AWS Components

Question 1

What is a Region?

Answer 1

A geographic location with a cluster of data centers
(31 Regions as of June 2023)

Question 2

What is an Availability Zone?

Answer 2

one or more data centers with redundant power, networking, and connectivity in an AWS Region.
Multiple AZs exist in each Region.
(99 Availability Zones as of June 2023)

Question 3

Describe the pieces of the name ‘us-east-2a’

Answer 3

‘us-east-2’ -> Region name
‘us-east-2a’ -> Availability Zone Name

Question 4

What is an AWS Local Zone?

Answer 4

Infrastructure deployment placing select AWS services close to large population and industry centers.
An extension of a Region for faster communication.

Question 5

What is a Wavelength Zone?

Answer 5

Infrastructure deployment embedding AWS services within 5G networks.

Question 6

What is a Point of Presence?

Answer 6

Global infrastructure outside of AWS Regions.
Used by specific services to deliver content as quickly as possible.
Edge Locations and Regional Edge Caches

Question 7

What is an Edge Location

Answer 7

A node in a global Content Delivery Network
Utilized by CloudFront and Route 53
(400+ as of June 2023)

Question 8

What is a Regional Edge Cache?

Answer 8

A type of Edge Location with larger cache that sits between the origin webserver and the edge locations to offer closer cache of popular objects.
Reduces the need for CloudFront (CDN) to go back to the origin server.

Question 9

What is the Cost Explorer?

Answer 9

UI for exploring your AWS costs
Can breakdown by service or by cost tag
Can view top cost consuming services
Predicts next 3 months
Gives recommendations for cost optimization
Accessible by API

Question 10

What is AWS Pricing Calculator?

Answer 10

In-depth analysis of cost of utilizing multiple AWS services
Used for estimating future workloads

Question 11

What are AWS Resource Tags?

Answer 11

Metadata assigned to specific AWS resources as a key-value pair (such as Department, Environment, Project, etc)
Allows for Cost Allocation reporting in AWS Cost Explorer

Question 12

What is AWS Organizations?

Answer 12

Allows managing multiple accounts under a single master account
Allows Consolidated Billing for all accounts
Enables centralized logging and security standards across accounts

Question 13

What is AWS Support?

Answer 13

Different tiers of support from AWS resources
Includes tools for automated answers and recommendations

Question 14

What is AWS Personal Health Dashboard?

Answer 14

Alerts and remediation guidance when AWS is experiencing events that may impact you

Question 15

What is AWS Trusted Advisor?

Answer 15

Automated tool to check your AWS usage against best practices
Different checks depending on the AWS Support plan tier
All AWS customers get 7 core checks

Question 16

What are the categories of AWS Trusted Advisor recommendations?

Answer 16

• Cost Optimization
• Performance
• Security
• Fault Tolerance
• Service Quotas

Question 17

What are the AWS Support plan tier differences?

Answer 17

• Communication Method
• Response Time
• Cost
• Type of Guidance Offered

Question 18

What is provided in AWS Basic Support plan tier?

Answer 18

For all AWS customers
- Trusted Advisor 7 core checks
- 24x7 access to customer service, documentation, forums, whitepapers
- Access to AWS Personal Health Dashboard
- No monthly cost

Question 19

What is provided in AWS Developer Support plan tier?

Answer 19

All Basic Support features plus:
- Business hours email access to support engineers
- 1 primary contact
- <24 hr response for guidance, <12 hr response for system impaired
- $29 per month or 3% AWS usage

Question 20

What is provided in AWS Business Support plan tier?

Answer 20

All Developer Support features plus:
- Full set of Trusted Advisor checks
- 24x7 phone, email, chat access to support engineers
- Unlimited contacts
- 3rd party software support
- <4 hr response for production system impaired, <1 hr response for production system down
- $100 per month or variable percentage of AWS usage

Question 21

What is provided in AWS Enterprise Support plan tier?

Answer 21

All Business Support features plus:
- Technical Account Manager (TAM)
- concierge support team
- <15 minute response for critical system down
- $15,000 per month or variable percentage of AWS usage

Question 22

What assistance does AWS offer for cloud workloads?

Answer 22

• AWS Quick Starts (step-by-step deployment instructions)
• AWS Partner Consulting Partners (3rd party consultants)
• AWS Professional Services (AWS employees as consultants)

Question 23

How do you interact with AWS services?

Answer 23

• Console (web and mobile access)
• CLI (requires access key, good for scheduled jobs)
• SDK (many common languages such as Java, .NET, Node.js, JavaScript, PHP, Python, etc)

Question 24

What are the EC2 Purchase Types?

Answer 24

• On-demand (pay per second)
• Reserved (pay in advance - All/Partial/No Upfront)
• Savings Plans (commit to level of usage)
• Spot (leverage unused capacity in region)
• Dedicated (dedicated physical server)

Question 25

What are the S3 Storage Classes?

Answer 25

• Standard (default for frequently used data)
• Intelligent-Tiering (move to correct storage based on usage)
• Standard - IA (infrequently accessed data)
• One Zone Infrequent (infrequently accessed data in one Availability Zone)
• Glacier (archive storage at different tiers:
  
  • Instant Retrieval (ie. Medical images or news media)
  • Flexible Retrieval (ie. backup and DR needs)
  • Deep Archive (ie. long-term storage for compliance))

Question 26

What is S3 Transfer Acceleration?

Answer 26

A per bucket feature to optimize uploading of data using AWS Edge Locations as part of CloudFront

Question 27

What is the Shared Responsibility Model?

Answer 27

Security and Compliance is a shared responsibility between AWS and the customer
- AWS handles data centers and underlying network
- Customer handles data security, system/network/firewall configuration, and code

Question 28

What is AWS Artifact?

Answer 28

Portal that provides self-service access to compliance reports

Question 29

What is Amazon GuardDuty?

Answer 29

Intelligent threat detection

Question 30

What is AWS IAM?

Answer 30

Identity and Access Management
Policies can enforce data encryption at rest

Question 31

What is an User Identity?

Answer 31

Account for single individual in IAM

Question 32

What is a Group Identity?

Answer 32

Allows management of permissions for a group of IAM users

Question 33

What is a Role Identity?

Answer 33

Enables a user or AWS service to assume permissions for a task in IAM

Question 34

What is Amazon Cognito?

Answer 34

Supports identity providers: Google, Amazon, Facebook, Microsoft AD, SAML 2.0 Providers

Question 35

What are the Disaster Recovery options?

Answer 35

From Slow & Cheaper to Faster & Expensive:
- Backup & Restore
- Pilot Light (few key servers up and running but smaller size)
- Warm Standby
- Multi-site

Question 36

What is Recovery Time Objective (RTO)?

Answer 36

The time it takes to get your systems back up and running to the ideal business state after a disaster recovery event

Question 37

What is Recovery Point Objective (RPO)?

Answer 37

The amount of data loss (in terms of time) for a production system during a disaster recovery event

Question 38

How can you control Access to EC2?

Answer 38

• EC2 Security group (firewall-like controls for resources)
• Network Access Control Lists - ACL (inbound/outbound traffic for subnets)
• AWS VPN (encrypted tunnel for VPC)

Question 39

What is AWS Service Catalog?

Answer 39

Targeted to serve as an organizational service catalog for the cloud

Question 40

What is AWS Marketplace?

Answer 40

Enables third-party ISV’s to offer configurations for the cloud that can be launched in your account

Question 41

What is AWS CodeCommit?

Answer 41

Fully managed source control service using Git

Question 42

What is AWS CodeBuild?

Answer 42

Fully managed build and continuous integration service on AWS

Question 43

What is AWS CodeDeploy?

Answer 43

Fully managed deployment service for applications running on Amazon EC2, AWS Fargate, AWS Lambda, and on-premise servers

Question 44

What is AWS CodePipeline?

Answer 44

Fully managed continuous delivery service on AWS for automating building, deploying, and testing. Integrates with other developer services

Question 45

What is AWS CodeStar?

Answer 45

Workflow tool for automatic creation of a continuous delivery pipeline for a custom application using the other developer services

Question 46

What is the size of a new default subnet in the VPC?

Answer 46

/20 IPv4 CIDR block in the next available contiguous space

Question 47

What data flows incur high and low charges?

Answer 47

No charges: inbound flows to your services; outbound flows between services
Has charges: Flows outbound from S3; Flows outbound from your services

Question 48

What is included in AWS Free Tier?

Answer 48

EC2, S3, Auto Scaling
NOT Web Application Firewall

Question 49

What is an Auto-Scaling group?
How do you configure a unique number of instances?

Answer 49

Uses Instances classified as On-Demand or Spot
“Maintain current level” configures a unique number of instances

Question 50

What is a key capability of Amazon S3 Data Lake?

Answer 50

Utilize broad perspective of data science, data analytics, and machine learning

Question 51

What is AWS Polly?

Answer 51

Text-to-speech software

Question 52

What is the default number of VPCs in a Region?

Answer 52

5

Question 53

What is X-Ray?

Answer 53

Provides detailed data on requests that are served by your application and the responses

Question 54

What is Cloud9?

Answer 54

Cloud-based Integrated Development Environment (IDE)

Question 55

How can you integrate several VPCs into a larger network?

Answer 55

AWS Transit gateway
Software Site-to-Site VPN
VPC Peering
AWS Managed VPN
AWS PrivateLink

Question 56

Where can you get expert guidance on meeting security and compliance requirements while migrating to the cloud?

Answer 56

AWS Security Competency Partners

Question 57

What are some EC2 instance types and classifications

Answer 57

r4.large: memory-intensive applications
t2.nano: general-purpose
c4.large: compute-optimized
d2.xlarge: storage-optimized

Question 58

What Elastic Block Storage storage type is best for infrequently accessed data?

Answer 58

Magnetic volumes

Question 59

What is a decider’s responsibility in Amazon’s Simple Workflow Service (SWF)?

Answer 59

Schedule activity tasks and provide input data to activity workers

Question 60

What is AWS Pricing API?

Answer 60

Allows running programs to automatically retrieve key costs related to AWS services

Question 61

How many Internet gateways can be attached to a VPC?

Answer 61

1

Question 62

From the Management Console, what support cases can you create in AWS Support?

Answer 62

Service limit increase
Account and billing
Technical support (if > Basic Support plan)

Question 63

What is the purpose behind configuring dynamic architectures for growth and elasticity?

Answer 63

AWS usage should be focused on building applications spread across multiple Availability Zones and Regions

Question 64

What is Amazon Augmented AI (A2I)?

Answer 64

Allows you to build workflows for performing human reviews of predictions made by Machine Learning

Question 65

What is SageMaker?

Answer 65

Managed service to build, train, and deploy Machine Learning models

Question 66

What is AWS Key Management Service (KMS)?

Answer 66

Allows encryption at rest using cryptographic keys
Manages those keys