Internship Report > Worklog > Week 4 Worklog

Week 4 Worklog

OBJECTIVES IN WEEK 4:

Master Amazon EC2 services: Instance lifecycle management, Custom AMI creation, Troubleshooting, and Data recovery.
Practice deploying real-world web applications (LAMP stack, Node.js) on both Linux and Windows environments.
Deeply understand Storage services (S3, Storage Gateway) and the Shared Responsibility Model.
Master core security services: IAM, Cognito, AWS Organization, and KMS.

TASKS OF WEEK 4:

Day	Task	Start Date	End Date	References
Mon	- Practice Lab 9: Amazon Elastic Compute Cloud (EC2) + Introduction + Preparation Steps: * Create VPC Linux * Create VPC Windows * Create Security Group Linux * Create Security Group Windows + Launch Windows instance * Create Windows Instance * Connect to Windows instance + Launch Linux instance * Create Linux instance * Connect Linux instance + Amazon EC2 Basics * Change EC2 Configuration (Resize) * Create EC2 snapshot * Create Custom AMI * Launch instance from custom AMI * Access EC2-Windows when Key Pair is lost via SSM * Access EC2-Linux when Key Pair is lost via User Data * Configure Desktop Interface for EC2-Ubuntu 22.04 * Amazon EBS Snapshots Archive * Share AMI	26/01/2026	26/01/2026	Lab 9 Intro Lab 9 Prereq Launch Windows Launch Linux EC2 Basic
Tue	- Continue Lab 9: + Deploy Node.js Application on Amazon Linux * Install LAMP web server (Prepare, Check, Config DB, install phpMyAdmin) * Install Node.js on Linux * Deploy application on Linux Instance + Node.js Application on Amazon EC2 Windows * Install XAMPP on Windows instance * Install Node.js on Windows instance * Deploy application on Windows instance + Resource Usage Governance via IAM * Allow service usage by specific Region * Limit EC2 usage by Instance Family * Limit EC2 usage by Instance type * Limit EBS volume storage type * Limit resource deletion by Corporate IP address * Limit resource deletion by Time period + Resource Cleanup	27/01/2026	27/01/2026	Linux App Windows App Governance Cleanup
Wed	- Study Module 04: Storage Services on AWS: + 04-01: Amazon Simple Storage Service (S3) - Access Point - Storage Class + 04-02: S3 Static Website & CORS - Control Access - Object Key & Performance - Glacier + 04-03: Snow Family - Storage Gateway - Backup	28/01/2026	28/01/2026	04-01 04-02 04-03
Thu	- Attend Event: AWS re:Invent re:Cap Vietnam — HCMC 2025	29/01/2026	29/01/2026
Fri	- Study Module 05: Security Services on AWS: + 05-01: Shared Responsibility Model + 05-02: Amazon Identity and access management + 05-03: Amazon Cognito + 05-04: AWS Organization + 05-05: AWS Identity Center + 05-06: Amazon Key Management Service + 05-07: AWS Security Hub	30/01/2026	30/01/2026	05-01 05-02 05-03 05-04 05-05 05-06 05-07

ACHIEVEMENTS IN WEEK 4:

Comprehensively completed Lab 9: Mastered advanced EC2 administration tasks (Resize, Snapshot, Custom AMI, Recovery Access).
Successfully deployed real-world applications (LAMP Stack, Node.js) on EC2 Linux and Windows infrastructure.
Practiced Cost and Governance by limiting resource creation rights by Region, Instance Type, and Time via IAM Policy.
Mastered Module 04 knowledge on data storage solutions (S3, Glacier, Storage Gateway) and backup strategies.
Systematized Module 05 knowledge on cloud security, understanding the Shared Responsibility Model and how to use security identity tools (IAM, Cognito, Identity Center).