EC2 Misc. Flashcards
What do you need to do in order to be able to access the AWS CLI?
Set up access in IAM
Does the CLI allow you to access AWS from anywhere in the world?
Yes
Why is using Roles better than storing your access key and secret access key on individual EC2 instances?
- Security: if any instance gets hacked, then the hacker gets your access key ID and secret access key
- Easier to Manage: If you lose or have to change your access key ID and secret access key and have them stored across many instances, you have to change them in all of your instances.
Are Roles universal? That is, can you use them in any namespace?
Yes
Can you assign a role to an EC2 instance after it is created?
Yes, and you can use either the console or the command line to do so.
What is a boot strap script?
Boot Strap scripts run when an EC2 instance first boots
What is instance metadata?
Information about an instance (like public IP)
What is the command you run on an instance to get the latest metadata?
curl http://169.254.169.254/latest/meta-data
How can I view, in the AWS command line, the boot strap script that I ran?
curl http://169.254.169.254/latest/user-data
Why are boot strap scripts useful?
They Can be a powerful way of automating software installs and updates
At what time can you attach an IAM role to an EC2 instance?
You can do it at any time (no restrictions)
