# Core Accounts

**Purchase** [AWS Powered E-commerce Application: A Guided Tour](https://labs.itassist.com/aws-powered-ecommerce-application) to unlock the full content.

**Add to Wishlist** [Explore a Live AWS Environment Powering an E-commerce Application](https://labs.itassist.com/live-aws-environment-exploration) and receive a notification when the environment is available.&#x20;

***

This lesson explores the **AWS services deployed across core accounts** and their roles in supporting e-commerce use cases. It highlights best practices, their roles within the account, and how they interact with various layers of an e-commerce architecture, such as presentation, business logic, and data layers.

**SharedServices Account**

This account hosts shared infrastructure components used across all environments, ensuring reusability, cost efficiency, and streamlined management.

* **AWS CodePipeline,**&#x20;
* **CodeBuild**
* **CodeDeploy**
* &#x20;**Amazon ECR**
* &#x20;**Amazon S3, AWS CodeArtifact**

**SecurityTooling Account**

This account centralizes security monitoring, compliance, and threat detection tools.

* **Amazon Security Hub**
* **Amazon GuardDuty**
* **Amazon Macie**
* **AWS Config**

**LogArchive Account**

Central repository for logs from all accounts, critical for audit and analysis.

* **AWS CloudTrail**
* **Amazon S3 (Logs Storage)**
* **Amazon OpenSearch and QuickSight**

**Workload Accounts**

These accounts host application workloads segregated by environment.&#x20;

### **Learning Outcomes** <a href="#id-5z28uibkqpzl" id="id-5z28uibkqpzl"></a>

By the end of this lesson, learners will be able to:

1. **Understand the Role of Core Accounts in E-Commerce Architectures:**
   * Gain insights into the purpose and responsibilities of SharedServices, SecurityTooling, LogArchive, and Workload Accounts.
   * Learn how each account supports key aspects of the architecture, including security, governance, and workload management.
2. **Identify AWS Services and Their Roles Across Architecture Layers:**
   * Understand the AWS services deployed within core accounts and their roles in the **presentation**, **business logic**, and **data** layers.
   * Explore the use cases and integration of services such as Amazon S3, DynamoDB, AWS Lambda, and Amazon GuardDuty.
3. **Apply Best Practices for Core AWS Services:**
   * Learn to implement best practices for security, cost efficiency, and operational excellence across AWS services like CodePipeline, S3, Route 53, and Security Hub.
   * Understand strategies like encryption, cross-account monitoring, and lifecycle policies for resource optimization.
4. **Design Centralized Security and Logging Strategies:**
   * Learn to leverage SecurityTooling and LogArchive accounts to centralize security monitoring and log management.
   * Explore tools like AWS Config, CloudTrail, OpenSearch, and QuickSight to maintain compliance and analyze operational performance.
5. **Facilitate Effective Workload Management:**
   * Understand how workload accounts support application environments, ensuring segregation and scalability for production and non-production workloads.
   * Learn to optimize workload performance with services like CloudFront, DynamoDB, and Lambda.
6. **Enhance Operational Efficiency and Scalability:**
   * Discover how centralized resources in SharedServices and best practices for workload accounts streamline operations and improve scalability.

### **Benefits of the Lesson** <a href="#a2npaythn577" id="a2npaythn577"></a>

1. **Comprehensive Understanding of Core Accounts:**
   * Learn how different AWS accounts work together to create a secure, scalable, and efficient e-commerce environment.
2. **Enhanced Governance and Security:**
   * Gain the knowledge to design centralized security strategies using tools like Security Hub, GuardDuty, and Macie to protect workloads across layers.
3. **Optimized Workload Performance:**
   * Discover how to use AWS services like DynamoDB, Aurora, and Lambda for scalable, high-performing workloads in segregated environments.
4. **Improved Logging and Analysis:**
   * Understand how to centralize logs in the LogArchive account and use OpenSearch and QuickSight for operational insights and auditing.
5. **Cost Efficiency Through Best Practices:**
   * Learn to implement cost-saving strategies such as lifecycle policies, cross-account resource sharing, and workload-specific scaling.
6. **Real-World Application:**
   * Explore actionable use cases for deploying AWS services across core accounts to meet architectural and operational goals.
7. **Scalability and Maintainability:**
   * Gain the skills to design an architecture that supports growth, maintains security, and simplifies resource management.

***

### Subscribe To Our Mailing List

Stay ahead in the cloud-first world with the latest insights, strategies, and best practices for mastering **AWS services** and modern application development.

{% embed url="<https://j245x6xtoz0.typeform.com/to/XGUozUZR?utm_source=xxxxx>" fullWidth="false" %}

***

📚 Ready to elevate your AWS skills? Explore content tailored to help you build, deploy, and manage cloud-native applications like a pro. [AWS Powered E-commerce Application: A Guided Tour](https://labs.itassist.com/aws-powered-ecommerce-application)