5 Insider Tips for AWS Recertification
AWS certifications provide leverage for IT professionals with the required skills - principally in designing, deploying, and operating applications...Learn More
Knowing where to focus your time and which resources will best serve you is valuable information for anyone who is working to get AWS certified. With three associate-level AWS certifications under my belt, I thought I would share the information and resources that have served me well in the preparation process. I’ll start with a look at how each exam is structured, and I’ll dig into the resources that were most useful for me in getting exam ready.
AWS currently has three associate-level exams:
Each exam takes all AWS services into consideration, although the level of detail and focus varies from one exam to another. (We’ll look closely at the most important services for each exam later in this post.) Although the number of questions is different for each, the exams include around 60 multiple choice questions where you can choose one or more correct answers.
You have 80 minutes to complete the exam. While no one knows the exact score necessary to pass it (it changes from session to session), you must get at least 70% correct to be safe. Once you submit your exam, you will know immediately whether you have passed or not and the percentage. Later, you will receive an email from AWS with a recap for each exam area and your overall percentage, although it doesn’t provide information at the question level, so you won’t know which questions you got wrong.
To schedule and manage your exams, you will need to register at the AWS Training and Certification Portal where you will choose an exam date at an AWS or partner training center. Each exam costs $150, and once you have successfully registered, the system will give you a code that you will give to the test center on exam day.
The AWS Certified Solutions Architect – Associate exam is intended for individuals with experience designing distributed applications and systems on the AWS platform. Of the three associate-level exams, the certified solutions architect certification is the most generic, and most of the questions are scenario-based (understanding which services to use to solve different business use cases).
The exam is divided into four sections:
Some questions require that you understand and are able to create simple AWS architecture. Most of the questions are related to the following areas:
The Amazon VPC is an essential topic for AWS Certified Solutions Architect – Associate certification and for AWS Certified SysOps Administrator – Associate certification. You will need to know this topic very well to pass both certifications.
To really understand the Amazon Virtual Private Cloud, I highly recommend this Cloud Academy hands-on lab. If you are a beginner, the step-by-step instructions make it easy to follow along. This will give you a general idea of how AWS VPCs works and how to create your own VPC.
Now that you have an understanding of VPC basics, I would suggest that you use your account and try to simulate a production environment. Before even attempting the exam, you should know all of the steps necessary for creating a VPC.
Here is how I went about learning this important function. An AWS environment (Cloud Academy labs allow you to use a real AWS account) will allow you to simulate a production VPC with both public and private subnets.
I started out by creating a VPC and two subnets, one public (10.0.2.0) and one private (10.0.1.0). I created two EC2 T2 instances and put one on the public subnet (to simulate the web server) and the other on the private subnet (to simulate the DB). I placed the DB on the private subnet so that it is unreachable from the external network.
Then, I created an Internet Gateway and the routes that would allow the public instance to connect to the internet.
Next, I assigned the target of my Internet Gateway to my public subnet.
As you can see, we are able to ping google.com, so our connection is successful.
Using your Amazon account, you can log into the AWS console where you will be able to train with security groups and access control lists (allow protocols from subnets) with the two subnets and instances. To do this, you can allow the ICMP protocol between the two subnets; from the public EC2 instance you can try to ping the other one.
As you can see from the image below, without the correct rule I could not initially ping the instance in the private subnet from the one in the public subnet.
After the All ICMP rule, with the source the id of my private subnet we are able to ping the private instance. You can use the same method to add an ssh rule to allow ssh connections in your private instance.
If you can get to the point where you are confident with this simple infrastructure, you will be in good shape to pass the first section of the exam (Designing highly available, cost-efficient, fault tolerant, scalable systems), which is the most important part of this certification.
My last suggestion for preparation is to read and understand the AWS Security Best Practices Whitepaper. Here is the AWS link for this certification.
In this exam, you will find more theoretical questions and fewer scenarios. If I had to do it over again, I would start with this exam, as I found it to be the easiest of the associate-level certifications.
The exam is divided into four sections:
These are the most important topics in this certification:
Here is the AWS link for this certification.
I found this to be the most difficult of the three exams. Because this exam covers many of the same topics in the other two associate-level exams, I would recommend taking this one only after you have successfully passed the other two exams.
The exam is divided into seven sections:
Because this exam covers all of the topics in both the solutions architect and developer exams, most of the questions are related to the union of these areas. In summary:
Here is the AWS link for this certification.
A practice exam is available for each certification exam on the AWS website. The exams simulate a live testing environment, which is helpful because it is timed and because it provides some sample questions. The only difference is that you’re not working with the same amount of questions (or timeframe) as you would in the real exam.
The main drawback of the practice exams is that you won’t know if you have answered the questions correctly or not—in this, they are very much like the real exam, providing you only with the areas and the percentage correct. I would still recommend purchasing the practice exam because it will help you assess your preparedness for the real thing.
You can purchase a practice exam from the AWS website here for $20 dollars. (The questions are always the same so there is no need to re-purchase it.)
In preparation for any of the AWS associate-level certification exams, I suggest reading all of the most important FAQs several days before an exam. You can find all AWS FAQs on the official AWS site.
AWS also provides some very useful whitepapers (some questions are taken from these documents). Check out all of the whitepapers on the AWS Whitepapers section of the site. Those documents provide lots of in-depth information, and they are a great resource for understanding the solutions that cloud architects employ for real enterprise issues. You won’t need to memorize them, but it is well worth your time to read all of them at least once, especially the AWS Security Best Practices Whitepaper, which is both interesting and important for the exam.
Cloud Academy has a variety of learning paths to help users prepare for AWS certifications. Each learning path includes video courses, quiz sessions, and hands-on labs where you can practice in a working AWS environment. Explore all of our certification prep materials in our AWS Certifications Prep section.
Finally, on the day of the exam, don’t forget to bring two valid forms of ID and the registration code. In the days leading up to the exam, go through the main FAQs and the AWS whitepapers one more time.
I’d love to hear your suggestions—please add your preparation tips in the comments.
AWS is renowned for the rate at which it reinvents, revolutionizes, and meets customer demands and expectations through its continuous cycle of feature and service updates. With hundreds of updates a month, it can be difficult to stay on top of all the changes made available. Here ...
Amazon Web Services (AWS) offers three different ways to pay for EC2 Instances: On-Demand, Reserved Instances, and Spot Instances. This article will focus on effective strategies for purchasing Reserved Instances. While most of the major cloud platforms offer pre-pay and reservation dis...
If you’re building applications on the AWS cloud or looking to get started in cloud computing, certification is a way to build deep knowledge in key services unique to the AWS platform. AWS currently offers 11 certifications that cover major cloud roles including Solutions Architect, De...
The AWS Solutions Architect - Associate Certification (or Sol Arch Associate for short) offers some clear benefits: Increases marketability to employers Provides solid credentials in a growing industry (with projected growth of as much as 70 percent in five years) Market anal...
Moving data to the cloud is one of the cornerstones of any cloud migration. Apache NiFi is an open source tool that enables you to easily move and process data using a graphical user interface (GUI). In this blog post, we will examine a simple way to move data to the cloud using NiFi c...
Amazon DynamoDB is a managed NoSQL service with strong consistency and predictable performance that shields users from the complexities of manual setup.Whether or not you've actually used a NoSQL data store yourself, it's probably a good idea to make sure you fully understand the key ...
As companies increasingly shift workloads to the public cloud, cloud computing has moved from a nice-to-have to a core competency in the enterprise. This shift requires a new set of skills to design, deploy, and manage applications in cloud computing.As the market leader and most ma...
Learn how Aviatrix’s intelligent orchestration and control eliminates unwanted tradeoffs encountered when deploying Palo Alto Networks VM-Series Firewalls with AWS Transit Gateway.Deploying any next generation firewall in a public cloud environment is challenging, not because of the f...
Use AWS Config the Right Way for Successful ComplianceIt’s well-known that AWS Config is a powerful service for monitoring all changes across your resources. As AWS Config has constantly evolved and improved over the years, it has transformed into a true powerhouse for monitoring your...
Cloud Academy is a proud sponsor of the 2019 AWS Summits in Atlanta, London, and Chicago. We hope you plan to attend these free events that bring the cloud computing community together to connect, collaborate, and learn about AWS. These events are all about learning. You can learn how t...
The AWS cloud platform has made it easier than ever to be flexible, efficient, and cost-effective. However, monitoring your AWS infrastructure is the key to getting all of these benefits. Realizing these benefits requires that you follow AWS best practices which constantly change as AWS...
Amazon Web Services’ resource offerings are constantly changing, and staying on top of their evolution can be a challenge. Elastic Cloud Compute (EC2) instances are one of their core resource offerings, and they form the backbone of most cloud deployments. EC2 instances provide you with...