cloud practitioner

Question 1

Five ways to pay for EC2 instanes

Answer 1

• On-Demand
• Savings Plans
• Reserved Instances
• Spot Instances
• Dedicated Hosts

Question 2

ec2 Free tier

Answer 2

Includes 750 hours of linux and windows.t2.micro instances (t3.micro for regions without t2) each month for one year.

Question 3

On-Demand payment model

Answer 3

No commitment, by the use instances.

• Low cost and flexibility without upfront pay/commit
• Apps with short-lived spiky or unpredictable work that cannot be interrupted
• Applications being developed or tested on EC2 for first time

Question 4

Recommend ec2 payment model for: user is is cost sensitive and requires flexibility. User doesn’t want to pay upfront or commit

Answer 4

On-demand

Question 5

Recommend ec2 payment model for: App is short-lived and spiky or unpredictable work and must not be interrupted

Answer 5

On-demand

Question 6

Recommend ec2 payment model for: App is being developed and tested for the first time on EC2

Answer 6

On-demand

Question 7

Spot instance payment model

Answer 7

Request spare Ec2 for up to 90% off demand price. Recommended for

• Applications that have flexible start and end times
• Apps that are only feasible at very low compute prices
• Users with urgent computing needs for large amounts of additional capacity

Question 8

Recommend ec2 payment model for: App that has flexible start and end times

Answer 8

Spot instances

Question 9

Recommend ec2 payment model for: Apps that are only feasible at very low compute prices

Answer 9

Spot instances

Question 10

Recommend ec2 payment model for: Users with urgent computing needs for large amounts of additional capacity

Answer 10

Spot instances

Question 11

Savings Plans payment model

Answer 11

Flexible pricing model that offers low prices on EC2 and fargate usage. In exchange for a commitment to a consistent amount of usage for a 1 or 3 year term. save up to 72%.

Question 12

Reserved instances

Answer 12

Significate discount (up to 75%) compared to on-demand instance pricing. when assigned to a specific AZ they provide a capacity reservation giving you additional confidence in ability to launch instances when needed.

• Apps with steady state usage
• Apps that may require reserved capacity
• Customers that can commit to using Ec2 over a 1 or 3 year term to reduce total costs

Question 13

Recommend ec2 payment model for: Apps with steady state usage

Answer 13

Reserved Instances

Question 14

Recommend ec2 payment model for: Apps that may require reserved capacity

Answer 14

Reserved instances

Question 15

Recommend ec2 payment model for: Customers that can commit to using ec2 over 1 or 3 year term

Answer 15

Reserved instances and/or Savings plan.

Savings plan can only do compute or lambda but not rdb or other fancy services

Question 16

Dedicated Hosts

Answer 16

A dedicated physical ec2 server for your use. Use existing server bound licenses, including windows server, sqlserver and suse linux enterprise server. also good for compliance.

• Can be on-demand (hourly)
• can be purchased as a reservation for up to 70% off the on-demand price

Question 17

Recommend ec2 payment model for: already have server bound licenses

Answer 17

Dedicated Host

Question 18

Recommend ec2 payment model for: customer is able to commit to 1 or 3 years of running RDS

Answer 18

Reserved Instance

Question 19

Recommend ec2 payment model for: Customer is able to commit to 1 or 3 years of running lambda

Answer 19

Savings plan

Question 20

5 pillars of Well Architected Framework

Answer 20

operational excellence, Security, Reliability, Performance Efficiency, Cost Optimization

Question 21

Well Architected Framework Pillar: Operational Excellence

Answer 21

biz value

Question 22

Well Architected Framework Pillar: Security

Answer 22

Protect information and assets

Question 23

Well Architected Framework Pillar: Reliability

Answer 23

failure tolerance

Question 24

Well Architected Framework Pillar: Performance

Answer 24

maximize resource to biz value

Question 25

Well Architected Framework Pillar: Cost

Answer 25

maximize cost to value

Question 26

AWS Config

Answer 26

provides conformance packs for standards

Question 27

AWS Artifact

Answer 27

self service access to reports

Question 28

Amazon GuardDuty

Answer 28

intelligent threat detection

Question 29

Define IAM

Answer 29

Identity and Access Management

Question 30

what does Identity federation do

Answer 30

allows external identity provider. through SAML providers including active directory

Question 31

identity types in IAM

Answer 31

User, group, role

Question 32

Define IAM: User

Answer 32

a single user (principal) to access AWS resources

Question 33

Define IAM: Group

Answer 33

manage permissions for a group of users

Question 34

Define IAM: Roles

Answer 34

allow a user or AWS service to assume permissions for a task

Question 35

Policies in AWS IAM

Answer 35

json document that defines permissions for an AWS IAM Identity(Principal). defines allowed resource and actions against the resource. Either customer managed or AWS managed.

Question 36

AWS Storage Gateway

Answer 36

Hybrid on/off prem storage. vm or specific hardware appliance. Integrates with S3 and EBS.

Question 37

AWS Data Sync

Answer 37

Automated data transfer service

Question 38

3 types of storage gateway

Answer 38

Tape, volume, file

Question 39

Storage Gateway: File gateway

Answer 39

cached low-latency local access.

Question 40

Storage Gateway: Tape gateway

Answer 40

tape backup to cloud

Question 41

Storage Gateway: Volume Gateway

Answer 41

cloud based iSCSI volumes to local applications

Question 42

AWS Glue

Answer 42

Managed ETL

Question 43

Amazon EMR

Answer 43

elastic map reduce using popular tools

Question 44

AWS Data Pipeline

Answer 44

Data workflow orchestration service across AWS Services.

Question 45

Amazon Athena

Answer 45

query data stored in s3

Question 46

Amazon Quicksight

Answer 46

data dashboards

Question 47

amazon cloud search

Answer 47

managed search service for custom apps

Question 48

Amazon rekognition

Answer 48

vision (image and video ) as a service. actions come from video. custom labels for business objects

Question 49

Amazon Translate

Answer 49

text translation - 54 languages, language ident, can work in batch.

Question 50

Amazon Transcribe

Answer 50

speech to text. subservice for medical. batch and single.

Question 51

Disaster Recovery Scenarios

Answer 51

Backup/Restore, Pilot, Warm Standby, Multi site

Question 52

Disaster Recovery: Define RTO

Answer 52

Recovery Time objective

Question 53

Disaster Recovery: Define RPO

Answer 53

Recovery Point Objective

Question 54

AWS’s key repository

Answer 54

AWS Secrets Manager. can autorotate creds.

Question 55

AWS shield

Answer 55

manage DDoS prevention

Question 56

Amazon Macie

Answer 56

ML data protection for S3. alerts about unusual. dashboard about how data is stored and accessed. detect PI and IP

Question 57

Amazon Inspector

Answer 57

security assessment for EC2

Question 58

aws service catalog

Answer 58

catalog of AWS services

Question 59

AWS marketplace

Answer 59

3rd party services available on AWS