SysAdmin on AWS for Windows
4 Labs 4h 25m 43 Credits
Learn how to use system administration tools in the AWS cloud, including PowerShell, Storage Spaces and Microsoft System Center.
ObjectivesThis quest is designed to help you navigate through a sequence of related topics and AWS services as it relates to SysAdmin on AWS for Windows, including services to deploy and manage your Microsoft Windows-based environment in the AWS cloud.
This lab will take you through the steps to set up and use the AWS Tools for Windows PowerShell. This toolkit enables you to manage your AWS resources the same way you use Windows PowerShell to manage your on-premise Windows environment. You will examine the various authentication types that can be used with AWS Tools for Windows PowerShell. At the end of this lab, you will use AWS Tools for Windows PowerShell to write your own self-healing PowerShell scripts.
This lab will take you through the steps by which Windows PowerShell Desired State Configuration (DSC) can be used to automatically monitor and configure other instances in the same domain. You use Windows PowerShell DSC to run specific PowerShell scripts to monitor systems and, if they deviate from the desired state, run scripts to restore the desired configuration on the system. You will use DSC pull and push modes to perform this task. You will use a simple DSC PowerShell script that will remotely install the Windows IIS role on another server in the same domain.
This lab leads you through the steps to launch an Amazon Elastic Compute Cloud (EC2) instance using an Amazon Machine Image (AMI), add multiple disks to the instance, and build a tiered storage pool with SSD and magnetic volumes. You will also create a virtual disk using the storage pool. At the end of this lab, you will understand how to build a virtual disk pool with different storage tiers using Amazon EBS and Windows Storage Spaces and see how to connect to Storage Spaces from another machine via iSCSI.
warning Microsoft ADFS and AWS IAM
This lab will take you through the process of configuring Windows ADFS with AWS IAM, which enables you to access your AWS Management Console with the desired Active Directory users and groups. You will leverage the AWS support for Security Assertion Markup Language (SAML), an open standard used by many identity providers. This feature enables federated single sign-on (SSO), which lets users sign in to the AWS Management Console or make programmatic calls to AWS APIs by using assertions from a SAML-compliant identity provider (IdP) like Active Directory Federation Services (ADFS). To successfully complete this lab, you should be familiar with basic Windows Server administration and also be highly fluent and conceptually solid with the techniques of federated identity and identity providers in general, and SAML, LDAP, Active Directory, and AWS IAM in particular.