AWS Certified Architect: Associate

IAM is a region agnostic service since it manages groups, users, roles and policies regardless of their zones. When you are in the IAM dashboard you'll notice a "IAM users sign-in link" label and next to it a link that seems a bit random, this link is the specific sign-in link for you account and the number in the link is your account number, for branding or to make it easier to remember you can change the display number to something easier to remember by clicking the "Customize" link, for example, here I changed the text to moresoft : What are IAM roles? IAM roles are a secure way to grant permissions to entities that you trust. these could be users in another account, an application running in an EC2 instance, an AWS service, users from a corporate directory, etc. IAM roles issue keys that are valid for short durations, making them a secure way to grant access. An IAM role is an identity that defines a set of permissions for making AWS service reques

Amazon Simple Storage Service (S3) S3 is a managed object store service, this means Amazon manages the sizing, infrastructure and durability of the Amazon S3 service. There is not setup cost or minimum usage fee. Managed Highly durable, standard class 99.999999999 % durability (11 nines) Highly available, is built for 99.99% availability for objects during a given year (4 nines), although Amazon gives customers a SLA of 99.9%. Objects reside in the region of your choice but AWS will replicate the object across multiple availability zones within the chose region. Objects are stored in elastic buckets. S3 objects can range from 0 bytes to 5TB. Largest object that can be uploaded in a single PUT is 5GB. For objects larger that 100MB use multi-part upload. 100 buckets per region. No need to resize your buckets, since they resize automatically. A bucket can be deleted only if it is empty, once deleted you can reuse the bucket name. Bucket ownership is not transferable. D