Answers I got wrong before on exams Flashcards
(26 cards)
Can Lamda get execution access to an S3 bucket in another account?
Yes, using an IAM lamba execution role and bucket policy on the bucket
Can I write directly to Glacier?
No, only data stored in S3 can be moved to glacier, using lifecycle rules
What does VPC sharing do?
VPC sharing allows customers to share subnets with other AWS accounts within the same AWS Organization
Why would I want to use Enhanced Fanout with Kinisis Streams?
By default, the 2MB/second/shard output is shared between all of the applications consuming data from the stream. You should use enhanced fan-out if you have multiple consumers retrieving data from a stream in parallel.
With enhanced fan-out developers can register stream consumers can receive their own 2MB/second pipe of read throughput per shard, and this throughput automatically scales with the number of shards in a stream.
What is Opsworks?
It is AWS’s version of Chef (recipes) and Puppet (manifest) - which is used to create launch templates. Opworks can store various versions of these launch templates and is therefore a better solution than S3 for Chef questions.
Think Deployment as code. Both are open source, and both are multi-cloud compatible.
What are sticky sessions?
Sticky sessions are a rule in the load balancer that direct all traffic to the EC2 instance that was first contacted by the user. If all traffic goes to ONE EC2 instance behind any load balancer, it’s a good idea to disable Sticky sessions.
What is ECR
Elastic Container Registry- Where you can store Docker images.
What is RPO
Recovery Point Objective- How recent is the Lookback- so how many hours of work can you lose, for example?
What is RTO
Recovery Time Objective- How soon do you need the system back online?
You have set-up a direct connection between your Corporate Data Center and your VPC A. You need to access VPC B in another region from your Corporate Data Center as well. What should you do?
Set up Direct Connect Gateway
Does S3 always return the latest version of an object?
Yes
How can I modify the launch configuration for an AutoScaling group?
You can’t. You’d have to make a new one, then attach it to the ASG and delete the older launch configuration.
What are Auto Scaling group lifecycle hooks?
enable you to perform custom actions as the Auto Scaling group launches or terminates instances. Lifecycle hooks enable you to perform custom actions by pausing instances as an Auto Scaling group launches or terminates them. When an instance is paused, it remains in a wait state either until you complete the lifecycle action using the complete-lifecycle-action command or the CompleteLifecycleAction operation, or until the timeout period ends (one hour by default). For example, you could install or configure software on newly launched instances, or download log files from an instance before it terminates.
What are Auto Scaling group lifecycle hooks?
enable you to perform custom actions as the Auto Scaling group launches or terminates instances. Lifecycle hooks enable you to perform custom actions by pausing instances as an Auto Scaling group launches or terminates them. When an instance is paused, ‘wait’s either until you complete the lifecycle action using the ‘complete-lifecycle-action’ command or the ‘CompleteLifecycleAction’ operation, or until the timeout period ends (one hour by default). For example, install or configure software on new instances, or download logs from an instances before it terminates.
What is CloudWatch Logs Agent?
Send logs from my instance OS to CloudWatch for capture. Works well for AutoScaling groups
Can I scale Availability Zones and Regions with Auto Scaling Groups?
Availability Zones: Yes
Regions: No
A company hires experienced specialists to analyze the customer service calls attended by its call center representatives. Now, the company wants to move to AWS Cloud and is looking at an automated solution to analyze customer service calls for sentiment analysis and security.
As a Solutions Architect, which of the following solutions would you recommend?
Use Amazon Transcribe to convert audio files to text and Amazon Athena to understand the underlying customer sentiments
What is a Security Group?
A security group acts as a virtual firewall that controls the traffic for one or more instances.
What is AWS Ops Hub
A way to manage and coordinate large fleets of Snowball devices
What is SNI in the context of SSL
Server Name Indication (SNI) allows the server to safely host multiple TLS Certificates for multiple sites. To use SNI, all you need to do is bind multiple certificates to the same secure listener on your load balancer. ALB will automatically choose the optimal TLS certificate for each client.
What is Amazon MQ
Amazon MQ is a Message Broker that uses Apache to make a message queue that is a go-between to help applications that normally can’t talk to eachother work in a chain together, based on sending and recieving messages.
As part of the on-premises data center migration to AWS Cloud, a company is looking at using multiple AWS Snow Family devices to move their on-premises data.
Which Snow Family service offers the feature of storage clustering?
AWS Snowball Edge Compute Optimized
What is Amazon Event Bridge?
Amazon EventBridge is recommended when you want to build an application that reacts to events from SaaS applications and/or AWS services.
What is Amazon Event Bridge?
Amazon EventBridge is recommended when you want to build an application that reacts to events from SaaS applications and/or AWS services. Amazon EventBridge is the only event-based service that integrates directly with third-party SaaS partners. Amazon EventBridge also automatically ingests events from over 90 AWS services without requiring developers to create any resources in their account.
