Professional Documents
Culture Documents
CompTIA Cloud Essentials+ Certification Study Guide (Exam CLO-002) Daniel Lachance full chapter instant download
CompTIA Cloud Essentials+ Certification Study Guide (Exam CLO-002) Daniel Lachance full chapter instant download
https://ebookmass.com/product/comptia-server-certification-all-
in-one-exam-guide-second-edition-exam-sk0-005-daniel-lachance-
lachance-it-consulting-inc/
https://ebookmass.com/product/comptia-server-certification-all-
in-one-exam-guide-exam-sk0-005-2nd-edition-daniel-lachance/
https://ebookmass.com/product/comptia-server-certification-all-
in-one-exam-guide-second-edition-exam-sk0-005-lachance/
https://ebookmass.com/product/comptia-cysa-cybersecurity-analyst-
certification-all-in-one-exam-guide-exam-cs0-002-brent-chapman/
CompTIA Security+ Certification Study Guide (Exam
SY0-601) Glen E. Clarke
https://ebookmass.com/product/comptia-security-certification-
study-guide-exam-sy0-601-glen-e-clarke/
https://ebookmass.com/product/comptia-security-certification-
practice-exams-fourth-edition-exam-sy0-601-lachance/
https://ebookmass.com/product/comptia-cysa-cybersecurity-analyst-
certification-passport-exam-cs0-002-bobby-e-rogers/
https://ebookmass.com/product/comptia-cloud-guide-to-cloud-
computing-west/
https://ebookmass.com/product/comptia-pentest-certification-all-
in-one-exam-guide-second-edition-exam-pt0-002-2nd-edition-
raymond-nutting/
ABOUT THE AUTHORS
Twitter: @evanderburg
LinkedIn: https://www.linkedin.com/in/evanderburg
Facebook: https://www.facebook.com/VanderburgE
Copyright © 2020 by McGraw-Hill Education. All rights reserved.
Except as permitted under the United States Copyright Act of 1976,
no part of this publication may be reproduced or distributed in any
form or by any means, or stored in a database or retrieval system,
without the prior written permission of the publisher, with the
exception that the program listings may be entered, stored, and
executed in a computer system, but they may not be reproduced for
publication.
ISBN: 978-1-26-046179-4
MHID: 1-26-046179-3
The material in this eBook also appears in the print version of this
title: ISBN: 978-1-26-046178-7, MHID: 1-26-046178-5.
eBook conversion by codeMantra
Version 1.0
All trademarks are trademarks of their respective owners. Rather
than put a trademark symbol after every occurrence of a
trademarked name, we use names in an editorial fashion only, and
to the benefit of the trademark owner, with no intention of
infringement of the trademark. Where such designations appear in
this book, they have been printed with initial caps.
McGraw-Hill Education eBooks are available at special quantity
discounts to use as premiums and sales promotions or for use in
corporate training programs. To contact a representative, please visit
the Contact Us page at www.mhprofessional.com.
Information has been obtained by McGraw-Hill Education from
sources believed to be reliable. However, because of the possibility
of human or mechanical error by our sources, McGraw-Hill
Education, or others, McGraw-Hill Education does not guarantee the
accuracy, adequacy, or completeness of any information and is not
responsible for any errors or omissions or the results obtained from
the use of such information.
TERMS OF USE
This is a copyrighted work and McGraw-Hill Education and its
licensors reserve all rights in and to the work. Use of this work is
subject to these terms. Except as permitted under the Copyright Act
of 1976 and the right to store and retrieve one copy of the work,
you may not decompile, disassemble, reverse engineer, reproduce,
modify, create derivative works based upon, transmit, distribute,
disseminate, sell, publish or sublicense the work or any part of it
without McGraw-Hill Education’s prior consent. You may use the
work for your own noncommercial and personal use; any other use
of the work is strictly prohibited. Your right to use the work may be
terminated if you fail to comply with these terms.
THE WORK IS PROVIDED “AS IS.” McGRAW-HILL EDUCATION AND
ITS LICENSORS MAKE NO GUARANTEES OR WARRANTIES AS TO
THE ACCURACY, ADEQUACY OR COMPLETENESS OF OR RESULTS
TO BE OBTAINED FROM USING THE WORK, INCLUDING ANY
INFORMATION THAT CAN BE ACCESSED THROUGH THE WORK VIA
HYPERLINK OR OTHERWISE, AND EXPRESSLY DISCLAIM ANY
WARRANTY, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED
TO IMPLIED WARRANTIES OF MERCHANTABILITY OR FITNESS FOR
A PARTICULAR PURPOSE. McGraw-Hill Education and its licensors do
not warrant or guarantee that the functions contained in the work
will meet your requirements or that its operation will be
uninterrupted or error free. Neither McGraw-Hill Education nor its
licensors shall be liable to you or anyone else for any inaccuracy,
error or omission, regardless of cause, in the work or for any
damages resulting therefrom. McGraw-Hill Education has no
responsibility for the content of any information accessed through
the work. Under no circumstances shall McGraw-Hill Education
and/or its licensors be liable for any indirect, incidental, special,
punitive, consequential or similar damages that result from the use
of or inability to use the work, even if any of them has been advised
of the possibility of such damages. This limitation of liability shall
apply to any claim or cause whatsoever whether such claim or cause
arises in contract, tort or otherwise.
This book is dedicated to my fiancé Tammy, for all her love and
patience. Long live our scholarly discussions on taxation, IT security,
and politics!
CONTENTS AT A GLANCE
Part I
Cloud Computing Introduction
1 The Principles of Cloud Computing
2 The Business Side of Cloud Computing
Part II
Cloud Design Requirements
3 Cloud Planning
4 Compliance and the Cloud
Part III
Cloud Infrastructure
5 Cloud Storage Infrastructure
6 Cloud Network Infrastructure
7 Cloud Compute Infrastructure
8 Applications and Big Data in the Cloud
9 Cloud DevOps
Part IV
Securing the Cloud
10 Security and the Cloud
11 Managing Cloud Risk
Part V
Appendix and Glossary
A About the Online Content
Glossary
Index
CONTENTS
Preface
Acknowledgments
Introduction
Part I
Cloud Computing Introduction
1 The Principles of Cloud Computing
Identifying Cloud Computing Characteristics
Elasticity and Scalability
Self-service
Broad Network Access
Pay-as-You-Go
Availability
Identifying Cloud Service Models
Software as a Service (SaaS)
Infrastructure as a Service (IaaS)
Platform as a Service (PaaS)
Other Cloud Service Models
Identifying Cloud Deployment Models
Understanding Cloud Shared Responsibility
Shared Responsibility Examples
Exercise 1-1: Sign Up for a Free Microsoft
Azure Cloud Subscription
Certification Summary
Two-Minute Drill
Q&A Self Test
Self Test Answers
2 The Business Side of Cloud Computing
The Business Case for Cloud Computing
Ongoing Operating Expenses (OPEX)
Information Technology Infrastructure Library (ITIL) and
the Cloud
Service Level Agreements
Chargeback
Managing Cloud Costs
Reserved and Spot Instances
Cloud Subscription Types
Licensing
Exercise 2-1: Microsoft Azure Pricing
Calculator
Exercise 2-2: Microsoft Azure Budgets
and Alerts
Certification Summary
Two-Minute Drill
Q&A Self Test
Self Test Answers
Part II
Cloud Design Requirements
3 Cloud Planning
Cloud Feasibility
Feasibility Study
Cloud Pilot Program
Solving Business Problems with the Cloud
Map Computing Requirements to Cloud Services
Data Sovereignty and Privacy
Cloud Migration Strategies
Lift and Shift
Rip and Replace
Exercise 3-1: Run an On-Premises Cloud
Migration Assessment for Microsoft SQL
Server
Certification Summary
Two-Minute Drill
Q&A Self Test
Self Test Answers
4 Compliance and the Cloud
Laws, Regulations, and Security Standards
Legal and Regulatory Compliance
Cloud Service Provider Compliance
NIST SP 800-53
ISO/IEC 27017:2015
FedRAMP
Sarbanes-Oxley Act
Business Requirements and Cloud Solutions
Data Artifacts
Cloud Service Provider Security Control Implementation
Exercise 4-1: Review Amazon Web
Services Regulatory Compliance
Certification Summary
Two-Minute Drill
Q&A Self Test
Self Test Answers
Part III
Cloud Infrastructure
5 Cloud Storage Infrastructure
Storage Media
Drive Types
IOPS
Cloud Storage Configuration
File and Object Storage
Hot and Cold Storage
Replication and Encryption
Databases in the Cloud
Database Types
Content Delivery Networks
Exercise 5-1: Create a Microsoft Azure
Storage Account
Exercise 5-2: Upload Content to a
Microsoft Azure Storage Account
Certification Summary
Two-Minute Drill
Q&A Self Test
Self Test Answers
6 Cloud Network Infrastructure
Cloud Network Components
Connecting to Cloud Environments
Site-to-Site VPNs
Client-to-Site VPNs
Cloud Virtual Networks
Network Protocols
Cloud Load Balancing
Exercise 6-1: Create a Microsoft Azure
Virtual Network
Exercise 6-2: Configure a Microsoft Azure
ExpressRoute Circuit
Certification Summary
Two-Minute Drill
Q&A Self Test
Self Test Answers
7 Cloud Compute Infrastructure
Virtualization in the Cloud
Virtual Machine Sizing
Cloud Virtual Machine Components
Operating System Selection
Virtual Network Interface Cards
Routing Table Entries
High-Performance Computing
Exercise 7-1: Deploy a Windows-Based
Virtual Machine in the Cloud
Exercise 7-2: Remotely Manage a Cloud
Windows Virtual Machine
Certification Summary
Two-Minute Drill
Q&A Self Test
Self Test Answers
8 Applications and Big Data in the Cloud
Service-Oriented Architecture
Microservices
Content Management Systems
Blockchain
Cryptocurrency Miners
Cryptocurrency Implementations
Application Containers
Container Images
Containers
Big Data Analytics
Internet of Things
Machine Learning
Exercise 8-1: Create a Microsoft Azure Queue
Exercise 8-2: Create a Microsoft Azure
Container Registry
Certification Summary
Two-Minute Drill
Q&A Self Test
Self Test Answers
9 Cloud DevOps
Software Development in the Cloud
Application Programming Interfaces
Data Exchange Formats
Software Testing
Sandboxing
Testing Types
Continuous Integration and Delivery
Code Repositories
How CI/CD Works
Cloud Resource Deployment
Cloud Automation
Cloud Orchestration
Exercise 9-1: Deploy Cloud Virtual
Machines Using Templates
Certification Summary
Two-Minute Drill
Q&A Self Test
Self Test Answers
Part IV
Securing the Cloud
10 Security and the Cloud
Confidentiality
Encryption
Transport Layer Security
Data Integrity and Message Authentication
Hashing
Digital Signatures
Availability
Identity and Access Management
Identity Providers
Single Sign-On
Multifactor Authentication
Exercise 10-1: Check Virtual Machine
Disk Encryption Compliance
Exercise 10-2: Create a Microsoft Azure
Active Directory Tenant
Certification Summary
Two-Minute Drill
Q&A Self Test
Self Test Answers
11 Managing Cloud Risk
Risk Management
Risk Assessments
Risk Treatments
Assets and Threats
Asset Inventory
Threat Prioritization
Threat Mitigation
Security Policies
Control Objectives and Security Controls
Disaster Recovery
Continuous Monitoring
Security Testing and Auditing
Vulnerability Scanning
Penetration Testing
Exercise 11-1: Secure Data at Rest
Certification Summary
Two-Minute Drill
Q&A Self Test
Self Test Answers
Part V
Appendix and Glossary
A About the Online Content
System Requirements
Your Total Seminars Training Hub Account
Privacy Notice
Single User License Terms and Conditions
TotalTester Online
Ebook PDF
Technical Support
Glossary
Index
PREFACE
In This Book
This book is organized in such a way as to serve as an in-depth
review for the CompTIA Cloud Essentials+ exam for new and
experienced cloud computing professionals. Even small business
owners that plan on using consultants to manage their cloud usage
will benefit from this book. Each chapter covers a major aspect of
the exam, with an emphasis on the “why” as well as the “how to” of
working with and supporting cloud computing solutions.
Each chapter includes a set of components that call your attention
to important items, reinforce important points, and provide helpful
exam-taking hints:
5. Il Carmagnola in premio de’ suoi servigi venne dal Duca nel 1415 creato
Conte di Castel Nuovo, essendosene fatta la cerimonia all’altare
maggiore del Duomo. Fu dieci anni dopo che sdegnatosi col Visconte
egli passò allo stipendio della Repubblica di Venezia. Veggasi la
rinomata tragedia di Alessandro Manzoni.
6. Essa potè chiamarsi ben avventurata tra le Favorite, perchè il Duca gli si
serbò costante, e il popolo soleva pregare per lei nelle chiese. Ebbe una
figlia di nome Bianca Maria, che fu isposata a Francesco Sforza, il quale
per tal matrimonio pretese alla successione dei Visconti ed ottenne il
Ducato.
9. Gazzaro parola corrotta usata dal volgo per significare Cattaros ossia
Puri, nome assunto dagli eretici in quell’epoca.
10. Fra Dolcino famoso eresiarca, capo d’una setta numerosa, stanziò per
lungo tempo nei monti dell’alto Novarese. Egli s’aveva una donna detta
Monaca Margherita che lo seguiva dovunque. Il Vescovo di Vercelli
Rainerio coadiuvato da molti nobili di Novara lo vinse nella battaglia
datagli il Giovedì Santo del 1307 a Zebello; e consegnatolo con
Margherita in potere del frate domenicano Emanuele Testa, inquisitore
generale, questi li condannò entrambi a perire nelle fiamme.
Nel Canto XXVIII dell’Inferno, ove è descritto il modo in cui sono puniti i
seminatori delle eresie, Maometto così parla a Dante di Frate Dolcino.
11. Esso era uno de’ più possenti feudatari dell’alto Novarese. Il dominio
feudale nella famiglia Biandrate ebbe principio sino dall’anno 1209
essendo stato alla medesima accordato dall’Imperatore Ottone, col
privilegio di portare nello scudo l’aquila nera in campo d’oro.
1.D. The copyright laws of the place where you are located also
govern what you can do with this work. Copyright laws in most
countries are in a constant state of change. If you are outside
the United States, check the laws of your country in addition to
the terms of this agreement before downloading, copying,
displaying, performing, distributing or creating derivative works
based on this work or any other Project Gutenberg™ work. The
Foundation makes no representations concerning the copyright
status of any work in any country other than the United States.
1.E.6. You may convert to and distribute this work in any binary,
compressed, marked up, nonproprietary or proprietary form,
including any word processing or hypertext form. However, if
you provide access to or distribute copies of a Project
Gutenberg™ work in a format other than “Plain Vanilla ASCII” or
other format used in the official version posted on the official
Project Gutenberg™ website (www.gutenberg.org), you must, at
no additional cost, fee or expense to the user, provide a copy, a
means of exporting a copy, or a means of obtaining a copy upon
request, of the work in its original “Plain Vanilla ASCII” or other
form. Any alternate format must include the full Project
Gutenberg™ License as specified in paragraph 1.E.1.
• You pay a royalty fee of 20% of the gross profits you derive from
the use of Project Gutenberg™ works calculated using the
method you already use to calculate your applicable taxes. The
fee is owed to the owner of the Project Gutenberg™ trademark,
but he has agreed to donate royalties under this paragraph to
the Project Gutenberg Literary Archive Foundation. Royalty
payments must be paid within 60 days following each date on
which you prepare (or are legally required to prepare) your
periodic tax returns. Royalty payments should be clearly marked
as such and sent to the Project Gutenberg Literary Archive
Foundation at the address specified in Section 4, “Information
about donations to the Project Gutenberg Literary Archive
Foundation.”
• You comply with all other terms of this agreement for free
distribution of Project Gutenberg™ works.
1.F.