Projects
Assignments
Overview
The SysOps Administrator (Associate) certification equips IT professionals with the skills to manage, deploy, and optimize Alibaba Cloud infrastructure. It emphasizes performance, security, cost-efficiency, observability, automation, and disaster recovery strategies.
Objectives
By the end of this course, leaner will be able to:
-
Understand and implement access control using Resource Access Management (RAM).
-
Utilize monitoring tools like Application Real-Time Monitoring Service (ARMS) and ActionTrail for observability.
-
Design and deploy scalable and secure network architectures on Alibaba Cloud.
-
Plan and implement disaster recovery and backup strategies.
-
Automate resource deployment using Infrastructure as Code (IaC) principles with Resource Orchestration Service (ROS).
-
Apply cost optimization techniques to manage cloud expenditures effectively.
Prerequisites
Completion of CEA-C01 (Cloud Engineer Associate) certification.
Course Outline
- Resource Access Management Fundamentals
- Importance of access control
- Concept of identity on the cloud
- Principle of least privilege
- What is RAM
- Authentication and authorization
- How RAM works
- User and role management
- Planning username conventions & management
- Manage roles, not users
- RAM roles
- Implementing access control policies
- Access control methods
- Role-based access control
- Attribute-based access control
- RAM policies
- Writing secure and manageable policies
- Importance of access control
- Introduction to Observability
- Monitoring metrics & logging
- Data you should keep track of
- What makes a good monitoring system?
- Application Real-time Monitoring Service (ARMS) Fundamentals
- Setting up alerts and monitoring performance metrics
- Creating alerts based on performance thresholds
- Monitoring resource utilization: CPU, memory, and disk I/O
- ActionTrail Fundamentals
- What is ActionTrail
- Understanding the importance of action auditing, tracking API calls,
and configuration changes
- Designing and deploying scalable solutions on Alibaba Cloud
- Key components: ECS, VPC, SLB
- Principles of high availability and fault tolerance
- Understanding regions and zones
- Discussing the implications of region and zone selection for resilience and latency
- Networking fundamentals in Alibaba Cloud
- Overview of VPCs, Security Groups, NAT Gateways, and Route
Tables - Configuring Security Groups and Firewalls
- Setting rules to control inbound and outbound traffic
- Best practices for securing network configurations
- Interconnecting networks
- Implementing VPN connections
- Understanding Express Connect
- VPC Peering
- Overview of VPCs, Security Groups, NAT Gateways, and Route
- Disaster Recovery and Backup on Alibaba Cloud
- Understanding disaster recovery strategies
- What is RTO and RPO
- Types of disaster recovery solutions
- Backup strategies on Alibaba Cloud
- Backing up ECS
- Backing up ApsaraDB RDS
- Introduction to Cloud Backup
- What is Cloud Backup
- Basic operations
- Configuring automated backups for different services
- Introduction to Infrastructure as Code (IaC) and DevOps Practices
- Managing resources efficiently
- Automated deployments
- Benefits of IaC in cloud operations
- Popular IaC tools
- Resource Orchestration Service Fundamentals
- What is ROS
- Concepts & components
- Stacks & templates
- Resource dependencies
- Lifecycle management
- Basic operations
- Creating and managing stacks in ROS
- Cost Optimization Techniques on Alibaba Cloud
- Overview of cost management
- Why cost management matters
- Billing models for Alibaba Cloud core services
- Understanding cost optimization offerings on Alibaba Cloud
- Preemptible instances and reserved instances
- Resource plans
- Implement cost savings with Auto Scaling
- Rightsizing resources
- Advanced operations on Auto Scaling
- Overview of cost management
