A virtual server that supports both Linux and Windows operating systems.

A Linux-based / Windows-based virtual server that you can provision.

EC2 configurations are called instance types.

Virtual machines configurations are called VM series

AMI or operating systems are stored in a root volume. 

VM Images or operating systems are stored in an OS disk.

Root volume type: General purpose SSD (gp2), Provisioned IOPS SSD (io1 and io2), and Magnetic (standard

OS disk type: Standard HHD, Standard SSD, and Premium SSD

Persistent storage volumes for your data using Elastic Block Storage volumes.  

Persistent storage volumes for your data using Azure Disk. 

Encrypt EBS volumes with  AWS KMS.

Encrypt OS and data disks with Azure SSE.

Add a script that will be run on an instance boot called user-data.

Add a script that will be run into the virtual machine while it is being provisioned called custom data.

Security group enables you to create security rules to allow the traffic going to your instances.

NIC network security group  enables you to create security rules to allow or deny the traffic going to your virtual machine. 

Monitor the performance of your EC2 instances with Amazon CloudWatch.

Monitor the performance of your virtual machines with Azure monitor.

All EC2 instances are launched in an isolated network called VPC.

All virtual machines are launched in an isolated network called VNet.

Object storage service of AWS

Object storage service of Azure.

S3 is composed of Buckets and objects.

Blob storage resources: Storage Account, Container, and Blob

The maximum file size for each object is 5 TB.

The maximum file size for each blob: Block (190.7 TiB), Append (195 GiB), and page (8 TiB).

Bucket capacity is virtually unlimited.

Single blob container size is the same as the maximum storage account capacity.

S3 tiers: Standard, Standard-IA, One Zone-IA, Intelligent – Tiering, Glacier, Deep Archive

Blob tiers: Hot, Cool, and Archive.

Data durability across multi-AZ is 11 9’s.

Data durability across LRS (11 9’s), ZRS (12 9’s), GRS, and RA-GRS, and RA-GRS (16 9’s).

Copy objects across S3 buckets in different AWS Regions using Cross-Region Replication. 

Copy block blobs between a source and destination account using Object Replication.

Cache content from a static website with Amazon CloudFront.

Cache content from a static website with Azure CDN.

Encrypt objects using Client-Side and Server-Side Encryption.

Encrypt storage account using Microsoft- and Customer-manage keys.

Endpoint:

<tutorialsdojo> .s3. <region> .amazonaws.com

Endpoint:

<tutorialsdojo> .blob.core.windows.net

Configure and scale a relational database in the cloud.

Fully managed and intelligent relational database in the cloud. 

Database engines: Amazon Aurora, PostgreSQL, Oracle, MariaDB, and Microsoft SQL Server  

Database Engine: Microsoft SQL Server

The serverless database is called Amazon Aurora Serverless.

The serverless database is called Azure SQL Database serverless,

DB templates are Free Tier, 

Dev/Test, and Production.

DB templates are Basic, Standard, and Premium.

DB performance: Standard, Memory-Optimized, and Burstable Classes

DB performance: General Purpose, Hyperscale, and Business Critical

Eliminate a single point of failure with Multi-AZ deployment.

Eliminate a single point of failure with zone redundant configuration.

Create readable secondary databases in the same or different region with read replicas 

Create readable secondary databases in the same or different region with active geo-replication

Automated backups retention period up to 35 days.

Monitor the metrics of your database with Amazon CloudWatch

Monitor the metrics of your database with Azure Monitor.

Endpoint: 

rds. <region> .amazonaws.com

Endpoint: 

<server_name> .database.windows.net

A virtual network service in AWS where you can launch your resources.

An isolated network service in Azure to run your VMs and applications.

Default VPC in each region. 

Default VNet is not existing.

AWS reserves 5 IP addresses within each subnet.

Subnets are from /28 to /16.

Subnets are from /29 to /8.

Subnets types: Private, Public and VPN-only

Subnets types: Private, Public and Gateway 

You can assign a static IPv4 to your resources with Elastic IP address 

You can assign a static IPv4 and IPv6 address to your resources.

Secure your network using NACLs and Security Groups.

Secure your network using NSGs and ASGs.

Types of gateways: Internet Gateway, Egress-only, NAT Gateway, Virtual Private Gateway, and Customer Gateway

Types of gateways: VPN Gateway and ExpressRoute Gateway 

By default, subnets are automatically associated with the main route table.

Route tables are not automatically associated with your subnets.

A VPC peering enables communication between two VPCs.

A VPC peering enables the communication between virtual networks. 

Create and manage users, 

Groups, roles, and policies in your account. 

Create users and group with Azure Active Directory.

Secure your account by activating MFA.

Secure your account by activating MFA in Azure AD.

IAM groups allow you to organize a large number of IAM users.

Azure AD allows you to assign a large number of users to groups.

Delegate administrator roles using identity–based policies.

Delegate administrator roles using Azure AD.

Access resources only in the AWS console

Azure AD supports hybrid identity to access resources in the cloud or on-premises.

Monitor the status of your user accounts with a credential report.

Monitor the security and usage patterns of your environment with Azure AD reports and monitoring.

Unique account sign-in page URL: https://<My_AWS_Account_ID>.signin.aws.amazon.com/console/

The domain name of Azure AD tenant:

<Azure_Tenant>.onmicrosoft.com

Grant users temporary permission using IAM roles.

RBAC enables you to grant users certain roles to access specific resources.

A collection of permission written in JSON is called IAM policies.

A collection of permissions written in JSON is called role definition in RBAC.

You can assign multiple permissions to an IAM user.

You can assign multiple roles to a resource group with RBAC.