Aws Practice Test

Question 1

VPC flow logs reporting use case 1

Answer 1

-publish to s3 in Apache format and analyze w Athena

Question 2

Dual layer server-side encryption KMS

Answer 2

-data at rest
-dual layer better than single for sensitive data

Question 3

S3 object lock in compliance mode

Answer 3

-prevents deletion including from root user
-retention period says how long can’t be deleted for

Question 4

Kinesis data stream KCL (client library)

Answer 4

-consumes and writes to destination such as s3
-buffer is where data is aggregated before flushed. Improve performance

Question 5

Kinesis - Partition random generated key

Answer 5

-Helps distribute data evenly across shards
-when WriteThroughputExceeded
-“some shards heavily used, and others idle”

Question 6

Glacier vault lock policy

Answer 6

-protect s3 data from being deleted.

Question 7

HDFS and scaling

Answer 7

-instance fleet =only auto scaling
-uniform instance = custom scaling support

Question 8

-orchestration open source support

Answer 8

MWAA Apache airflow

Question 9

EMR security

Answer 9

-can set encryption for data in transit and rest

Question 10

Sagemaker data wrangler

Answer 10

-visualize and prepare data
-can query data from Athena
-can connect to external dbs using jdbc

Question 11

Athena and partitions. File from s3 manually deleted.

Answer 11

-in Athena if error, run drop partition command for stale partition

Question 12

EBS volume size

Answer 12

-gp2= performance tied to size
-no custom iops

Gp3=independent iops
-cost effective for underused volumes
-maintain same performance

Question 13

Aws glue catalog ResourceNumberLimitExceededException during version update

Answer 13

-increase quota “versions”
-delete older “versions”

Question 14

Authenticating in redshift with 3rd party identity provider (idp)

Answer 14

-1st step register provider from within redshift
-redshift provides native IDP federation
-after register, can configure clusters to use idp for auth

Question 15

DMS CDC troubleshooting

Answer 15

-CDCLatencySource= CloudWatch and determine if number is high
-CDCIncomingChanges = change events including inserts updates deletes

Question 16

Redshift data sharing

Answer 16

-can’t share to AZ only REGIONS

Question 17

Glue crawler and table creation. Prevent multiple table creation?

Answer 17

-same s3 partition structure (prefix)
-file type (csv, parquet,etc)
-compression type
-schema

Question 18

Encrypting data catalog metadata and objects

Answer 18

-turn on encryption catalog settings entire catalog
-only supports symmetric customer managed keys

Question 19

Graviton instance and EMR

Answer 19

-best practice to use mix of on-demand and spot

Question 20

EMR storage ephemeral vs persistent what file system to use?

Answer 20

-HDFS for ephemeral which is lost when instance terminated
-s3 for persistent/ more permanent

Question 21

Standard-infrequent access s3

Answer 21

-for near real time at lower cost

Question 22

OpenSearch

Answer 22

-think full text search and analytics
-example of application images and ML extracting metadata values. Needing analyst search apps by name, date, or text.

Question 23

SQS queue

Answer 23

-dead-letter queue allows unprocessed msg to move here instead of being lost

Question 24

3 ways to increase performance when reading kinesis stream w/lambda

Answer 24

-test diff parallel factor settings
-lambda as consumer w increased fan out
-increase # of shards for stream

Question 25

Aws kms keys SSE-KMS server side

Answer 25

-can run redshift copy command to access s3

Question 26

Redshift SUPER column type

Answer 26

-stores nested json
-can use partiQL to query