Course Outline
BENEFITS
- Mentorship under Cloud professionals
- Onsite Training
- Hands-on lab on MultiCloud
- Solve real client tasks & projects
- Working on Freelancing platforms
- Self-paced & Instructor LED training
- Working desk and Internet provided
- And much more (Beyond the Basics)
WHAT’S INCLUDED:
- AWS 3in1 , Azure 2in1 , GCP 2in1 , & DevOps LMS Access (lifetime)
- Free lifetime access to Alibaba Cloud LMS (for students with lumpsum fee payment only)
- Hardcopy books (for students with lumpsum fee payment only)
AFTER COMPLETION, INDIVIDUALS WILL BE ABLE TO
- Earn Upto PKR 50,000/-
- Start a career as a freelancer & Cloud Engineer
- Start his/her own business & Company
- Provide solution & services on MultiCloud & DevOps
- Become a market-ready MultiCloud professional
- Attempt MultiCloud exams at discounted rate
- Join Sherdil Cloud team as a trainee
Amazon Web Services
Modules of AWS Solutions Architect:
- MODULE 1
Design Resilient Architectures - MODULE 2
Design High-Performing Architectures - MODULE 3
Deploy and manage AWS compute resources - MODULE 4
Design Cost-Optimized Architectures
Modules of AWS SysOps Admin Associate:
- MODULE 1
Monitoring, Logging, and Remediation - MODULE 2
Reliability and Business Continuity - MODULE 3
Deployment, Provisioning, and Automation - MODULE 4
Security and Compliance - MODULE 5
Networking and Content Delivery - MODULE 6
Cost and Performance Optimization
Modules of AWS Developer Associate:
- MODULE 1
Deployment - MODULE 2
Security - MODULE 3
Development with AWS Services - MODULE 4
Refactoring - MODULE 5
Monitoring and Troubleshooting
Course & Exam Introduction
- Overview of AWS course
- Overview of AWS Exam
- Certification Roadmap
AWS Regions & AZ
- Global footprint
- Regions & availability Zones
- Edge locations
- Regional & local edge cache
Introduction to Cloud Computing
- Types, Categories & Features
AWS Services Overview (165+ Services)
Virtual Private Cloud-VPC
- CIDR Blocks
- Subnets
- Network ACL
- Route & Route tables
- Internet Gateway (IGW)
- NAT Gateway
- VPC Peering
- Security groups
- S3 Endpoint
- Traffic Mirroring
- VPC Flow log
Trusted Advisor:
- Understand the categories
- Core checks
- Support plan
- How to use AWS trusted advisor
AWS CloudFront
- About CDN & cloud front service
- Using of cloud front with origin location like S3 bucket
- Configure S3 based static website with cloud front
Identity & Access Management (IAM):
- About authentication & authorization
- IAM Users, Roles & Policies
- Creation of Users, Groups, Roles & Policies
- AWS & custom managed IAM Policies
- Fine grained Policy verification on IAM users
- Multi Factor Authentication (MFA)
- Creation of JSON based custom Policies & testing
- KMS encryption configuration & implementation
Simple Storage Service-S3
- Create & configure S3 bucket & upload/drag objects
- Bucket versioning & encryption
- Deploy a static website on S3 bucket
- Storage classes
- Lifecycle policies
- Bucket policies (JSON)
- Bucket ACL
- Tagging
- Object Lock
- Cross Region Replication (CRR)
AWS CloudTrail
- About the cloud trail
- Trail history
- Verify user & service audit using cloud trail events
- Create & configure trail with S3 bucket
AWS CloudWatch
- About the usage of Cloud watch
- Working with metric Namespace, Dimension, metric, timestamp & units
- Dashboard, Events, Logs & Alarm
AWS Elastic Compute Cloud (EC2)
- About the usage of EC2
- Types & categories of EC2
- On demand, Spot, reserved & scheduled Instances
- AMII , templates & snapshots
- Provisioning of EC2 based WIndows & linux Instances
- Bastion Host & Nat Gateway
- Key pairs & Security groups with port based rules
- Server accessibility using RDP & SSH connection
- Instance templates
- Usage of Internet Gateway & NAT Gateway with EC2
- Instance termination protection
- Using of Instance profile to connect with S3 bucket privately in Linux VM
- Working with Amazon Marketplace
- SSD & HDD Volume & snapshots
- Encryption at rest & in transit
- Event Bridge
- EC2 Image builder
Elastic Load Balancer & Autoscaling
- ELB & Auto scaling 10,000 Foot Overview
- Create Application Load Balancer
- AS Launch Config & AS Group
- Create an EC2 Instance using AS Group
AWS Route53
- Route 53 & DNS Load Balancing with Route Policies
- Create DNS record
AWS Simple Queue Service-SQS
- SQS Essentials
- Create Standard and FIFO Queue
- Fanning out Using SNS & SQS
AWS Simple Notification Service-SNS
- ELB & Auto scaling 10,000 Foot Overview
- Create Application Load Balancer
- AS Launch Config & AS Group
- Create an EC2 Instance using AS Group
AWS Lambda
- Create Lambda Function using provided code
- Test Lambda function
- Create EBS Volume and take automated snapshot using Lambda
AWS DynamoDB
- Create & configure Primary (Hash) & Sort(Range) Keys.
- Modify Read Capacity Unit (RCU) & Write Capacity Unit (WCU).
- Create multiple sort keys using JSON tree
- Create & configure Local secondary Index (LSI).
AWS RDS
- Create & configure Subnet Security Group
- Create & configure MYSQL based RDS with Read replica
- Verify the connectivity using a MYSQL client
AWS Elastic Beanstalk
- Create Application environments (Dev, stage)
- Deploy sample Node.js application
- Explorer Different deployment method
AWS CloudFormation
- About Infrastructure as Code (IaC)
- Create a stack using pre-write JSON code using cloud formation.
- Verify VPC & WordPress servers that were created using Cloud formation stack.
- Drift Detection
AWS CICD
- Code Start, Code Commit, Code Deploy, Code Build & Code Pipe line Essentials
- Deploy Sample PHP Application using Code star
AWS FSx & AWS Backup
- Create Backup Job
- Create SMB based File share using managed AD & FSX
AWS Cloud Computing White Papers
- Overview of Amazon Web Services
- Overview of Security Processes
- AWS Risk & Compliance Whitepaper
- Storage Options in the Cloud
- Architecting for the AWS Cloud: Best Practices
- Well Architected Framework
Microsoft Azure
INTRODUCTION TO AZURE FUNDAMENTALS AND SECURITY
- Benefits and Considerations
- As A Service Offerings
- Azure Tools
- Core Identity
- Azure Pricing and Support
- Planning and Managing Cost
- Azure Regions
- Azure Resource Manager
- Defense in Depth
- Security Layers
- Compliance and Security Requirements
MANAGE AZURE SUBSCRIPTIONS AND SECURITY OPERATIONS (THEORY)
- Intro to Accounts and Subscriptions
- Naming and Tagging
- Azure Subscriptions Configurations
- RBAC Overview
- Azure Monitor
- Log Analytics
- Azure Security Center Overview
- Azure Policy
MANAGE AZURE SUBSCRIPTIONS AND SECURITY OPERATIONS (LABS)
- Azure Trial Account Creation
- Quotas, Cost Analysis and Tagging
- Monitoring, Alerts, Activity log
- Billing Alerts
- Cost Management
- Subscription Policies
- Implement Role-Based Access
- Azure Monitor and Alerts
- Log Analytics
- Prevent and Respond to Threats in Azure Security Center
- Implement Azure Policy
- Implement a Resource Lock
AZURE VIRTUAL NETWORKS AND SECURITY (THEORY)
- Network Overview
- Network Security Overview
- Network Security Groups (NSGs)
- Cross Site Connectivity
- Azure Load Balancing Services
- Azure Firewall
- Distributed Denial of Service (DDoS)
AZURE VIRTUAL NETWORKS AND SECURITY (LABS)
- Create VNets and Subnets via the Azure
Portal and PowerShell - Configure User-Defined Routes and VNet
Peering - Create and Configure a NSG
- Cross Site Connectivity
- Create and Configure an Azure Load
Balancer - Configure Azure DNS
- Configure App Gateway
- Configure Azure Firewall
HOST OPERATIONS AND SECURITY (THEORY)
- Virtual Machines (VMs) Overview
- VM Configuration, Networking, Storage
- VM Availability, Scalability, Extensions
- Azure Disk Encryption
- VM Security Best Practices
HOST OPERATIONS AND SECURITY (LABS)
- Create and Connect to Azure VM
- Deploying Virtual Machine Images, Custom Images, Linux
- Configuring Virtual Machines
- Create Key Vault for Disk Encryption
- Configure Disk Encryption
- Azure Security Center and VMManagement
- VM Hardening in Security Center
STORAGE AND DATA SERVICES WITH SECURITY (THEORY)
- Storage Account Overview
- Manage Permissions
- Encryption Keys and Key Vault
- Key Vault Overview
- Azure Backup and Recovery Services
STORAGE AND DATA SERVICES WITH SECURITY (LABS)
- Create a Storage Account via Portal
- Use Storage Explorer with Azure Storage
- Create and Manage SAS
- Azure File and Sync Services
- Configure Azure Backup and Recovery Services
AZURE ACTIVE DIRECTORY FOR WORKLOADS (THEORY)
- Azure Active Directory (AD) Overview
- AD Connect Overview
- Authentication Options
- Service Principals
- Identity Protection
- Privileged Identity Management (PIM)
AZURE ACTIVE DIRECTORY FOR WORKLOADS (LABS)
- Create Azure AD Tenant
- Move Subscription to another Directory
- Create Users and Groups
- Implementing AD Connect
- Monitoring with AD Connect Health
- Create a Service Principal
- App Registration
- Configure Identity Protection
- Configure Privileged Identity Management
AZURE DATABASE (LABS)
- Create Azure SQL database
- Database connectivity
- Private Endpoint to connect to Azure SQL Database.
- Database backup & restore
- Import & export database
Google Cloud Platform
- Certification Road map
- Cloud computing basics
- Signup & login Process
- GCP Calculator
- GCP Services Overview
- Cloud Project & Billing (Theory + Hands-on Lab)
- IAM (Theory + Hands-on Lab)
- VPC Networks – Controlling Access with IAM Predefined Roles & Service Accounts
- Cloud Shell + Cloud SDK (Theory)
- Cloud Shell + Cloud SDK (Hands-on Lab)
- GCP Cloud Storage (Theory) + Costing
- GCP Cloud Storage (Hands-on Lab)
- VPC Theory + VPC Lab
- Google Compute Engine (Theory + Hands-on Lab)
- Load balancing & AutoScaling (Theory + Lab)
- Internal Load Balancer + MIG (LAB)
- Cloud CDN (Theory)
- GCP Multiple NICs MS s+ Multiple VPC + IAP LAB (Advanced Topic)
- DDOs Protection in GCP using Cloud Armor (LAB)
- GCP Deployment manager + Marketplace + DNS (Theory + Lab)
- Google Cloud Operations (Theory+Lab)
- Google Cloud Databases
- Google App Engine (Theory+Lab)
- Cloud Run & Cloud function
- Google Kubernetes Engine Overview + Lab
- AI/ML Services + Google BQ (Theory + Lab)
- Big Data Overview (Dataflow, dataproc, Bigtable)
Case Studies ( All 4) - Exam tips & tricks (Final exam)
- Final Project
- Final Exam
DevOps Engineer
(Online)
01. LINUX ESSENTIALS
- Introduction
- Differences between Windows, OS X, and Linux
- Installation
- File system
- Linux Basic Commands
- Shell scripting
- Directory structure / permission
- Storage / configuration
- Archiving and compression
- System monitoring tools
- Job scheduling
- Services
- Rpm / yum
02. GIT
- Version Control System
- Git Introduction
- Installation of Git
- Configuration of Git
- Local Repository
- Initialising Git Repository
- Git Basic Example
- Git branch, Git Merge
- Git Diff
- Git Clone
- Securing Git using ssh-keys
- Git Remote Repository
- Git Logs
03. DOCKER
- Introduction to Docker
- Install & Setup Docker on Linux
- Remove, Downgrade, Upgrade
- Storage & Logging driver
- Docker Registry
- Docker Images
- Docker Containers
- Docker Diagnose
- Docker file
- Docker Compose
- Docker Swarm
- Docker Stack
- Docker Networking
- Docker Services
- Docker Volume
- Docker Swarm vs Kubernetes
04. KUBERNETES
- Kubernetes and its importance
- Background & future
- Need of Kubernetes & Big picture
- What is Kubernetes for
- Micro-services, What, Why and How
- Containerisation and Kubernetes
- Docker and Container Lifecycle
- Working with Docker images
4.1 KUBERNETES WALKTHROUGH
- Architecture of Kubernetes
- Cluster Architecture
- Kubernetes core concepts
- Overview of other installations’ options
- Kubernetes API primitives
4.2 APPLICATION ENVIRONMENT, CONFIGURATION
- Pods, labels/selectors, replication controllers, services, API Services and other network primitives
- Deployments, jobs, and services
- Declarative vs imperative mode
- Getting Started with YAML
- Interacting with kubectl
4.3 OBSERVABILITY & MAINTENANCE
- Pods health checks
- Readiness/Liveness Probe
- Understand how to monitor applications.
- Manage application logs.
- Use label selectors to schedule Pods.
- Understand how resource limits
4.4 APPLICATION DEPLOYMENT & LIFECYCLE MANAGEMENT
- Understand Deployments and how to perform rolling updates and rollbacks.
- Know various ways to configure applications.
- Know how to scale applications.
- Understand the primitives necessary to create a self- healing application.
4.5 STORAGE / PERSISTENCE
- Understand persistent volumes and know how to create them.
- Understand access modes for volumes.
- Understand persistent volume claims primitive.
- Understand Kubernetes storage objects
- Know how to configure applications with persistent storage.
4.6 SERVICES & NETWORKING
- Services Know how
- Understand the networking configuration on the cluster nodes.
- Understand Pod networking concepts.
- Understand service networking.
- Deploy and configure network load balancer.
- Know how to use Ingress rules.
4.7 TROUBLESHOOTING BEST PRACTICES
- Troubleshoot application failure.
- Troubleshoot control/worker plane failure.
- Troubleshoot networking.
4.8 BONUS TOPICS
- Managed Kubernetes.
- Getting Started with Kubernetes on EKS.
- Guide to pass CKAD / CKA exam.
05. JENKINS
- Introduction
- Download and Install Jenkins
- Jenkins Configuration
- Jenkins Plugins
- Security Management
- Freestyle jobs
- Integration of Jenkins with GIT
- Build Web via Code
- Building a Jenkins Pipeline (CI/CD)
06. ANSIBLE
- About Ansible
- How to Install Ansible
- Configuring SSH and Sudo for Ansible
- The Ansible Configuration File
- Setting Up the Ansible Inventory
- The Ansible Command
- The Shell and Command Modules
- Ansible course summary
Terms & Conditions:
- In case a student leaves the program in the middle of the session or at the end of any specific course, he will pay the full individual fees of that course.
- Sherdil IT Academy reserves the right to modify the schedule or timing of any cloud training course based on the availability of the trainer. Any such changes will be communicated in advance to ensure minimal disruption to the learning experience.
