CCP Deck Flashcards

1
Q

From where can you access AWS Budgets, AWS Cost Explorer, and the AWS Cost & Usage Report?

A

Billing & Cost Management Dashboard

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What dashboard is the best for creating, tracking, and inspecting your budgets?

A

The AWS Budgets Dashboard

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What two AWS services allow you to send alerts if you’re at your the limit of a specified amount or projected to exceed the specified amount?

A

CloudWatch and AWS Budgets

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What AWS service allows you to view and analyze your AWS costs and usage?

A

AWS Cost Explorer

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

If you need a monthly or daily break down of your usage, what AWS service would you use?

A

AWS Cost Explorer

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

If you need to see EC2 running hours costs and usage, what AWS service would you use?

A

AWS Cost Explorer

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

If you need to see your Reserved Instance utilization and coverage, what AWS service would you use?

A

AWS Cost Explorer

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

If you need to see your Savings Plan reports, what AWS service would you use?

A

AWS Cost Explorer

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

If you gauge how your current costs are matching up to your expected costs or if you want to see how your projected spending vs your planned spending, what AWS tool would you use?

A

AWS Budgets

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What AWS service allows you to see trends to help you understand your cost?

A

AWS Cost Explorer

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

How many months prior does AWS Cost Explorer let you view data?

A

13 months

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

How many months in advance can AWS Cost Explorer help you project your costs?

A

3 months

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What AWS tool will give you insight on EC2 rightsizing and reservation purchases?

A

AWS Cost Explorer

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What AWS tool can you use to plan and set a limit on costs?

A

AWS Budgets

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

What AWS tool can you use to see actual costs and usage?

A

AWS Cost Explorer

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

What AWS tool gives you the most detailed information about your AWS cost and usage in a CSV file and places that report inside an S3 bucket?

A

AWS Cost and Usage Report

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

What AWS tool allows you to compare the cost of running applications in an on-premises or traditional hosting environment to running the applications with AWS?

A

AWS Total Cost of Ownership (TCO) Calculator

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

What AWS tool provides a detailed set of reports you can use for executive presentations when you want to demonstrate the difference in costs between on-premise infrastructure costs vs AWS cloud costs?

A

AWS Total Cost of Ownership (TCO) Calculator

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
19
Q

What AWS tool can you use to estimate your monthly bill with a per-service cost breakdown, as well as an aggregate monthly estimate.

A

AWS Simple Monthly Calculator

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
20
Q

What AWS tool gives you a calculator to see a sample estimation and breakdown of costs for common solutions, like a website or media application?

A

AWS Simple Monthly Calculator

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
21
Q

What AWS tool is a free account management service that enables you to consolidate multiple AWS accounts into an organization that you create and centrally manage?

A

AWS Organizations

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
22
Q

True or false: With consolidated billing, you can apply unused reservations from one account to another account’s EC2 instance usage.

A

True. With consolidated billing, you can apply unused reservations from one account to another account’s EC2 instance usage.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
23
Q

What is an organizational unit?

What AWS service allows you to group accounts into organizational units?

A

An organizational unit is multiple AWS grouped into one.

AWS Organizations

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
24
Q

What AWS service allows you to create service control policies (SCPs) that centrally allow or deny access to specified AWS services at the OU or individual account level?

A

AWS Organizations

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
25
What AWS service would you use to automate the creation and management of new accounts?
AWS Organizations
26
What AWS service allows companies to combine service usage across accounts to share volume pricing discounts, Reserved Instance discounts, and Savings Plans?
AWS Organizations
27
What AWS service allows companies to simplify the billing process by setting up a single payment method for all AWS accounts in their organization?
AWS Organizations
28
What is the master account and what does it allow you to do?
The AWS account you use to create your organization and create other accounts in your organization, invite and manage invitations for other accounts, and remove accounts from your organization.
29
What are member accounts?
Accounts that are part of an organization. An account that is not the master.
30
How many organizations can a member belong to at a time?
A member can belong to one organization at a time
31
What account can use service control policies (SCPs) to allow or deny access to AWS services for individual AWS accounts or for groups of accounts in an OU?
The master account of an organization
32
Where are the specified actions from a SCP are applied?
To all AWS Identity and Access Management (IAM) users, groups, and roles for an account, including the AWS account root user.
33
Why does the AWS Organizations service provide consolidated billing?
So that you can track the combined costs of all the linked accounts in your organization
34
Who receives the consolidated bill?
The master account
35
Can having multiple accounts consolidated into one enable you to reach utilization discounts faster than each account would reach individually?
Yes. You can combine service usage from multiple accounts into a single invoice.
36
If you have an organization set up and one of the accounts has unused reserved instances and another one of your accounts needs those instances, can you allow the use of those instances without any additional cost?
Yes. You can apply unused reserved instances from one account to another account’s instance usage
37
What AWS services cab be to used analyze costs and create budgets for all of the linked accounts in the organization in one place?
AWS Cost Management services allow organizations to analyze costs and create budgets for all of the linked accounts in the organization in one place.
38
What support plan can we expect to provide the following: Customer service for billing questions Support forums Service health checks Documentation, whitepapers, and best-practice guides
A Basic support plan
39
What support plan can help with account and billing questions and service limit increases?
A Basic support plan
40
What support plan can we expect to provide the following: Best-practice guidance Client-side diagnostic tools Building-block architecture support
A Developer support plan
41
What support is recommended for early development, experimenting, or testing in AWS?
A Developer support plan
42
What support plan can we expect to provide the following: Use-case guidance IAM for controlling individuals’ access to AWS Support Full AWS Trusted Advisor An API for interacting with Support Center and Trusted Advisor Third-party software support
A Business support plan
43
What support plan can we expect to provide the following: ``` Application architecture guidance Infrastructure event management Technical account manager (TAM) White-glove case routing Management business reviews ```
An Enterprise support plan
44
What support plan is recommended for running production workloads in AWS?
A Business support plan
45
What support plan is recommended for running the business and mission-critical workloads in AWS?
An Enterprise support plan
46
What are the 5 Case Severity Levels?
The 5 Case Severity Levels are: ``` Critical Urgent High Normal Low ```
47
What does the Critical Case Severity Levels mean?
Your business is at risk. The critical functions of your application are unavailable.
48
What does the Urgent Case Severity Levels mean?
Your business is significantly impacted. The important functions of your application are unavailable.
49
What does the High Case Severity Levels mean?
Important functions of your application are impaired or degraded.
50
What does the Normal Case Severity Levels mean?
Noncritical functions of your application are behaving abnormally, or you have a time-sensitive development question.
51
What does the Low Case Severity Levels mean?
You have a general development question, or you want to request a feature.
52
What support plan DOES NOT offer any case support?
The Basic Support Plan does not offer any case support. | Because the basic support plan does not offer case support, it does not offer any support response type or time.
53
What is the expected response time for the Developer Support plan and what case severity levels does it offer a response for?
The expected response time for a Developer Support plan is: Normal Case Severity: 12 hours or less Low Case Severity: 24 hours or less Only during business hours
54
What is the expected response time for the Business Support plan and what case severity levels does it offer a response for?
The expected response time for a Business Support plan is: Urgent Case severity: 1 hour or less High Case Severity: 4 hours or less Normal Case Severity: 12 hours or less Low Case Severity: 24 hours or less 24/7 support
55
What is the expected response time for an Enterprise Support plan and what case severity levels does it offer a response for?
The expected response time for an Enterprise Support plan is: ``` Critical Case severity: 15 minutes or less Urgent Case severity: 1 hour or less High Case Severity: 4 hours or less Normal Case Severity: 12 hours or less Low Case Severity: 24 hours or less ``` 24/7 support
56
Who is designated as your primary point of contact for Enterprise support plans?
AWS Enterprise Support has technical account managers (TAMs) as primary points of contact.
57
Who is the billing and account expert who provides quick and efficient analysis on billing and account issues?
Support Concierge
58
Which of the following is the lowest-level support plan that offers case support?
The Developer Support Plan is the lowest-level support plan that offers case support.
59
What network connect you to consulting and technology businesses that can help you achieve your AWS business goals without having to rely on internal knowledge?
The AWS Partner Network (APN)
60
What can APN Consulting Partners help you with?
APN Consulting Partners can help you: ``` Design Architect Build Migrate Manage ```
61
What do APN Technology Partners help you with?
APN Technology Partners provide hardware, connectivity services, and software solutions that are hosted on, or integrated with, the AWS Cloud.
62
Where can you find, test, buy, and immediately start using software that runs on AWS?
AWS Marketplace
63
What are AWS Quick Starts?
Automated reference deployments for workloads on the AWS Cloud
64
A digital catalog with thousands of software listings from independent software vendors is also known as?
AWS Marketplace
65
What is a good way to describe AWS Quick Starts?
Automated reference deployments that launch, configure, and run the AWS services required to deploy a specific workload on AWS.
66
True or false: Cloud terms and conditions are the same as IT hardware terms and conditions.
False
67
Cloud pricing fluctuates based on
Market pricing
68
To take advantage of the dynamic and competitive pricing, customers should allow for flexibility in their procurement strategy?
True
69
What are the 6 perspectives of the Cloud Adoption Framework?
1. Business Perspective 2. People Perspective 3. Governance Perspective 4. Platform Perspective 5. Security Perspective 6. Operations Perspective
70
What does the Business Perspective of the CAF ensure?
The Business Perspective ensures IT is aligned with business needs and that IT investments are linked to key business results. Ensure that your business strategies and goals align with your IT strategies and goals.
71
What perspective of the CAF is used to create a business case for cloud adoption and prioritization?
The Business Perspective
72
What is the AWS Cloud Adoption Framework (CAF?)
A framework to build a customized solution for your organization
73
Who does the AWS Cloud Adoption Framework suggest you involve in the planning for cloud adoption?
The relevant stakeholders in the process.
74
What is a good way to describe the AWS Cloud Adoption Framework?
Guidance and best practices to help you identify gaps in skills and processes when preparing to migrate to the cloud
75
What does the AWS Application Discovery Service do?
Automatically collect detailed information about your current application dependencies and utilization.
76
What does the Migration Hub provide?
Progress updates across multiple migrations. Use it to identify and troubleshoot issues. Reduce the overall time and effort spent on migration.
77
What can quickly rehost machines from multiple source platforms to AWS"?
Cloud Endure
78
What relocates applications virtualized on VMware Cloud Foundation-based environments to the AWS Cloud?
VMware Cloud on AWS
79
What are two common AWS migration solutions?
AWS Database Migration Services and AWS Snowball Edge
80
What does the AWS Database Migration Services (AWS DMS) help you do?
The DMS helps you migrate databases to AWS quickly and securely.
81
When migrating a database with DMS, does the source database go down?
No. The source database remains fully intact during migration with DMS.
82
With DMS, can you migrate to and from most widely used on-premises commercial and open-source databases?
Yes.
83
With DMS, can you perform homogenous migrations, such as Oracle to Oracle?
Yes, homogenous migrations are possible with DMS.
84
With DMS, can you perform heterogeneous migrations between different database platforms, such as Microsoft SQL Server to Amazon Aurora?
Yes, heterogeneous migrations are possible with DMS.
85
What service is better suited for data warehouses?
Amazon Redshift
86
What physical device provisioned by AWS allows you to transfer data much faster and more cost-effective than transferring that data over the Internet?
AWS Snowball Edge
87
What common challenges with large-scale data transfers does the AWS Snowball Edge help with?
High network costs Long transfer times Security concerns
88
Modernize development for rapid innovation
Replace your overly complex applications with microservices that deploy and scale independently.
89
Analyze your data faster for deeper insights
Use machine learning and analytics tools to help you make data-driven decisions, deepen your customer relationships, and reduce business risk.
90
What do you need to clearly articulate are to be equipped to drive innovation in the cloud:
The current state Where you want to end up The problems you are trying to solve
91
What does serverless mean in AWS?
Applications that don’t require you to provision, maintain, or administer servers. You don’t need to worry about fault tolerance and availability. AWS handles those capabilities for you.
92
What is a service that you can use to develop serverless applications
AWS Lambda
93
Amazon Transcribe
You can convert speech to text
94
Amazon Comprehend
Discover patterns
95
Amazon Fraud Detector
Identify potentially fraudulent online activities
96
Amazon SageMaker
Remove the heavy lifting from the process and empower you to build, train, and deploy ML models quickly.
97
What can you do to modernize your organization for rapid innovation?
Replace monolithic apps with microservices
98
What does machine learning (ML) allow you to do?
Analyze data, solve complex problems, and predict outcomes before they happen
99
What can you do with AWS Identity and Access Management?
Create and manage AWS users and groups, and use permissions to allow or deny their access to AWS resources.
100
What is an AWS Region?
Each AWS Region is a separate geographic area with at least two isolated locations known as Availability Zones.
101
What are the four options to pay for Amazon EC2 instances?
On-demand Spot Reserved instance Dedicated host
102
What are the five pillars of a well-architected framework?
``` Operational excellence Security Reliability Performance efficiency Cost optimization ```
103
How does CloudFront deliver data, videos, applications, and API's?
Through edge locations.
104
What does CloudTrail do within your AWS infrastructure?
Monitors and logs account activity.
105
What does ElastiCache store? and where?
Ephemeral data and in-memory.
106
What is ElastiCache ideal for?
Improving the performance of data-intensive apps
107
Spinning up servers and shutting them down as needed is an example of what?
The agility that cloud computing can offer.
108
You have been tasked with distributing a newsletter that will be pushed out to administrators by email. What is a way to get this done?
Create a topic in Amazon Simple Notification Service (Amazon SNS) that administrators can subscribe to.
109
Which component of the AWS infrastructure supports caching of content for faster access?
Edge locations
110
Who's responsibility is AWS Identity and Access Management (IAM) in the shared business model?
IAM is the customer's responsibility in the shared business model.
111
A company has 70 employees divided into 10 departments. The IT administrator wants to customize each department’s access to AWS. What is an efficient way of administering the right permissions?
Create an IAM group for each department, assign IAM users to the group.
112
Which service sends notifications or automatically makes changes to the resources being monitored based on rules you established?
CloudWatch
113
What are 3 good uses cases for CloudFront?
Static Asset Caching Live On-Demand video streaming Security and Encryption
114
How is storage typically priced on AWS?
Per GB
115
What is the most common billing model?
Pay as you go
116
Which AWS service is a managed Distributed Denial of Service (DDoS) protection service that safeguards applications running on AWS?
AWS Shield
117
Which AWS Cost Management Service can be configured to send you an alert when one of your services is forecasted to exceed a specified cost?
AWS budgets
118
What is the best way to describe AWS artifact?
A service that provides on-demand access to compliance reports and managing AWS agreements
119
What is the best way to describe the purpose of penetration testing?
Discovering vulnerabilities within your applications and resources
120
What is a denial-of-service (DoS) attack?
A deliberate attempt to make your website or application unavailable to users
121
How can you best describe the Amazon Inspector?
As a service that automates vulnerability assessments
122
Can you prioritize the actions to take on security and compliance issues within the Security Hub?
yes
123
True or false: Multi-factor authentication (MFA) is enabled by default for AWS accounts.
False
124
Can you determine who created an S3 policy 30 days ago with AWS CloudTrail?
Yes
125
What can you create and implement with the AWS Security Hub?
Rules to filter network traffic
126
According to the shared responsibility model, which of the following is the responsibility of AWS?
Protecting AWS’s global infrastructure
127
True or false: Based on the shared responsibility model, customers are responsible for controlling access to their content stored in AWS.
True
128
Deploying and configuring your infrastructure as code a function of the AWS CloudFormation?
Yes
129
Is examining permissions and providing security recommendations a feature of AWS Trusted Advisor?
Yes
130
You have an application composed of individual services. You need to route a request to a service based on the content of the request. Which type of load balancer should you use?
Application Load Balancer
131
True or false: Network Load Balancers route connections to targets based on IP protocol data.
True
132
Which of the following best describes how Amazon SNS works?
Messages are posted to a topic and then distributed to services and users who subscribe to that topic.
133
True or false: Amazon SQS FIFO queues process messages in the order they are sent.
True
134
When should I use Amazon EFS vs. Amazon S3 vs. Amazon Elastic Block Store (EBS)?
Amazon EFS is a file storage service for use with Amazon EC2. Amazon EFS provides a file system interface, file system access semantics (such as strong consistency and file locking), and concurrently-accessible storage for up to thousands of Amazon EC2 instances. Amazon EBS is a block-level storage service for use with Amazon EC2. Amazon EBS can deliver performance for workloads that require the lowest latency access to data from a single EC2 instance. Amazon S3 is an object storage service. Amazon S3 makes data available through an Internet API that can be accessed anywhere.
135
When should I use Amazon EC2 Auto Scaling vs. AWS Auto Scaling?
You should use AWS Auto Scaling to manage to scale for multiple resources across multiple services. You should use EC2 Auto Scaling if you only need to scale Amazon EC2 Auto Scaling groups, or if you are only interested in maintaining the health of your EC2 fleet.
136
What is cloud computing?
IT resources that work on pay-as-you-go models, meaning that you only pay for the resources that you’re using.
137
What are the 3 cloud computing models?
Cloud Hybrid On-premise or private cloud
138
What are the 3 values that influence agility?
Speed Culture of innovation Experimentation
139
What is the CLOUD computing model?
A full cloud deployment. Every aspect of your application is on the cloud. Applications can either be developed on the cloud or migrated from an on-premise environment.
140
What are some advantages of cloud computing?
Scaling. You may add more resources or reduce the number of resources seamlessly. Reduces the overhead costs procuring your own infrastructure and maintaining it With AWS’s global presence, you can strategically place your data closer to your customers to reduce latency.
141
What is the HYBRID computing model?
The hybrid computing model allows for a company with an on-premise data center to work in the cloud.
142
What are some of the benefits of the hybrid model?
We can economically store large amounts of data Use cloud-native services like databases or record archiving Move data closer to your customers Backup data away from the on-premise site to promote continuity in case of an outage or disaster on the on-premise site.
143
What is the ON-PREMISE computing model?
The on-premise model relates to companies that have their own data centers. This model doesn’t allow for any of the benefits of the cloud. Companies must normally bear the burden of procuring enough resources, deployments, employees, and the cost of all just mentioned.
144
Do I have to use all of AWS’s services if I want to be a customer?
No. Services can be procured as standalone or combos.
145
How is AWS spread out globally?
AWS has something called REGIONS across the world. Those regions contain AVAILABILITY ZONES Those availability zones are then spread out throughout the area to promote durability and availability.
146
What is an Availability Zone?
An availability zone is a cluster of isolated data centers that promote wider reach, low latency, and business continuity.
147
How many Availability Zones can a REGION contain?
A region can contain 6 availability zones.
148
Can Availability Zones belong to more than one region?
No. Availability zones cannot belong to more than one region.
149
What does AWS define as Durability?
The chance that you will be able to retrieve an object from its storage. Think: how sure am I that my object will be there?
150
What does AWS define as Availability?
The percentage of uptime for objects to be retrieved. Think: I need my object right now. Can AWS guarantee that their network will give me access right now?
151
How do data isolated data centers help promote business continuity, durability, and availability?
The separation of physical data center locations gives peace of mind that if one center has an outage or is damaged because of a natural disaster or system failures, your services can be picked up by another center.
152
Does our choice of the region affect which services we can procure?
Yes. Not all regions offer all of AWS’s services. In fact, there is only one region that houses ALL the services AWS offers. That region is the US EAST: N. Virginia region.
153
What are some factors to consider when selecting the right region?
We want to optimize and reduce latency - Where are your customers? costs Regulatory requirements
154
What is the Shared Responsibility Model?
A symbiotic relationship between AWS and the cloud customer. When you use AWS services, you and AWS share the responsibility of maintaining security and compliance
155
What are the foundation services that AWS is responsible for in the Shared Responsibility Model?
Compute Storage Database Network
156
What are the global infrastructure services that AWS is responsible for in the Shared Responsibility Model?
Regions Availability Zones Edge Locations
157
Are networks, facilities, hardware, operational software, like host OS's and virtualization the responsibility of the customer or AWS in the Shared Responsibility Model?
AWS is responsible for these.
158
What is AWS's number one priority in the Shared Responsibility Model?
The global infrastructure.
159
Who is responsible for customer data in the Shared Responsibility Model?
The customer is responsible for customer data.
160
Who is responsible for how the platform, services, and Identity and Access Management is used on AWS in the Shared Responsibility Model?
The customer is responsible for how they use the platform, the services they procure, and who they allow to access their data in the Shared Responsibility Model.
161
Who is responsible for the OS, network, and firewall configurations in the Shared Responsibility Model?
The customer is responsible for how they use the OS, their network settings and configurations, and their firewall configurations in the Shared Responsibility Model.
162
Who is responsible for customer data encryption and data integrity authentication in the Shared Responsibility Model?
The customer is responsible for protecting their data and its integrity in the Shared Responsibility Model.
163
Who is responsible for Server-Side Data encryption on the file system and the data in the Shared Responsibility Model?
The customer is responsible for Server-Side Data encryption on the file system and the data in the Shared Responsibility Model.
164
Who is responsible for Network Traffic Protection (encryption/integrity/Identity) in the Shared Responsibility Model?
The customer is responsible for Network Traffic Protection (encryption/integrity/Identity) in the Shared Responsibility Model.
165
Who is in charge of the content and securing the content put on AWS?
The customer is in charge of the content and securing the content put on AWS.
166
Who decides what country in which the content is stored?
The customer decides what country to store its content on.
167
Who decides the format and structure of your content, along with whether it is masked, anonymized, or encrypted?
The customer decides the format and structure of your content, along with whether it is masked, anonymized, or encrypted.
168
Who controls who has access to content and how those access rights are managed?
The customer has control over access and who has the right to access content on AWS.
169
What location is a location that caches popular content (widely used content) to promote low latency?
Edge locations caches popular content (widely used content) to promote low latency
170
What two AWS services do edge locations caches popular content for? (Who do they serve)
Edge locations cache popular content for AWS CloudFront Delivery Network and Route 53.
171
An incoming request gets routed to the nearest ___ location.
Edge location
172
What type of cache holds content that isn't popular enough to be considered 'frequently used' but is also requested enough to not want to fetch from the database?
The regional cache holds content that is not popular enough for edge locations, but relevant enough to not want to pull from the database.
173
What is a consistent approach for designing and evaluating architectures through design and principle?
The AWS Well-Architected Framework is a consistent approach for designing and evaluating architectures through design and principle.
174
What framework helps build secure, high performing, resilient, and efficient cloud-native infrastructure?
The AWS Well-Architected Framework helps build secure, high performing, resilient, and efficient cloud-native infrastructure
175
What does Operational Excellence encompass in the AWS Well-Architected Framework?
Operational Excellence encompasses running and monitoring systems to deliver business value Operational Excellence encompasses continually improve processes and procedures.
176
What does Reliability encompass in the AWS Well-Architected Framework?
Reliability encompasses recovering from infrastructure or service disruptions Reliability encompasses dynamically acquiring computing resources to meet demand
177
What does Performance Efficiency encompass in the AWS Well-Architected Framework?
Performance Efficiency encompasses the use of computing resources to efficiently meet system requirements. Performance Efficiency encompasses maintaining efficiency as demand rises.
178
What does Cost Optimization encompass in the AWS Well-Architected Framework?
Cost Optimization encompasses running the system and delivering value at the lowest possible cost. Cost Optimization encompasses avoiding unnecessary costs. Cost Optimization encompasses analyzing spending over a period of time. Cost Optimization encompasses meeting the business needs without overspending.
179
What tool asks a series of questions about your architecture and promotes best practice suggestions?
The Aws Well-Architected Tool asks a series of questions about your architecture and promotes best practice suggestions
180
What tool aides in reliability, security, efficiency, and cost-effectiveness?
The Aws Well-Architected Tool aides in reliability, security, efficiency, and cost-effectiveness.
181
What are the AWS service types?
The AWS Service Types are: Infrastructure as a Service (IaaS) Platform as a Service (PaaS) Software as a Service (SaaS) Serverless Computing
182
What are common Infrastructure as a Service (IaaS) services on AWS?
Virtual Private Cloud (VPC) EC2 EBS
183
What are the common Platform as a Service (PaaS) services on AWS?
RDS EMR ElasticSearch
184
What are the common Serverless Computing services on AWS?
S3 Lambda DynamoDB SNS
185
What does Infrastructure as a Service (IaaS) offer?
IaaS allows the customer to launch and manages the Linux servers themselves.
186
What does Platform as a Service (PaaS) offer?
PaaS services hand over the infrastructure reigns to AWS. AWS is fully in charge of handling the servers and the operating systems.
187
What does Software as a Service (SaaS) offer?
SaaS is a complete product owned by Amazon that normally runs on a browser.
188
What does Serverless Computing offer?
Serverless computing allows applications to be built and run without worrying servers
189
What is considered the core of Serverless Computing?
The core of Serverless Computing is AWS Lambda
190
Who manages the infrastructure of Serverless Computing?
Aws manages everything in Serverless Computing
191
What is a description of AWS Compute Services?
Compute services are the processing power needed to run your application. The AWS compute portfolio provides tools to develop, deploy, run, and scale your applications in the AWS Cloud.
192
What is a description of AWS Storage Services?
These services hold the information used by your applications. They provide reliable, scalable, and secure options to store, transmit, and back up your data.
193
What is a description of AWS Database Services?
Database services range from relational databases that are easy to set up and operate, to NoSQL databases built for higher demand and low latency.
194
What is a description of AWS Analytics Services?
Analytics services enable you to transform raw data into meaningful information. They help you collect, visualize, and analyze your data to get the answers you need to run your business.
195
What is a description of AWS Cost Management Services?
Use these services to access information about your costs and usage, organize your costs across business lines, understand cost drivers and usage trends, set budgets, and optimize your AWS usage
196
What AWS Compute Service allows for resizable capacity because it is designed to make scaling easy?
Elastic Compute Cloud (Amazon EC2) was designed to make scaling easy.
197
What AWS Compute Service allows for servers to be booted or terminated in minutes. Allowing for up-scaling or down-scaling to be made easy.
Elastic Compute Cloud (Amazon EC2) allows for servers to be booted or terminated in minutes
198
What AWS Compute Service requires Amazon Elastic Block Service (EBS) or Amazon Elastic File Service (EFS) because it only provides ephemeral storage?
Elastic Compute Cloud (Amazon EC2) requires Amazon Elastic Block Service (EBS) or Amazon Elastic File Service (EFS) for more permanent storage.
199
What AWS Compute Service can you use to deploy your Java, .NET, PHP, Node.js, Python, Ruby, Go, and Docker based code on servers like: Apache, Nginx, Passenger, and IIS?
AWS Elastic Beanstalk allows for applications to be deployed on familiar servers
200
What AWS service is a serverless computing engine for containers that works with both Amazon Elastic Container Services (ECS) and Amazon Elastic Kubernetes Service (EKS)?
AWS Fargate works with both Amazon Elastic Container Services (ECS) and Amazon Elastic Kubernetes Service (EKS).
201
What AWS service helps improve security through application isolation by design
AWS Fargate improve security through application isolation
202
What AWS service is ideal for microservices architecture applications, batch processing, machine learning applications, and migrating on-premise applications to the cloud?
AWS Fargate
203
What AWS service lets you run code without provisioning or managing servers
AWS Lambda
204
What AWS service allows you to set up your code to automatically trigger from other AWS services or call it directly from any web or mobile app?
AWS Lambda
205
What auto-scaling service provides features to manage your fleet EC2 instances help maintain the health and availability of your fleet?
Amazon EC2 Auto Scaling
206
What auto-scaling service allows you to automatically add or remove EC2 instances according to conditions you define?
Amazon EC2 Auto Scaling
207
What auto-scaling service provides predictive scaling features of EC2 Auto Scaling to add or remove EC2 instances?
Amazon EC2 Auto Scaling
208
In reference to Amazon EC2 Auto Scaling, what is dynamic scaling, and what is predictive scaling? Can both of these scaling features be used to scale faster?
Dynamic scaling responds to changing demand Predictive scaling automatically schedules the right number of EC2 instances based on predicted demand Yes
209
What AWS service is perfect for developers, small businesses, students, and other users who need a simple virtual private server (VPS) solution.
Amazon LightSail (AWS Managed)
210
What AWS service is a container manager for Docker containers? What AWS Compute Service do these containers work on?
Amazon Elastic Container The containers will run on a managed cluster of EC2 servers
211
What AWS service allows you to deploy and manage containerized apps at scale with Kubernetes?
Amazon Elastic Kubernetes
212
What AWS Storage service allows you to store objects in 'Buckets' and allows you to access these objects anywhere on the internet?
Amazon Simple Storage Service (Amazon S3)
213
What type of access can you allow or restrict on AWS S3 objects in a bucket?
You can control who accesses, creates, deletes, and retrieves objects from a bucket
214
What are the popular uses cases for AWS S3 storage?
websites, mobile applications, backup and restore, archive, enterprise applications, IoT devices, and big data analytics
215
What AWS Storage service was designed for use with Amazon Elastic Compute Cloud (EC2) for both throughput and transaction-intensive workloads?
Amazon Elastic Block Store (Amazon EBS)
216
What AWS Storage service allows for the rapid changing of volume type?
Amazon Elastic Block Store (Amazon EBS)
217
Where are EBS volumes automatically backed up?
Within its own availability zone.
218
If you're using EBS and you want to set up a lifecycle rule to automatically backup your volumes while ensuring geographic protection of your data and business continuity, what AWS storage service would you use to back up EBS volumes?
Amazon s3
219
What are the cheapest storage options on AWS?
S3 Glacier Deep Archive is the cheapest storage option on AWS
220
What AWS services are low-cost Amazon S3 based cloud storage classes for data archiving and long-term backup?
Amazon S3 Glacier & S3 Glacier Deep Archive
221
What are the 3 retrieval options for Amazon S3 Glacier archives?
Expedited Standard Bulk
222
What are the access speeds for Expedited Retrievals?
Expedited retrievals typically return data in 1-5 minutes, and are great for Active Archive use cases.
223
What are the access speeds for Standard Retrievals?
Standard retrievals typically complete between 3-5 hours and work well for less time-sensitive needs like backup data, media editing, or long-term analytics.
224
What are the access speeds for Bulk Retrievals?
Bulk retrievals are the lowest-cost retrieval option, returning large amounts of data within 5-12 hrs.
225
What are the S3 Glacier Deep Archive retrieval options?
Bulk - where you can retrieve petabytes of data within 48 hours
226
Which glacier service should you use if you want to only access your data once or twice a yr?
S3 Glacier Deep Archive
227
What S3 storage type is good for general purposes?
Amazon S3 Standard (S3 Standard)
228
What S3 storage type is good for Ideal for long-lived data with access patterns that are unknown or unpredictable?
Amazon S3 Intelligent-Tiering (S3 Intelligent-Tiering)
229
What S3 storage type automatically moves objects between two access tiers based on changing access patterns?
Amazon S3 Intelligent-Tiering (S3 Intelligent-Tiering)
230
What S3 storage is good for data that is accessed less frequently but requires rapid access when needed?
Amazon S3 Standard-Infrequent Access (S3 Standard-IA)
231
What S3 storage is good for data that is infrequently accessed and requires rapid access when needed but does not require the availability and resilience of S3 Standard or S3 Standard-IA?
Amazon S3 One Zone-Infrequent Access (S3 One Zone-IA)
232
What S3 storage is good for backup copies or easily recreatable data?
Amazon S3 One Zone-Infrequent Access (S3 One Zone-IA)
233
What is one S3 storage type that runs the risk of losing your data in case of zone destruction?
Amazon S3 One Zone-Infrequent Access (S3 One Zone-IA)
234
What S3 storage is good for low-cost storage ideal for data archiving but does not produce real-time access to data?
Amazon S3 Glacier
235
What S3 storage offers the lowest-cost storage class designed for long-term data retention (7 to 10 years or longer)?
Amazon S3 Glacier Deep Archive
236
What are the individual areas inside of your VPC? These individual areas can have different levels of access that allow you to either make a subnet public or private
Subnets
237
What allows you to provision a logically isolated section of the AWS Cloud where you can launch AWS resources in a virtual network that you define?
The Virtual Private Cloud (VPC)
238
Can you select your own IP address range for your VPC?
Yes, you select your own IP address range for your VPC
239
Can you create your own subnets within your VPC?
Yes, you can create your own subnets within your VPC.
240
Can you configure the route tables and network gateways of your VPC?
Yes, you configure the route tables and network gateways of your VPC.
241
Can you configure public and private subnets within your VPC?
Yes, you can create a public-facing subnet for your web servers that have access to the internet. You can also place your backend systems, such as databases or application servers, in a private-facing subnet with no internet access
242
What layers of security are offered for the VPC?
security groups network access control lists
243
How many regions does your VPC exist in?
Your VPC exists within one region
244
What is the max number of VPC's per region?
There is a max of 5 VPC's per region
245
What AWS Service is a cloud-based Domain Name Service (DNS)?
Amazon Route 53
246
What AWS Service offers these 3 main benefits: 1. You can register domain names for sites or applications 2. Route traffic to your resources configured to that domain 3. Automatically check the health of your resource
Amazon Route 53
247
What is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds?
Amazon CloudFront
248
What AWS service works with AWS Shield for DDoS mitigation?
Amazon CloudFront
249
What location type does Amazon CloudFront make use of to distribute content with low latency and high data transfer rates by serving requests using a network?
Edge locations
250
What 3 AWS storage services allow you to transfer data without any additional costs when used with CloudFront?
Amazon S3 Elastic Load Balancing Amazon EC2
251
What are the components of Amazon VPC?
- A Virtual Private Cloud - Subnet - Internet Gateway - NAT Gateway - Egress-only Internet Gateway - VPC Endpoints - Peering Connections - Virtual private gateway
252
What is a segment of a VPC’s IP address range where you can place groups of isolated resources?
Subnet
253
What gateway offers a highly available managed Network Address Translation (NAT) service for your resources in a private subnet to access the Internet?
NAT Gateway
254
Internet Gateway is the:
Amazon VPC side of a connection to the public Internet.
255
Virtual private gateway is the:
Amazon VPC side of a VPN connection.
256
A ___ connection enables you to route traffic via private IP addresses between two peered VPCs
Peering (Connection)
257
What component of the VPC enables private connectivity to services hosted in AWS, from within your VPC without using an Internet Gateway, VPN, Network Address Translation (NAT) devices, or firewall proxies?
VPC Endpoints
258
What type of gateway is a stateful gateway that provides egress only access for IPv6 traffic from the VPC to the Internet?
Egress-only Internet Gateway
259
What is a MySQL and PostgreSQL-compatible relational database built for the cloud that is owned by Amazon and managed by RDS?
Amazon Aurora
260
Does the Amazon Relational Database Service (Amazon RDS) work well with SQL or NoSQL databases?
RDS works well with SQL based databases
261
What does RDS help automate?
Time-consuming administration tasks such as hardware provisioning, database setup, patching and backups
262
Does the Amazon DynamoDB work well with SQL or NoSQL databases?
Works with NoSQL
263
What is a key-value and document database?
DynamoDB
264
What is a fully managed, multi-region, multi-master, durable database with built-in security, backup and restore, and in-memory caching for internet-scale applications?
DynamoDB
265
What AWS database service can handle more than 10 trillion requests per day and can support peaks of more than 20 million requests per second?
DynamoDB
266
What is the name of the graph database that is best for fraud detection, social networking, recommendation engines?
Amazon Neptune
267
What is the name of the in-memory database that is best for caching, session management, gaming leaderboards, geospatial applications?
Amazon ElastiCache
268
What is the name of the ledger database that is best for systems of record, supply chain, registrations, banking transactions?
Amazon Quantum Ledger Database
269
What AWS service allows you to seamlessly set up, run, in-memory data stores in the cloud that allow you to build data-intensive apps or boost database performance?
Amazon ElastiCache
270
Which cache should be used when you're caching small and static data? This type of cache should only be used only when were concerned with fast reads and performance.
MemCached
271
Which cache is a NoSQL cache that supports persistence and scripting? This type of cache also comes with in-memory data structures
Redis
272
What type of cache should be used for: ``` Reads and writes Caching Pub/Sub Gaming Leaderboards Session Stores ```
Redis
273
What is AWS Artifact?
A free service that provides on-demand access to AWS’s security and compliance reports and select online agreements.
274
What are the two main sections of AWS Artifact?
AWS Artifact Agreements AWS Artifact Reports
275
What section of AWS Artifact allows you to review, accept, and manage agreements between you and AWS, for either an individual account or for accounts that are part of an AWS Organization?
AWS Artifact Agreements
276
What section of AWS Artifacts provides several compliance reports from third-party auditors who have tested and verified AWS’s compliance with a variety of global, regional, and industry-specific security standards and regulations?
AWS Artifact Reports
277
What is penetration testing?
Penetration testing is the process of checking a system or application for vulnerabilities by attempting to exploit them.
278
What are common vulnerabilities that can be found with penetration testing?
Some common vulnerabilities that can be discovered through penetration testing include security misconfigurations, weak permission settings, and sensitive data exposure.
279
What AWS service is a query service that makes it easy to analyze data in Amazon S3 using standard SQL?
Amazon Athena
280
What AWS Service allows you to run ad-hoc queries using ANSI SQL, without the need to aggregate or load the data into it?
Amazon Athena
281
Amazon Athena allows you to run ad-hoc queries using ANSI SQL, without the need to aggregate or load the data into it, using what storage service?
Amazon S3
282
What AWS Service is a fully managed data warehouse?
Amazon Redshift
283
What AWS Service allows you to run complex analytic queries against petabytes of structured data?
Amazon Redshift
284
What AWS service allows you to run queries against unstructured data in Amazon S3 data lakes?
Amazon Redshift
285
Amazon Kinesis is best for what?
Process streaming data at any scale Ingesting real-time data such as video, audio, application logs, website clickstreams, and IoT telemetry data for machine learning.
286
What AWS Kinesis service is best for capturing, processing, and storing video streams?
Kinesis Video Streams
287
What AWS service makes it easy to securely stream video from connected devices to AWS for analytics, machine learning (ML), and other processing?
Kinesis Video Streams
288
What AWS Kinesis service is best for capturing, processing, and storing data streams?
Amazon Kinesis Data Streams
289
What AWS Kinesis service is a scalable and durable real-time data streaming service that can continuously capture gigabytes of data per second from hundreds of thousands of sources.
Amazon Kinesis Data Streams
290
What AWS Kinesis service is best for loading data streams into AWS data stores?
Kinesis Data Firehose
291
What AWS Kinesis service is best for analyzing data streams with SQL or Java?
Kinesis Data Analytics
292
What AWS Cost Management tool that enables you to view and analyze your costs and usage?
AWS Cost Explorer
293
What AWS Cost Management tool allows you to view data for up to the last 12 months and forecast how much you're likely to spend for the next three months?
AWS Cost Explorer
294
True or False: You can't disable Cost Explorer after you enable it.
True
295
What AWS Cost Management tool is your hub for creating, tracking, and inspecting your budgets? This tool enables you to create several types of budgets.
AWS Budgets
296
What budgets can you create and track with AWS Budgets?
Cost budgets to monitor costs against a specified dollar amount. Usage budgets to monitor the usage of one or more specified usage types. Reservation budgets to track Reserved Instance utilization and coverage. Savings Plans budgets to track Savings Plans utilization and coverage.
297
What do AWS Budgets allow you to do with reserved instances?
RI utilization budgets – Define a utilization threshold and receive alerts when your RI usage falls below that threshold. This lets you see if your RIs are unused or under-utilized. RI coverage budgets – Define a coverage threshold and receive alerts when the number of your instance hours that are covered by RIs fall below that threshold. This lets you see how much of your instance usage is covered by a reservation.
298
What do AWS Budgets allow you to do with savings plans?
Savings Plans utilization budgets – Define a utilization threshold and receive alerts when the usage of your Savings Plans falls below that threshold. This lets you see if your Savings Plans are unused or under-utilized. Savings Plans coverage budgets – Define a coverage threshold and receive alerts when your Savings Plans eligible usage that is covered by Savings Plans falls below that threshold. This lets you see how much of your instance usage is covered by Savings Plans
299
What AWS Cost Management tool provides the most detailed information about your AWS costs and usage? You can generate reports at a daily or hourly level of granularity
AWS Cost and Usage Report
300
What AWS Management and Governance services allows you to monitor your AWS resources and the applications you run on AWS in real-time?
Amazon CloudWatch
301
What AWS tool would you use so that you can specify which CloudWatch actions a user in your AWS Account can perform?
AWS Identity and Access Management (IAM)
302
What AWS service would you use to send notifications (alerts) that CloudWatch would want you to send?
Amazon Simple Notification Service (Amazon SNS)
303
What AWS service allows you to gain system-wide visibility into resource utilization, application performance, and operational health?
Amazon CloudWatch
304
What AWS service allows you to build an environment by writing lines of code instead of using the management console to individually provision resources? JavaScript Object Notation (JSON) or YAML Ain’t Markup Language (YAML) is used with this service.
AWS CloudFormation
305
What AWS service allows you to build and rebuild your infrastructure and applications without having to perform manual actions or write custom scripts?
AWS CloudFormation
306
What AWS service enables governance, compliance, operational auditing, and risk auditing of your AWS account?
AWS CloudTrail
307
What AWS service records important information about each action taken on your account like: ``` The user who made the request The services used The actions performed Parameters for the actions The response elements returned by the AWS service ```
AWS CloudTrail
308
Where can CloudTrail event log files can be found?
In specified Amazon Simple Storage Service (Amazon S3) buckets.
309
AWS Trusted Advisor can provide feedback in what 5 categories?
1. Cost optimization See how you can save money on AWS by eliminating unused and idle resources or adjusting capacity. 2. Security Improve the security of your application by closing gaps in unrestricted ports, enabling various AWS security features, and examining your permissions. 3. Fault tolerance Increase the availability and redundancy of your AWS applications with recommendations for auto-scaling, health checks, multiple Availability Zones, and backup capabilities. 4. Performance Check your service limits and ensure you take advantage of provisioned throughput. Monitor for overutilized instances. 5. Service limits Check for service usage that is above 80% of the service limit. Values are based on a snapshot, so your current usage might differ. Limit and usage data can take up to 24 hours to reflect any changes.
310
What catalog allows companies to catalog services that can go on the cloud? Promotes common governance and compliance.
Service Catalog
311
What AWS service enables you to assess, audit, and evaluate the configurations of your AWS resources?
AWS Config
312
What AWS service is a configuration management service that provides managed instances of Chef and Puppet.
AWS OpsWorks
313
OpsWorks lets you use Chef and Puppet to:
automate how servers are configured, deployed, and managed across your Amazon EC2 instances or on-premises compute environments.
314
What is AWS OpsWorks Stacks?
different layers, such as load balancing, database, and application server. Within each layer, you can provision Amazon EC2 instances, enable automatic scaling, and configure your instances with Chef recipes using Chef Solo.
315
True or False AWS Database Migration Service (DMS): Supports homogeneous migrations such as Oracle to Oracle Supports heterogeneous migrations between different database platforms, such as Oracle or Microsoft SQL Server to Amazon Aurora
True
316
What Migration & Transfer service is an online data transfer service that simplifies, automates, and accelerates copying large amounts of data to and from AWS storage services over the internet or AWS Direct Connect?
AWS DataSync
317
True or False: | AWS DataSync increases the complexity and cost of online data transfer?
False. AWS DataSync reduces the complexity and cost of online data transfer.
318
What do Storage Gateways enable?
hybrid storage between an on-premise environment and the cloud.
319
How does a Storage Gateway promote low latency?
A Storage Gateway offers low latency by caching frequently used data on-premise and storing less frequently used data on the cloud.
320
What AWS Service automatically distributes incoming application traffic across multiple targets, such as Amazon EC2 instances, containers, IP addresses, and Lambda functions
Elastic Load Balancer
321
Does an Elastic Load Balancer work on one or multiple availability zones?
It can handle the varying load of your application traffic in a single Availability Zone or across multiple Availability Zones
322
What are the 3 types of Elastic Load Balancers?
1. Application Load Balancer 2. Network Load Balancer 3. Classic Load Balancer
323
What Load Balancer is best suited for load balancing of HTTP and HTTPS traffic and provides advanced request routing targeted at the delivery of modern application architectures, including microservices and containers?
Application Load Balancer
324
What Load Balancer is best suited for load balancing of Transmission Control Protocol (TCP), User Datagram Protocol (UDP), and Transport Layer Security (TLS) traffic where extreme performance is required?
Network Load Balancer
325
What Load Balancer provides basic load balancing across multiple Amazon EC2 instances and operates at both the request level and connection level. Classic Load Balancer is intended for applications that were built within the EC2-Classic network?
Classic Load Balancer
326
What AWS service allows you to migrate, burst, or failover on-premises applications to the cloud?
Elastic Load Balancer
327
What file system automatically scales as you add or remove files?
Elastic File System
328
Amazon Elastic File System (EFS) offers two storage classes. What are they?
1. Standard storage class | 2. Infrequent Access storage class
329
Which of the Elastic File System (EFS) storage classes is better suited for active file system workloads
Standard storage class
330
Which of the Elastic File System (EFS) storage classes is a lower cost storage class that’s cost-optimized for files not accessed every day?
Infrequent Access storage class Data stored on the EFS IA storage class costs 85% less than Standard.
331
Is this possible: EFS Lifecycle Management on your file system, files not accessed according to the lifecycle policy you choose will be automatically and transparently moved into EFS
Yes, EFS will serve files from both storage types seamlessly.
332
What can be thought of like a Virtual FireWall for your instance to control inbound and outbound traffic?
Security Groups
333
Do security groups act at the instance level or subnet level?
Security groups act at the instance level, not the subnet level. Each resource can have a different set of security groups.
334
True or false: By default, all security groups allow all incoming traffic and block outgoing traffic to all IP’s
False. By default, all security groups BLOCK all incoming traffic and ALLOW outgoing traffic to all IP’s
335
True or false: With Security Groups, you can specify rules that allow but not rules that deny
true
336
Are security groups stateful or stateless?
Security groups are stateful
337
If your instance sends a request, a response is allowed in even if you don't have incoming traffic enabled If you allow inbound traffic but have not enabled outbound traffic, you can and will send a response to a received request What are the statements above describing and why?
Security groups Because they are stateful
338
What be used as an optional layer of security for your VPC if the Security Groups are too permissive?
Network Access Control List
339
At what level do the Network Access Controls (NAC) operate?
At the subnet level
340
Since Network Access Controls (NAC) operate at the subnet level, who gets all the controls they apply?
All instances of all resources get these controls since they operate at the subnet level
341
Network Access Controls (NAC) support:
both allow and deny rules
342
Are Network Access Controls (NAC) stateful or stateless?
Stateless Traffic in and out rules must be specified to void stateful scenarios like those listed with Security Groups
343
What AWS Service allows for a private dedicated connection from your data center to AWS?
AWS Direct Connect
344
How AWS Direct Connect bypass the need for ISP’s?
Direct Connect links into your internal network to a DirectConnect Location The connection is established through a standard fiber optic cable. One end of the cable connects to your router, the other to the DirectConnect device.
345
What AWS service enables you to manage access to AWS services and resources securely?
AWS Identity and Access Management (IAM)
346
What AWS service allows you to can create and manage AWS users, groups, and roles.
AWS Identity and Access Management (IAM)
347
When this is enabled, a user needs to provide their username and password, followed by a security token from a device
Multi-factor authentication (MFA)
348
What AWS service provides an automated security assessment service that helps improve the security and compliance of applications deployed on AWS?
Amazon Inspector
349
What AWS service automatically assesses applications for exposure, vulnerabilities, and deviations from best practices.
Amazon Inspector
350
What are the benefits of the AWS Shield Standard?
The network layer decides which physical path the data takes The transport layer transmits data using transmission protocols such as TCP and UDP. It's Free
351
WS Shield Advanced is an optional paid service that integrates with what other AWS service to distribute traffic?
CloudFront
352
Where can you monitor all your security findings and compliance checks?
AWS Security Hub
353
What AWS service helps to protect your web applications and APIs against common web exploits that may affect availability, security, or consume excessive resources?
AWS Web Application Firewall (WAF)
354
The following are examples of criteria you can set in what AWS Service? IP addresses or address ranges that requests originate from Specific strings that appear in the request Scripts that are likely to be malicious
AWS Web Application Firewall (WAF)
355
What does AWS Key Management Service (KMS) enable you to do?
Enables you to create and control the encryption keys that are used to encrypt and protect your data.
356
Reserved Instances can be purchased in what 2 commitment types?
either one year or three-year commitments.
357
When should you use a reserved instance?
Reserved Instances are recommended for: Applications with steady-state usage. Customers who can commit to using Amazon EC2 over a 1- or 3-year term to reduce their total computing costs.
358
What plan allows you to save money on Amazon EC2 and AWS Fargate usage in exchange for a commitment to a consistent amount of usage (measured in $/hour) for a 1- or 3-year term?
Savings Plans
359
Amazon EC2 __ enables you to request spare Amazon EC2 computing capacity for up to 90% off the On-Demand price.
Spot Instances
360
What rate do you pay for spot instances?
the Spot price that's in effect for the time period your instances run
361
When should spot instances be used?
Spot instances are recommended for: Applications that have flexible start and end times. Applications that are only feasible at very low compute prices. Users with urgent computing needs for large amounts of additional capacity.
362
With Amazon Amazon EC2 On-Demand pricing, how are you billed?
you pay for computing capacity per hour or per second depending on which instances you run. No longer-term commitments or upfront payments are needed.
363
What are EC2 On-Demand Instances are recommended for?
On-Demand Instances are recommended for: Users that prefer the low cost and flexibility of Amazon EC2 without any up-front payment or long-term commitment Business-critical applications with short-term, spiky, or unpredictable workloads Applications being developed or tested on Amazon EC2 for the first time Paying per second is for Linux only.
364
What does AWS pricing allow you to do?
Adapt your business depending on need rather than forecasts along with other benefits
365
What two storage services have tiered pricing?
S3 and EC2 have tiered pricing
366
What Amazon Customer Engagement service is a Self-service contact center?
Connect
367
What Amazon Customer Engagement service can send Email, SMS, or mobile push notifications for mass marketing to a specific set of users?
PinPoint
368
What Amazon Customer Engagement service can also send unique messages to a specific customer? Like an order confirmation email
PinPoint
369
What Amazon Customer Engagement service is a cloud-based bulk email service?
Simple Email Service
370
What AWS service eliminates the complexity and overhead associated with managing and operating message-oriented middleware?
Simple Queue Service
371
What AWS service is used by distributed applications to exchange messages through a polling model, and can be used to decouple sending and receiving components?
Simple Queue Service
372
Amazon SQS offers two types of message queues, what are they?
Standard queues offer maximum throughput, best-effort ordering, and at-least-once delivery. First-in, first-out (FIFO) queues are designed to guarantee that messages are processed exactly once, in the exact order that they are sent.
373
What is a Fully managed pub/sub messaging service that enables you to decouple microservices, distributed systems, and serverless applications?
Simple Notification Service
374
What AWS service allows applications to send time-critical messages to multiple subscribers through a “push” mechanism, eliminating the need to periodically check or “poll” for updates?
Amazon SNS
375
What is Amazon Simple WorkFlow Service help developers do?
Amazon SWF helps developers build, run, and scale background jobs that have parallel or sequential steps. You can think of Amazon SWF as a fully-managed state tracker and task coordinator
376
What AWS service can you use if you require external signals to intervene in your processes, or you would like to launch child processes that return a result to a parent?
Simple WorkFlow Service
377
What AWS service lets you write a decider program to separate activity steps from decision steps.
Simple WorkFlow Service
378
What do AWS Step Functions let you do?
AWS Step Functions lets you coordinate multiple AWS services into serverless workflows so you can build and update apps quickly
379
What AWS Application integration service translates your workflow into a state machine diagram that is easy to understand, easy to explain to others, and easy to change?
AWS Step Functions
380
What AWS Application integration service you should consider using for all your new applications since it provides a more productive and agile approach to coordinating application components using visual workflows?
AWS Step Functions
381
What is a sound design principle for building a system that is broken up into small, loosely coupled components?
Application integration
382
What design principle suggests that components work independently so that a change or failure in one component should not cause other components to fail?
Application integration