CCP Basic Flashcards

Question

Object sharing

Answer 1

Ability to make any object publicly available via a URL link

Answer 2

Automatically keep multiple versions of an object (when enabled)

Answer 3

Allow you or your company access to manage billing and access to multiple AWS accounts in one user interface

Answer 4

Giving a user only the rights/access to the AWS services and resources they need to do their job and nothing more

Answer 5

Human/alarm/event that gives SNS the message that needs to be sent

Answer 6

SQL database service that provides a wide range of SQL database options to select from

Answer 7

Data warehouse database service designed to handle petabytes of data for analysis

Answer 8

How different AWS services are granted permission to communicate and share data

Answer 9

Where you configure and manage web domains for websites or applications you host on AWS

Answer 10

The ability of a system to easily increase in size and capacity in a cost-effective way

Answer 11

Firewall/security layer on the server/instance level

Answer 12

Defines what you and AWS are responsible for when it comes to security and compliance

Answer 13

AWS service that allows you to automate the sending of email or text messaging notifications based on events that happen in your AWS account

Answer 14

Online bulk storage service you can access from almost any device

Answer 15

Represents “classification” assigned to each object in S3 (standard, RRS, S3-IA, Glacier)

Answer 16

A subsection of a network and generally includes all the computers in a specific location

Answer 17

Endpoints to which a topic sends messages

Answer 18

How you label and group different endpoints to which you send messages

Answer 19

Service that “advises” and helps you optimize aspects of your AWS account

Answer 20

IAM user’s username and password for logging in to AWS

Answer 21

A private subsection of AWS you control and in which you can place AWS resources

Answer 22

The delivery of computing services over the internet. provides on-demand access to resources over the internet with pay-as-you-go pricing.

Answer 23

EC2 | Lambda

Answer 24

1. Go global in minutes 2. Stop spending money running and maintaining data centers 3. Benefit from massive economies of scale 4. Increase speed and agility 5. Stop guessing capacity 6. Trade capital expense for variable expense

Answer 25

Volume discounts are passed on to you, which provides lower pay-as-you-go prices.

Answer 26

You pay for what you use instead of making huge upfront investments.

Answer 27

High Availability Elasticity Agility Durability

Answer 28

Upfront purchases toward fixed assets.

Answer 29

Funds used to run day-to-day operations.

Answer 30

Iaas Paas Saas

Answer 31

Contains the basic building blocks for cloud IT and typically provides access to networking features, computers (virtual or on dedicated hardware), and data storage space. Provides you with the highest level of flexibility and management control over your IT resources and is most similar to existing IT resources that many IT departments and developers are familiar with today.

Answer 32

Removes the need for your organization to manage the underlying infrastructure (usually hardware and operating systems) and allows you to focus on the deployment and management of your applications. This helps you be more efficient as you don’t need to worry about resource procurement, capacity planning, software maintenance, patching, or any of the other undifferentiated heavy lifting involved in running your application.

Answer 33

Provides you with a completed product that is run and managed by the service provider

Answer 34

Fully Independent and Isolated physical location

Answer 35

consist of one or more physically separated data centers, each with redundant power, networking, and connectivity, housed in separate facilities. A collection of data centers

Answer 36

Cache content for fast delivery to your users. | Ensure low latency by placing content closer to users.

Answer 37

allows you to access your AWS account and manage applications running in your account from a web browser

Answer 38

allows you to access your AWS account through a terminal or command window.

Answer 39

allows you to rent and manage virtual servers in the cloud. Virtual servers in the cloud

Answer 40

Preconfigured template to launch your instance.

Answer 41

Deploying a database to EC2 gives you full control over the database. Deploy to multiple AZs to make the web application highly available.

Answer 42

allows you to use IAM policies to control SSH access to your instances, removing the need to manage SSH keys.

Answer 43

``` On-Demand Spot Reserved Instances Dedicated Hosts Savings Plans ```

Answer 44

``` On-Demand Spot Reserved Instances Dedicated Hosts Savings Plans ```

Answer 45

No contact, pay for what you use Billed down to the second For applications with short-term, spiky, or unpredictable workloads that cannot be interrupted For applications being developed or tested on Amazon EC2 for the first time

Answer 46

Cheapest pricing option Lets you take advantage of unused Amazon EC2 capacity Applications that have flexible start and end times

Answer 47

Allow you to commit to a specific instance type in a particular region for 1 or 3 years Use when app has steady usage for 1 or 3 years

Answer 48

a flexible pricing model that offer low prices on EC2 and Fargate usage, in exchange for a commitment to a consistent amount of usage (measured in $/hour) for a 1 or 3 year term

Answer 49

Allow you to pay for a physical server that is fully dedicated to running your instances

Answer 50

automatically distributes your incoming application traffic across multiple EC2 instances.

Answer 51

adds or replaces EC2 instances automatically across AZs, based on need and changing demand.

Answer 52

a serverless compute service that lets you run code without managing servers Supports popular programming languages like Java, Go, PowerShell, Node.js, C#, Python, and Ruby. The functions have a 15-minute timeout

Answer 53

a serverless compute engine for containers. allows you to manage containers, like Docker Scales automatically serverless meaning you don’t worry about provisioning, configuring, or scaling servers.

Answer 54

a compute service allows you to quickly launch all the resources you need for small projects Deploy preconfigured applications, like WordPress websites, at the click of a button

Answer 55

a compute service allows you to run cloud services in your internal data center supports workloads that need to remain on-premises due to latency or data sovereignty needs supports a hybrid deployment model

Answer 56

a compute service allows you to process large workloads in smaller chunks Runs hundreds and thousands of smaller batch processing jobs Dynamically provisions instances based on volume

Answer 57

an object storage service for the cloud that is highly available Objects (or files) are stored in buckets (or directories) You can upload objects via the console, the CLI, or programmatically from within code using SDKs

Answer 58

important so your objects are never lost or compromised

Answer 59

is important so you can access your data quickly when you need it

Answer 60

``` S3 storage class General purpose storage Data stored across multiple AZ Low latency, high throughput Recommended for frequently accessed data ```

Answer 61

``` Automatically moves your data to the most cost effective storage class Data stored across multiple AZs Recommended for data with unknown or changing access pattern ```

Answer 62

Data accessed less frequently but requires rapid access Data stored across multiple AZ Millisecond access when needed

Answer 63

Data stored in single AZ Data stored can be lost Recommended for re-creatable data

Answer 64

Long term data storage and archival for lower costs stored across multiple AZ cheaper storage option Recommended for long term backups

Answer 65

long access times cheapest of all s3 options data stored across multiple AZ recommended for long term data archival accessed 1 or 2 times a year

Answer 66

provide object storage on premises | store data across multiple devices and servers

Answer 67

provide object storage on premises | store data across multiple devices and servers

Answer 68

a storage device (called a volume) that can be attached to (or removed from) your instance Data persists when the instance is not running Can only be attached to one instance in the same Availability Zone Recommended for: Quickly accessible data Running a database on an instance Long-term data storage

Answer 69

local storage that is physically attached to the host computer and cannot be removed Storage on disks physically attached to an instance Recommended for: Temporary storage needs Data replicated across multiple instances

Answer 70

a serverless network file system for sharing files Only supports the Linux file system Accessible across different Availability Zones in the same Region

Answer 71

a hybrid storage service Connect on-premises and cloud data Recommended for: Moving backups to the cloud Reducing costs for hybrid cloud storage Low latency access to data

Answer 72

helps you manage data backups across multiple AWS services Integrates with resources like EC2, EBS, EFS, and more Create a backup plan that includes frequency and retention

Answer 73

is a CDN that delivers data and applications globally with low latency Makes content available globally or restricts it based on location Uses edge locations to cache content can stop certain web attacks, like DDoS.

Answer 74

a mechanism to deliver content quickly and efficiently based on geographic location.

Answer 75

a CDN sends your users through the AWS global network when accessing your content, speeding up delivery Improves latency and availability of single-Region applications

Answer 76

a CDN improves content uploads and downloads to and from S3 buckets. Fast transfer of files over long distances Uses CloudFront’s globally distributed edge locations

Answer 77

a foundational service that allows you to create a secure private network in the AWS cloud where you launch your resources spans Availability Zones in a Region Launch resources like EC2 instances inside

Answer 78

ensures proper traffic is allowed into the subnet

Answer 79

allows public traffic to the internet from the VPC

Answer 80

allows you to connect 2 VPCs together

Answer 81

directs internet traffic by connecting domain names with web servers

Answer 82

a DNS service that routes users to applications Performs health checks on AWS resources Supports hybrid cloud architectures

Answer 83

a dedicated physical network connection from your on-premises data center to AWS Data travels over a private network Supports a hybrid environment

Answer 84

creates a secure connection between your internal networks and your AWS VPCs Similar to Direct Connect, but data travels over the public internet Data is automatically encrypted Connects your on-premises data center to AWS

Answer 85

allows you to build and manage APIs Share data between systems Integrate with services like Lambda

Answer 86

a service that makes it easy to launch and manage relational databases Offers high availability and fault tolerance using Multi-AZ deployment option AWS manages the databases with automatic software patching, automated backups, operating system maintenance, and more

Answer 87

a relational database compatible with MySQL and PostgreSQL that was created by AWS Scales automatically while providing durability and high availability Managed by RDS

Answer 88

a fully managed NoSQL key-value and document database Fully managed and serverless Non-relational Scales automatically to massive workloads with fast performance

Answer 89

a fully managed document database that supports MongoDB Fully managed and serverless Non-relational

Answer 90

a fully managed in-memory datastore compatible with Redis or Memcached Compatible with Redis or Memcached engines Data can be lost Offers high performance and low latency

Answer 91

a fully managed graph database that supports highly connected datasets like social media networks Fully managed and serverless Fast and reliable

Answer 92

RDS and Aurora

Answer 93

ElastiCache

Answer 94

DocumentDB

Answer 95

Amazon Aurora, PostgreSQL, MySQL, MariaDB, Oracle Database, and SQL Server

Answer 96

Migrate on-premises databases to AWS Continuous data replication Supports homogeneous and heterogeneous migrations Virtually no downtime

Answer 97

allows you to migrate on-premises servers to AWS Server saved as a new Amazon Machine Image (AMI) Use AMI to launch servers as EC2 instances

Answer 98

allows for online data transfer from on-premises to AWS storage services like S3 or EFS Copy data over Direct Connect or the internet Copy data between AWS storage services Replicate data cross-Region or cross-account

Answer 99

a data storage solution that aggregates massive amounts of historical data from disparate sources supports querying, reporting, analytics, and business intelligence. They are not used for transaction processing.

Answer 100

a scalable data warehouse solution Improves speed and efficiency Handles exabyte-scale data use when: you need to consolidate multiple data sources for reporting you want to run a database that doesn't require real-time transaction processing (insert, update, and delete)

Answer 101

a query service for Amazon S3 Analyze S3 data using SQL Pay per query serverless

Answer 102

prepares your data for analytics Extract, transform, load (ETL) service

Answer 103

allows you to analyze data and video streams in real time Supports video, audio, application logs, website clickstreams, and IoT

Answer 104

helps you process large amounts of data Analyze data using Hadoop Works with big data frameworks

Answer 105

helps you move data between compute and storage services running either on AWS or on-premises Sends notifications on success or failure

Answer 106

helps you visualize your data Build interactive dashboards Embed dashboards in your applications

Answer 107

Machine learning service allows you to automate your image and video analysis Face and text detection in images and videos

Answer 108

a natural-language processing (NLP) service that finds relationships in text

Answer 109

turns text into speech

Answer 110

helps you build, train, and deploy machine learning models quickly Prepare data for models

Answer 111

provides language translation

Answer 112

helps you build conversational interfaces like chatbots Powers Amazon Alexa

Answer 113

allows you to write code within an integrated development environment (IDE) from within your web browser preconfigures the development environment with the needed SDKs and libraries. You can easily write the code for your Lambda function directly in your web browser.

Answer 114

a source control system for private Git repositories Create repositories to store code like github

Answer 115

allows you to build and test your application source code Enables continuous integration and delivery Produces build artifacts ready to be deployed

Answer 116

manages the deployment of code to compute services in the cloud or on-premises. Deploys code to EC2, Fargate, Lambda, and on-premises. Maintains application uptime eliminates the downtime of your application when deploying a new version due to its rolling deployments

Answer 117

automates the software release process. helps development teams implement DevOps practices that automate testing and the movement of code to production.

Answer 118

helps you debug production applications Map application components View requests end to end can help you map requests made to your RDS database from within your application. You can track information about the SQL queries generated and more.

Answer 119

helps developers collaboratively work on development projects Integrates with CodeCommit, CodeBuild, and CodeDeploy Contains issue tracking dashboard can manage the development pipeline

Answer 120

allows you to write a script to provision AWS resources. The benefit is that you provision resources in a reproducible manner that saves time

Answer 121

allows you to provision AWS resources using Infrastructure as Code (IaC). Provides a repeatable process for provisioning resources Create templates for the resources you want to provision

Answer 122

allows you to deploy your web applications and web services to AWS(not on prem) Orchestration service that provisions resources Monitors application health via a health dashboard

Answer 123

allows you to use Chef or Puppet to automate the configuration of your servers and deploy code Manage on-premises servers or EC2 instances in AWS Cloud allows you to define software installation scripts and automate configuration for your application servers.

Answer 124

helps reduce the risk of cascading failures between components

Answer 125

a message queuing service that allows you to build loosely coupled systems Allows component-to-component communication using messages Messages are processed in an asynchronous manner

Answer 126

lets you build an app that is loosely coupled, allowing components to send, store, and receive messages. The use of a messaging queue helps to improve performance and scalability.

Answer 127

allows you to send emails and text messages from your applications works with CloudWatch when an alarm's metric threshold is breached to send an email.

Answer 128

an email service that allows you to send richly formatted HTML emails from your applications.

Answer 129

a collection of services that help you monitor and observe your cloud resources Collects metrics, logs, and events Detect anomalies in your environment Set alarms

Answer 130

tracks user activity and API calls within your account. Track activity through the console, SDKs, and CLI Identify which user made changes Detect unusual activity in your account can track: username, event time and name, IP address, access key, Region, and error code.

Answer 131

describe design principles and best practices for running workloads in the cloud * Operational Excellence * Security * Reliability * Performance Efficiency * Cost Optimization * Sustainability

Answer 132

allows you to control access to your AWS services and resources A free global service Permissions Roles MFA

Answer 133

entities you create in IAM to represent the person or application needing to access your AWS resources.

Answer 134

a collection of IAM users that helps you apply common access controls to all group members

Answer 135

EC2 security groups act as firewalls, while IAM groups are collections of users

Answer 136

define access permissions and are temporarily assumed by an IAM user or service

Answer 137

You manage permissions for IAM users, groups, and roles by creating a ______ document in JSON format and attaching it

Answer 138

lists all users in your account and the status of their various credentials. Used for auditing and compliance

Answer 139

1. Enable MFA for privileged users 2. Implement strong password policies. 3. Create individual users instead of using root. 4. Use roles for Amazon EC2 instances.

Answer 140

prevent unauthorized access to your networks by inspecting incoming and outgoing traffic against security rules you've defined.

Answer 141

helps protect your web applications against common web attacks. Protects against SQL injection Protects against cross-site scripting

Answer 142

this attack causes a traffic jam on a website or web application in an attempt to cause it to crash.

Answer 143

a managed Distributed Denial of Service (DDoS) protection service. Always-on detection

Answer 144

Provides free protection against common and frequently occurring attacks

Answer 145

Provides enhanced protection and 24/7 access to AWS experts for a fee

Answer 146

helps you discover and protect sensitive data. Uses machine learning Evaluates S3 environment Uncovers personally identifiable information (PII)

Answer 147

allows you to assess, audit, and evaluate the configurations of your resources. Delivers configuration history file to S3 Notifications via Simple Notification Service (SNS You can view network, software, and operating system (OS) configuration changes, system-level updates, and more.

Answer 148

an intelligent threat detection system that uncovers unauthorized behavior. Uses machine learning Built-in detection for EC2, S3, and IAM Reviews CloudTrail, VPC Flow Logs, and DNS logs

Answer 149

works with EC2 instances to uncover and report vulnerabilities.

Answer 150

offers on-demand access to AWS security and compliance reports. Central repository for compliance reports from third-party auditors Service Organization Controls (SOC) reports Payment Card Industry (PCI) reports

Answer 151

helps you control access to mobile and web applications. provides functionality that allows your users to sign in to your application through social media accounts like Facebook and Google.

Answer 152

encodes data so it cannot be read by unauthorized users

Answer 153

allows you to generate and store encryption keys. Automatically enabled for certain services

Answer 154

a hardware security module (HSM) used to generate encryption keys. AWS does not have access to your keys allows you to meet corporate, contractual, and regulatory compliance requirements for data security by using dedicated hardware in the cloud.

Answer 155

allows you to manage and retrieve secrets (passwords or keys). Integrates with services like RDS, Redshift, and DocumentDB

Answer 156

Compute Storage Outbound data transfer

Answer 157

``` On-Demand Spot Reserved Instances Dedicated Hosts Savings Plan ```

Answer 158

``` Running clock hours Storage Data transfer Deployment type API requests Purchase type Database count Type of database ```

Answer 159

a financial estimate that helps you understand both the direct and indirect costs of AWS

Answer 160

helps you plan migration projects to the AWS Cloud. Used to estimate TCO Works with other services to migrate servers

Answer 161

Minimize capital expenditures Utilize Reserved Instances Right size your resources

Answer 162

allows you to query the price of AWS services. Query using JSON or HTML Receive price alerts when prices change

Answer 163

allows you to set custom budgets that alert you when your costs or usage exceed your budgeted amount.

Answer 164

contains the most comprehensive set of cost and usage data. Aggregate usage data on a daily, hourly, or monthly level

Answer 165

allows you to visualize and forecast your costs and usage over time.

Answer 166

allows you to centrally manage multiple AWS accounts under one umbrella. Single payment for all accounts Automate account creation

Answer 167

helps you ensure your accounts conform to company-wide policies. Enforces the best use of services across accounts allows you to govern your multi-account environment by enabling cross-account security audits or preventing or detecting security issues through mandatory or optional guardrails.

Answer 168

gives you visibility and control over your AWS resources. Automate operational tasks on your resources Group resources and take action Patch and run commands on multiple EC2 instances or manage RDS instances

Answer 169

provides real-time guidance to help you provision your resources following AWS best practices. Checks for unrestricted access for specific ports on EC2 instances Checks IAM password policy Checks for exposed access keys helps reduce your overall costs by monitoring service limits.

Answer 170

helps you manage software licenses. Manage on-premises and AWS licenses

Answer 171

helps you provision and manage SSL/TLS certficates. Integrates with Elastic Load Balancing, API Gateway, and more Provides public and private certificates for free

Answer 172

helps you efficiently operate your AWS infrastructure. Reduces operational risks and overhead can increase your operational efficiency by helping you develop application-specific health monitoring using CloudWatch.

Answer 173

helps enterprise customers move to a cloud-based operating model.

Answer 174

a global community of approved partners that offer software solutions and consulting services for AWS.

Answer 175

a digital catalog of prebuilt solutions you can purchase or license. You may also sell your own solutions to others via _________. Try out an application before making a long-term commitment.

Answer 176

alerts you to events that might impact your AWS environment. Provides troubleshooting guidance

Answer 177

Basic Developer Business Enterprise

Answer 178

this support plan is included for free for all AWS accounts. 24/7 access via email only

Answer 179

this support plan starts at $29 a month and is recommended for testing and development.

Answer 180

this support plan starts at $100 a month and is recommended for production workloads.

Answer 181

this support plan starts at $15,000 a month and is recommended for business or mission-critical production workloads.

Answer 182

``` EC2 EC2 Autoscaling Lambda Fargate Lightsail Outposts Batch App runner Elastic Beanstalk Snow Family VMware ```

Answer 183

``` s3 EBS EFS Storage Gateway FSX snow Family ```

Answer 184

CloudFront Global Accelerator S3 Transfer Acceleration

Answer 185

Route 53 VPC Direct Connect VPN

Answer 186

``` Relational database service Aurora DynamoDB DocumentDB ElastiCache Neptune ```

Answer 187

DMS Server Migration Service Snow Family Datasync

Answer 188

``` Redshift Athena Glue Kinesis Elastic MapReduce EMR Data Pipline ```

Answer 189

``` Rekognition Comprehend Polly Sagemaker Translate Lex ```

Answer 190

``` Cloud9 Codecommit CodeBuild CodeDeploy Codepipeline XRay ```

Answer 191

CloudFormation Elastic Beanstalk Opsworks

Answer 192

Simple Queue Service(SQS) Simple Notifcation Service( SNS) Simple Email Service(SES)

Answer 193

Cloudwatch | Cloudtrail

Answer 194

``` Organizations Control Tower Systems Manager Trusted Advisor Marketplace AWS Partner Network (APN) Managed Services Professional Services ```

Answer 195

``` Identity and Access Management (IAM) Web Application Firewall (WAF) Shield Macie Config GuardDuty Inspector Artifact ```

Answer 196

Key Management Service (KMS) | CloudHSM

Answer 197

(or scaling out) adds or replaces EC2 instances automatically across AZs, based on need and changing demand, and is used in the design of systems with high availability. is the act of changing the number of nodes in a computing system without changing the size of any individual node.

Answer 198

(or scaling up) is a possible solution, it doesn't ensure a system will be highly available. increasing the size and computing power of a single instance or node without increasing the number of nodes or instances