CertiPass LogoCertiPass

Hands-On Labs

AWS Certified Solutions Architect - Professional (SAP-C02)

Build real cloud skills with guided labs on AWS and Google Cloud. Practice in live environments with instant access to real cloud resources. No cloud account required.

10
Available Labs
Instant Access
Launch real cloud environments in seconds

Design Solutions for Organizational Complexity

3 labs available

🎯 Advanced
180m

Designing a Multi-Region Disaster Recovery Architecture

In this advanced lab, you will build a multi-region disaster recovery architecture leveraging AWS services. The goal is to create a system that can withstand regional outages and ensure business continuity. You will configure and test failover strategies, deploy resources across multiple regions, and evaluate cost implications while ensuring high availability and data integrity. This lab focuses on critical enterprise-scale solutions requiring deep integration knowledge across networking, storage, and compute resources.

5 tasks
Designing disaster recovery strategies with RTO and RPO considerationsImplementing multi-region architectures for resilienceSecuring cloud infrastructure through IAM policies and KMS encryption+1 more
🎯 Advanced
225m

Design a Multi-VPC Network Architecture with Transit Gateway

In this advanced lab, you will architect a complex, highly available, and resilient multi-VPC network architecture using AWS Transit Gateway. The goal is to interconnect multiple VPCs spread across different AWS regions, ensuring secure and low-latency communication. You will configure and verify routing policies, implement failover strategies, and integrate security protocols for seamless inter-VPC communication.

5 tasks
Architecting a multi-VPC network using AWS Transit Gateway.Implementing AWS KMS and encryption strategies.Configuring logging and monitoring with AWS CloudTrail and CloudWatch.+1 more
🎯 Advanced
180m

Implement Multi-Region Disaster Recovery with AWS

In this advanced lab, you will design and implement a multi-region disaster recovery strategy using AWS services. Participants will configure infrastructure to ensure high availability and data resilience across multiple regions. You will explore the trade-offs and decisions involved in creating a robust disaster recovery plan while adhering to budget constraints. Utilizing Amazon VPC, AWS Direct Connect, Amazon Route 53, AWS IAM, and Amazon S3, users will deploy, configure, and test a failover environment. The lab challenges participants to balance availability, cost, and complexity in a realistic enterprise context.

5 tasks
Configuring multi-region VPCs for redundancyImplementing Route 53 for DNS failoverEnabling S3 cross-region replication+2 more

Design for New Solutions

3 labs available

🎯 Advanced
180m

Building Multi-Region Disaster Recovery with AWS Transit Gateway

This advanced atelier focuses on designing a robust multi-region disaster recovery (DR) architecture using AWS Transit Gateway, VPC, and complementary services. Participants will create an enterprise-scale architecture that ensures high availability, scalability, and optimal cost efficiency. You'll integrate services for cross-region data replication, automated failover using Route 53, and design considerations for latency optimizations. Through a series of tasks, you will implement real-world DR solutions that can withstand regional failures without data loss while minimizing downtime. This atelier prepares you for solutions architect roles where designing for failure is key, leveraging AWS's global infrastructure designs. By the end of this atelier, you will have built a production-ready multi-region DR environment, understanding the intricacies of multi-region networking, resource sharing, and cross-region failover mechanisms.

5 tasks
Configuring AWS Transit Gateway for multi-region architectureImplementing S3 Cross-Region Replication for data redundancyAutomating DNS failover using Route 53 latency-based routing+1 more
🎯 Advanced
190m

Design a Multi-Region Disaster Recovery Architecture with AWS Control Tower and Transit Gateway

In this advanced lab, you will create a comprehensive disaster recovery (DR) solution for a fictional global company using AWS Control Tower and AWS Transit Gateway. The lab emphasizes cross-region data replication, automated failover processes, and cost-effective networking strategies to ensure business continuity under adverse scenarios. Participants will develop skills in architecting resilient enterprise applications that meet demanding service-level agreements (SLAs).

5 tasks
Design multi-region disaster recovery architectures using AWSImplement AWS Control Tower for organizational governanceConfigure AWS Transit Gateway for cross-region peering+1 more
🎯 Advanced
150m

Implementing a Multi-Account Architecture with AWS Organizations and IAM

In this advanced hands-on lab, you will explore the intricacies of setting up a multi-account architecture with AWS Organizations, leveraging service control policies (SCPs) and AWS IAM Identity Center to achieve granular access control. Through a series of interconnected tasks, you'll ensure governance and compliance within a multi-account environment. Participants will create a management account and several member accounts within an organization, applying SCPs to enforce security and operational constraints. Furthermore, you'll implement IAM Identity Center to centrally manage user identities and permissions across accounts, ensuring that only the necessary permissions are granted for different roles. This lab also incorporates the usage of AWS CloudFormation StackSets to automate resource provisioning across multiple accounts, highlighting best practices in infrastructure as code (IaC) development. You'll gain insights into configuring AWS Config to gather compliance data across accounts, aiming to enhance security and audit readiness.

5 tasks
AWS Organizations setup and managementService Control Policies (SCP) implementationAWS IAM Identity Center configurations+2 more

Continuous Improvement for Existing Solutions

1 lab available

🎯 Advanced
140m

Orchestrating Multi-Account Governance with AWS Organizations and IAM

In this advanced atelier, you'll explore how to effectively manage multi-account environments using AWS Organizations. You'll create an organizational structure that implements service control policies (SCPs) to enforce permissions, manage accounts, and control access using IAM Identity Center. This atelier covers everything from initially setting up an AWS Organization to applying governance and access controls across multiple member accounts, preparing you for scenarios involving complex cloud operations.

5 tasks
Multi-account governance using AWS OrganizationsConfiguration of IAM Identity CenterImplementation of cost allocation tags+1 more

Accelerate Workload Migration and Modernization

3 labs available

🎯 Advanced
180m

Implementing Advanced Multi-Account Governance with AWS Organizations

In this lab, you will configure a robust multi-account governance structure using AWS Organizations and AWS Control Tower to meet the needs of a rapidly expanding multinational company, GlobalCo. You will create organizational units (OUs) with service control policies (SCPs) to ensure compliance and optimize resource management. This exercise will help reinforce advanced understanding of account governance and security management in large-scale AWS environments.

5 tasks
Multi-Account governance using AWS Organizations and Control Tower.Inter-region network setup with AWS Transit Gateway.Centralized logging and security insights with CloudTrail and Security Hub.+1 more
🎯 Advanced
180m

Implementing Multi-Account Governance with AWS Organizations and Control Tower

In this lab, you will build a governance framework using AWS Organizations and AWS Control Tower to manage multiple AWS accounts effectively. You'll create organizational units (OUs), apply service control policies (SCPs), and set up a control tower with guardrails in place. This exercise will guide you through the complexities of multi-account setups including creating policies that align with real-world constraints like budget and compliance. The goal is to ensure that you can manage AWS resources at scale in a secure and efficient manner. This advanced scenario will help you understand the intricacies of setting up AWS environments tailored to enterprise needs, considering both security and cost efficiency to align with best practices.

5 tasks
Implement multi-account governance using AWS Organizations.Configuring AWS Control Tower for centralized control.Setting up AWS IAM Identity Center for secure access management.+1 more
🎯 Advanced
180m

Architect Multi-Region Disaster Recovery with AWS Services

In this lab, you will design a multi-region disaster recovery architecture using AWS services, focusing on enterprise-grade scalability and resilience. You will integrate AWS Organizations, AWS IAM Identity Center, and AWS Transit Gateway to set up a robust architecture that meets performance and cost efficiency targets. You will also implement automated provisioning through AWS CloudFormation, ensuring compliance with organizational security requirements across regions. Through hands-on tasks, you will apply best practices in building HA/DR solutions suitable for enterprise environments, integrating detailed configurations for high availability and fault tolerance.

5 tasks
Multi-region disaster recovery architecture designAWS Organizations and IAM Identity Center integrationAWS Transit Gateway for cross-region networking+1 more