AWS Cloud Practitioner Services

Question 1

Elasticity

Answer 1

Scale resources up and down when needed

Question 2

Reliability

Answer 2

Fault tolerance and high availability

Question 3

Agility

Answer 3

Reduced infrastructure time and more access to emerging technologies

Question 4

Cloud Computing

Answer 4

On-demand delivery of pay-as-you-go services through a platform

Question 5

IaaS

Answer 5

Infrastructure as a service.

- E.g. traditional data center

Question 6

PaaS

Answer 6

Platform as a service.

E.g. deployment services configured by owner, AWS Elastic Beanstalk

Question 7

SaaS

Answer 7

Service as a service: no maintainance

Question 8

Public cloud

Answer 8

E.g. AWS

Question 9

Private cloud

Answer 9

On-prem cloud

Question 10

Hybrid cloud

Answer 10

E.g. cloud apps connected to private data center

Question 11

Region

Answer 11

• 1 geographic region
• Cluster of at least 2 AZ’s
• Multiple AZ minimizes failure

Question 12

Availability Zone

Answer 12

At least 1 data center

Question 13

Edge Locations

Answer 13

• Nodes in glocal CDN
• Used by CloudFront
• Used by Route 53
• Delivers content closest to users

Question 14

CapEx

Answer 14

Capitalized Expense:

• Upfront costs
• Minimal in cloud

Question 15

OpEx

Answer 15

Operational Expense:

• Operational costs
• Mirrors demand in cloud. Pay-as-you-go

Question 16

AWS Cost Explorer

Answer 16

• Explore costs
• Numbers broken to services, tags etc.
• Recommends cost optimization
• Access via API

Question 17

AWS Budgets

Answer 17

• Uses data from AWS Cost Explorer

- Cost per service, service usage, coverage etc.

Question 18

AWS TCO Calculator

Answer 18

Total costs to move to cloud

Question 19

AWS Simply Monthly Calculator

Answer 19

Costs for specific services

Question 20

AWS Resource Tags

Answer 20

Tag and explore costs

Question 21

AWS Organizations

Answer 21

• Organizations of accounts in master account
• Total bill cost
• Centralize and restrict security access

Question 22

AWS Support

Answer 22

AWS Personal Health Advisor + AWS Trusted Advisor + SomethingElse

Question 23

AWS Trusted Advisor

Answer 23

• Recommends best practices

- 7 core checks

Question 24

AWS Personal Health Dashboard

Answer 24

Alerts and remediation with AWS is experiencing events

Question 25

AWS Basic Support

Answer 25

• 7 core checks
• 24/7 customer service, forums, documentation and whitepapers
• AWS health dashboard
• Free

Question 26

AWS Developer Support

Answer 26

• Business hour access to support engineers
• 1 primary contact
• Response time (24/12 hours)

Question 27

AWS Business Support

Answer 27

• Full AWS Trusted Advisor checks
• 24/7 phone, email, chat with support engineers
• Unlimited number of contacts
• Response time (24/12/4/1 hours)

Question 28

AWS Enterprise Support

Answer 28

• Personal Technical Account Manager
• Concierge support team
• Response time (24/12/4/0.25 hours)

Question 29

AWS Console

Answer 29

Web/app interface for interactions with services

Question 30

AWS CLI

Answer 30

CL for console tasks

Question 31

AWS SDK

Answer 31

• Programming resources

- Supported: Java, .NET, Node.js, JavaScript, PHP, Python, Ruby, Go and C++

Question 32

When is AWS Console beneficial?

Answer 32

Testing services

Question 33

When is AWS CLI beneficial?

Answer 33

Automation of repeated tasks

Question 34

When is AWS SDK beneficial?

Answer 34

Automation of tasks with custom apps

Question 35

Compute Services

Answer 35

1. Amazon EC2
2. AWS Elastic Beanstalk
3. AWS Lambda

Question 36

EC2 instance

Answer 36

Virtual server. Types:

• General purpose
• Compute optimized
• Memory optimized
• Storage optimized
• Accelerated computing

Question 37

Instance storage

Answer 37

• Non-persistent

- Attached to instance

Question 38

EBS

Answer 38

Elastic Block Storage

• Persistent storage
• Not attached to instance

Question 39

AMI

Answer 39

Amazon Machine Image

• Template for EC2 image
• Commercial AMI’s in AWS Marketplace

Question 40

On-demand instance

Answer 40

Pay-by-second instance launched

Question 41

Reserved instance

Answer 41

• Purchase in advance

- Possible upfront for discount

Question 42

Spot instance

Answer 42

• Unused instance in a region for discount
• Market price
• Launch if bid over spot
• Terminate if bid lower then spot. Quick notification

Question 43

When to choose reserved instance?

Answer 43

Consistency

Question 44

When to choose spot instance?

Answer 44

Can start and stop. Batch processing

Question 45

When to choose on-demand instance?

Answer 45

In-consistent. Cannot stop

Question 46

AWS Elastic Beanstalk

Answer 46

1. Monitoring
2. Deployment
3. Scaling
4. EC2 customization

Question 47

AWS Lambda

Answer 47

• Run code without infrastructure
• Charged for execution time
• Server-less architecture

Question 48

Content and network delivery services

Answer 48

1. Amazon VPC
2. Amazon Direct Connect
3. Amazon Route 53
4. Elastic Load Balancing
5. Amazon CloudFront
6. Amazon API Gateway

Question 49

Amazon VPC

Answer 49

• Launch resources in private network
• Can connect to other VPCs
• Can connect to data center

Question 50

Amazon Direct Connect

Answer 50

Direct network connection from data center to AWS

Question 51

Amazon Route 53

Answer 51

• DNS: map domain names to IP addresses
• Global service
• Highly available

Question 52

Elastic Load Balancing

Answer 52

• Distributes traffic among multiple targets
• Integrates with Lambda EC2, ECS
  1. Application Load Balancer
  2. Network Load Balancer
  3. Classic Load Balancer

Question 53

Scaling

Answer 53

1. Vertical: larger instance types

2. Horizontal: increase instances

Question 54

Security in CloudFront

Answer 54

• AWS Shield for DDoS

- AWS Web App Firewall

Question 55

File storage services

Answer 55

1. Simple Storage Service (S3)
2. S3 Glacier
3. EC2 file storage (EBS, EFS, FSx)
4. AWS Snowball
5. AWS Snowmobile

Question 56

Bucket

Answer 56

Storage unit in S3 which configures stored objects to same settings

Question 57

Storage

Answer 57

Objects in buckets

Question 58

S3 Intelligent-Tiering

Answer 58

• Move data to correct storage class based on usage

- Same performance as S3

Question 59

S3 Standard

Answer 59

• Default

- Frequently accessed data

Question 60

S3 Standard-IA

Answer 60

• In-frequent accessed data

- Cheaper price

Question 61

S3 One Zone-IA

Answer 61

• In-frequent accessed data
• Only stored in one AZ
• Cheapest

Question 62

S3 Transfer Acceleration

Answer 62

Bucket feature to optimize uploading using Edge Locations in CloudFront

Question 63

S3 Glacier & S3 Glacier Deep Archive

Answer 63

• Archival data
• 90/180 days minimum storage
• Retrieve in minutes/hours
• Pay per retrieval size
• Less expensive
• Deep Archive stored: AWS Management or programmatically

Question 64

EBS volume types

Answer 64

1. General purpose SSD: cost-effective; general workload
2. Provisioned IOPS SSD: high-performance; low latency
3. Throughput Optimized HDD: frequently accessed data
4. Cold HDD: less frequently accessed data

Question 65

AWS Snowball

Answer 65

Migrate petabytes to AWS

Question 66

AWS Snowmobile

Answer 66

Migrate exabytes to AWS

Question 67

Database services

Answer 67

1. Relational Database Service (RDS)
2. Amazon DynamoDB
3. Amazon Elasticache
4. Amazon Redshift
5. Amazon Aurora
6. Amazon Database Migration Service (DMS)

Question 68

RDS

Answer 68

• PaaS
• Relational databases
• Deploy across multiple AZ
• EBS: general purpose SSD and IOPS SSD
• Supports: MySQL, PostgreSQL, MariaDB, Oracle DB, SQL Server, Amazon Aurora

Question 69

Amazon DynamoDB

Answer 69

• NoSQL
• Low latency at any scale
• Data models without blob
• Serverless apps

Question 70

Amazon Elasticache

Answer 70

• In-memory data stores

- Memcached and Redis

Question 71

Amazon Redshift

Answer 71

• Data warehouse service
• Scale-able
• Querying exabytes in S3 with Redshift Spectrum

Question 72

Amazon Aurora

Answer 72

MySQL and PostgreSQL RDB for cloud

Question 73

Amazon Athena

Answer 73

Server-less querying SQL in S3

Question 74

Amazon Database Migration

Answer 74

• Move data from existing db to AWS
• One-time and continuous migration
• Pay for compute leveraged in migration

Question 75

Amazon SQS

Answer 75

Message Querying Service

• Stored up to 14 days
• Decoupled and fault tolerant apps

Question 76

Amazon SNS

Answer 76

Pub/sub Messaging Service

• Decoupled apps
• Organizes relative to topics
• End user notifications (sms, email, push)

Question 77

AWS Step Functions

Answer 77

Orchestration of workflows

• Server-less architecture
• Can integrate services: compute, db, messaging, data processing, ml

Question 78

AWS CloudTrail

Answer 78

Log and monitor account activity

- Inserts audit trails in CloudWatch logs

Question 79

AWS CloudWatch

Answer 79

• Metrics, logs and alarms for infrastructure

- Metrics visualization and custom dashboards

Question 80

AWS Config

Answer 80

Configuration history for infrastructure

- Evaluates infrastructure against rules

Question 81

AWS Systems Manager

Answer 81

• Operational data and automation across infrastructure
• Access servers securely with AWS credentials
• Centralize passwords and parameters

Question 82

AWS CloudFormation

Answer 82

• Manages dependencies between resources
• Drift detection of infrastructure
• Infrastructure as code through templates (json/yaml)

Question 83

AWS Organizations

Answer 83

• Manage multiple accounts under master
• Total billings for all accounts
• Centralize loggings and security standards

Question 84

AWS Control Tower

Answer 84

• Centralize users
• Create new AWS accounts with templates
• Operational insight dashboard

Question 85

Acceptable User Policy

Answer 85

Allowed and prohibited use

• Prohibited: mass emails, harmful content
• Allowed: pen-testing of some services

Question 86

Least Privilege Access

Answer 86

Users should have minimum privilege to perform tasks and no more

Question 87

AWS Shared Responsibility

Answer 87

• AWS: security of cloud

- Customer: security in cloud

Question 88

AWS Well-architected Framework

Answer 88

1. Operational excellence
2. Security
3. Reliability
4. Performance efficiency
5. Cost optimization

Question 89

Compliance Services

Answer 89

1. AWS Config
2. AWS Artifact
3. Amazon GuardDuty

Question 90

AWS Artifact

Answer 90

Compliance reports

Question 91

Amazon GuardDuty

Answer 91

Intelligent threat detection

Question 92

Fault tolerance architecture

Answer 92

• Enable by default: SQS, Route 53
• Should be architected on EC2
• Should leverage multiple AZ

Question 93

High availability services

Answer 93

On most services

Question 94

AWS Identity and Access Management

Answer 94

Control access to AWS resources

• Manages authentication (login)
• Manages authorization (access)

Question 95

IAM identities

Answer 95

1. Users: single individual account
2. Groups: permissions for group of IAM users
3. Roles: user or service to assume permissions

Question 96

IAM identity policy

Answer 96

JSON-document

• Services identity can access
• Actions identity can take

Question 97

MFA

Answer 97

Multi-factor authentication

Question 98

Amazon Cognito

Answer 98

• Authentication/authorization in web/app through AWS

- Providers: Google, Facebook, Active Directory, SALM 2.0

Question 99

On-prem Data Integration Services

Answer 99

1. AWS Storage Gateway

2. AWS DataSync

Question 100

AWS Storage Gateway

Answer 100

Hybrid-cloud storage service

• Tape Gateway
• Volume Gateway
• File Gateway

Question 101

AWS DataSync

Answer 101

Automated data transfer

Question 102

Data Processing Services

Answer 102

1. AWS Glue
2. AWS Elastic MapReduce (EMR)
3. AWS Data Pipeline

Question 103

AWS Glue

Answer 103

ETL service

• Server-less
• Supports: RDS, DynamoDB, Redshift and S3

Question 104

AWS EMR

Answer 104

Big data cloud processing

- Supports: Spark, Flink, Hive, Hudi, Hbase, Presto

Question 105

AWS Data Pipeline

Answer 105

Data workflow orchestration across AWS services

• ETL service
• Supports: RDS, DynamoDB, Redshift, S3 and EMR
• Can integrate on-prem data stores

Question 106

Data Analysis Services

Answer 106

1. Amazon Athena
2. Amazon Quicksight
3. Amazon CloudSearch

Question 107

Amazon Quicksight

Answer 107

BI service enabling dashboards

Question 108

Amazon CloudSearch

Answer 108

Search service for custom apps

Question 109

AI and ML services

Answer 109

1. Amazon Rekognition
2. Amazon Translate
3. Amazon Transcribe

Question 110

Amazon Rekognition

Answer 110

Computer vision service powered by ML

Question 111

Amazon Translate

Answer 111

Text translation service powered by ML

Question 112

Amazon Transcribe

Answer 112

Speech to text powered by ML

Question 113

Disaster recovery scenarios

Answer 113

1. Backup and restore
2. Pilot Light
3. Warm Standby
4. Multi Site

Question 114

Backup and restore

Answer 114

• Backed up in S3

- Longest recovery time

Question 115

Pilot Light

Answer 115

• Key components running in cloud

- Rest of components can be launched quickly

Question 116

Warm Standby

Answer 116

• Scaled-down full environment

- Instances can be scaled up

Question 117

Multi Site

Answer 117

• Full environment running in cloud

- Seamless recovery period

Question 118

Recovery Time Objective

Answer 118

Time before recovers

Question 119

Recovery Point Objective

Answer 119

Data loss (terms in time) before recovers

Question 120

Auto Scaling Group

Answer 120

Set of EC2 instances with rules for scaling and management

Question 121

AWS Secrets Manager

Answer 121

Secure way to integrate credentials, API tokens etc.

Question 122

AWS VPN

Answer 122

1. Site-to-site VPN

2. Client VPN

Question 123

Security Groups

Answer 123

Firewall-like control of resources in VPC

Question 124

Network ACL

Answer 124

Control in-/outbound traffic for subnet in VPC

Question 125

Amazon Inspector

Answer 125

Automated security assessment for EC2 instances

1. Network reachability assessment
2. Host assessment

Question 126

Amazon Macie

Answer 126

Data protection powered by ML

Question 127

AWS Service Catalog

Answer 127

IT-services on AWS for an organization

Question 128

AWS Marketplace

Answer 128

Third-party software catalog

Question 129

AWS CodeCommit

Answer 129

Verison control

Question 130

AWS CodeBuild

Answer 130

CI-service

Question 131

AWS CodeDeploy

Answer 131

Deployment to services

Question 132

AWS CodePipeline

Answer 132

CD-service

Question 133

AWS CodeStar

Answer 133

Bootstrap development