Exam Gap - Temp Flashcards
You manage 100’s of AWS accounts for your business. One of the accounts is for a development team and you need to restrict what can occur within the account. There are 5 IAM users and the account root user which need to be restricted. What should you suggest?
SCP
I chose: Identity Policy
One of your clients is introducing a new system that allows its website users to vote on their favourite celebrity photograph. Their existing website runs well, and is hosted on EC2 m5.8xlarge instances within an auto scaling group. The client expects a large uptake of the new system and is concerned that their existing infrastructure won’t cope even though they use CloudFront. What architecture would you recommend for the new system?
Redo using Lambda
I chose: Redo using Docker containers
You have launched 5 EC2 instances of the same size into a cluster placement group. You attempt to launch 5 more and get an error. What options could explain this, or resolve this ?
Refresh material on placement groups
Cluster
Spread
Partition
In what scenario would you suggest a Site-to-Site VPN is used rather than a Direct Connect
Guessed: Provisioning Timeframe Priority
Visit unvisited topic
In what scenario would you suggest a Site-to-Site VPN is used rather than a Direct Connect
Guessed: Provisioning Timeframe Priority (correct!)
Visit unvisited topic
In what scenario would you suggest a Site-to-Site VPN is used rather than a Direct Connect
Guessed: Provisioning Timeframe Priority (correct!)
Visit unvisited topic
You need to configure private networking connectivity between a single on-premises location and AWS. You have been told that low latency and high speeds are a requirement and that the solution needs to be up and running within 4 days. Your on-premises location is in a semi rural location. What solution should you suggest
Guessed: DirectConnect
Answer: VPN + DirectConnect
You manage the infrastructure for a team of developers, the QA environment is automated and constantly provisions, tests and terminates application environments. The app environment consists of an EC2 instance which is built automatically and contains no valuable data and a MariaDB RDS SingleAZ instance. You have been asked to make sure that before an environment is terminated, backups are taken which last at least 6 months. What should you suggest?
I chose: Enable automatic backups
Answer: Create manual backup of RDS before termination
WTH - if everything is automated how is introducing a manual step efficient?
Which of the following are reasons for using EC2 Enhanced Networking
Lower Latencies Better PPS (packet per second)
RCUs
Read up on these DynamoDB concepts some more
You are migrating a Windows file server into AWS so that it can be used by VPC hosted Workspaces (Virtual Desktops). What is the most cost effective and resilient way to host this data in AWS and provide access to it using the SMB protocol.
I chose: EFS
Correct answer: FSx
You have recently started a new job. Your manager asks you to review the design of a Site-to-Site VPN Solution to ensure it’s highly-available. It uses 1 VGW, 1 VPN connection and 1 CGW. What should you tell your manager? (choose one)
I chose: Another CGW will ensure full HA
Correct answer: Another CWG + VPN = full HA