Domain 3.0 Technology Flashcards
is an online tool that provides you real-time guidance to help you provision your resources following AWS best practices. It inspects your AWS environment and makes recommendations for saving money, improving system performance and reliability, or closing security gaps.
AWS Trusted Advisor
AWS Trusted Advisor five categories
- Fault Tolerance
- Performance
- Service Limits
- Security
- Cost Optimization
You need to host a new Microsoft SQL Server database in AWS for an urgent project. Which AWS services we can use?
Amazon Relational Database Service (Amazon RDS) and Amazon EC2
A company has web servers running on Amazon EC2 instances that access a RESTful API hosted on their on-premises data center. What kind of architecture is the company using?
Hybrid Architecture
a cloud architecture model
Help organizations integrate their on-premises and cloud operations to support a broad spectrum of use cases using a common set of cloud services, tools, and APIs across on-premises and cloud environments
Hybrid Architecture
Which of the following is an advantage of using managed services like RDS, ElastiCache, and CloudSearch in AWS?
Simplifies all of your OS patching and backup activities to help keep your resources current and secure
Makes it easy to set up, operate, and scale a relational database in the cloud. It provides cost-efficient and resizable capacity while automating time-consuming administration tasks such as hardware provisioning, database setup, patching and backups. It frees you to focus on your applications so you can give them the fast performance, high availability, security and compatibility they need
Amazon Relational Database Service (Amazon RDS)
aws service
Offers fully managed Redis and Memcached. Seamlessly deploy, run, and scale popular open source compatible in-memory data stores. Build data-intensive apps or improve the performance of your existing apps by retrieving data from high throughput and low latency in-memory data stores.
Amazon ElastiCache
A managed service in the AWS Cloud that makes it simple and cost-effective to set up, manage, and scale a search solution for your website or application
Amazon CloudSearch
Highly available and scalable cloud Domain Name System (DNS) web service in AWS?
Amazon Route 53
enables your applications to confirm user identities by comparing their live image with a reference image.
Amazon Rekognition
A core Windows service that provides the foundation for many enterprise-class Microsoft-based solutions, including Microsoft SharePoint, Microsoft Exchange, and .NET applications
Active Directory Domain Service
An easy-to-use cloud platform that offers everything you need to build an application or website, plus a cost-effective, monthly plan. A virtual private server (VPS) solution. Not used for Amazon EC2 scaling
Amazon Lightsail
is a global team of experts that can help you realize your desired business outcomes when using the AWS Cloud
AWS Professional Services
Is the one which provides 24×7 technical support from high-quality engineers, tools and technology to automatically manage the health of your environment, consultative architectural guidance delivered in the context of your applications and use-cases, and a designated Technical Account Manager (TAM) to coordinate access to proactive/preventative programs and AWS subject matter experts
AWS Enterprise Support
A team composed of AWS billing and account experts that specialize in working with enterprise accounts. They will quickly and efficiently assist you with your billing and account inquiries, and work with you to implement billing and account best practices so that you can focus on running your business
Concierge Support
Your designated technical point of contact who provides advocacy and guidance to help plan and build solutions using best practices, coordinate access to subject matter experts and product teams, and proactively keep your AWS environment operationally healthy
AWS Technical Account Manager
What are the benefits of using Edge locations in AWS?
- Improves application performance by delivering content closer to your users
- Provides caching which reduces the load on your origin servers
provides powerful computing resources for use cases such as machine learning, full motion video
analysis, analytics, and local computing stacks.
Storage 42TBand 7.68 TB and Computer 52vCPU
AWS Snowball Edge Compute Optmized
Seamlessly extends AWS to edge devices so they can act locally on the data they generate, while still using the cloud for management, analytics, and durable storage
AWS IoT Greengrass
Provides highly scalable object storage for your static content. Provies 99.999999999% reliability and durability
provides Block Public Access settings for buckets and accounts to help you manage public access to Amazon S3 resources
Amazon S3 Standard
A web service that speeds up distribution of your static and dynamic web content, such as .html, .css, .js, and image files, to your users. delivers your content through a worldwide network of data centers called edge locations
Amazon CloudFront
Describes the Amazon Simple Storage Service (S3)?
- A storage service with virtually unlimited space
- A highly durable object storage infrastructure
A durable, high throughput file system. It’s a regional service storing data within and across multiple Availability Zones (AZs)
Amazon Elastic File System (EFS)
A high-performance block storage service
Amazon Elastic Block Store (EBS)
A hybrid cloud storage service that gives you on-premises access to virtually unlimited cloud storage in AWS
AWS Storage Gateway
The most suitable one to use to store the results of I/O-intensive SQL database queries to improve application performance?
Amazon ElastiCache
A software that lets you run local compute, messaging, data caching, sync, and ML inference capabilities on connected devices in a secure way
AWS Greengrass
is an in-memory cache for DynamoDB. Help improves responses times from single-digit milliseconds to microseconds.
Amazon DynamoDB Accelarator (DAX)
This implementation has to be robust, fast, and simple to use. It should also prevent any type of data loss from occurring. The company would like to keep track of the status of the migration.
Which tool should the team adopt for the DR solution?
CloudEndure
These services cannot migrate bare metal servers
AWS Server Migration Service and AWS Database Migration Service
This service is for monitoring the state of your migrations. It does not handle disaster recovery
AWS Migration Hub
Are the things that Amazon CloudWatch Logs can accomplish?
- Monitor application logs from Amazon EC2 Instances
- Adjust the retention policy for each log group
Amazon CloudWatch services:
- Monitor logs from Amazon EC2 Instances
- Monitor AWS CloudTrail Logged Events
- Log Retention
- Archive Log Data
- Log Route 53 DNS Queries
Primarily used for governance, compliance, operational auditing, and risk auditing of your AWS account. Record AWS Management Console actions and API calls
AWS CloudTrail
Create alarms that automatically stop, terminate, reboot, or recover your EC2 Instances
Amazon CloudWatch Alarms
Users from different parts of the globe are complaining about the slow performance of the newly launched photo-sharing website in loading their high-resolution images. Which combination of AWS services should you use to serve the files with lowest possible latency?
Amazon S3 and Amazon CloudFront
is focused on helping partners build successful AWS-based businesses to drive superb customer experiences. This is accomplished by developing a global ecosystem of Partners with specialties unique to each customer’s needs.
AWS Partner Network Consulting Partners
Two types of AWS Partner Network (APN) Partners:
- APN Consulting Partners
- APN Technology Partners
are professional services firms that help customers of all sizes design, architect, migrate, or build new applications on AWS.
APN Consulting Partners
Provides a new sales channel for independent software vendors (ISVs) and Consulting Partners to sell their solutions to AWS customers. This makes it easy for customers to find, buy, deploy, and manage software solutions, including SaaS, in a matter of minutes
AWS Marketplace
A company has hybrid cloud architecture where their on-premises data center interacts with their cloud resources in AWS. Which of the following services in AWS could you use to deploy a web application to servers running on-premises?
AWS OpsWorks and AWS CodeDeploy
Is a configuration management service that helps customers configure and operate applications, both on-premises and in the AWS Cloud, using Chef and Puppet
AWS OpsWorks
Automates code deployments to any instance, including Amazon EC2 instances and instances running on-premises. Makes it easier to rapidly release new features, avoids downtime during application deployment, and handles the complexity of updating applications
AWS CodeDeploy
These services can only deploy applications to your AWS instances and not to the servers located in your on-premises data center
AWS CloudFormation and AWS ElasticBeanstalk
This service simply has a set of batch management capabilities that enables developers, scientists, and engineers to easily and efficiently run hundreds of thousands of batch computing jobs on AWS. It doesn’t have the capability to deploy applications to your on-premises servers
AWS Batch
Which AWS services should you use to store rapidly changing data with low read and write latencies?
Amazon Elastic Block Store (EBS) and Amazon RDS
This is a petabyte-scale data migration solution that uses hardware devices to transfer large amounts of data into and out of the AWS Cloud
AWS Snowball
This service is optimal for storing numerous classes of information that are relatively static and not rapidly changing data
Amazon S3
fully managed application streaming service that provides users instant access to their desktop applications from anywhere
Amazon AppStream 2.0
What AWS service allows your EC2 compute capacity to automatically scale based on the incoming traffic?
AWS Auto Scaling
A Security service that uses machine learning to automatically discover, classify, and protect sensitive data in AWS
Amazon Macie
What service should you use if there is a need to launch a customized self-hosted database which requires a scheduled shutdown every night to save on cost?
Amazon EC2 instance with an EBS Volume
Provides durable, block-level storage volumes that you can attach to a running instance. It’s a primary storage device for data that requires frequent and granular updates. For example, It’s the recommended storage option when you run a database on an instance
Amazon EBS
Volumes behaves like a raw, unformatted, external block device that you can attach to a single instance
The volume persists independently from the running life of an instance
Amazon EBS
Once attached to an instance, you can use it like any other physical hard drive
Can also detach its volume from one instance and attach it to another instance
Amazon EBS
Can dynamically change the configuration of a volume attached to an instance
Can also be created as encrypted volumes
Amazon EBS
A non-relational database service that is fully-managed by AWS
Amazon DynamoDB
Fully managed, petabyte-scale data warehouse service in the cloud
Run complex analytic queries against terabytes to petabytes of structured data
Amazon Redshift
local storage data that is temporary data that you do not need in the long run. All data will get deleted once you stop the EC2 instance
Instance Store volume
What is the minimum number of Availability Zones that you should set up for your Application Load Balancer in order to create a highly available architecture?
2 Availability Zones (2 AZs is the minimum to make a highly available architecture)
3 is for higher level of availability but consider the cost + use case
A networking connection between two VPCs, and not between your on-premises data center and VPC
VPC Peering
This works like a NAT Gateway but for IPv6 traffic only. It’s horizontally scaled, redundant, and highly available VPC component that allows outbound communication over IPv6 from instances in your VPC to the Internet, and prevents the Internet from initiating an IPv6 connection with your instances
Egress-only internet gateway
is a highly available AWS managed service that makes it easy to connect to the Internet from instances within a private subnet in an Amazon Virtual Private Cloud (Amazon VPC)
NAT Gateway
A company plans to migrate their on-premises MySQL database to Amazon RDS. Which AWS service should they use for this task?
AWS Database Migration Service (AWS DMS)
Helps you migrate databases to AWS quickly and securely. The source database remains fully operational during the migration, minimizing downtime to applications that rely on the database. Can migrate your data to and from most widely used commercial and open-source databases
AWS Database Migration Service
Primarily used to convert your existing database schema from one database engine to another
AWS Schema Conversion Tool (AWS SCT)
An agentless service that makes it easier and faster for you to migrate thousands of on-premises workloads to AWS. This is not the appropriate service to use in migrating your on-premises database
AWS Server Migration Service
- is a direct private fiber connection from a datacenter to the VPC. Helps reduce network costs and increase the amount of bandwidth that can travel through the established private network.
AWS Direct Connect
personalized dashboard view into the performance and availability of the AWS services you are using, as well as alerts that are automatically triggered by changes in the health of those services.
AWS Personal Health Dashboard
This is where you can check the support package you are subscribed to, and where you can file cases if you need assistance from the AWS support team
AWS Support Center
Provides access to current status and historical data about each and every Amazon Web Service. If there’s a problem with a service, you’ll be able to expand the appropriate line in the Details section. You can even subscribe to the RSS feed for any service. You can use the “Report an Issue” link to make sure that we are aware of any system-wide service issues
AWS Service Health Dashboard
Is a publish/subscribe service. Publisher publishes messages to subscribers to things like web servers, email address and AWS Lambda functions.
Amazon Simple Notification Service (SNS)
A fully managed message queuing service that enables you to decouple and scale microservices, distributed systems, and serverless applications
Amazon Simple Queue Service (SQS)
Eliminates the complixity and overhead associated with managing and operating message-oriented middleware, and empowers developers to focus on differentiating work
Amazon Simple Queue Service (SQS)
You can send, store, and receive messages between software components at any volume, without losing messages or requiring other services to be available
Amazon Simple Queue Service (SQS)
web service that makes it easy to coordinate work across distributed application components
Amazon Simple Workflow Service (SWF)
is a cost-effective, flexible, and scalable email service that enables developers to send mail from within any application.
Amazon Simple Email Service (SES)
This is best suited for load balancing of HTTP and HTTPS traffic and provides advanced request routing targeted at the delivery of modern application architectures, including microservices and containers. Operating at the individual request level (Layer 7). Routes traffic to targets within Amazon Virtual Private Cloud (Amazon VPC) based on the content of the request
Application Load Balancer
This is best suited for load balancing of Security Socket layer ,Transport Layer Security (TLS) traffic where extreme performance is required. Operating at the connection level (Layer 4). routes traffic to targets within Amazon Virtual Private Cloud (Amazon VPC) and is capable of handling millions of requests per second while maintaining ultra-low latencies. Also optimized to handle sudden and volatile traffic patterns
Network Load Balancer
This provides basic load balancing across multiple Amazon EC2 instances and operates at both the request level and connection level. It is intended for applications that were built within the EC2-Classic network.
Classic Load Balancer
Provides both Layer 3 Data(IP) gateway and Layer 4 Transport(UDP/TCP)load balancing capabilities. It is a transparent bump-in-the-wire device that does not change any part of the packet. It is architected to handle millions of requests/second, volatile traffic patterns, and introduces extremely low latency
Gateway Load Balancer
Four types of load balancers
- Application
- Network
- Classic
- Gateway
A service allow you to sell your catalog of custom AMIs in AWS?
AWS Marketplace
A service that is a crowdsourcing marketplace that makes it easier for individuals and businesses to outsource their processes and jobs to a distributed workforce who can perform these tasks virtually.
Amazon Mechanical Turk
enables organizations to create and manage catalogs of IT services that are approved for AWS. These IT services can include everything from virtual machine images, servers, software, databases, and more to complete multi-tier application architectures
AWS Service Catalog
Primarily used as a search solution for your website or application
Amazon CloudSearch
Allows you to create and deploy infrastructure-as-code templates in AWS?
AWS CloudFormation
Provides a common language for you to describe and provision all the infrastructure resources in your cloud environment
AWS CloudFormation
Allows you to use programming languages or a simple text file to model and provision cloudformation, in an automated and secure manner, all the resources needed for your applications across all regions and accounts
AWS Cloudformation
An easy-to-use service for deploying and scaling web applications and services developed with Java, .NET, PHP, Node.js, Python, Ruby, Go, and Docker on familiar servers such as Apache, Nginx, Passenger, and IIS
AWS Elastic Beanstalk
Simply upload your code and it automatically handles the deployment, from capacity provisioning, load balancing, auto-scaling to application health monitoring. At the same time, you retain full control over the AWS resources powering your application and can access the underlying resources at any time
AWS Elastic Beanstalk
The operations hub for AWS. Provides a unified user interface so you can track and resolve operational issues across your AWS applications and resources from a central place. You can automate operational tasks for Amazon EC2 instances or Amazon RDS instances
AWS Systems Manager
is a fully-managed service that enables data scientists and developers to quickly and easily build, train, and deploy machine learning models at any scale
Amazon SageMaker
A web service that helps you reliably process and move data between different AWS compute and storage services, as well as on-premises data sources, at specified intervals
AWS Data Pipeline
A service that enables customers to connect their Amazon Virtual Private Clouds (VPCs) and their on-premises networks through a central hub
AWS Transit Gateway
Used to enable instances in the public subnet to connect to the public Internet?
Internet Gateway
VPC component that is needed and allows communication between instances in your VPC and the public internet.
Internet Gateway
This is a service meant for creating, publishing, maintaining, monitoring, and securing APIs
API Gateway
What services will help you create a highly available and scalable web app in the cloud?
Amazon EC2 Auto Scaling and AWS ELB
A fully-managed source control service that allows you to host Git-based repositories and enable code collaboration for your team via pull requests, branching, and merging?
AWS CodeCommit
Enables you to quickly develop, build, and deploy applications on AWS
AWS CodeStar
A fully managed build service that compiles source code, runs tests, and produces software packages that are ready to deploy
AWS CodeBuild
Programmatic access to AWS Support Center features to create, manage, and close your support cases, and operationally manage your Trusted Advisor check requests and status
AWS Support API
A new AWS customer needs to deploy up to 100 t3a.large EC2 instances on their recently launched VPC, which is way beyond the default service limit. What should they do before launching their instances?
Create a case in the AWS Support Center page and request a service limit increase
A firewall service to safeguard your VPC against DDoS, SQL Injection, and many other threats
AWS Web Application Firewall (WAF)
devices are well suited for large-scale data migrations and recurring transfer workflows, in addition to local computing with higher capacity needs.
Storage 80TB HDD and 1 TB SSD and Computer
40VCPU
AWS Snowball Edge Storage Optimized
is an exabyte-scale data
transfer service used to move large amounts of data to AWS. You can transfer up to 100
petabytes of data
AWS Snowmobile
is a small, rugged, and secure
edge computing and data transfer device. It
features 2 CPUs, 4 GB of memory, and 8 TB of usable storage.
AWS Snowcone
A feature of Amazon CloudFront that lets you run code closer to users of your application, which improves performance and reduces latency
AWS Lambda@Edge
A customer needs to retrieve the instance ID, instance profile permissions, and kernel information of their EC2 instance. Where can the customer find these information?
Instance Metadata
Primarily used to perform common automated configuration tasks and run custom scripts after the instance starts. It doesn’t contain any information about the instance ID, public keys or the public IP address of your EC2 instance
Instance user data
A label that you assign to an AWS resource. Each tag consists of a key and an optional value, both of which you define
Resource tag
is a supported and maintained image provided by AWS that provides the information required to launch an instance. You must specify this when you launch an instance. You can launch multiple instances from a single imagewhen you require multiple instances with the same configuration
Amazon Machine Image
It is used to organize your AWS resources
Resource group
enables you to ingest, buffer, and process streaming data in real-time, such as video, audio, application logs, website clickstreams, and IoT telemetry data for machine learning, analytics, and other applications so you can derive insights in seconds or minutes instead of hours or days
Amazon Kinesis
managed cluster platform that simplifies running big data frameworks, such as Apache Hadoop and Apache Spark , on AWS to process and analyze vast amounts of data
Amazon Elastic MapReduce
A space agency is using Amazon S3 to store their high-resolution satellite images and videos everyday. Which of the following should they do to minimize the upload time?
Use the Multipart upload API
Allows you to upload a single object as a set of parts. Each part is a contiguous portion of the object’s data
Multipart upload
Only applicable for client web applications that are loaded in one domain to interact with resources in a different domain
Enable Cross-Origin Resource Sharing (CORS)
A DynamoDB API operation puts or deletes multiple items in one or more tables
Use the BatchWriteItem API
Primarily used to optimize your storage costs automatically based on your data access patterns without performance impact or operational overhead
Shift to S3 Intelligent-Tiering storage class
A policy consists of one or more rules that determine which images in a repository should be expired
allow you to automatically review objects within your S3 Buckets and have them moved to Glacier or have the objects deleted from S3.
Lifecycle policy
Security feature that is Primarily used to manage/delegate access to your buckets and objects
S3 access control list
Enables automatic, asynchronous copying of objects across Amazon S3 buckets in different AWS Regions
Cross-Region replication
The ability to acquire resources as you need them and release resources when you no longer need them. In the cloud, you want to do this automatically
Elasticity
Lets you provision a logically isolated section of the AWS Cloud where you can launch AWS resources in a virtual network that you define
Amazon VPC
In order for the private users to access the VPC they need a VPNand?
Virtual Private Gateway
A Desktop-as-a-Service (DaaS) solution in AWS which allows you to provision either Windows or Linux desktops in just a few minutes and quickly scale to provide thousands of desktops to workers across the globe
Amazon WorkSpaces
Which of the following services are part of the AWS serverless platform that does not require provisioning, maintaining, and administering servers for backend components?
Lambda@Edge and Amazon API Gateway
This is a benefit for cloud that Focuses your valuable IT resources on developing applications that differentiate your business rather than managing infrastructure and data centers
Benefits of Agility
Benefits of Cloud Computing
- Trade capital expense for variable expense
- Benefit from massive economies of scale
- Stop guessing capacity
- Increase speed and agility
- Stop spending money running and maintaining data centers
- Go global in minutes
Which of the following statements are true regarding horizontal and vertical scaling?
Upgrading = Vertical Scaling
Adding = Horizontal Scaling
Not required when launching an EBS-backed EC2 instance?
Elastic IP address
is a service that helps developers analyze and debug distributed applications. Customers use This tool to monitor application traces, including the performance of calls to other downstream components or services
AWS X-Ray
Helps developers analyze and debug production, distributed applications, such as those built using a microservices architecture
AWS X-Ray
Help mask downtime by redirecting traffic to your healthy instances and allowing failover to your secondary systems. This is achieved through a combination of different health checks, routing policies, and failover policies
AWS ELB and Amazon Route 53
Dictate how traffic flows inside your VPC
VPC Route Tables
Boosts your content delivery speeds through the help of edge locations found globally
Amazon CloudFront
Allows you to automatically scale the number of running instances required to handle your workloads
EC2 Auto Scaling
Which security services in AWS use intelligent systems and machine learning to quickly identify potential security threats and issues in your AWS account?
Amazon Detective and Amazon GuardDuty
Makes it easy to analyze, investigate, and quickly identify the root cause of potential security issues or suspicious activities. Automatically collects log data from your AWS resources and uses machine learning, statistical analysis, and graph theory to build a linked set of data that enables you to easily conduct faster and more efficient security investigations
Amazon Detective
The service uses machine learning, anomaly detection, and integrated threat intelligence to identify and prioritize potential threats
Amazon GuardDuty
is a set of browser-based tools for creating high-quality virtual reality (VR), augmented reality (AR), and 3D applications easily without requiring any programming or 3D graphics expertise
AWS Sumerian
This service is for user and access management. Although it is a security service, it does not use machine learning to detect threats and issues in your AWS account
AWS IAM
You have multiple AWS accounts in your organization. How can you take advantage of this to save on your monthly costs?
Use AWS Organizations and enable consolidated billing
Which of the following should you set up in order to connect your AWS VPC network to your local network via an IPsec tunnel?
A VPN gateway in your VPC connected to the Customer Gateway in your on-premises network
Will be able to reroute traffic to your secondary EC2 instances in another region during disaster recovery?
Amazon Route 53
interactive query service that makes it easy to analyze data in Amazon S3 using standard SQL
Amazon Athena
How can you easily and securely copy your infrastructure to another AWS Region?
Create a CloudFormation template and deploy it in the new region
Storage Type for EBS, If you require infrequent access to your data and are looking to save costs, sc1 provides inexpensive block storage.
Amazon EBS Cold HDD
A continuous delivery service that you should use to automate your release pipelines for fast and reliable application and infrastructure updates?
AWS CodePipeline
You noticed that you cannot reach one of your EC2 web servers behind an ELB whenever you enter the DNS name of your load balancer. What service should you first check to gain more insight on the issue?
ELB Health Check
Which type of Elastic Load Balancer allows you to forward the incoming request to a target group with a Lambda function as a target?
Application Load Balancer
Is AWS’s digital user engagement service that enables AWS customers to effectively communicate with their end users and measure user engagement across multiple channels including email, Text Messaging (SMS) and Mobile Push Notifications
Amazon Pinpoint
Which of the following services allows you to purchase Reserved Instances?
Amazon RDS and Amazon EC2
Reservation models are also available for:
DynamoDB
ElastiCache
Relational Database Service
Redshift
Which of the following services allows you to store Docker images and orchestrate Docker containers in a simple and cost-effective manner?
- Amazon Elastic Container Service (Amazon EC2)
- Amazon Elastic Container Registry (ECR)
Is a highly scalable, high-performance container orchestration service that supports Docker containers and allows you to easily run and scale containerized applications on AWS
Amazon Elastic Container Service (Amazon ECS)
Is a fully-managed Docker container registry that makes it easy for developers to store, manage, and deploy Docker container images. It’s integrated with Amazon Elastic Container Service (ECS), simplifying your development to production workflow
Amazon Elastic Container Registry (ECR)
You are planning to deploy a video streaming application with frequently accessed, throughput-intensive workloads to your EC2 instance which requires fast, consistent throughput. What EBS volume type should you use to maximize performance as well as cost?
Throughput Optimized HDD
Primarily used for critical business applications that require sustained IOPS performance
Provisioned IOPS SSD
This volume balances price and performance for a wide variety of workloads
General Purpose SSD
It is much suitable for less frequently accessed workloads
Cold HDD
You use to deploy and easily rollback a web application from your Git repository to your on-premises server?
AWS OpsWorks
What feature will allow you to label and sort your EC2 instances according to their deployment stage (development, staging, production)?
Instance tags
This is not modifiable and cannot contain user-provided metadata. These are already fixed values provided to you by AWS
Instance type
What service allows you to create alarms that notify you when EC2 CPU Utilization thresholds are breached?
Amazon CloudWatch
In which of the following occasions should you use the Amazon SQS application system?
- If you need to decouple certain parts of your system for better fault tolerance
- If you require a durable storage for your application events or messages
You have a fleet of on-premises servers that require a centralized scalable and durable file storage. It should be able to support massive parallel access
Amazon EFS
You are planning to create point-in-time backups of your Amazon EBS volumes. Which of the following are correct statements? (Select TWO.)
- EBS backups are stored durably in Amazon S3
- You can create point-in-time backups through EBS snapshots
A cloud-based integrated development environment (IDE) that lets you write, run, and debug your code with just a browser. It includes a code editor, debugger, and terminal
AWS Cloud9
The most cost-effective service to use if you want to coordinate multiple AWS services into serverless workflows?
AWS Step Functions
Provides serverless orchestration for modern applications. Orchestration centrally manages a workflow by breaking it into multiple steps, adding flow logic, and tracking the inputs and outputs between the steps
AWS Step Functions
Aws service that enables customers to quickly find, engage, and pay AWS Certified third-party experts for on-demand project work
AWS IQ
Is a PaaS solution for users who need a simple virtual private server (VPS) solution. Provides developers compute, storage, and networking capacity and capabilities to deploy and manage websites and web applications in the cloud
Amazon Lightsail
It is PaaS, but is not used to deploy your applications. Is a dedicated game server hosting solution that deploys, operates, and scales cloud servers for multiplayer games
Amazon GameLift
Is a serverless ETL (extract, transform, and load) service that makes it simple and cost-effective to categorize your data, clean it, enrich it, and move it reliably between various data stores and data streams
AWS Glue
A number of servers in your on-premises data center have been collecting dust over the past few years. What is the benefit of moving to the Cloud in this case?
The ability to provision resources only when you need them
Which AWS service allows me to patch my Windows EC2 instances without having to RDP into them?
AWS Systems Manager
What are the benefits of using Amazon DynamoDB as your database?
- You can store different kinds of unstructured data that would normally not be suitable for relational databases
- Database size scales automatically so you won’t have to worry about capacity
self-healing database in AWS
Amazon Aurora
What AWS storage service offers faster disk read and write performance and provides temporary block-level storage for your instance?
Instance Store
enable you to create one or more read-only copies of your database instance within the same AWS Region or in a different AWS Region.
Amazon RDS Read Replicas
The most cost-effective and scalable choice for object storage?
Amazon S3
This is an NFS file storage solution used together with EC2 instances or other virtual servers
Amazon EFS
This is a volume storage solution that requires a running EC2 instance, and so is not easily scalable
Amazon EBS
Should you provision if your local data center requires additional storage space without having to migrate data?
AWS Storage Gateway
Which of the following RDS engines allows you to bring your own license (BYOL)?
Oracle
Which of the following actions does not affect costs when using Amazon S3?
Data transfer costs for uploading objects into your S3 bucket
Which of the following actions does affect costs when using Amazon S3?
- Choosing S3 Standard IA rather than One Zone IA
- Making GET requests to your S3 objects
- Moving objects out of your S3 bucket to another bucket
What is the primary benefit of creating a scalable system?
Applications are able to handle varying loads of work
An engineer is having trouble migrating and configuring a licensed application she uses onto her EC2 instances. What alternative does she have to do to quickly get her applications up and running in AWS?
Try to look for an AMI in the AWS Marketplace that provides a similar setup to her application stack
You have a customized EC2 instance running your latest web application. How can you create an exact copy of this instance in another region?
Create a golden AMI of the instance and copy it to the other region
Is an AMI that contains the latest security patches, software, configuration, and software agents that you need to install for logging, security maintenance, and performance monitoring
Golden AMI
A customer is using your S3-based service to store sprites of game characters. When players retrieve these sprites, they are temporarily stored on the player’s computer. If the S3 bucket is using a standard storage class, how can you further optimize cost?
Have the customer directly upload the sprites to S3 Standard – Infrequent Access
What is an advantage of cloud computing when it comes to equipment expenditures?
AWS introduces cost reductions each year in their services
A MariaDB RDS database is known to have high memory consumption during peak hours which deteriorates the overall performance of your application. What cost-effective change can you introduce to resolve this issue if the database is handling write-intensive operations?
Scale the instance vertically to a higher memory capacity
Where is the best place to archive logs and other infrequently accessed files for a long time with no strict retrieval time?
Amazon Glacier
Which AWS well-architected pillar stresses the importance of selecting the most appropriate and right number of resource types for your requirements?
Cost optimization
This pillar focuses on the ability to prevent and quickly recover from failures to meet business and customer demand
Reliability
This pillar focuses on running and monitoring systems to deliver business value, and continually improving processes and procedures
Operational Excellence
This pillar focuses on using IT and computing resources efficiently
Performance efficiency
Focuses on avoiding un-needed costs. Key topics include understanding and controlling where money is being spent, selecting the most appropriate and right number of resource types, analyzing spend over time, and scaling to meet business needs without overspending
Cost optimization
When is using Amazon RDS a better choice than using a local database?
When you want to offload administration responsibilities from yourself
Which of the following services combine 5G networks with AWS compute and storage services for the benefit of high-performance mobile applications?
AWS Wavelength
Combines the high bandwidth and ultra-low latency of 5G networks with AWS compute and storage services to enable developers to innovate and build a whole new class of applications
AWS Wavelength
A set of tools and frameworks that accelerate the development of mobile and web applications on AWS
AWS Amplify
This is a service that makes it easy to set up and govern a secure, multi-account AWS environment based on industry best practices
AWS Control Tower
Your central repository for encryption keys in your account. It is useful if you have data that you need to encrypt, and you want a central location where you can manage your keys
AWS Key Management Service (KMS)
A developer needs to collect and process large streams of data records in real-time. Which AWS service should be used for this task?
Amazon Kinesis Data Streams
Can trace requests made to your serverless applications built using AWS Lambda. It enables you to gain insights into the performance of serverless applications, allowing you to pinpoint the root cause of issues so that you can address them
AWS X-Ray
What service simplifies contact center operations, improves agent efficiency, lowers costs, and can scale to support millions of customers?
Amazon Connect
Provides a seamless experience across voice and chats for your customers and agents. Simplifies contact center operations, improves agent efficiency, and lowers costs. You can set up a contact center in minutes that can scale to support millions of customers
Amazon Connect
A service for building conversational interfaces into any application using voice and text. It is used to build chatbots for everyday consumer requests, such as accessing the latest news updates, game scores, or weather
Amazon Lex
A high-performance computing (HPC) application needs a storage service in AWS that can be used as a centralized Windows File Server for multiple EC2 instances.
Which service to use?
Amazon FSx
Although it is a shared file system storage, this only supports Linux workloads
Amazon EFS
Which AWS service provides automated reference deployments for key workloads in AWS via CloudFormation templates?
AWS Quick Starts
Are built by AWS solutions architects and partners to help you deploy popular technologies on AWS, based on AWS best practices for security and high availability. These accelerators reduce hundreds of manual procedures into just a few steps, so you can build your production environment quickly and start using it immediately
AWS Quick Starts
A developer needs to set up a message broker service for Apache ActiveMQ for its enterprise application running in AWS. Which service should be used in this scenario?
Amazon MQ (Message Queuing)
A communications service that lets you meet, chat, and place business calls inside and outside your organization, all using a single application. This service is not suitable for setting up a message broker service
Amazon Chime
A service to manage your corporate email infrastructure and eliminates the need for up-front investments to license and provision on-premises email servers. This service does not provide direct access to the ActiveMQ console and industry-standard APIs and protocols for messaging, including JMS, NMS, AMQP, STOMP, MQTT, and WebSocket.
Amazon WorkMail
Which of the following AWS services allows you to query data directly in Amazon S3?
Amazon Athena and Amazon Redshift Spectrum
Allows you to query and retrieve structured and semistructured data from files in Amazon S3 without having to load the data into Amazon Redshift tables
Amazon Redshift Spectrum
Not suitable for querying data in Amazon S3
Amazon MQ, Amazon Neptune, and Amazon Elasticache
Amazon MQ is a message broker service for Apache ActiveMQ. Amazon Neptune is a fully-managed graph database service. Amazon Elasticache is an in-memory data store and caching service
A customer needs to store objects that are frequently accessed. To help the customer save costs, you must select a storage service free from retrieval charges. Which of the following S3 storage classes would meet this requirement?
S3 Intelligent Tiering and S3 Standard
a serverless, pay-as-you-go compute engine that lets you focus on building applications without managing servers. is compatible with both Amazon Elastic Container Service (ECS) and Amazon Elastic Kubernetes Service (EKS).
AWS Fargate
A feature that bucket owners can easily set up centralized controls to limit public access to their Amazon S3 resources
Block Public Access
A VPC endpoint for Amazon S3 that enables AWS services in your VPC to use private IP addresses to access Amazon S3 with no exposure to the public Internet
Amazon S3 Gateway Endpoint
Resolver, traffic flow, latency based routing, Geo DNS, Private DNS for Amazon VPC, DNS Failover, and Domain Registration
Amazon Route 53
A company plans to encrypt and manage its own encryption keys using a single-tenant hardware security module. The company must also have exclusive control over how its keys are used via an authentication mechanism independent from AWS
AWS Cloud Hardware Security Module (HSM)
A developer plans to build a serverless application with a key-value database. Which of the following AWS services can be used to fulfill this requirement?
Amazon DynamoDB and AWS Lambda
This team only guides a customer on how AWS services fit together to meet a specific architecture, use-case, workload, or application
Architecture Support
What types of caching solutions are available in Amazon ElastiCache?
Redis, Memcached, and Redis Global Database
Which of the following is a benefit of using AWS Global Accelerator?
Decreased latency in accessing applications hosted in AWS
It provides you with static IP addresses that serve as a fixed entry point to your applications hosted in one or more AWS Regions
A web interface for Amazon Web Services that allows you to access and manage cloud services
AWS Management Console
A Graph Database service that makes it easy for you to build and run applications that work with highly connected datasets
Amazon Neptune
A customer plans to speed up the time it takes to download data between its clients and S3 bucket over long distances
Amazon S3 Transfer Acceleration
A center provides reference architecture diagrams, vetted architecture solutions, Well-Architected best practices, patterns, icons, and more.
AWS Architecture Center
A VPN service used to securely access your AWS resources and resources in your on-premises network
AWS Client VPN
