Account Management, Billing, Support Flashcards
AWS Organizations
Manage multiple AWS accounts
Account types in Organizations (2)
Master
Child
Cost benefits of Organizations (3)
Consolidated billing
Volume Discounts
Reserved EC2 Pooling
Service Control Policies used to…
Restrict account privileges in Organizations
What can an API be used for in Organizations?
Automate AWS account creation
Reasons to use multi-account strategy
Per department/cost center
dev/test/prod
Regulatory restrictions
Resource isolation
Per-account service limits
Logging
What do SCP’s apply to?
Users and roles of an account
SCP Use case
Restrict access to certain services/Disable services
Are SCP’s inherited?
Yes, they apply to sub-OU’s
Consolidated billing
Combine usage
One Bill
Control Tower
Set up and govern secure and compliant multi-account
Control tower benefits
Automate setup
Automate policy management
Detect policy violations
Monitor compliance
Control Tower relationship to Organizations
Automatically sets up Orgs and SCP’s
AWS Resource Access Manager (RAM)
Share resources (like a VPC) with other AWS accounts
AWS Service Catalog
Authorized products defined by admins
AWS Pricing Models (4)
Pricing models (Pay as you go)
Save when you reserve
Pay less by using more (volume discount)
Pay less as AWS grows
Free services (6)
IAM
VPC
Elastic Beanstalk
CloudFormation
Auto Scaling Groups
Free tier
EC2 Pricing
On-demand per second
Reserved (75% off)
1-3 years commitment
Spot instances (90% discount)
Dedicated Host
Savings plan
Lambda Pricing
Per Call
Per Durations
ECS Pricing (containers)
EC2 Model
Fargate pricing
Pay for vCPU and memory
S3 Pricing
Storage class (Standard, IA, Glacier, etc.)
Number and size of objects
Number of requests
Transfer out of S3 region
S3 transfer acceleration
EFS pricing
Similar to S3
EBS pricing (Block Storage)
Volume type (performance)
Storage provisioned
IOPS
Snapshots
Data transfer out
RDS Pricing
Per hour
Database characteristics (Engine, Size, Memory)
On-demand or reserved
RDS Storage Pricing
Per GB
IO per month
Single vs. Multiple AZ
Data transfer out
CloudFront pricing
Per region
Edge locations
Transfer out
HTTP/HTTPS Requests
Network costs
.02/GB public IP communication
.01/GB to private IP
.02/GB to another region
(Same AZ is cheaper)
Savings Plan
Commit to sending $$$ amount per hour for 1-3 Years
EC2 Savings Plan
Up to 72% Discount
Commit to usage of instance families in a region (ex C5 or M5)
AZ, Size, OS dont matter
Compute Saving Plan
Up to 66% Savings Plan
EC2, Fargate, Lambda
Machine Learning Savings plan is for which service?
SageMaker
AWS Compute Optimizer
Reduce costs and improve performance by using ML to analyze configs and CloudWatch metrics
AWS Compute Optimizer savings
Up to 25%
AWS Pricing Calculator
Estimate Cloud Costs
Specific products and workloads
Billing Dashboard
See monthly costs
AWS Free Tier Dashboard
See free tier usage
Cost allocation tags
Track costs in detail by tag
Tag types (2)
AWS generated aws:
User generated user:
Tags are used for…
Organizing resources (costs and groups)
How are tags edited?
Tag Editor
Cost and Usage Reports
Detail cost report by service used by an account and IAM users
Cost Explorer
Visualize AWS costs
Custom reports
Choose a savings plan
Forecast usage up to 12 months based on previous use
Which tool an be used to forecast costs up to 12 months?
Cost explorer
Billing alarms in Cloudwatch
Send notifications for going over billing thresholds.
AWS Budgets
Send alarms when cost exceeds budget
AWS Budgets cost
2 Free, then .02/day/budget
Cost Anomaly Detection
Use ML to detect unusual spends
Service Quotas
CloudWatch alarms for reaching limits per service
Request quota increases
Trusted Advisor
Account assessment on 5 categories
Trusted advisor categories (5) (remember)
Cost optimization
Performance
Security
Fault Tolerance
Service Limits
How many Trusted Advisor Core Checks?
7
7 Core checks (list)
Basic & Developer Plan
S3 Bucket Perms
Security groups (Specific ports)
IAM Use (at least 1 user)
MFA on Root
No EBS public snapshots
No RDS public snapshots
Service limits
Full Checks (5+4)
Business & Enterprise support
Trusted Advisor 5 categories
Set CloudWatch alarms
Programmatic access via AWS Support API
Support Plan Pricing Plans
Basic
Basic Plan cost
Free
Basic support plan includes…
Customer Service
Communities
Basic Trusted Advisor
Personal Health Dashboard
AWS Developer Support Plan
Basic
Business hours email access
Unlimited cases
1 primary contact
AWS Developer Support Plan response time
General <24 hours
System impaired <12 hours
Business Support Plan
Full Trusted Advisor
Support API
24/7 phone, email, chat support
Unlimited cases
Unlimited contacts
Infrastructure Event Management (additional fee)
Business Support Plan {Pricing)
General guidance <24 hours
System impaired <12 hours
Prod system impaired <4 hours
Prod system down <1 hour
AWS Enterprise On-Ramp Support
Prod and critical workloads
Business Support Plan
Pool of TAM’s
Concierge support team
Infrastructure event management
Well-architected & ops reviews
AWS Enterprise On-Ramp Support response times
Prod system impaired <4 hours
Prod system down <1 hour
Business-critical system down <30 mins
AWS Enterprise Support
Critical workloads
Enterprise on-ramp
Dedicated TAM
AWS Enterprise Support response times
Prod system impaired <4 hours
Prod system down <1 hour
Business-critical system down <15 mins
