Design for New Solutions Flashcards
What types of attacks can AWS Shield Advance protect against
DDoS only
In AWS Service Catalog, what should you use to allow specifying a role for a product in the portfolio?
Launch constraints
Two ways to run containers on AWS
ECS or Kubernetes (EKS)
What Oracle licenses allow version 12c
SE2 or Enterprise
How to automatically purge DynamoDB entries after a certain amount of time
Set an attribute with the expiration time value and enable Time to Live on the DynamoDB table for that attribute
Best way to provide credentials to members of an IT Operations group to access EC2 instances
Configure IAM role access for AWS Systems Manager Session Manager
In AWS Service Catalog, what should you use to restrict the configuration parameters available for the user when they launch the product?
Template constraints
How do you define service actions for AWS Service Catalog?
With AWS System Manager documents
Tool for streaming and analyzing event logs?
Amazon OpenSearch Service using CloudWatch Logs and AWS Lambda
Tool to share data in S3 via AWS Marketplace
AWS Data Exchange
How to protect ECS from SQL injection attacks
AWS WAF on an Application Load Balancer
Database to use for fast analytic queries of time series data?
Amazon Timestream magnetic store
What do you do when you’re running into limitations with Amazon Kinesis Data Streams?
Use Amazon Managed Streaming Service for Kafka (Amazon MSK)
What is the correct CLI command to integrate a Lambda with API Gateway?
aws apigateway put-integration
How to use CloudFormation to deploy multiple stacks with one root stack and prevent them from sharing information outside of this stack group
Nested stacks
How to fix a DynamoDB table that has gotten too large
First, archive as much data as possible. Then, export the remaining data and import it into a new table.
Database to use for high throughput writes of time series data?
Amazon Timestream memory store
What tool to run and scale big data workloads?
Amazon EMR
For a cross team application, is it more efficient to use AWS CodePipeline in multiple team accounts or a single DevOps account?
A single DevOps account
When to use Amazon EKS over Amazon ECS with Fargate?
When you need your containerized applications to support an open-source API.
How to group EC2 instances for patching.
In AWS Systems Manager Patch Manager, create different patch groups using the tag key “Patch Group”
What must resources accessing an EFS file system have in common?
They must all be part of the same VPC.
What AWS database services offer multi-region multi-master?
DynamoDB only
What type of Step Function workflow is suitable for short-duration idempotent tasks?
Synchronous/Asynchronous Express Workflows
Best way to automatically generate metadata for uploaded images to dynamically add them to an online catalog
Trigger a Lambda when images are uploaded to S3 to kick off AWS Step Functions.
How long can Amazon Kinesis Data Streams store data?
24 hours by default. Can be extended to up to 7 days max
What type of Step Function workflow is suitable for long-running, non-idempotent tasks?
Standard Workflows
After an identity ID is used in a GetCredentialsForIdentity request to an Amazon Cognito identity pool, what do you do with the response to get AWS API credentials?
Nothing. AWS API credentials are returned in the response.
Is Oracle Data Guard available on RDS?
No
Tool for simple search and analytics on data in various locations using SQL queries?
Amazon OpenSearch
Build a response to human speech
Amazon Lex
Build a chatbot
Amazon Lex
Simplest solution to grant a free trial of an application that can’t be downloaded and installed locally
Amazon AppStream
How to check conditions in CloudFormation
Fn::If
Highest Oracle versions allowed with SE and SE1 licenses
11g
Tool to run Oracle RAC
VMware Cloud on AWS and use Oracle Recovery Manager for S3 backups
Tool to provide Internet access to an EC2 instance in an AWS Wavelength Zone?
Carrier gateway
How to join VMware Cloud on AWS instances to an AD domain
Add a VMware Cloud NSX CGW Firewall rule
Tool to apply resources created in CloudFormation to some or all Organizational Units?
CloudFormation StackSets with service-managed permissions. Deploy to organization or organizational units.
Name the AWS streaming services
Amazon Kinesis and Amazon Managed Streaming Service for Kafka (Amazon MSK)
Can Route 53 consolidate dynamic and static Cloudfront distributions under one alias?
No
How to join EC2 Linux instances to an AD domain
Use a Kerberos client package to perform a Realm Join
What tool to automate data movement and transformation between AWS compute and storage services?
AWS Data Pipeline
Service for converting text to speech
Amazon Polly
How to set variables for CloudFormation
Input parameters
What S3 routing to find the fastest connection
S3 Latency-based routing
Is a secondary Elastic Network Interface the same thing as a secondary IP?
Nope!
How to charge per-request pricing for AWS Lambda usage
API Gateway Serverless Developer Portal to create API keys for subscribers and use AWS Marketplace to create usage plans using metrics from a metering IAM Role
How to handle traffic boosts after holidays
Scheduled scaling policy
How to allow IoT devices to interact with AWS services?
AWS IoT rules
How to prevent an Auto Scaling Group from terminating a failed instance so you can look at its logs?
Suspend the terminate process in the Auto Scaling Group
Your ECS cluster cannot access ECR. What do you do?
Set up a NAT Gateway for it to access the Internet
How to cache API Gateway requests?
API Gateway API Caching
Which DB solution provides the best global scalability for mobile applications?
DynamoDB
How to provide access to your ECR images in a second region?
Cross-region replication
