR.Mahmoud Al ahmad 31
DR.Mahmoud Al ahmad 32
Availability Zones

DR.Mahmoud Al ahmad 33
Availability Zones

us-west-1
N.California

Data centers Data centers

us-west-1a us-west-1b

Data centers
us-west-1c Regions

Availability Zones
DR.Mahmoud Al ahmad 34
Amazon EC2 instances in multiple AZs

us-west-1
N. California

Instance Instance
us-west-1a us-west-1b

us-west-1c Regions

Availability Zones
DR.Mahmoud Al ahmad 35
High availability
Using more than one Region for urgent Application

DR.Mahmoud Al ahmad 36
Regions Code

DR.Mahmoud Al ahmad 37
AWS core service categories

Compute Networking and Storage

Content Delivery

Database Security, Identity, Management

and Compliance and Governance

DR.Mahmoud Al ahmad 38
 Amazon Elastic Compute Cloud (Amazon EC2)

© 2021 Amazon Web Services, Inc. or its affiliates. All rights reserved. DR.Mahmoud Al ahmad 39
 Instance Types

DR.Mahmoud Al ahmad 40
DR.Mahmoud Al ahmad 41
Amazon EC2 instance types

General Compute Memory

purpose optimized optimized

• Balances compute, • Offers high- • Delivers fast

memory, and performance processors performance for
networking resources memory-intensive
workloads
• Ideal for compute-
• Suitable for a broad intensive applications • Well suited for high-
range of workloads and batch processing performance
workloads databases

DR.Mahmoud Al ahmad 42
Amazon EC2 instance types (cont.)

Accelerated computing Storage optimized

• Uses hardware accelerators to • Offers low latency and high

expedite data processing input/output operations per
second (IOPS)
• Ideal for application streaming
and graphics workloads • Suitable for workloads such as
distributed file systems and data
warehousing applications

DR.Mahmoud Al ahmad 43
EC2 instance types

General Compute Memory Accelerated Storage

Purpose Optimized Optimized (Advance ) Optimized
Computing
R5, R4, X1e,
T3, T2, M5, X1,L, z1d,
Instance types C5, C4 P3, P2, G3, F1 H1, I3, D2
M5A, M4 High Memory
Instances

High In-memory Machine Distributed

Use case Broad
performanc databases learning file
e systems

DR.Mahmoud Al ahmad 44
EC2 General Purpose

DR.Mahmoud Al ahmad 45
EC2 General Purpose

DR.Mahmoud Al ahmad 46
EC2 Compute Optimized

DR.Mahmoud Al ahmad 47
EC2 Compute Optimized

DR.Mahmoud Al ahmad 48
Memory Optimized

DR.Mahmoud Al ahmad 49
Memory Optimized

DR.Mahmoud Al ahmad 50
Storage Optimized

DR.Mahmoud Al ahmad 51
Storage Optimized

DR.Mahmoud Al ahmad 52
Accelerated (Advance ) Computing

DR.Mahmoud Al ahmad 53
Accelerated (Advance ) Computing

DR.Mahmoud Al ahmad 54
EC2 Pricing Model

Dedicated
On-Demand Instances

Very cost
On-Demand

• No upfront costs or minimum

contracts

• Ideal for short-term, irregular

workloads

DR.Mahmoud Al ahmad 56
Spot Instance

On- Spot
Demand

• Ideal for workloads with

flexible start and end times

• Offers savings over On-

Demand prices

57

DR.Mahmoud Al ahmad
Spot Instance

• There is no guarantee that

data stored permanently
• Must be using permanent
storage Services

58
DR.Mahmoud Al ahmad
Reserved Instances

Reserved Instances

• Provides a billing discount over

On-Demand pricing

• Requires a 1-year or 3-year term Commitment.

• Offers up to 7 2 % savings over On- Demand costs for a consistent

amount of compute usage

DR.Mahmoud Al ahmad
59
Reserved Instances Pricing model

DR.Mahmoud Al ahmad 60
Amazon EC2 dedicated computing

Dedicated Host
Dedicated Instance

• A physical server with EC2 instance

capacity for a single customer

• Most expensive Amazon EC2

option

DR.Mahmoud Al ahmad 61
THE END
Dr. Mahmoud Al ahmad

DR.Mahmoud Al ahmad 62