Minor updates to GCP content and images.

content/GCP/01_intro_to_cloud_console.ipynb

@@ -50,7 +50,7 @@
     "\n",
     " * Login to the web console with your (Google) Account by going to [https://console.cloud.google.com/](https://console.cloud.google.com/)\n",
     " * Login with your credentials if you have not done so already.\n",
-    " * Find your user/account under the \"Avatar\" in the top right (see below).\n",
+    " * Find your user/account under the \"Avatar\" in the top right (see below) and click on the avatar.\n",
     " ![avatar-account](img/avatar-account.png) and click on it if it is not the top one.\n",
     " * If you do not see your account click on \"Add Account\" and repeat the previous step.\n",
     "\n",
@@ -92,7 +92,7 @@
     "   \n",
     "For a Project to do anything useful it must also have an enabled Billing Account associated with it.  An enabled Billing Account is a prerequisite for this lesson.\n",
     "\n",
-    "A Project, just like the word, should be associated with a real world project (for example a research effort or grant, lab, or your Ph.D. Project. etc).  For Drew, this will be the Acceleration Lab project.   In this way it is easier to track and allocate costs and to manage permissions and access for resources within the project.\n",
+    "A Project, just like the word, should be associated with a real world project (for example a research effort or grant, lab, or your Ph.D. Project. etc).  For Drew, this is the image processing project.   In this way it is easier to track and allocate costs and to manage permissions and access for resources within the project.\n",
     "\n",
     "The active project is also shown next to the project icon (three hexagons) and clicking it brings up the project selection dialog.  The current project has a check mark and and the active project can be changed by clicking on the project name or double clicking the row.\n",
     "    ![select-project](img/select-project.png) \n",
@@ -128,8 +128,14 @@
     "  * You can pin frequently used items on the top of this page by clicking on the pin icon. \n",
     "  * Click the hamburger again to hide the Left Sidebar.\n",
     "\n",
-    "All the different products and services are the \"What\" of the cloud.  We will start with Cloud Storage in the next Episode.  \n",
-    "\n"
+    "All the different products and services are the \"What\" of the cloud.  We will start with compute, called *Google Compute Engine* in the next Episode. \n",
+    "\n",
+    "### Exercise \n",
+    "\n",
+    "Take a few moments to navigate a few key services.\n",
+    " * Navigate to the \"Compute Engine\" service under the \"Compute\" product group.\n",
+    " * You will probably need to \"Enable\" this service first by clicking on the \"Enable\" button on the \"Compute Engine API\" page.  This will only need to be done once per project.\n",
+    " * Navigate to \"Cloud Storage\" under the \"Storage\" product group and enable the service if necessary."
    ]
   },
   {
@@ -170,14 +176,16 @@
    "source": [
     "## Open a Cloud Shell\n",
     "\n",
-    "The Cloud Shell is an easy way to access Comand Line Interface (CLI) commands in a web browser.  Under the hood Cloud Shell is Debian running in a container with 5GB of no-charge persistent storage with most of the Google uti and a lot of other useful tools (git, docker, jq, Docker, etc.) installed by default.\n",
+    "The Cloud Shell is an easy way to access the Comand Line Interface (CLI) in a web browser.  Under the hood Cloud Shell is Linux (Debian) running in a container with 5GB of no-charge persistent storage with most of the Google utilities and a lot of other useful tools such as git, docker, jq, Docker, etc. installed by default.\n",
     "\n",
     "To use the Cloud Shell:\n",
-    "  * Open up a Cloud Shell by clicking on the **Activate Cloud Shell** icon in the right side of the top blue bar. If a \"Authorize Cloud Shell\" dialog appears click \"Authorize\" to allow the Cloud Shell to access the project.\n",
+    "  * Open up a Cloud Shell by clicking on the **Activate Cloud Shell** icon in the right side of the top blue bar. If a \"Authorize Cloud Shell\" dialog appears click \"Authorize\" to allow the Cloud Shell to access your Project.\n",
     "  * Click the **Maximize** icon on the right side of the Cloud Shell bar. You can find the correct icon by hovering over the icons to see their names.\n",
     "  * If a shell is associated with a project it will show it in the tab and in **yellow text** in round parenthesis in the shell prompt.  **Verify the Project ID**.\n",
     "  * To open up a shell with a specific project click the \"down arrow\" icon next to the plus(+) to open a new tab with a specific project.  Selecting the plus (+) will usually open up a shell with the default project.\n",
-    "  * Note: You can open the Cloud Shell in a new tab by clicking on icon **Open in a New Window** on the far right of the Cloud Shell bar.\n",
+    "  * Note: You can open the Cloud Shell in a new tab by clicking on the **Open in a New Window** icon on the far right of the Cloud Shell bar.\n",
+    "\n",
+    "![cloud-shell](img/cloud-shell.png)\n",
     "\n",
     "\n",
     "### Opening Cloud Shell in a Tab - Optional\n",

content/GCP/02_intro_to_compute.ipynb

@@ -46,7 +46,7 @@
    "source": [
     "## Google Compute Engine\n",
     "\n",
-    "To learn more about the Google Compute Engine service we will use the web console to create, explore, and destroy a Virtual Machine.  The ability to quickly create, explore, and then discard resources in the web-console is a powerful tool to explore a service.  After an initial exploration with the web-console, programmatic access using scripts or configuration management systems should be used.\n",
+    "To learn more about the Google Compute Engine service we will use the web console to create, explore, and destroy a Virtual Machine.  The ability to quickly create, explore, and then discard resources in the web-console is a powerful tool to learn more about a service.  After an initial exploration with the web-console, programmatic access using scripts or configuration management systems should be used.\n",
     "\n",
     "Unfortunately, the terminology used for cloud computing differs from one commercial cloud provider to another. Google Compute Engine uses the term **VM instance** to refer to a running virtual machine, **image** for the boot disk containing the operating system, and **disk** for the writable storage used for a running *VM Instance*.\n",
     "\n",
@@ -64,15 +64,15 @@
     "\n",
     "We will first create an *VM instance* with defaults to explore the Google Compute Engine service.\n",
     "\n",
-    "To create a bucket we do the following:\n",
+    "To create a VM Instance we do the following:\n",
     "  * Click **Navigation Menu** -> **Compute Engine** (under Compute) -> **VM Instances** -> **+Create Instance** (just under the blue bar) to open the *Create an instance* page.\n",
     "  * In the **New VM instance** tab on the left (selected by default) configure the *VM instance* as follows:\n",
     "    * For **Name**, enter a unique name for the instances (example: \"essentials-instance-1\")\n",
     "    * For **Region** leave the default or select your \"home\" region.  The region is the physical location where your data will reside.  Your \"home\" region should be close to your work and should be the region you use most of the time.\n",
     "    * For **Zone** leave the default (note how the name is constructed and that it is a separate data center) some zones have different capabilities.\n",
     "    * In the **Machine configuration** section:\n",
     "      * For **Series** select *E2* (default). The other options are for types of machines.\n",
-    "      * For **Machine type** select *e2-medium* (default)\n",
+    "      * For **Machine type** select *e2-medium* (default).  Note that it shows the size of the VM in parentheses. \n",
     "    * In the **Identity and API access** section note that for the **Service Accounts** -> **Service account** option that the **Compute Engine default service account** is selected.  This allows the *VM Instance* to access resources in the project.  Note: the *\"Allow full access to all Cloud APIs\"* allows *everyone* on the VM to *access and edit all resources in the project*.\n",
     "    * Leave the remaining options as default.\n",
     "  * Note the **Monthly estimate** in the right side panel. This is only for running the *VM instance* and does not include other storage, networking, compute, and other charges that may occur by running software.  Click **Details** show a breakdown of the *VM instance* only costs.\n",
@@ -87,9 +87,9 @@
    "source": [
     "## Security\n",
     "\n",
-    "Everything in the cloud requires permission (authorization). Ordinary we would configure and check security first but in the case of exploring services it is often easier to do things out of order.  We noted that the *VM instance* was created with the *Compute Engine default service account*, which by *default* has access to all the resources that your Google Account does.\n",
+    "Everything in the cloud requires permission (authorization). Ordinary we would configure and check security first but in the case of exploring services it is often easier to do things out of order.  We noted that the *VM instance* was created with the *Compute Engine default service account*, and if the \"Allow full access to all Cloud Api's\" scope is enable, then everyone on the VM has access to all the resources in your project..\n",
     "\n",
-    "Specifically, we are interested in verifying what permissions that the *Compute Engine default service account* has for your *VM instances* . To do this navigate to the IAM page (**Navigation Menu** -> **IAM & Admin** -> **IAM** -> **Permissions** -> View By: **Principals**)\n",
+    "Specifically, we are interested in verifying what permissions that the *Compute Engine default service account* has for your *VM instances* . To do this navigate to the IAM page (**Navigation Menu** -> **IAM & Admin** -> **IAM** -> **Permissions** tab -> View By: **Principals** tab)\n",
     "\n",
     "*Note: There is a powerful filter box to limit the permissions shown.*\n",
     "\n",