AWS Backup Primer Flashcards

1
Q

What are Service-native backups and snapshots?

A

Backups that are tightly integrated with the service they support [for example, making a daily snapshot for Amazon Relational Database Service (Amazon RDS) through the RDS console].

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

When do Service-native solutions work best?

A

When you have no auditing requirements for the service and you are only required to back up a limited number of AWS services.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What is a centralized policy-based backup and snapshots solution?

A

You can centralize, simplify, and automate data protection across the AWS services, in the cloud, and with on-premises solutions with one administrative console.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What are recovery point objective (RPO)?

A

How far back in time you can go to recover the data. How much data loss can you tolerate?

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What are recovery time objective (RTO)?

A

The maximum amount of time that your business can be down or offline without affecting the business.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What are audit and compliance objectives?

A

Some businesses are regulated by external entities and are required to comply to a monitored set of operational standards.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What gets backed up for an EC2 instance?

A

The root Amazon EBS storage volume
Launch configurations
All associated EBS volumes
Amazon Machine Image (AMI), including all launch configurations

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Where does an EC2 backup to?

A

The backup data for compute is stored as an Amazon EBS volume-backed AMI, which is then stored by AWS Backup within an Amazon Simple Storage Service (Amazon S3) bucket.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What configuration parameters are stored for an EC2 instance?

A
Instance type
    Security groups
    Amazon Virtual Private Cloud (Amazon VPC)
    Monitoring configuration
    Tags
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What doesn’t get backed up for an EC2 instance?

A

Configuration of the Elastic Inference accelerator, if it is attached to the instance

User data used when the instance was launched
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

How does AWS Backup interact with Amazon EBS?

A

You can back up the data on your Amazon EBS volumes to Amazon S3 by taking point-in-time snapshots. A snapshot takes a copy of the EBS volume and places it in Amazon S3, where it is stored redundantly in multiple Availability Zones. The initial snapshot is a full copy of the volume; ongoing snapshots store incremental block-level changes only.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

How does AWS Backup interact with Amazon EFS?

A

You can use AWS Backup to back up all data in an EFS file system, whatever storage class the data is in.

AWS Backup performs incremental backups of EFS file systems. During the initial backup, a copy of the entire file system is made. During subsequent backups of that file system, only files and directories that have been changed, added, or removed are copied.

You can restore the entire file system or restore specific individual files and directories.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What are the cost saving and optimization benefits to using AWS Backup for EFS?

A

Tiering backups to cold storage to reduce storage costs

Cost allocation tagging for use with AWS Cost Explorer

EFS backups can also be transitioned to lower tier storage, which helps in optimizing costs.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

How does AWS Backup interact with Amazon RDS?

A

Amazon RDS creates a storage volume snapshot of your DB instance, backing up the entire DB instance and not just individual databases.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

How does AWS backup interact with Aurora clusters?

A

Supports the creation, management, and restoration of Aurora backups directly from the AWS Backup console for both PostgreSQL-compatible and MySQL-compatible versions of Aurora.

copy a snapshot within and across AWS Regions.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

How does AWS Backup interact with Neptune?

A

Supports continuous and incremental Neptune backups, so you can restore to any point within the backup retention period (no performance impact or interruption of database service occurs as backup data is being written)

Lets you specify a backup retention period, from 1 to 35 days, when you create or modify a DB cluster

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

How does AWS Backup interact with DynamoDB tables?

A

Store backups in encrypted backup vaults, which you can secure with AWS Backup Vault Lock, backup policies, and encryption keys.

Backups inherit tags from their source DynamoDB tables, so you can use those tags to set permissions and service control policies (SCPs).

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

How does AWS Backup interact with DocumentDB?

A

Supports a single data protection policy in AWS Backup to automate the creation of independent, immutable, and protected snapshots of Amazon DocumentDB clusters across AWS Regions or accounts and restore your clusters from these snapshots

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
19
Q

What are the three key benefits of AWS Backup support for VMware?

A

Centrally manage data protection: Provides an automated, centrally managed backup location.

Improve backup compliance: Provides built-in controls for VMware backups so you can track backup and restore operations and generate auditor-ready reports.

Flexible restore options: Provides a single-click restore experience so you can restore VMware backups on-premises and in VMware Cloud on AWS.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
20
Q

How does AWS Backup integrate with AWS Storage Gateway Volume?

A

You can back up on-premises applications that use Storage Gateway volumes for cloud-backed storage.
Supports backup and restore of both cached and stored volumes

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
21
Q

How is AWS Backup priced?

A

Different services are priced differently, so the pricing is unique to each service. The storage amount billed in a month is based on the average storage space used throughout the month and the charges appear on your bill next to each service; for instance, Amazon EC2, Amazon RDS, or Amazon S3.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
22
Q

How is AWS Backup pricing determined?

A

The amount of storage you use

The service being used

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
23
Q

Which EC2 configuration parameters does AWS Backup back up?

A

Instance type
Security groups and Amazon Virtual Private Cloud (Amazon VPC)
Monitoring configuration and tags

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
24
Q

What are the three ways to access AWS Backup?

A

AWS Management Console through the graphical user interface
AWS Backup API for easy plugin
AWS Software Development Kits (SDKs) for added application ties and development

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
25
Q

What is transition to cold storage?

A

Resource types, such as Amazon EFS and DynamoDB, can be transitioned by AWS Backup to cold storage automatically. When available, use this feature to reduce storage costs.

26
Q

How long does recovery points have to remain in cold storage?

A

The recovery points that AWS Backup transitions to cold storage must remain there for at least 90 days.

27
Q

How long can snapshots be retained?

A

Snapshots can be retained between 1 day and 100 years (or indefinitely, if you do not enter a retention period), and continuous backups between 1 and 35 days.

28
Q

What is the benefits of cross-region copy?

A

Quickly restore from backups in the new AWS Region to reduce risk of downtime and ensure that disaster recovery and business continuity requirements are met.

29
Q

What is cross-account copy?

A

Store a backup copy in another account’s vault using the external vault Amazon Resource Name (ARN) or a different vault within the same account to provide multiple levels of security to your backups.

30
Q

What are recovery point tags?

A

Tags are key-value pairs that you can assign to specific resources to help you identify, organize, and filter your resources and backups.

31
Q

What is application-consistent backup?

A

Backup and restore your Volume Shadow Copy Service (VSS) enabled Microsoft Windows applications, including Windows Server, Microsoft SQL Server, Exchange Server, and SharePoint running on EC2 instances.

32
Q

What is a resource type?

A

includes every instance or resource of an AWS service or third-party application supported by AWS Backup.

33
Q

What is a resource?

A

is a single instance of a resource type, such as a specific EBS Volume ID. You can specify a resource using its unique resource ID.

34
Q

What are tags?

A

you can automate to include and ensure compliance for any new resources created and protected by this backup plan.

35
Q

What are some of the quotas in AWS Backup?

A

The following quotas apply to a single resource assignment in AWS Backup:

500 Amazon Resource Names (ARNs) without wildcards

30 ARNs with wildcard expressions

30 conditions

30 tags per resource assignment
36
Q

Which options are available when creating a new backup plan?

A

Define a plan using JavaScript Object Notation (JSON)
Build a new plan
Start with a template

37
Q

Which parameters are included when configuring a backup rule?

A

Backup frequency
Resource type
Backup window

38
Q

Which parameters are includes when configuring resource assignments?

A

AWS Identity and Access Management (IAM) role
Resource type
Resource assignment name

39
Q

What method does NOT result in a default backup vault being created?

A

AWS CLI
AWS SDK
AWS CloudFormation

40
Q

What are the requirements for a backup vault?

A

Backup vault names are case sensitive.

Backup vault names must contain 2–50 alphanumeric characters, hyphens, or underscores.

41
Q

How does AWS Backup work with AWS Organizations?

A

You can turn on organization-wide backup protection and monitoring using AWS Backup. This helps you achieve compliance by using backup policies to centrally apply AWS Backup plans to resources across all the accounts in your organization.

42
Q

What are the data protection benefits of using AWS Backup and AWS Organizations together?

A

A backup policy combines a backup plan with the other details required to apply the plan automatically to your accounts.

Policies attached to an account are merged with policies inherited from the organization’s root and any parent organizational unit (OU) to create an effective policy that applies to the account.

43
Q

What are the backup monitoring benefits of using AWS Backup and AWS Organizations together?

A

When you turn on trusted access for AWS Backup you can:
Use the AWS Backup console to view details about the backup, restore, and copy jobs in any of the accounts in your organization.

AWS Backup requires trusted access with AWS Organizations for monitoring of backup, restore, and copy jobs across your organization’s accounts.

44
Q

What type of security does the AWS Backup Vault Lock feature use?

A

Write-once, read-many (WORM)

45
Q

What are the benefits of having multiple backup vaults?

A

Limits who can access recovery points.
Limits the ability to delete backups.
Separates permissions.

46
Q

In Amazon CloudWatch metrics, what is the function of a namespace?

A

A container to hold CloudWatch metrics

47
Q

Which event notifications does AWS Backup support?

A

Recovery point jobs
Copy jobs
Backup and restore jobs

48
Q

What is AWS Backup Audit Manager?

A

A built-in service that automatically detects violations of your defined data protection policies and prompts you to take corrective actions.

49
Q

What is ‘backup resources protected by backup plan’ control?

A

This control helps identify gaps in your backup coverage, by a tag, by type, or a particular resource.

50
Q

What is the ‘backup plan min freq and min retention’ control?

A

Governs how frequently the backup plan should be taking backups and for how long recovery points should be maintained.

51
Q

What is the ‘backup prevent recovery point manual deletion’ control?

A

Up to five IAM roles allowed to manually delete recovery points if there are exceptions.

52
Q

What is ‘backup recovery point encrypted’ control?

A

Evaluates if the backup recovery points are encrypted.

53
Q

What is ‘backup recovery point min retention’ control?

A

Specify parameters ensuring that selected resources have valid recovery points in your backup vault and that the recovery points are retained for at least the specified backup recovery point minimum retention period.

54
Q

What are AWS Audit Manager reports?

A

These reports can illustrate to any third party auditor that you are adhering to the regulations required by your particular industry and its set of regulations.

55
Q

What is the AWS Audit manager report format and limits?

A

AWS Backup Audit Manager delivers a daily report in CSV, JSON, or both formats to your Amazon S3 bucket.

You can also run an on-demand report anytime.
You can have a maximum of 20 report plans per AWS account.

56
Q

What is an AWS Backup Audit report plan?

A

Similar to a backup plan, you create a report plan to automate the creation of your reports and define their destination Amazon S3 bucket.

57
Q

What is an AWS Backup Audit report template?

A

A report template defines the information you want included in your report.

58
Q

How does AWS Backup Audit Manager use controls?

A

To audit the adherence of a backup requirement

59
Q

What does a report plan require before you run reports?

A

An S3 bucket for storage

60
Q

What is cross-account management?

A

It allows them to set, change, and manage policies and resources for hundreds or thousands of accounts within a single view.

61
Q

What is cross-region copy?

A

Customers can easily build policies around a multiple-Region scheme for recovery in event of disaster or significant downtime.

62
Q

What is cross-account backup?

A

Being able to back up to another account within an AWS Organization can help you increase your footprint for recoverable data.