Cloud Concepts

Question 1

Your company has decided to use Amazon WorkSpaces. They can use Amazon WorkSpaces to provision either Windows or Linux desktops in just a few minutes. What type of solution is this?

Answer 1

Amazon WorkSpaces provides a Desktop as a Service (DaaS) solution.

Question 2

SaaS

Answer 2

SaaS is a licensing and delivery model whereby software is centrally managed and hosted by a provider and available to customers on a subscription basis. Like SalesForce and ServiceNow, Medallia, Email

SaaS allows you to use a complete application on demand. When you access your personal email through a web browser, you’re using SaaS.

Question 3

PaaS

Answer 3

PaaS is often used by developers to develop software using web-based tools. EX. AWS Lamda and Elastic Beanstalk;

organizations use to build customized apps for their business needs.

Platform as a service (PaaS) is a cloud computing model where a third-party provider delivers hardware and software tools to users over the internet

The most significant difference between PaaS and SaaS is that SaaS products are fully managed by another company, from the servers to the data itself. With PaaS, you are able to use the cloud-based platform as a foundation for building software.

Question 4

IaaS

Answer 4

Infrastructure as a service (IaaS) is a type of cloud computing service that offers essential compute, storage, and networking resources on demand, on a pay-as-you-go basis.

IaaS includes the fundamental building blocks that can be rented from AWS. AWS manages the infrastructure and provides you a virtual machine that you can use however you’d like to meet your business requirements.

ex. 
Amazon Web Services (AWS)
Google Compute Engine (GCE)
IBM Cloud
Microsoft Azure

Question 5

A developer deployed an application that consisted of 1 Lambda function, a DynamoDB table, and a firewall using Web Application Firewall (WAF) via the AWS Command Line Interface (CLI). When attempting to access the application’s resources via the AWS Management Console, the developer cannot find the Lambda function or DynamoDB table. What could be the problem?

Answer 5

The developer is probably in a different Region from where the resources were initially deployed.

Resources that aren’t global are typically deployed to a specific Region. Since Regions are isolated and resources aren’t automatically replicated across them, the developer needs to switch to the correct Region in order to find the resources.

Question 6

Amazon Inspector

Answer 6

Inspector works with EC2 instances to uncover and report vulnerabilities.

Question 7

AWS Personal Health Dashboard

Answer 7

When you sign in to the AWS Health Dashboard, you have a personalized view of the AWS service status that powers your application. Use the AWS Health Dashboard to learn about specific operational issues that affect your account.

Single place to learn about the availability and operations of AWS services. You can view the overall status of AWS services, and you can sign in to view personalized communications about your particular AWS account or organization. Your account view provides deeper visibility into resource issues, upcoming changes, and important notifications

AWS Personal Health Dashboard provides alerts and guidance for AWS events that might affect your environment

Question 8

scalability

Answer 8

Scalability is the concept that, as cloud has essentially limitless capacity, it allows you to expand out as needed.

response to user demand, which is closer to scalability

Cloud scalability is used to handle the growing workload where good performance is also needed to work efficiently with software or applications. Scalability is commonly used where the persistent deployment of resources is required to handle the workload statically.

Question 9

Elasticity

Answer 9

The ability to go up and down in resources as needed

Elasticity denotes the ability to increase or reduce the number or capabilities of AWS resources when needed. In this case, stopping or terminating instances means you are reducing the number of AWS resources used in your environment.

With elasticity, you do not have to plan ahead of time how much capacity you need. You can provision only what you need, and then grow and shrink based on demand.

Question 10

high availability

Answer 10

the concept that your services in the cloud should be designed to tolerate failures in the underlying cloud infrastructure.

Question 11

loose coupling

Answer 11

Loose coupling helps reduce the risk of cascading failures between components.

Question 12

Route 53

Answer 12

Amazon Route 53 is a highly available and scalable cloud Domain Name System (DNS) web service.

Route 53 can be used for disaster recovery by simply shifting traffic to the new Region.

It is designed to give developers and businesses an extremely reliable and cost-effective way to route end users to internet applications by translating names (like www.example.com) into the numeric IP addresses (like 192.0.2.1) that computers use to connect to each other. Amazon Route 53 is fully compliant with IPv6 as well.

Question 13

Advantage of an RDS database over a traditional database

Answer 13

RDS is a managed service that makes it easy to launch and manage relational databases. RDS provides a lot of value, like automated backups and software patching, and frees you up to focus on your applications.

Amazon Relational Database Service (Amazon RDS) is a collection of managed services that makes it simple to set up, operate, and scale databases in the cloud. Choose from seven popular engines — Amazon Aurora with MySQL compatibility, Amazon Aurora with PostgreSQL compatibility, MySQL, MariaDB, PostgreSQL, Oracle, and SQL Server — and deploy on-premises with Amazon RDS on AWS Outposts.

Question 14

Horizontal scaling

Answer 14

Horizontal scaling is the act of changing the number of nodes in a computing system without changing the size of any individual node. So, with horizontal scaling, we would add instances, not increase the size of an instance. – Add more coffee cups

Question 15

Vertical scaling

Answer 15

Vertical scaling is increasing the size and computing power of a single instance or node without increasing the number of nodes or instances. — increase the size of the coffee cup

Question 16

The AWS Cloud spans multiple Regions, Availability Zones (AZs), edge locations, and more. How would you best describe an Availability Zone?

Answer 16

One or more discrete data centers with redundant power, networking, and connectivity in an AWS Region.

An Availability Zone (AZ) is one or more discrete data centers with redundant power, networking, and connectivity in an AWS Region. AZs give customers the ability to operate production applications and databases that are more highly available, fault tolerant, and scalable than would be possible from a single data center. All AZs in an AWS Region are interconnected with high-bandwidth, low-latency networking, over fully redundant, dedicated metro fiber providing high-throughput, low-latency networking between AZs. All traffic between AZs is encrypted. The network performance is sufficient to accomplish synchronous replication between AZs. AZs make partitioning applications for high availability easy. If an application is partitioned across AZs, companies are better isolated and protected from issues such as power outages, lightning strikes, tornadoes, earthquakes, and more. AZs are physically separated by a meaningful distance, many kilometers, from any other AZ, although all are within 100 km (60 miles) of each other. Availability Zones.

Question 17

Highly available

Answer 17

Highly available systems are designed to operate continuously without failure for a long time. These systems avoid loss of service by reducing or managing failures.

Question 18

Durable

Answer 18

Durability is all about long-term data protection. This means your data will remain intact without corruption.

Question 19

When configuring an Application Load Balancer (ALB), what step should you take to ensure a highly available architecture?

Answer 19

Configure the load balancer to serve traffic to multiple Availability Zones.

You would set up the load balancer to deliver traffic across multiple Availability Zones.

Question 20

Which AWS service can help you optimize your AWS environment by giving recommendations to reduce cost, increase performance, and improve security?

Answer 20

AWSTrusted Advisor provides real-time guidance to help you provision your resources following AWS best practices.

Question 21

AWS Trusted Advisor

Answer 21

Provides recommendations via a dashboard that help you follow AWS best practices. Trusted Advisor evaluates your account by using checks. These checks identify ways to optimize your AWS infrastructure, improve security and performance, reduce costs, and monitor service quotas. You can then follow the check recommendations to optimize your services and resources.

AWS Basic Support and AWS Developer Support customers can access core security checks and all checks for service quotas.

AWS Business Support and AWS Enterprise Support customers can access all checks, including cost optimization, security, fault tolerance, performance, and service quotas. .

Question 22

Elastic Load Balancing

Answer 22

utilize Elastic Load Balancing to evenly distribute incoming traffic across all their EC2 instances

Question 23

Region

Answer 23

A Region is a geographical area of the world that is a collection of data centers logically grouped into Availability Zones.

Question 24

Automation - IaC

Answer 24

Infrastructure as Code is a key implementation of automation in cloud - using Infrastructure as Code allows you to quickly and easily deploy and manage your environment without reliance on humans to complete all the tasks.

Question 25

You would like to set up a loosely coupled architecture. Which service would allow you to send and receive messages and store them if they are not consumed immediately?

Answer 25

SQS is a message queuing service that allows you to build loosely coupled systems.

Question 26

Amazon Simple Email Service (SES)

Answer 26

a cost-effective, flexible, and scalable email service that enables developers to send mail from within any application. You can configure Amazon SES quickly to support several email use cases, including transactional, marketing, or mass email communications.

Question 27

Amazon Simple Queue Service (SQS)

Answer 27

is a fully managed message queuing service that enables you to decouple and scale microservices, distributed systems, and serverless applications. SQS eliminates the complexity and overhead associated with managing and operating message-oriented middleware, and empowers developers to focus on differentiating work. Using SQS, you can send, store, and receive messages between software components at any volume, without losing messages or requiring other services to be available

Question 28

Which of the following is an AWS global service?

Answer 28

Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency and high transfer speeds, all within a developer-friendly environment. https://aws.amazon.com/cloudfront/

IAM - Identity and Access Management is a global service.

EC2 is a regional service

Question 29

Durability

Answer 29

Durability is all about long-term data protection. This means your data will remain intact without corruption.

Question 30

Virtual private gateway

Answer 30

VPG = The Amazon virtual private cloud side of a VPN connection.

You can route the traffic from your VPC using the Virtual Private Gateway

A virtual private gateway is a logical, fully redundant distributed edge routing function that sits at the edge of your VPC. As it is capable of terminating VPN connections from your on-premises or customer environments, the VPG is the VPN concentrator on the Amazon side of the Site-to-Site VPN connection.

Question 31

Fault tolerant

Answer 31

A fault-tolerant system will remain operational even in the event of a component failure. Reliability Pillar - AWS Well-Architected Framework

Question 32

Highly available

Answer 32

Highly available systems are designed to operate continuously without failure for a long time

Question 33

With AWS services, you can use as many resources as you need, as well as use them when you need them. Which of the following terms can be applied to this concept?

Answer 33

Temporary & Disposable resources

Working in a traditional infrastructure environment means you have to deal with fixed resources, which is comparatively costly and labor-intensive. By contrast, AWS services are much more convenient; the services provide the ability to use as many resources as you need and dispose of them when you no longer need them. That’s why such resources are both temporary and disposable.

NOT fixed or dedicated

Question 34

When you pay a subscription fee to a hosting company to serve your website on an instance YOU manage, which cloud computing model are you using?

Answer 34

Infrastructure as a Service (IaaS) - IaaS offers building blocks that can be rented. When you pay a web hosting fee, you’re using IaaS – YOU have some management

NOT SaaS which allows you to use a complete application on demand. - NO management

Question 35

Virtual private cloud (VPC)

Answer 35

VPC is a foundational service that allows you to create a secure private network in the AWS Cloud where you launch your resources.

Question 36

Virtual private network (VPN)

Answer 36

A VPN creates a secure connection between your internal networks and your AWS VPCs. A VPN is used to connect to a VPC that already has resources launched.

Question 37

A company on the Business Support plan currently runs all their applications in a single Region. They have made the decision to expand to multiple Regions. What is the process to start deploying their applications to the new Regions?

Answer 37

Just start deploying the applications to the new Regions.

You are free to deploy your applications to new Regions. Don’t forget: CloudFormation can make the process of provisioning resources easier and repeatable.

Question 38

Which service allows you to connect a private cloud to a public cloud?

Answer 38

Direct Connect is a dedicated physical network connection from your on-premises data center to AWS.

NOT Route 53 which is a DNS service that routes users to applications.

Question 39

When configuring an Application Load Balancer (ALB), what step should you take to ensure a highly available architecture?

Answer 39

You would set up the load balancer to deliver traffic across multiple Availability Zones.

load balancing cannot be multi-region

Question 40

AWS Partner Network (APN) Technology Partners

Answer 40

APN Technology Partners specifically provide new solutions to build on AWS. This may include specific software, hardware, or connectivity services.

In this case, since we already have the new system that we want to deploy, an APN Technology Partner wouldn’t be useful here, since we only need assistance to deploy the solution.

Question 41

In the AWS Global Infrastructure, what are edge locations responsible for?

Answer 41

Edge locations host a content delivery network called CloudFront.