Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

AWS Certified Solutions Architect > Architecture > Flashcards

Architecture Flashcards

1
Q

What are the differences between Kinesis Data Streams and Firehose

A
  • Data Streams is a low latency streaming service in AWS Kinesis with the facility for ingesting at scale.
  • Kinesis Firehose aims to serve as a data transfer service.
  • Users must employ manual configuration for shards to ensure proper provisioning of KDS.
  • Kinesis Data Firehose comes forward as a fully managed service.
  • In the case of data streams, you can configure data storage for holding data from one to seven days.
  • Firehose does not provide any facility for data storage.
  • Kinesis Data Streams supports real-time processing.
  • Kinesis Data Firehose features near real-time processing.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

In which frequency does Trusted Advisor evaluate your AWS environment?

A

Trusted Advisor continuously evaluates your AWS environment

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

How does AWS Trusted Advisor help you?

A
  • optimize costs,
  • increase performance,
  • improve security and resilience,
  • operate at scale in the cloud.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

How can you Identify Amazon EC2 instances with low-utilization, and reduce cost by stopping or rightsizing?

A

Use AWS Cost Explorer Resource Optimization to get a report of Amazon EC2 instances that are either idle or have low utilization.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

How can AWS support your MQTT implementation?

A

AWS IoT Core is a fully managed service that lets you connect billions of IoT devices and route trillions of messages to AWS services.

Amazon MQ supports industry-standard messaging protocols like AMQP and MQTT.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What is Amazon MQ

A

Amazon MQ is a managed message broker service for Apache ActiveMQ and RabbitMQ.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What are Amazon MQ use cases?

A
  • Low-latency event messaging
  • Migrate with flexible configurations
  • Invoke AWS Lambda functions
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What is the AWS service recommended when you want to build an application that reacts to events from SaaS applications and/or AWS services.

A

Amazon EventBridge is recommended when you want to build an application that reacts to events from SaaS applications and/or AWS services.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What is the main purpose of SNI?

A

The main purpose of SNI is to facilitate virtual hosting for secure connections (HTTPS). With SNI support AWS makes it easy to use more than one certificate with the same ALB.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What is SNI?

A

SNI stands for Server Name Indication (SNI)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

The following are supported as CloudWatch alarm actions.

A
  • SNS
  • Lambda function.
  • EC2 actions, such as stopping
  • Auto Scaling group actions
  • Create OpsItems in Systems Manager Ops Center or create incidents in AWS Systems Manager Incident Manager.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Which performs best to migrate hundreds of terabytes AWS DataSync, File Gateway or S3TA?

A
  1. AWS DataSync: DataSync is a data transfer service specifically designed for efficient large-scale data transfers. It utilizes parallel data transfer streams and employs optimizations such as bandwidth throttling and automatic recovery from failures, making it highly performant for large data migrations.
  2. File Gateway is a part of the AWS Storage Gateway service, which enables on-premises applications to seamlessly use AWS cloud storage.
  3. S3TA is a feature of Amazon S3 that optimizes data transfers over long distances or poor network conditions.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

By default, is cross-zone load balancing is enabled for Application Load Balancer and for Network Load Balancer?

A

By default, cross-zone load balancing is enabled for Application Load Balancer and
disabled for Network Load Balancer

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Which storage services on the cloud can be directly loaded from AWS Snowball Edge ?

A
  • Amazon S3 (Simple Storage Service)
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

What Account management tasks that require root credentials?

A
  • Change your account settings.
  • Restore IAM user permissions.
  • Close your AWS account.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

What Billing Tasks that require root credentials?

A
  • Activate IAM access to the Billing and Cost Management console.
  • View certain tax invoices.
17
Q

What Amazon Simple Queue Service Task require root credentials?

A
  • Edit or delete an Amazon SQS resource policy that denies all principals.
17
Q

What Amazon Simple Storage Service Tasks require root credentials?

A
  • Configure an Amazon S3 bucket to enable MFA (multi-factor authentication).
  • Edit or delete an Amazon S3 bucket policy that denies all principals.
18
Q

What are AWS Storage Gateway solutions?

A

File Gateway: NFS; SMB; 64TB local cache;
Volume Gateway (cached): iSCSI; 32 volumes; 32tb cache
Volume Gateway (stored): iSCSI; 32 volumes; 16tb cache;
Volume Gateway (tape): iSCSI; Glacier

19
Q

Whats are the services covered by AWS Firewall Manager​

A
  • AWS WAF
  • AWS Shield Advanced
  • Amazon VPC security group
  • Amazon VPC network ACL
  • AWS Network Firewall
  • DNS Firewall
  • Palo Alto Networks Cloud Next Generation Firewall
  • Fortigate CNF
20
Q

How do we choose Redis or memcached?

A

Redis
- Advanced data structures
- Snapshots
- Replication
- Pu/Sub
- Geospatial
- Lua support
Memcached
- Multithreaded architecture

21
Q

What are the default, minimum and maximum values for SQS visibility timeout?

A

Default: 30 seconds
Minimum: 0 seconds.
Maximum: 12 hours.

22
Q

Which service helps you save development time and deployment costs when using common message patterns such as request-response?

A

Temporary queues

23
Q

What are the ideal storage for Electronic Design Automation (EDA)?

A
  • FSx for NetApp Ontap
  • FSx for Lustre
24
Q

How CloudFront can help with resiliency?

A

Amazon CloudFront offers an origin failover feature to help support your data resiliency needs.

25
Q

Which service enables fast regional failover?

A

AWS Global Accelerator

26
Q

What are the SQS FIFO throughputs?

A
  • up to 3,000 messages per second with batching
  • up to 300 messages per second without batching.
  • up to 70,000 messages per second without batching (high throughput mode)
27
Q

What are AWS Global Accelerator benefits?

A
  • Improve network performance for your applications by up to 60%.
  • Protect your applications from DDoS attacks closer to the source.
  • Simplify allowlisting in enterprise firewalling and IoT use cases.
  • Route traffic to the nearest Region or achieve fast failover across Regions.
28
Q

Amazon S3 Transfer Acceleration can speed up content transfers to and from Amazon S3 by:

A

as much as 50-500% for long-distance transfer of larger objects.

29
Q

How should I choose between S3 Transfer Acceleration and Amazon CloudFront’s PUT/POST?

A

CloudFront’s PUT/POST commands if:
- Objects that are smaller than 1 GB or if
- The data set is less than 1 GB in size

30
Q

Which one requires the LEAST operational overhead: Transit Gateway or Transit VPC?

A

Transit Gateway

AWS Certified Solutions Architect (21 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2025 Bold Learning Solutions. Terms and Conditions