AWS-Final-2 Flashcards
AWS Elastic Disaster Recovery
- Recover physical and virtual servers into AWS
- Cts block replication for servers
Security Token Service, AWS cognito, IAM Identity Center
- Temp Access, Users
- One login for all
- Identity provider: Built-in IAM or 3rd parties
- Manage your business applications as well
AWS Managed Services
- Security, Reliability and availability
- Reduce operational overhead and risk
AWS Step Functions
- If it satisfies a condition do it
- Build a serverless visual workflow to orchestrate lambda
- Utilize serverless services
- Implement a human approval feature
AWS Transformation Domain
- Technology (Modernize infra, apps, data analysis)
- Process (Digitize, automate and optimize your business operations)
- Organization (Reimagine your operating model)
- Product (Reimagine your business model)
CAF Transformation Phases (Envision and Align)
- Envision: Identify business operations and see if the cloud will benefit you
- Align: Capability gaps
AWS CAF Perspectives
- Operations perspective: Cloud services are delivered at a level that meets your business
- Platform perspective: Modernize existing workload and implement new cloud native solutions
- Governance perspective: Maximize organizational benefits and min transformational risk
- Business Perpective: Accelerating your digital transformation ambitions and business outcomes
Amazon partner networks
- APN consulting, technology and training partners
- APN competency, navigate program
AWS IQ
Find someone to help you
AWS Right sizing
Cloudwatch, Cost Explorer, Trusted Advisor
Well Architected Framework General guiding principals
- Stop guessing your capacity
- test at production level
- Automate experimental architecture
- Driver architecture using data
- simulate game day
AWS Aurora
- Storage incrementally grows from 10 GB to 128 TB
- Pay per second
- Serverless
Redshift
- OLAP
- Load every hour (MPP)
- Pay as you go
- There is a serverless version
- DW
Document DB
- MongoDB
- Replication across 3 AZs
- Storage grows incrementally in 10 GB
Read Replicas
- Scalability
- Create up to 15 read replicas
- Only written to main DB
Multi-AZ
- Failover in case of AZ outage
- Data is only written to the main database
- can have 1 other AZ as failover
Security Shared Responsibility (AWS)
- SW: Cimpute, storage, db and networking
- HW: Regions, AZ, edge locations
AWS EMR
- Hadoop (100s of instances)
- Integrated with spot instances
RDS
- Managed Services: No SSH
- Restore to a specific timestamp
- Backed by EBS
DynamoDB
- Capacity planning
- Replication
- Sw patching or cluster scaling
- replications
- standard and infrequent access
ECS
Integrated with ALB
DMS
source remains operational
S3 Storage Classes
Retreival charge is NA for S3 standard and intelligent tiering and the rest are GB per retreival
IA and one zone IA (min storage duration)
30 days
Performanc Efficiency Pillar
- Select resource types and sizes optimized for workload requirements
- Monitor performance
- Maintain efficiency as business needs evolve
Hardware MFA / U2F
- Hardware MFA: six digit numeric code based on one time password algo
- U2F: Plug USB plug into computer
The four factors to consider for S3 pricing
Storage, data retreival, transfer and transfer acceleration, data management feature pricing
S3 Transfer is priced except for
- Transfer in from the internet
- Transferred out to an EC2 within the same region as the bucket
- Transfer out to CloudFront
AWS Organizations Volume discounts
- Volume discounts for EC2 and S3
- Cost benefits for reserved instances only work if theyre from the same AZ
AWS Shield who manages it
- Only protection service AWS manages and configures
WAF Configuration
- ALB, CloudFront, API Gateway
MarketPlace sells what
- SaaS and AMIs
AWS systems manager (SSM)
- Helps you get EC2 and on-premise systems at scale
- Hybrid
- Operational insight about your infra
- Patch automation and configure for enhanced compliance
- Run commands aross an entire fleet of servers
- Store parameter configurations with SSM parameter store
SSM sessions manager
Secure shell on your EC2 and on premise servers
Send data to S3
