Private: AWS EMR and Spark 2 using Scala

Getting Started with AWS EMR and Spark 2
12 Topics
Sign up for AWS account
Setup Cygwin on Windows and Quick Preview
Understand the EC2 Pricing, Create and Connect to EC2 instance
EC2 Dashboard, States and Description
Using elastic ips to connect to EC2 Instance
Using security groups to provide security to EC2 Instance
Understanding the concept of bastion server
Terminating EC2 Instance and relieving all the resources
Create security credentials for AWS account (access and secret key)
Setting up AWS CLI in Windows
Creating s3 bucket
Getting Started Conclusion
User Management and Security using IAM
6 Topics
Introduction to IAM and Securing AWS account
Creating First IAM user, create group and IAM password policy
IAM best practices and Creating Custom policy
Assign policy to entities (user and/or group)
Creating role for EC2 trusted entity with permissions on s3 and assign the role
Conclusion and take aways to User Management and Security using IAM
Creating EMR cluster with Spark using quick options
7 Topics
Introduction to EMR and concepts
Pre-requisites before setting up EMR cluster and setup datasets
Setup EMR with Spark cluster using quick options
EMR cluster startup cycle and connecting to master node
Enabling web connection to access web interfaces
Running spark-sql queries
Understanding EMR pricing and terminating the cluster
Setup Development environment for Scala and Spark
15 Topics
Setup Development Environment – Scala and Spark
Setup Java and Install scala with Intellij IDE
Develop Hello World Program using Scala and run the application
Setting up winutils.exe and Data sets
Develop first spark application and building Jar file using sbt
Download and install Spark using 7z on Windows
Configure environment variables for Spark on Windows
Running spark job using spark-shell
Validating spark job from jar file using spark-submit
Setup Ubuntu using Windows subsystem for linux – Windows 10
Access C drive using Ubuntu (built using Windows subsystem for linux)
Setup java and jdk in Ubuntu
Download and setup Spark 2 in Linux or Mac
Configure environment variables for Spark 2 – Linux or Mac
Run jar file on Linux or Mac
Spark 2 – Building Blocks
13 Topics
Introduction to Spark 2 Building Blocks
Official page and documentation for Spark 2
Spark High level overview
Quick Start section of Spark official documentation
Linking with Spark – Updating dependencies in IDE for development
Initializing Spark – Programmatically using Scala
Initializing Spark – Spark Shell
Introduction to Big Data Developer labs of ITVersity
Run Spark job in YARN mode
Execution life cycle of Spark Job
Overview of YARN
YARN deployment modes – Client vs. Cluster
Cluster Modes – Glossary
Spark 2 – Resilient Distributed Data Sets (RDD)
19 Topics
Introduction to RDDs
Revision of Scala Collections
Scala Collection APIs – Filtering Data
Scala Collection APIs – map and reduce
Parallelize – Create RDD from collections
Parallelize – Develop application to get revenue for given order
Parallelize – Run application on cluster
External Datasets – Create RDD using text data
External Datasets – wholeTextFiles
External Datasets – sequenceFile
External Datasets – hadoopRDD, newAPIHadoopRDD and objectFile
RDD Operations – Introduction
RDD Operations – Printing Elements from RDD
RDD Operations – Working with Key Value pairs
Data processing life cycle using Spark
String Processing – Extracting fields – substring, indexOf and split
String Processing – Type conversions using functions such as toInt
String Processing – Comparing data
String Processing – Extract date and change the format
RDD Operations – Transformations and Actions
30 Topics
Problem Statement
Transforming data using map
Filtering data using filter
Flattening arrays using flatMap
Using flatMap to process data read by wholeTextFiles
Transforming data using mapPartitions
Transforming data using mapPartitionsWithIndex
Get top n products per day – Reading Data
Get top n products per day – Filter and extract data from orders
Get top n products per day – Get data from order_items
Get top n products per day – Get data from products split by regex
Get sample – using sample
Set operations – union
Set operations – intersection
Get unique values using distinct
groupByKey – Getting Started
groupByKey – process values per key using map
groupByKey – process values using flatMap
Concept of shuffling
Aggregate data using reduceByKey
1 of 2
Data Frame and Data Set Operations
12 Topics
Introduction to Data Frame and Data Set Operations
Reviewing Data Sets
Creating Data Set from CSV
Using Spark SQL and Data Frames programmatically
Creating Data Set – using Data Frame
Writing Data Frame to File System
Running application on cluster using Spark 2
Create Data Frame – Infer Schema using Reflection
Create Data Frame – Applying Schema programmatically using types
Data Frame Operations – Getting Started
Get Top N Products Per Day – Create application and read data
Data Frames Operations – selection or projection of data
Previous Lesson
Next Topic

Introduction to IAM and Securing AWS account

Private: AWS EMR and Spark 2 using Scala User Management and Security using IAM Introduction to IAM and Securing AWS account

Introduction to IAM

AWS Identity and Access Management (IAM) is a web service that helps you securely control access to AWS resources. IAM – Identity and Access Management – Used to create and manage the AWS users and groups to provide controlled access to AWS services and resources securely. We will have one Root account, which is created at first and have complete access to control AWS account. For an enterprise account, where multiple stakeholders (developers and systems admins etc) involved, it is important to give controlled authorized access to their respective services. This service is offered for free for each AWS account.

IAM can be accessed in two ways

  • Go to Account –> Security, Identity & Compliance–> IAM
  • Go to Account –>My Security Credentials –> Dashboard

You can check the Security Status, if they are in the orange state, we have to convert it into green i.e. healthy. Generally, there are five points to secure AWS account as below.

  • Deleting root access keys
  • Activating MFA on the root account
  • Create Individual IAM Users
  • User groups and permissions
  • Apply IAM password policy

Deleting root access keys

  • Root Access Keys are — Secret Key and Access Key.
  • If you have root access keys, if it is in the active state, then someone will access use the resources. For that, we have to delete root access keys. Use only when it is necessary.
  • To delete the keys, Go to Delete Root Access Keys tab -> Manage Security Credentials –> Delete the keys which are active
  • Now Security Status should be turned into gree for Delete Root Keys in the Dashboard.

Enabling MFA for the root account

  • By default, AWS account will ask for Username and Password, but root account is very important, we should enable more security.
  • We will use MFA (Multi-Factor Authentication) as another layer of protection, which will provide the unique key for each login.
  • We can use Virtual or Hardware MFA device to get the key. To get the key we used Google Authenticator app (smartphone app) used in the video.
  • Scan the barcode to get register your device with your AWS account by clicking on “+” sign on the top right of the app.
  • Enter both codes that you will be receiving on the virtual device one after the other.
  • Once you add your virtual device, security status should be turned into green.

Introduction to IAM users and customizing sign in link


Why do we need to create IAM Users? – Since root account has unrestricted access to AWS account, we should create other users who have authorized access to services and resources in the AWS account. In the next, we will see how to create the IAM user and give necessary privileges.
And, in an enterprise we will have multiple stakeholders, they should be able to login into the account with ease, so we will customizing the sign-in link.

Customizing the AWS account sign-in link:
  • In the dashboard, you can see IAM user sign-in link, which is unique for each AWS account.
  • Click on the Customize and give the Alias (E.g.: Itversity -> Enterprise Name) in the video.
  • Now the sign-in link is customized and can be shared with all the stakeholders.

In the next topic, we will see how to create IAM user, group and IAM password policy to secure AWS account more.

Previous Lesson
Back to Lesson
Next Topic