Account Management, Billing & support Section

Question 1

ACCOUNT BEST PRACTICES

Question 2

Organization

Answer 2

Operate multiple accounts

• Global service
• Consolidated billing: single payment, Combined usage, to share the volumes pricing, reserved instances and saving plans discounts
• Pooling of reserved EC2 instance for optimal saving

Question 3

SCP ( service control police)

Answer 3

use to restrict account power

• Whitelist or blacklist IAM action
• Applied at the OU or Account level
• Must have an explicit allow ( does not allow anything by default)
• Which tool allows you to centrally manage all users and roles permissions in your organization?

Question 4

SCP usecase

Answer 4

• Restrict access to certain service (EX can’t use emr )

- Enforce PCI compliance by explicitly disabling service

Question 5

AWS control tower

Answer 5

easily setup multiple accounts with best-practices

• set up and govern a secure and compliant multi-account AWS environment
• Benefits:
  Automate the setup of your environment in a few click
  Automate ongoing policy management using guardrails
  Detect policy violation and remediate them
  Monitor compliance through an interactive dashboard

You would like to automatically set up and govern a secure multi-account AWS environment with best practices for your organization. Which AWS tool can you use?

Question 6

Use tags & cost cost allocation tags

Answer 6

for easy management & billing

Question 7

IAM guidelines

Answer 7

MFA, least- privilege, password policy, password rotation

Question 8

Config

Answer 8

to record all resources configuration & compliance over time

Question 9

Cloudformation

Answer 9

To deploy stacks across account and region

Question 10

Trusted Advisor

Answer 10

To get insights, support plan adapted to your needs

Question 11

S3 or Cloudwatch logs

Answer 11

Send service logs and Access logs

Question 12

Cloudtrail

Answer 12

To record API calls made within your account

Question 13

if your account is compromise:

Answer 13

change the root password, delete and rotate all the AWS support

Question 14

Billing and Costing Tools

Question 15

Compute optimizer

Answer 15

Recommends resources configuration to reduce cost

• Uses MAchine Learning to analyze your resource configuration and their utilization cloudwatch metrics
• Reduce costs and improve performance
• Which of the following options uses machine learning to recommend optimal AWS resources and therefore reduces costs?

Question 16

TCO calculator

Answer 16

• from on-premises to AWS
• reducing the need to invest in large capital expenditures and providing a pay as you go model
• estimate the cost saving
• detailed set of report that can be used in executive presentations
• A company is not sure whether or not it is cost-effective to migrate to the AWS Cloud. Which service can help the executive board make a decision?

Question 17

Simple Monthly calculator / pricing calculator

Answer 17

cost of service on AWS

• Estimate the cost for your architect solution

What can you use to estimate the cost of your architecture solution?

Question 18

Tacking cost in the cloud

- Billing Dashboard:

Answer 18

high level overview + free tier dashboard

• Show all the cost associated for the month, forecast,

Question 19

Cost allocation Tags

Answer 19

Tag resources to create detailed reports

• To track your aws cost on a detail level
• User- defined tags :
  define by user
• Tagging and resources group:
  Free naming, common tage are: name, environment, Team
  Tag can be used to create resource group
• Tags are used for organizing resources

What do Resource Groups rely on to group your resources?

Question 20

Cost and usage Reports

Answer 20

Most comprehensive billing dataset

• Dive deeper into your aws costs and usage
• INTERGATED with Athena, redshift, or quicksight

Question 21

cost explorer

Answer 21

view current usage (detailed) and forecast usage

• Forecast usage to 12 months based on previous usage
• Choose an optimal saving plain (to lower ptives your bill)
• A company would like to choose the best Savings Plan and forecast its cost in the next 3 months. Which AWS service can help?

Question 22

Monitoring against cost plans:

- Billing Alarm

Answer 22

in us-east-1 - track overall and per-service billing

• Billing Alarms in cloud watch
• It for actual cost, not for project costs

Question 23

budgets

Answer 23

More advanced - tract usage, cost, RI, and get alerts

• Created budget and send alarm when costs exceeds the budget
• What can you use to get alerts when your costs and usage are exceeding or are forecasted to exceed your budgeting amount?

Question 24

Saving Plans

Answer 24

Easy way to save based on long-term usage of AWS

Question 25

Multi account strategies

Answer 25

• Create account per department, per cost center, pr dev/test.prod
• based on regulatory restriction (using SCP)

Question 26

Organizational units (OU)

Answer 26

• Business unit
• Environment unit
• Project unit

Question 27

4 pricing models

Answer 27

• Pay as you go: pay for what you use, remain agiles, responsive, meet scale demands
• Save when you reserve: minimized risk, predictably, manages budgets, comply with long-term requirements
• When you reserve, the larger the upfront payment, the smaller the discount. ( no the bigger the discount )
• Pay less by using more: volumes-based discounts
• Pay less a AWS grows

Free service & free tier on AWS
- Feature, 12 month

Question 28

Compute pricing - EC2

Answer 28

• Only charged for what you use
• On demand instance: MOST cost efficient for an uninterruptible workload that runs once a year for 24 hours, Minimum of 60s, Pay per second (linux/windows) or per hour (other

(You are running an on-demand Linux EC2 instance, what timing is applied regarding billing? per-second)

• Reserved instance:Up to 75% discount compared to on-demand on hourly rate , 1- or 3- years commitment
• spot instance : Up to 90% discount compared to on-demand on hourly rate, Bid for unused capacity
• Dedicated Host : Reserved for 1 year or 3 year commitment
• saving planning as an alternative to save on sustained usage

-

Question 29

Content Delivery - Cloudfront

Answer 29

• Pricing is different across different geographic region
• Aggregate for each edge location, then applied to your bills
• Data transfer out (volume discount)
• Number of HTTP/HTTPS request

CloudFront pricing is the same in every geographic region.
- false

Question 30

Networking cost in AWS per GB

Answer 30

• Used private ip indeed of public ip to communicate with ec2 instance for good saving and better network performance
• Saving Plan: Commit a certain $ amount per hour for 1- 3 years
• Ec2 saving plan: Up to 72% discount compared on-demad
• Commit to usage of individual instance families in a region (eg C5 or M5)
• Compute saving plan:
  Up to 66% discount compared to on-demand
• Regardless of family, region, size, OS, tenancy, compute options

Question 31

AWS trusted Advisor

5 categories

Answer 31

• Cost optimization
• Performance
• Security
• Fault tolerance
• Service limits

A company would like recommendations regarding its performance, security, and fault tolerance. What can it use?

Question 32

trusted Advisor - Support plan

Answer 32

• 7 core check Basic & developer support plan
• S3 bucket permission
• Security groups- Specific port unrestricted
• IAM use (one IAM user minimum)
• MFA on root account
• EBS public snapshots
• RDS public snapshots
• Service limits

Question 33

trusted Adviso

Full checks Business & enterprise support plan

Answer 33

• Full checks available on 5 categories
• Ability to set cloudwatch alarms when reaching limites
• Programmatic access using AWS support API

Question 34

AWS support plan pricing

• Base support plan pricing free

Answer 34

• Customer service & communities - 24x7 access to customer service, documentation whotpaper and support forums
• AWs Trusted Advisor- Access to the 7 core Trusted advisor check and guidance to provision your resources following best practices to increase performance and improve security
• AWS personal health dashboard - a personalized view of the health of the Aws service and alerts when your resource are impacted

Question 35

AWS developer support plan

Answer 35

• All basic support plan +
• business horse email access to cloud support associates
• Unlimited cases / Primary contact

Case severity / response time
- General guidance < 24 business hours

• System impaired: < 12 business hours

Question 36

AWS Business support Plan (24/7)

Answer 36

• Intended to be used if you have production workloads
• Trusted advisor - full set of check + API access
• 24x7 phone, email, and chat access to cloud support engineers
• Unlimited case / unlimited contacts
• Access to infrastructure event management for addition fee

Case severity / response time:

• General guidance < 2 business hours
• System imparied < 12 businesses hours
• Production system impaired < 4 hours
• Production system down < 1 hours

What is the most cost-effective option to have 24x7 phone, email, and chat support?

Question 37

AWS Enterprise Support Plan (24/7)

Answer 37

• Intended to be used if you have mission critical workload
• All of business support plan+
• Access to a Technical Account manager (TAM)
• Concierge Support Team (for billing and account best practices)
• Infrastructure event management, well-architecture & operations reviews

Case severity / response times

• General guidance < 24 business hours
• System impaired: < 12 business hours
• Production system impaired: < 4 hours
• Production system down < 1hours
• Business- critical system down: < 15 minutes

The Enterprise Support Plan comes with a business-critical system down response under 15 minutes and offers access to a Technical Account Manager, as well as a Concierge Support Team.

Question 38

Free service & free tier on AWS

Answer 38

IAm
VPC
consolidated billing 
(you do pay for the resource created
Elastic billing 
cloudformation 
auto scaling group

Which services are free to use in AWS?

Question 39

Storage Pricing - S3

Answer 39

• Number and size of object: price can be tiered (based on volume)
• storage class
• Number and types of requests
• Data transfer out of S3 region
• S3 Transfer Acceleration
• Lifecycle transition
• Similar service - EFS 9pay per use, has infrequent access & lifecycle rule)\
• Which of the following is NOT a pricing factor in S3?

data transfer into S3

Question 40

Another way used Storage pricing - EBS

Answer 40

The added data storage by EBS Snapshots are added cost in GB per month to EBS pricing. Other EBS pricing factors are: Volume type, Provisioned storage volume, IOPS, etc.

• EBS Snapshots are added cost in GB per month.
  yes

Question 41

compute saving plan

Answer 41

Which of the following options can provide up to 66% discount compared to On-demand for a commitment to a consistent amount of usage for 1 or 3 years and offers the possibility to change EC2 instances family type?

Question 42

Pricing model in AWS

Answer 42

• Pay as you go: pay for what you use, remain agiles, responsive, meet scale demands
• Save when you reserve: minimized risk, predictably, manages budgets, comply with long-term requirements
  Reservation are available for EC2 reserved instance, DynamoBD reserved, capacity, Elasticache reserved, nodes, RDS reserved instance, redshift reserved nodes
• Pay less by using more : volumes-based discounts
• Pay less a AWS grows

Which pricing model allows you to minimize risks, predictably manage budgets, and comply with long-term requirements, and is available for EC2, DynamoDB, ElastiCache, RDS, and Redshift? save reserve

Question 43

Database pricing -RDS

Answer 43

-Which RDS pricing option is the most cost-effective if you need capacity for 3 years?
Reserved Instances are good and more cost-effective (up to 69% discount compared to On-demand pricing, depending on the upfront) for long workloads. You can reserve instances for 1 or 3 years in RDS.

• per hour billing