Extra

Question 1

Types of MFA

Answer 1

Virtual MFA - app on phone gives one time password
Hardware TOTP Token - key fob or card
FIDO security keys - physical key provided by third party

Question 2

3 Elements contained in IAM policy

Answer 2

Effect, Action, Resource

Question 3

AWS step functions

Answer 3

allows you to coordinate multiple AWS services into serverless workflows so you can build and update apps quickly.
multiple lambda functions in an application
visual workflow

Question 4

AWS Cloud9

Answer 4

-lets users write, run, and debug code from a web browser.
use case:A company needs to migrate all its development teams to a cloud-based integrated development environment (IDE).

Question 5

AWS FSx

Answer 5

launch and run fully managed third party file systems for Windows and Linux-based workloads

Question 6

AWS RAM

Answer 6

Recourse access manager
AWS RAM helps you securely share your AWS resources to other AWS accounts

Question 7

Amazon QuickSight

Answer 7

create dashboards/ visualize data

Question 8

AWS Glue

Answer 8

takes data out of a databases changes the schema

Question 9

AWS CodeCommit

Answer 9

secure, highly scalable, fully managed source control service that hosts private Git repositories.

Question 10

AWS cognito

Answer 10

Identity platform for web and mobile apps
It’s a user directory, an authentication server, and an authorization service for OAuth 2.0 access tokens and AWS credentials
authenticate and authorize users from the built-in user directory, from your enterprise directory, and from consumer identity providers like Google and Facebook.

Question 11

Amazon Lightsail

Answer 11

Build applications and custom websites fast

Question 12

AWS Storage gateway

Answer 12

hybrid cloud storage service that gives you on-premises access to virtually unlimited cloud storage

Question 13

AWS Control Tower

Answer 13

orchestrates the capabilities of several other AWS services, including AWS Organizations, AWS Service Catalog, and AWS IAM Identity Center, to build a landing zone
set up and managed on your behalf

Question 14

AWS Secrets Manager

Answer 14

manage, retreive and rotate database credentials, API keys and passwords (best place for storing passwords)

Question 15

Customer gateway

Answer 15

VPN that is on the remote side of customer

Question 16

AWS Global Accelerator

Answer 16

networking serrvice that helps uou improve the availibility, performance and security of public applications.
(provides 2 global static public IP’s)

Question 17

ACM

Answer 17

AWS Certificate Manager

Question 18

AWS Transit Gateway

Answer 18

Enables customers to connect thousands of VPC’s
consolidate organizations entire routing configuration

Question 19

SCP’s

Answer 19

Service Control Policies for AWS Orginizations
policy that allows central control over maximum permissions for IAM users and roles in your organization.

Question 20

Amazon Elastic Transcoder

Answer 20

media transcoding in the cloud.
(convert audio and video files to smarphones, tablets and web browser)

Question 21

Amazon Polly

Answer 21

converts text to speech

Question 22

Amazon EMR

Answer 22

cloud big data solution for petabyte-scale data processing, interactive analytics, and machine learning using open-source frameworks such as Apache Spark, Apache Hive, and Presto.

Question 23

AWS X-RAY

Answer 23

analyze and debug serverless and distributed applications such as those built using a microservices architecture

Question 24

Amazon Macie

Answer 24

fully managed data security and data privacy service that uses machine learning and pattern matching to discover and protect your sensitive data

Question 25

AWS services that has data encryption automatically enabled

Answer 25

AWS Storage gateway S3

Question 26

how Lambda is charged

Answer 26

-The time it takes for the AWS Lambda function to execute -Number of requests for the AWS Lambda function

Question 27

Cloud foundation

Answer 27

guided path to help customers deploy, configure, and secure their new workloads

Question 28

Where is CloudWatch

Answer 28

US East (N. Virginia) us-east-1

Question 29

Well Architected Framework

Answer 29

Security-protecting information & systems Performance Efficiency- using IT and computing resources efficiently Operational Excellence- ability to run and monitor systems to deliver business value and to continually improve supporting processes and procedures Cost Optimization- avoiding un-needed costs

Question 30

CodeDeploy, CodeCommit, Code pipeline

Answer 30

Code Deploy- automates code deployments to any instance, including Amazon EC2 instances and instances running on-premises Code Commit-fully-managed source control service that hosts secure Git-based repositories Code Pipeline- continuous delivery service that enables you to model, visualize, and automate the steps required to release your software

Question 31

Amazon Kendra

Answer 31

Kendra reimagines enterprise search for your websites and applications so your employees and customers can easily find the content they are looking for, even when it’s scattered across multiple locations and content repositories within your organization.

Question 32

OpsWorks vs Config vs Systems manager

Answer 32

OpsWorks- configuration management service that helps you configure and operate applications in a cloud enterprise by using Puppet or Chef. Config- provides a detailed view of the configuration of AWS resources in your AWS account. Systems manager-operations hub for your AWS applications and resources and a secure end-to-end management solution for hybrid and multicloud environments that enables secure operations at scale.

Question 33

Amazon CodeGuru

Answer 33

developer tool that provides intelligent recommendations to improve code quality and identify an application’s most expensive lines of code

Question 34

Data backup types

Answer 34

Backup and restore- hours Pilot Light- 10s of minutes warm stand by- minutes multi-site active/active- real time

Question 35

Pilot light

Answer 35

replicate your data from one Region to another and provision a copy of your core workload infrastructure

Question 36

Warm standby strategy-

Answer 36

scaled-down but fully functional copy of your production environment in another AWS Region

Question 37

Amazon EC2 Image Builder

Answer 37

simplifies the building, testing, and deployment of Virtual Machine and container images for use on AWS or on-premises. reduces the effort of keeping images up-to-date

Question 38

CloudEndure Disaster Recovery

Answer 38

easy to shift your DR strategy to the AWS Cloud from existing physical or virtual data centers, private clouds, or other public clouds SaaS

Question 39

AWS Data Exchange

Answer 39

allows customers to find, subscribe to, and use third-party data in the cloud

Question 40

Services you can reserve for discount

Answer 40

EC2, DynamoDB, ElastiCache, RDS, and RedShift.

Question 41

Well Architected Framework - Five Pillars

Answer 41

- Operational Excellence - Security - Reliability - Performance Efficiency - Cost Optimization