AWS Solution Architecture Associate Exam Prep
Table of Contents
Domains
Domain 1: Design Secure Applications and Architectures(30%)
Design secure access to AWS resources
-
Best practices for IAM users and root users
- Enforce the use of MFA for the root account
- Enforce the use of complex passwords for member accounts root user logins
-
Deisng a flexible authorization model that include IAM users, groups, and roles
-
Deisgn a role based access control strategy
-
Design a security strategy from multiple AWS accounts
-
Determine the appropraite use of resource policies for AWS services
-
Determine when too federate a directory service with IAM roles.
Design secure workload and applications
- Deisng VPC archtectures with security components
- Determine network segmentation strategies
- Integrate AWS services to secure applications
- Secure external network connections to adn from the AWS cloud