Certified Cloud Practitioner Flashcards

Question 1

Q

S3 access logs

Answer

A

see all requests made to bucket

Question 2

Q

Two types of S3 object replications

Answer

A

Cross-region and Same-region

Question 3

Q

S3 - Cross-region replication use case (3)

Answer

A

compliance, lower latency access, replication across accounts

Question 4

Q

S3 - Same-region replication use case (2)

Answer

A

log aggregation, live replication between production and test accounts

Question 5

Q

S3 - Name 6 storage classes

Answer

A

Standard General Purpose
Standard Infrequent Access (IA)
One Zone Infrequent Access
Intelligent Tiering
Glacier
Glacier Deep Archive

Question 6

Q

S3 - Standard General Purpose class (availability, use case, failures)

Answer

A

99.99% availability
Frequently accessed data
Sustain 2 concurrent facility failures

Question 7

Q

S3 - Standard Infrequent Access class (availability, use case, fees)

Answer

A

99.9% availability
Less frequently accessed, but rapid when needed
Cheaper at rest, but retrieval fee

Question 8

Q

S3 - One Zone Infrequent Access class (availability, replication, cost, use case)

Answer

A

99.5% availability
Not replicated across AZ
Lower cost than IA
Storing backups or easily recreated data

Question 9

Q

S3 - Intelligent Tiering class (availability, latency, what does it do)

Answer

A

99.9% availability
Same low latency as standard access
Auto moves objects between frequent/infrequent access

Question 10

Q

S3 - Glacier class (cost, retrieval times and fees)

Answer

A

Low cost

Different retrieval times and fees

Question 11

Q

S3 - Glacier Deep Archive class (retrieval for one file, retrieval for bulk files, relative cost)

Answer

A

12 hours retrieval for one file
48 hours for bulk files
Cheapest option

Question 12

Q

S3 - Durability and Availability

Answer

A

Durability = 99.999999999% (11 9's)
Availability = 99.99% for standard

Question 13

Q

S3 - Object Lock & Vault Lock (what it does, use case)

Answer

A

File written once and never deleted

Useful for compliance and data retention

Question 14

Q

What is Snow used for? (2)

Answer

A

Data migration and Edge computing

Question 15

Q

Snow - Which services are for Data Migration? (3)

Answer

A

Snowcone
Snowball Edge
SnowMobile

Question 16

Q

Snow - Which services are for Edge Computing? (2)

Answer

A

Snowcone

Snowball Edge

Question 17

Q

Snow - Snowball Edge (use case, two classes w/ capacity)

Answer

A

Physical transport of data, large data cloud migration
Storage Optimized: 80TB
Compute Optimized: 42TB

Question 18

Q

Snow - Snowcone (capacity, size, what service to send data to AWS?)

Answer

A

8TB
Rugged, small
AWS DataSync

Question 19

Q

Snow - SnowMobile (capacity for one, capacity for multiple, best for this capacity and more)

Answer

A

100PB of data per
Exabytes of data for multiple
Better for more than 10PB

Question 20

Q

Snow - Edge Computing use cases (2)

Answer

A

Limited/no internet or computing power

Useful to preprocess data, machine learning, transcoding media streams

Question 21

Q

Snow - Edge Computing can run which two services?

Answer

A

EC2 instances

Lambda functions

Question 22

Q

Snow - Software used to connect to Snow devices

Question 23

Q

Storage Gateway - use case, services (3)

Answer

A

Hybrid cloud

Bridge on-prem with cloud, EBS, S3, Glacier

Question 24

Q

RDS - capabilities (3)

Answer

A

Automatic provisioning and OS patching
Backups and restore
Monitoring

Question 25

Q

RDS - additional features (3)

Answer

A

Read replicas
Multi AZ - failover
Multi region - for read replicas

Question 26

Q

RDS - read replicas - what it is, how many can you have, how data moves

Answer

A

Copy of RDS
Up to 5
Data only written to one, copied to replicas

Question 27

Q

RDS - one drawback

Answer

A

No SSH access

Question 28

Q

Aurora - two DB types

Answer

A

PostreSQL

MySQL

Question 29

Q

Aurora - two advantages over RDS

Answer

A

Cloud optimized - faster

Storage automatically grows up to 64TB in 10TB increments

Question 30

Q

Aurora - two disadvantages over RDS

Answer

A

Costs more

Not in free tier

Question 31

Q

Elasticache - what is it, two techs, why

Answer

A

In memory database
Managed Redis or Memcached
Help reduce load of databases for READ intensive workloads

Question 32

Q

DynamoDB - what is it

Answer

A

NoSQL database, key/value

Question 33

Q

DynamoDB - three advantages

Answer

A

Replication across 3 AZ
Low latency
Serverless

Question 34

Q

DynamoDB - what can be enabled for performance improvement, how does it work?

Answer

A

DynamoDB Accelerator (DAX)
Fully managed in-memory cache for performance improvement

Question 35

Q

Redshift - use cases (3)

Answer

A

OLAP (online analytical processing)
Analytics
Data warehousing

Question 36

Q

Redshift - difference between other databases

Answer

A

Load data once every hour instead of every second or on demand

Question 37

Q

Redshift - cost model

Answer

A

Pay as you go based on instances provisioned

Question 38

Q

Redshift - how to query data

Question 39

Q

Redshift - what does it integrate with? (2)

Answer

A

BI tools like AWS Quicksight or Tableau

Question 40

Q

Elastic MapReduce (EMR) - what is it used for?

Answer

A

Hadoop clusters (big data)

Question 41

Q

Elastic MapReduce (EMR) - how can it be provisioned? (2)

Answer

A

Auto-scaling and spot instances

Question 42

Q

Athena - what is it

Answer

A

Full serverless database with SQL capabilities to query data in S3

Question 43

Q

Athena - cost model

Answer

A

Pay per query

Question 44

Q

Athena - where do query results go?

Answer

A

Back to S3

Question 45

Q

Quicksight - what is it

Answer

A

Serverless machine learning-powerd BI tool to create interactive dashboards

Question 46

Q

Quicksight - cost model

Answer

A

Per session pricing

Question 47

Q

Quicksight - integrations (5)

Answer

A

RDS
Aurora
Athena
Redshift
S3

Question 48

Q

DocumentDB - what is it

Answer

A

NoSQL database

Aurora version of MongoDB

Question 49

Q

Neptune - what is it

Answer

A

Graph database

Question 50

Q

Neptune - replication (2)

Answer

A

Across 3 AZ and 15 read replicas

Question 51

Q

Neptune - use cases (3)

Answer

A

Fraud detection
Recommendation engines
Social networking

Question 52

Q

Quantum Ledger Database (QLDB) - what is it (2)

Answer

A

Ledger of recorded changes to data

Review history of all changes made to application data

Question 53

Q

Quantum Ledger Database (QLDB) - advantages (2)

Answer

A

Immutable system, cryptographic hash

More performant than common ledger blockchains

Question 54

Q

Quantum Ledger Database (QLDB) - how is data queried?

Question 55

Q

Quantum Ledger Database (QLDB) - is it decentralized?

Answer

A

No, there is no decentralization

Question 56

Q

Managed Blockchain - what is it used for

Answer

A

Join public blockchain network or create your own private network

Question 57

Q

Managed Blockchain - compatible with which two blockchains?

Answer

A

Hyperledger

Ethereum

Question 58

Q

Managed Blockchain - is it decentralized?

Question 59

Q

Database Migration Service (DMS) - what is it

Answer

A

Quickly and securly migrate database to AWS

Question 60

Q

Database Migration Service (DMS) - two types of migrations

Answer

A

Homogenous (postgres –> postgres)

Heterogenous (mysql –> postgres)

Question 61

Q

Glue - what is it for (2)

Answer

A

Managed ETL

To prepare and transform data for analytics, possibly from multiple sources

Question 62

Q

Glue - how is it provisioned?

Answer

A

Serverless

Question 63

Q

Glue - example usage (extract, transform, load)

Answer

A

Extract data from S3 and RDS, transform, load into Redshift

Question 64

Q

EBS - definition

Answer

A

Network drive attached to EC2 instance

Answer 61

A

Only attached to one instance at a time

Bound to a specific AZ

Answer 62

A

Can be detached/attached quickly
Can increase capacity over time
Can attach multiple to one instance

Answer 63

A

By default for root volume

Off for non-root volumes

Answer 64

A

Across AZ or Region

Answer 65

A

Public AMI from AWS
Your own
AWS Marketplace AMI

Answer 66

A

Creates an EBS snapshot

Answer 67

A

Automates the creation and testing of AMIs

Answer 68

A

Can distribute resulting AMI across regions

Can be run on a schedule

Answer 69

A

Free service, only pay for underlying resources

Answer 70

A

Storage physically connected to server

Answer 71

A

Better performance

Answer 72

A

Storage is ephemeral and is lost when instance is stopped

Answer 73

A

Buffer, cache, or temporary content

Answer 74

A

Can be mounted to 100s of EC2 instances

Answer 75

A

Only works with Linux EC2

Answer 76

A

Lower cost

Move files to IA based on a lifecycle policy such as last time they were accessed

Answer 77

A

Windows File Server

Lustre

Answer 78

A

Can be accessed from AWS or on-prem infrastructure

Answer 79

A

Microsoft AD

Answer 80

A

High performance computing

Answer 81

A

Launch docker instances on EC2

Answer 82

A

AWS takes care of starting and stopping containers
Have access to underlying containers
Can use an ALB

Answer 83

A

Launch docker instances

Answer 84

A

Serverless, do not need to provision EC2 instances

Answer 85

A

No access to underlying containers

Answer 86

A

A private docker registry

Store docker images to run on ECS or Fargate

Answer 87

A

Virtual functions that run on demand

Answer 88

A

Cloudwatch

Answer 89

A

Up to 15 minutes

Answer 90

A

Expose Lambda function to client as an API

Answer 91

A

REST and Websocket

Answer 92

A

Run 100ks batch jobs

Answer 93

A

Automatically provisions EC2 or Spot instances

Defined as Docker images

Answer 94

A

Batch: no time limit, any runtime, has instance store, relies on EC2

Answer 95

A

Deploy a simple web application with templates

For people with little cloud experience

Answer 96

A

No autoscaling

Limited AWS integrations

Answer 97

A

Define cloud infrastructure using a familiar programming language

Answer 98

A

Platform as as Service

Developer centric view of deploying an application

Answer 99

A

Free to use, but pay for underlying resources

Answer 100

A

Single instance: good for dev
ELB + ASG: production web apps
ASG only: non-web, workers

Answer 101

A

Cloudwatch - fully managed

Answer 102

A

EC2 or on-premise servers

Answer 103

A

Store and retrieve dependencies and packages

Answer 104

A

Unified view to manage software development

CodeCommit, CodeBuild, CodePipeline, etc.

Answer 105

A

Cloud IDE for running, writing, and debugging code

Answer 106

A

Used within web browser

Real-time code collaboration

Answer 107

A

Hybrid service to manage EC2 instances and on-prem systems at scale

Answer 108

A

Automatic patching
Run commands across entire fleet of servers
Store parameter configuration

Answer 109

A

Managed Chef & Puppet instances

Answer 110

A

Decreased latency
Disaster recovery if a region goes down
Attack protection - harder to attack distributed app

Answer 111

A

Latency routing - no health check

Failover routing - has health check

Answer 112

A

A global CDN with 216 edge locations

Improves read performance

Answer 113

A

S3
Any HTTP (EC2, ELB, etc.)

Answer 114

A

Shield
WAF
DDoS

Answer 115

A

Increase speed by first transferring file to AWS edge location

Answer 116

A

If global application needs to upload files to specific S3 bucket in a region

Answer 117

A

Improve global application availability and performance
Leverage AWS internal network to route traffic to your application
Sent through edge location to specific region

Answer 118

A

For hybrid cloud

Answer 119

A

Physical server racks that offer same AWS infrastructure as the cloud

Answer 120

A

Easier to migrate from on-prem to the cloud

Answer 121

A

Infrastructure deployments at the edge of 5G networks

Low latency for 5g apps

Answer 122

A

Governance, compliance, and audit of AWS account

Answer 123

A

Monitor and get history of events / API calls made within your AWS account

Answer 124

A

90 days by default

Send to S3 and analyze with Athena

Answer 125

A

Enable to detect unusual activity

Creates baseline from normal activity and compares

Answer 126

A

Visual analysis of apps
Troubleshoot performance bottlenecks
Understand dependencies of microservices architecture

Answer 127

A

ML-powered service for automated code review and app performance

Answer 128

A

Allows private subnet access to internet

Answer 129

A

Route for public subnet to the internet

Answer 130

A

Security group: return traffic automatically allowed, allow rules only
Network ACL: must explicitly allow return traffic, allow and deny rules

Answer 131

A

Info about IP traffic going to all interfaces

Answer 132

A

Connect two VPCs so they behave as one network

Answer 133

A

Connect AWS services using private network instead of public

Answer 134

A

S3

DynamoDB

Answer 135

A

Hub and spoke connection to connect thousands of VPC and on-premise through one single gateway

Answer 136

A

Protects against DDoS attack

Answer 137

A

Route53, CloudFront, ELB

Answer 138

A

Advanced: 24/7 premium DDoS protection and response team

Answer 139

A

Filter specific requests based on rules

Protects against web exploits (layer 3 and 4)

Answer 140

A

ALB
API Gateway
Cloudfront
AppSync

Answer 141

A

AWS manages encryption keys

Answer 142

A

AWS provides encryption hardware and you manage your own keys

Answer 143

A

Certificate manager to deploy SSL/TLS certificates

Answer 144

A

Store secrets

Answer 145

A

Portal to provide customers with on-demand access to AWS compliance and agreement docs

Answer 146

A

ML algorithm to protect AWS account

Uses data from CloudTrail logs, VPC flow logs, DNS logs

Answer 147

A

Emits a Cloudwatch event

Answer 148

A

Automated security assessment of EC2 instances

Answer 149

A

Record configuration changes over time

Answer 150

A

Auditing and recording compliance of AWS resources

Answer 151

A

Config: see configuration changes over time
CloudTrail: see WHO made changes

Answer 152

A

Data security and privacy service to discover sensitive info (PII) in S3

Answer 153

A

Central security tool across several AWS account

Answer 154

A

ML for deeper analysis of security issues

Answer 155

A

Change account settings
View certain tax invoices
Close account
Change or cancel support plan
Register as a seller in Reserved Instance Marketplace

Answer 156

A

Natural language processing

Answer 157

A

Fully managed service to build ML models

Answer 158

A

Document search service powered by ML

Answer 159

A

Build apps with real-time personalized recommendations

Answer 160

A

Whitelist or blacklist IAM actions at the Organization or Account level

Answer 161

A

Automate setup or Organizations and accounts in a multi-account environment

Answer 162

A

Analyze your account
Cost optimization
Performance
Security
Fault tolerance
Service limits

Answer 163

A

Business

Enterprise

Answer 164

A

Set custom budgets that alert you when estimated costs or forecasted usage exceed or will exceed your budgeted amount

Answer 165

A

Forecast usage up to 12 months based on previous usage

Answer 166

A

Create temporary, limited credentials

Answer 167

A

Desktop as a service, windows and linux, access to AWS cloud

Answer 168

A

Deliver an app to any computer through the web browser

Answer 169

A

Create and run VR, AR, 3D apps

Answer 170

A

Fully-managed service to test web and mobile applications against real devices

Answer 171

A

Automate backups across AWS services

Answer 172

A

Recover physical, virtual, and cloud-based servers into AWS

Answer 173

A

Software to connect to Snow devices

Answer 174

A

To connect Snow Devices to AWS to send data

Answer 175

A

CloudTrail logs

Answer 176

A

Within the same region

Answer 177

A

One or more

Answer 178

A

Operational excellence
Security
Reliability
Performance efficiency
Cost optimization

Answer 179

A

Tape
File
Volume

Answer 180

A

IAM
CloudFront
Route53
WAF

Answer 181

A

Comprehensive breakdown of costs by hour

Answer 182

A

Effect

Action

Answer 183

A

All plans

Answer 184

A

Only us-east1

Answer 185

A

Usage
Cost
Reservation

Answer 186

A

Unlimited cases for 1 primary contact

Answer 187

A

Email support during business hours

Answer 188

A

General guidance: <24 hours

System impaired: <12 hours

Answer 189

A

Production workloads

Answer 190

A

Unlimited cases, unlimited contacts

Answer 191

A

24/7 phone, email, and chat

Answer 192

A

General guidance: < 24 hours
System impaired: < 12 hours
Production system impaired: < 4 hours
Production system down: < 1 hour

Answer 193

A

Mission critical workloads

Answer 194

A

Technical account manager
Self-guided labs and instruction
Concierge support team
Infrastructure, well-architected, and operations reviews

Answer 195

A

Standard: most discount - up to 72%
Convertible: can increase workload
Scheduled: launch on a predictable recurring schedule

Answer 196

A

Health checks

Domain registration

Answer 197

A

IAM access advisor

Answer 198

A

Perform operations as code
Make frequent, small, reversible changes
Anticipate failure

Answer 199

A

Strong identity foundation
Enable traceability
Automation of security practices
Protect data in transit and at rest
Keep people away from data

Answer 200

A

Test recovery procedures
Automatically recover from failure
Scale horizontally
Stop guessing capacity
Automation

Answer 201

A

Use advanced tech
Go global in minutes
Use serverless
Experiment
Mechanical sympathy

Answer 202

A

Consumption mode - pay only for what you use
Measure efficiency
Analyze and attribute expenditure
Used managed services

Answer 203

A

Custom AMI
CloudFormation templates
SaaS
Docker images

Answer 204

A

Technology partners: hardware, connectivity, software
Consulting partners: build on AWS
Training partners: find who can help you learn

Brainscape's Knowledge GenomeTM

Certified Cloud Practitioner Flashcards

Brainscape's Knowledge Genome^TM