AWS

Question 1

Summarize the benefits of AWS

Answer 1

1. Scalability: Allows users to scale resources up or down based on demand
2. Cost Efficiency: Uses a pay as you go model which eliminates the need for costly upfront hardware investments
3. Global Reach: Operates in multiple regions worldwide, providing low latency access and high availability
4. Security: Including data encryption, access control, and compliance with industry standards.
5. Reliability: Designed for high availability with multiple data centers and redundancy built into its services.

Question 2

What is on-demand delivery?

Answer 2

Service where products or goods are delivered to customers quickly, within hours or minutes, based on real time requests.

Question 3

What are cloud deployments?

Answer 3

Provisioning and configuring AWS resources (compute, storage, networking, ect) to run applications and services.

Question 4

What are 4 types of Cloud Deployments?

Answer 4

1. Public Cloud: AWS manages shared resources for multiple customers
2. Private Cloud: Dedicated AWS resources for a single organization
3. Hybrid Cloud: Combines on-premises and AWS resources
4. Multi-Cloud: Uses multiple cloud provider (e.g…AWS + Azure)

Question 5

Summarize the pay as you go pricing model

Answer 5

Customers pay only for the resources they use, with no upfront costs or long-term commitments.

Question 6

What is a client-server model?

Answer 6

A network architecture where a client (requester) sends requests for services or resources to a server (provider), which processes and responds.

The client typically interacts with the user, while the server manages and delivers data or services.

Question 7

What is cloud computing?

Answer 7

The delivery of computing services over the internet, allowing users to access and use resources on demand without managing physical infrastructure.

Question 8

What are the three cloud computing deployment models?

Answer 8

1. Cloud-Based: Runs all parts of the application in the cloud. Migrates existing and designs new applications to the cloud.
2. On-Premises: Private cloud deployment where resources are deployed using virtualization and resource management tools.
3. Hybrid: Cloud based resources are connected to on premises infrastructure.

Question 9

What is cloud computing?

Answer 9

On-demand delivery of IT resources and applications through the internet with pay as you go pricing

Question 10

What is another name for on-premises deployment?

Answer 10

Private cloud deployment

Question 11

How does the scale of cloud computing help you to save costs?

Answer 11

The aggregated cloud usage from a large number of customers results in lower pay as you go prices.

Question 12

What are the benefits of EC2 at a basic level?

Answer 12

Scalability, Cost effective, flexibility, high availability, and customizable.

Question 13

What are different types of AWS EC2 instance types?

Answer 13

1. General Purpose: Balanced for diverse workloads
2. Compute Optimized: high performance compute needs
3. Memory Optimized: For memory-intensive tasks
4. Storage Optimized: For high disk throughput
5. Accelerated Computing: GPU/FPGA-based tasks

Question 14

What are the benefits of EC2 Auto Scaling?

Answer 14

1. Improved Availability: Automatically replaces unhealthy instances to maintain application health
2. Cost efficiency: Scales instances up or down based on demand, reducing unnecessary costs
3. Flexibility: Adapts to varying workload patterns

Reliability: Ensures consistent performance by maintaining the right instance count.

Question 15

Which EC2 instance type is suitable for data warehousing applications?

Answer 15

Storage Optimized

Question 16

Which Amazon EC2 instance type balances compute, memory, and networking resources?

Answer 16

General purpose

Question 17

Which EC2 instance type is ideal for high performance databases?

Answer 17

Memory optimized

Question 18

Which EC2 instance type offers high performance processors?

Answer 18

Compute optimized

Question 19

What are the 5 EC2 pricing categories?

Answer 19

1. On-Demand: Pay for instances by the second or hour, with no upfront commitment
2. Reserved: Commit to 1 or 3 years for significant discounts; options include standard, convertible, and scheduled.
3. Spot: Bid for unused capacity at reduced rates
4. Dedicated Hosts: Pay for a physical server for regulatory or licensing requirements
5. Savings Plans: Commit to consistent usage for 1 or 3 years, offering flexibility and cost savings

Question 20

Which amazon EC2 pricing option provides a discount when you specify a number of EC2 instances to run a specific OS, instance family and size, and tenancy in one Region?

Answer 20

Standard Reserved Instances

Question 20

Which Amazon EC2 pricing option provides a discount when you make an hourly spend commitment to an instance family and Region for a 1year or 3 year term?

Answer 20

EC2 Instance Savings Plans

Question 21

What is the microservices approach?

Answer 21

Application components are loosely couple. If a single component fails, the other components continue to work because they are communicating with each other. The loose coupling prevents the entire application from failing.

Question 22

What is Amazon Simple Notification Service?

Answer 22

A publish/subscribe service where a publisher publishes a message to subscribers.

Question 23

What is Amazon Simple Queue Service?

Answer 23

Service where you can send, store, and receive messages between software components, without losing messages or requiring other services to be available.

Question 24

Which AWS service is the best choice for publishing messages to subscribers?

Answer 24

Amazon Simple Notification Service (SNS)

Question 25

What does the term “Serverless” mean?

Answer 25

Your code runs on servers, but you do not need to provision or manage these servers. You can focus on innovating new products instead of maintaining servers.

Question 26

What is AWS Lambda?

Answer 26

A service that lets you run code without needing to provision or manage servers.

Question 27

How does AWS Lamda Work?

Answer 27

1. You upload your code to Lambda
2. You set your code to trigger from an event source, such as AWS services, mobile applications, or HTTP endpoints
3. Lambda runs your code only when triggered
4. You pay for the compute time that you use.

Question 28

What are containers?

Answer 28

A standard way to package your application’s code and dependencies into a single object.

Question 29

What is Amazon Elastic Container Service (ECS)?

Answer 29

A highly scalable, high performance container management system that enables you to run and scale containerized applications on AWS.

Question 30

What is Amazon Elastic Kubernetes Service (EKS)?

Answer 30

A fully managed service that you can use to run Kubernetes on AWS. Enables you to deploy and manage containerized applications at scale.

Question 31

You want to use an Amazon EC2 instance for a batch processing workload. What would be the best Amazon EC2 instance type to use?

Answer 31

Compute Optimized

Question 32

You have a workload that will run for a total of 6 months and can withstand interruptions. What would be the most cost efficient EC2 purchasing option?

Answer 32

Spot Instance

Question 33

Ensuring that no single Amazon EC2 instance has to carry the full workload on its own is an example of what?

Answer 33

Elastic Load Balancing

Question 34

What is an Availability Zone?

Answer 34

A single data center or group of data centers within a Region.

Question 35

What are Edge Locations?

Answer 35

Sites that Amazon Cloudfront uses to store cached copies of your content closer to your customers for faster delivery

Question 36

What is AWS Elastic Beanstalk?

Answer 36

You provide code and configuration settings, and the Elastic Beanstalk deploys the resources necessary to perform tasks such as adjust capacity, load balancing, automatic scaling, and application health monitoring.

Question 37

What is AWS CloudFormation?

Answer 37

Where your infrastructure is treated as code. You can build an environment by writing lines of code instead of using AWS Management console to individually provision resources.

Question 38

What is the role of Amazon Virtual Private Cloud (VPC)?

Answer 38

A VPC allows you to create a logically isolated section of the AWS Cloud where you can launch AWS resources in a virtual network that you define

Question 39

What are subnets in a VPC?

Answer 39

Subnets are ranges of IP addressed in a VPC, divided into public subnets and private subnets

Question 40

How does a public subnet different from a private subnet in a VPC?

Answer 40

a public subnet allows internet facing resources to communicate with the internet, while a private subnet is used for backend services without internet access

Question 41

What is a subnet in Amazon VPC?

Answer 41

A subnet is a section of a VPC that contains resources such as Amazon EC2 instances.

Question 42

What is an internet gateway in Amazon VPC?

Answer 42

A connection between a VPC and the internet, allowing public traffic to access VPC resources.

Question 43

What happens if there is no internet gateway in a VPC?

Answer 43

No public traffic can access the resources within the VPC.

Question 44

What is a virtual private gateway?

Answer 44

A component that enables a secure connection between a VPC and a private network, such as an on-premises date center, using a virtual private network.

Question 45

How does a virtual private gateway work?

Answer 45

It encrypts internet traffic, adding a protection as it travels from the private network to the VPC, allowing only approved network traffic.

Question 46

What is AWS Direct Connect?

Answer 46

A service that establishes a dedicated private connection between your data center and a VPC.

Question 47

What are network ACLs?

Answer 47

A virtual firewall that controls the inbound and outbound traffic at the subnet level. They perform STATELESS packet filtering.

Question 48

What are sercurity groups?

Answer 48

A virtual firewall that controls inbound and outbound traffic for an Amazon EC2 instance. They perform STATEFUL packet filtering.

Question 49

Briefly explain the steps of the Domain Name System (DNS)

Answer 49

1. Enter the domain name into the browser, this request is sent to a customer DNS resolver.
2. The customer DNS resolver asks the company DNs server for the IP address that corresponds to the company’s website.
3. The company DNS server responds by providing the IP address for the company’s website, 192.0.2.0

Question 50

What is Amazon Route 53?

Answer 50

A DNS web service that gives developers and businesses a reliable way to route end users to internet applications hosted in AWS.

Question 51

What feature allows you to register new domain names and manage their DNS records?

Answer 51

Amazon Route 53

Question 52

Which component can be used to establish a private dedicated connection between your company’s data center and AWS?

Answer 52

AWS Direct Connect

Question 53

They are stateful and allow all inbound traffic by default.

Answer 53

Security Groups

Question 54

Which component is used to connect a VPC to the internet?

Answer 54

Internet gateway

Question 55

What do Block Level Storage Volumes behave like?

Answer 55

Physical hard drives

Question 56

What does an Instance Store do?

Answer 56

Provides temporary block level storage for an Amazon EC2 instance

Question 57

What happens to an Instance Store when an instance is terminated?

Answer 57

You lose any date in the instance store

Question 58

What is Amazon Elastic Block Store (EBS)?

Answer 58

A service that provides block level storage volumes that you can use with Amazon EC2 instances. If you stop or terminate an EC2 instance, all the data on the attached EBS volume remains available.

Question 59

What is an EBS snapshot?

Answer 59

An incremental backup. The first backup taken of a volume copies all the data. For subsequent backups, only the blocks of data that have changed since the most recent snapshot are saved.

Question 60

What are two characterizes of the Amazon EBS service?

Answer 60

Best for data that requires retention

Separate drives from the host computer of an EC2 instance

Question 61

In object storage, what does each object consist of?

Answer 61

Data
Metadata
A Key

Question 62

What is Amazon Simple Storage Service (S3)?

Answer 62

A service that provides object level storage

Question 63

How does Amazon S3 store its data?

Answer 63

As objects in buckets

Question 64

What is the maximum file size for an object in Amazon S3?

Answer 64

5 TB

Question 65

You want to store data that is infrequently accessed but must be immediately available when needed. Which Amazon S3 storage class should you use?

Answer 65

S3 Standard-IA

Question 66

What is the ideal use case for file storage?

Answer 66

When a large number of services and resources need to access the same data at the same time

Question 67

What is Amazon Elastic File System (EFS)?

Answer 67

A scalable file system used with AWS Cloud Services and on premises resources. It scales automatically as you add or remove files

Question 68

How many Availability Zones does an Amazon EBS Volume store data in?

Answer 68

One.

Question 69

To attach an Amazon EC2 instance to an EBS volume, where must they reside?

Answer 69

In the same Availability Zone.

Question 70

Amazon EFS stores its data in how many Availability zones?

Answer 70

Multiple. It is a regional service.

Question 71

How is data stored in a relational database?

Answer 71

Data is stored in a way that relates it to other peices of data

Question 72

Amazon RDS is available on what six database engines?

Answer 72

1. Amazon Aurora
2. PostgreSQL:
3. MySQL
4. MariaDB
5. Oracle Database
6. Microsoft SQL Server

Question 73

What databases is Amazon Aurora compatible with?

Answer 73

MySQL (5 times faster) and PostgreSQL (3 times faster)

Question 74

How does Amazon Aurora help to reduce database costs?

Answer 74

It reduces unnecessary input/output (I/O) operations, while ensuring your database resources remain reliable and available.

Question 75

What kind of schemas do non relational databases have?

Answer 75

Simple schemas

Question 76

What are some key points about DynamoDB?

Answer 76

1. Non-relational NoSQL database
2. Purpose Built
3. Millisecond response time
4. Fully managed
5. Highly Scalable

Question 77

Why are nonrelational databases sometimes referred to as “NoSQL databases”?

Answer 77

They use structures other than rows and columns to organize data. (e.g. key value pairs)

Question 78

What is Amazon DynamoDB?

Answer 78

It is a key-value database service.
It delivers a single digit millisecond performance at any scale.
It is serverless and has automatic scaling

Question 79

What are differences between Amazon RDS and Amazon DynamoDB

Answer 79

Amazon RDS has automatic high availability and customer ownership of data, schema, and network.

Amazon DynamoDB has Key-value, massive throughput capabilities, PB size potential, and granular API access

Question 80

Name two scenarios where you should use Amazon RDS?

Answer 80

Using SQL to organize data

Storing data in an Amazon Aurora Database

Question 81

What does AWS Database Migration Service (DMS) enable you to do?

Answer 81

Enables you to migrate relational databases, nonrelational database, and other types of data stores.

You move data between a source database and a target database of same or different types.

Question 82

What is Amazon DocumentDB?

Answer 82

A document database service that supports MongoDB workloads

Question 83

What is Amazon Neptune?

Answer 83

A graph database service. works with highly connected datasets, such as recommendation engines, fraud detection, and knowledge graphs.

Question 84

What is Amazon Quantum Ledger Database (QLDB)?

Answer 84

A ledger database service that reviews a complete history of all the changes that have been made to your application data.

Question 85

What is Amazon Managed Blockchain?

Answer 85

A service that you can use to create and manage blockchain networks with open-source frameworks. Blockchains are a distributed ledger system that lets multiple parties run transactions and share data without a central authority.

Question 86

What is Amazon ElastiCache?

Answer 86

A service that adds caching layers on top of your database to help improve the read times of common requests. It supports two types of data stores: Redis and Memcached.

Question 87

What is Amazon DynamoDB Accelerator?

Answer 87

An in-memory cache for DynamoDB. It helps improve response times from single digit milliseconds to microseconds.

Question 88

Which Amazon S3 Storage classes are optimized for archival data? (2)

Answer 88

Amazon S3 Glacier Flexible Retrieval

Amazon S3 Glacier Deep Archive

Objects can be retrieved within a few minutes to a few hours.

Question 89

Which AWS service is best for storing data in an object storage service?

Answer 89

Amazon Simple Storage Service (S3)

Question 90

This statement best describes which Amazon Service? “A serverless key-value database service”

Answer 90

Amazon DynamoDB

Question 91

Which service is used to query and analyze data across a data warehouse?

Answer 91

Amazon Redshift

It collects data from many sources to help you understand relationships and trends across your data.

Question 92

Explain the AWS shared responsibility model in simple terms.

Answer 92

AWS controls security of the cloud. You control security in the cloud.

Question 93

When creating an IAM user how many permissions do they have by default?

Answer 93

0

Question 94

What is the Least Privilege Principle?

Answer 94

A user is granted access only to what they need. Be default they do not have access to anything.

Question 95

What is an IAM policy?

Answer 95

The way you grant or deny users permission utilizing JSON. It describes what API calls a user can or cannot make.

Question 96

What are the options for the “Effect” key for IAM policy?

Answer 96

Allow or deny

Question 97

What does the “Action” key do for IAM policies?

Answer 97

You can list any AWS API call.

Question 98

What does the “Resource” key do in IAM policies?

Answer 98

You can list which AWS resource the specific API call is for

Question 99

What are IAM Groups?

Answer 99

An easy way to provide access for multiple users.

Question 100

Explain AWS IAM roles.

Answer 100

Associated permissions that allow or deny access. They are assumed for temporary amounts of time.

Question 101

What is the root user?

Answer 101

The user that has complete access to all AWS services and resources in the account

Question 102

In AWS Organizations, where can you centrally control permissions for the accounts in your organization?

Answer 102

Service Control Policies (SCPs)

Question 103

What two identities and resources can be applied to Service control Policies in AWS Organizations?

Answer 103

An Individual Member Account

An Organizational Unit (OU)

Question 104

What is AWS Artifact?

Answer 104

A service that provides on-demand access to AWS security and compliance reports and select online agreements.

Question 105

What tasks can you complete in AWS Artifact?

Answer 105

Access AWS compliance reports on-demand

Review, accept, and manage agreements with AWS

Question 106

What is Distributed Denial of Service (DDoS)

Answer 106

A deliberate attempt from multiple sources to make a website or application unavailable to users.

Question 107

What is AWS Sheild?

Answer 107

A service that protects applications against DDoS attacks.

Question 108

What are the three parts of Amazon Inspector?

Answer 108

Network configuration reachability piece

Amazon agent

Security assessment service

Question 109

What does AWS Key Management Service (KMS) enable?

Answer 109

Enables you to perform encryption operations through the use of cryptographic keys: a random string of digits used for encrypting/decrypting data

Question 110

What is AWS WAF?

Answer 110

A web application firewall that lets you monitor network requests that come into your web applications. It uses web access control list (ACL) to block or allow traffic.

Question 111

What is a document that grants or denies permissions to AWS services and resources?

Answer 111

IAM policy

Question 112

An employee requires temporary access to create several Amazon S3 buckets. What service would be the best choice for this task?

Answer 112

IAM Role

Question 113

Granting only the permissions that are needed to perform specific tasks best describes what?

Answer 113

The Principle of Least Privilege

Question 114

Which service helps protect your applications against distributed denial of service (DDoS) attacks?

Answer 114

AWS Shield

Question 115

Which task can AWS Key Management Service (KMS) perform?

Answer 115

Create cryptographic keys

Question 116

What is Amazon CloudWatch?

Answer 116

A web service that enables you to monitor and manage various metrics and configure alarm actions based on data from those metrics.

Question 117

What are CloudWatch Alarms?

Answer 117

They automatically perform actions if the value of your metric has gone above or below a predefined threshold.

Question 118

Whta is AWS CloudTrail?

Answer 118

It records API calls for your account such as identity of the API caller, the time of the API call, and the source IP address of the API caller.

Question 119

What are two tasks you can perform using AWS CloudTrail?

Answer 119

Track user activities and API requests throughout your AWS infrastructure

Filter logs to assist with operational analysis and troubleshooting

Question 120

What is AWS Trusted Advisor?

Answer 120

A web service that inspects your AWS environment and provides real-time recommendations in accordance with AWS best practices

Question 121

What two actions can you perform using Amazon CloudWatch?

Answer 121

Monitor your resources’ utilization and performance

Access metrics from a single dashboard

Question 122

Which service enables you to review the security of your amazon S3 buckets by checking for open access permissions?

Answer 122

AWS Trusted Advisor

Question 123

What are two categories included in the AWS Trusted Advisor Dashboard?

Answer 123

Performance

Fault Tolerance

(Others include cost optimization, security and service limits)

Question 124

What are the 6 pillars of AWS Well Architected Framework?

Answer 124

Operational Excellence
Security
Reliability
Performance Efficiency
Cost Optimization
Sustainability