CompTIA Cloud+ Guide to Cloud Computing, 1st Edition
By Jill West
Table of Contents
CompTIA Cloud+ Exam Objectives
Mapped to Modules Ix
Module 1
Introduction to
Cloud Computing 1
Module 1 Scenario 1
Characteristics of Cloud Computing 2
Cloud Computing Certifications 2
What Is Cloud Computing? 4
What Do I Need to Know? 5
Cloud Deployment Models 7
Cloud Deployment Models 7
Public Cloud 7
Private Cloud 9
Hybrid Cloud 10
Multi-Cloud 11
Community Cloud 12
Cloud Service Models 12
Cloud Service Models 13
Service Model Security Concerns 15
Cloud Service Providers 16
Cloud Providers and Platforms 16
Common Cloud Services 17
Troubleshooting Methodology 20
Common Cloud Computing Problems 20
Troubleshooting Steps 21
Preventive Measures 21
Project 1-1 Cloud Computing Certifications 23
Project 1-2 Get Started in Yellow Circle 23
Project 1-3 Create an Account with AWS 24
Project 1-4 Create an Account with Azure 26
Project 1-5 Create an Account with GCP_28
Project 1-6 Apply Troubleshooting
Methodology 29
Summ ary 31
Key Terms_32
Cloud1 Ac ronyms Check list_34
Module 2
Virtual Hardware 35
Module 2 Scenario 35
Virtualization Technologies 36
Role of Virtualization 36
Hypervisors 37
Network Connection Types 39
VM Configuration 41
Virtualized Processing 43
CPU Virtualization 43
CPU Cores 44
Overcommitment Ratio 45
Virtualized Memory 47
Memory Management 47
Overcommitment Ratio 47
Memory Reclamation 48
Virtual CPU and Memory in the Cloud 49
VM Instance Types 49
Allocation Factors 50
VM Alternatives 52
VM Migrations 54
Migration Types 54
Compatibility and Portability Considerations 54
Project 2-1 Create a VM in a Hypervisor 55
Project 2-2 Launch a VM Instance
in Yellow Circle 58
Project 2-3 Deploy a VM in AWS 59
Project 2-4 Deploy a VM in Azure 62
Project 2-5 Deploy a VM in GCP_65
Project 2-6 Connect to VMs in AWS,
Azure, and GCP_68
Connect to GCP Instance 68
Connect to Azure Instance 69
Connect to AWS Instance 69
Summ ary 71
Key Terms_72
Cloud1 Ac ronyms Check list_74
Module 3
Migration to the Cloud 75
Module 3 Scenario 75
Migration Planning 76
Cloud Migration Phases 76
Transition Assessment 77
Migration Plan 77
Migration Strategies 79
Timing 80
Migration Execution 81
Migration Documentation 81
Change Management 82
Deployment Automation 83
Data Transfer 83
Storage Migration 86
Deployment Testing and Validation 87
Testing Types 87
Testing Considerations 88
Test Analysis 89
Troubleshooting the Deployment 89
Common Deployment Issues 89
Cloud CLIs 90
Increasing Agility 94
Project Management 94
Application Life Cycle 95
Project 3-1 Research Cloud Migration
Success Stories 97
Project 3-2 Research Third-Party
Migration Tools and Services 97
Project 3-3 Install the AWS CLI 98
Project 3-4 Install the Azure CLI 100
Project 3-5 Install the GCP SDK 101
Summ ary 103
Key Terms_104
Cloud1 Ac ronyms Check list_106
Module 4
Cloud Infrastructure 107
Module 4 Scenario 107
Networking Concepts in the Cloud 108
Networking Concepts 108
From OSI Model to Cloud Stack 109
IP Address Spaces 112
IP Addressing 112
Subnetting 113
Cloud Network Interfaces 116
Networking in AWS 117
Network Segmentation in AWS 117
Regions in AWS 118
Availability Zones in AWS 118
VPCs in AWS 118
Subnets in AWS 119
Gateways and Route Tables 122
Networking in Azure 125
Network Segmentation in Azure 125
Regions and Availability Zones in Azure 125
VNets and Subnets in Azure 125
Route Tables in Azure 127
Networking in GCP_128
Network Segmentation in GCP 129
Regions and Zones in GCP 129
VPCs and Subnets in GCP 130
Routes in GCP 130
Project 4-1 Practice Subnetting 131
Project 4-2 Explore Network
Interfaces in Yellow Circle 133
Project 4-3 Configure a VPC and
Subnets in AWS 134
Project 4-4 Configure a VNet and
Subnets in Azure 136
Project 4-5 Configure a VPC in GCP_138
Summ ary 139
Key Terms_140
Cloud1 Ac ronyms Check list_141
Module 5
Cloud Connectivity and
Troubleshooting 143
Module 5 Scenario 143
Hybrid Cloud and Multi-Cloud
Networking 144
Hybrid and Multi-Cloud Use Cases 144
Connecting Networks 145
VLANs 149
VXLANs 151
Extending Network Services 154
DHCP 154
DNS 157
Routing 158
Load Balancing 160
Troubleshooting Cloud
Connectivity 162
Common CLI Troubleshooting Commands 162
Unreachable Instance 166
Project 5-1 Explore VPN Options in AWS 167
Project 5-2 Explore VPN Options in Azure 170
Project 5-3 Explore VPN Options in GCP_173
Project 5-4 Cloud Peering in AWS,
Azure, and GCP 174
Project 5-5 Practice Using the CLI in
Yellow Circle 175
Summ ary 176
Key Terms_177
Cloud1 Ac ronyms Check list_178
Module 6
Securing Cloud
Resources_179
Module 6 Scenario 179
Security Configurations 180
Threats to Cloud Security 180
Cloud-Based Approaches to Security 182
Company Security Policies 183
Layered Security 184
Virtual Network Security 184
Allow and Deny Rules 184
AWS VPCs and Subnets 186
Azure Virtual Networks 189
GCP VPCs 191
Securing Hybrid and Multi-Clouds 192
Compute Security 193
Securing VM Instances 193
Data Security 194
Securing Data 194
Encryption Techniques 196
SSL and TLS 197
Troubleshooting Cloud Security 198
Common Cloud Security Issues 198
Project 6-1 Research Data Breaches 199
Project 6-2 Security Groups in
Yellow Circle 200
Project 6-3 Configure Security in AWS 201
Project 6-4 Configure Security in Azure 202
Project 6-5 Configure Security in GCP_203
Summ ary 205
Key Terms_206
Cloud1 Ac ronyms Check list_206
Module 7
Identity and
Access Management 209
Module 7 Scenario 209
Account Management 210
Account Types 210
Authentication 212
Authentication Processes 213
Password Policies 213
Multifactor Authentication 215
Certificate-Based Authentication 216
Single Sign-On 217
Authorization to
Cloud Objects 218
The Purpose of Authorization 218
AWS IAM 219
Azure IAM 220
GCP IAM 223
IAM for Hybrid Clouds 224
Extending AAA into a Hybrid Cloud 224
Troubleshooting Cloud IAM_227
Common IAM Issues 227
Project 7-1 Install and Use a
Password Manager 227
Project 7-2 Create a Key Pair in
Yellow Circle 229
Project 7-3 Manage Users and
Permissions in AWS 230
Project 7-4 Research Azure
Active Directory 232
Project 7-5 Manage Users in GCP_233
Summ ary 233
Key Terms_234
Cloud1 Ac ronyms Check list_235
Module 8
Cloud Storage 237
Module 8 Scenario 237
Storage Types 238
Data Types 238
On-Prem Storage Technologies 240
Cloud Storage Technologies 242
Storage Optimization Techniques 245
Cloud Storage Services 247
AWS Storage Services 247
Azure Storage Services 248
GCP Storage Services 251
Creating and Storing Backups 252
Backing Up in and to the Cloud 252
Protection Capabilities 253
Backup Types 254
Redundancy Levels 256
Backup Considerations 257
Storage Security 257
Data Classification 257
Data Obfuscation 258
Project 8-1 Manage Storage Volumes in Yellow Circle 259
Project 8-2 Manage Storage in AWS 260
Project 8-3 Manage Storage in Azure 262
Project 8-4 Manage Storage in GCP_263
Project 8-5 Research Database Concepts 264
Summ ary 265
Key Terms_266
Cloud1 Ac ronyms Check list_266
Module 9
Managing Cloud Capacity and
Performance 269
Module 9 Scenario 269
Monitoring Resources 270
Targets to Monitor 270
Events and Logs 273
Analysis and Response 275
Data In, Data Out 275
Monitoring in AWS 277
Monitoring in Azure 281
Monitoring in GCP 282
Cloud Optimization 284
Capacity Limitations 284
Capacity Planning 285
Planning for Problems 287
Business Continuity Planning 287
Disaster Recovery 288
Project 9-1 Logs in Yellow Circle 290
Project 9-2 Monitor Your AWS Cloud 290
Project 9-3 Monitor Your Azure Cloud 292
Project 9-4 Monitor Your GCP Cloud 293
Summ ary 294
Key Terms_295
Cloud1 Ac ronyms Check list_295
Module 10
Cloud Automation 297
Module 10 Scenario 297
Automation Workflow 298
Automation Terminology 298
Infrastructure as Code (IaC) 300
Automation Tools 301
Cloud Maintenance Processes 304
Cloud Maintenance Tasks 305
Types of Updates 306
Patching and Update Methodologies 307
Patching in AWS 308
Patching in Azure 309
Security Automation 311
Security Automation Tools and Techniques 311
Troubleshooting Automation Issues 313
Breakdowns in Workflow 313
Project 10-1 Research Automation Tools 314
Project 10-2 Automated Patching in AWS 315
Project 10-3 Automated Patching
in Azure 317
Project 10-4 Install GCP Logging Agent 318
Summary 320
Key Terms_321
Cloud1 Ac ronyms Check list_321
Index 323