extra aws

Question 1

aws config

Answer 1

assess, audit, and evaluate the configurations of your AWS resources to check for compliance

allows you to keep a record of your AWS resources’ configuration history and assesses it for compliance with your internal policies and best practices.

Question 2

AWS Reference Architecture Diagrams

Answer 2

a collection of technical resources to help you build industry-tested architectures more effectively and efficiently in the AWS Cloud.

It does not provide a set of foundational questions that you can use to evaluate if your architecture is aligned with AWS best practices.

Question 3

OpsWorks

Answer 3

OpsWorks is a configuration management service that helps customers configure and operate applications, both on-premises and in the AWS Cloud, using Chef and Puppet.

opsWorks can rollback

Question 4

AWS Quick Starts

Answer 4

are built by AWS solutions architects and partners to help you deploy popular technologies on AWS, based on AWS best practices for security and high availability. These accelerators reduce hundreds of manual procedures into just a few steps, so you can build your production environment quickly and start using it immediately.

Question 5

Amazon FSx

Answer 5

windows

Question 6

EFS

Answer 6

linux

Question 7

AWS CodeBuild

Answer 7

a fully managed continuous integration service that compiles source code, runs tests, and produces software packages that are ready to deploy. With CodeBuild, you don’t need to provision, manage, and scale your own build servers. CodeBuild scales continuously and processes multiple builds concurrently, so your builds are not left waiting in a queue.

Question 8

VPC endpoint

Answer 8

enables you to privately connect your VPC to Amazon S3 without requiring an internet gateway, NAT device, VPN connection, or AWS Direct Connect connection.

Question 9

aws organization benefits?

Answer 9

– Centrally Manage Policies across Multiple AWS Accounts
– Automate AWS Account Creation and Management
– Consolidate Billing across Multiple AWS Accounts
– Govern Access to AWS Services, Resources, and Regions
– Configure AWS Services Across Multiple Accounts

Question 10

AWS Service Catalog

Answer 10

AWS Service Catalog = portfolio

Question 11

AWS Site-to-Site vpn

Answer 11

VPN creates a secure connection between your data center or branch office and your AWS cloud resources. For globally distributed applications, the Accelerated Site-to-Site VPN option provides even greater performance by working with AWS Global Accelerator.

Question 12

AWS Systems Manager Parameter Store

Answer 12

primarily used to centralize the configuration data of their application. You can store data such as passwords, database strings, AMI IDs, and license codes as parameter values.

Question 13

Amazon S3 $$$

Answer 13

Storage - Costs vary with the number and size of objects stored in your Amazon S3 buckets as well as the type of storage.

Requests - The number and type of requests. GET requests incur charges at different rates than other requests, such as PUT and COPY requests.

Data transfer - The amount of data transferred out of the Amazon S3 region.

Question 14

Reserved Instances

Answer 14

Reserved Instances - capacity reservations

Question 15

What can you do with AWS cost and usage report?

Answer 15

Access comprehensive AWS cost and usage information
– The AWS Cost & Usage Report gives you the ability to delve deeply into your AWS cost and usage data, understand how you are using your AWS implementation, and identify opportunities for optimization.

Track your Amazon EC2 Reserved Instance (RI) usage

– Each line item of usage that receives an RI discount contains information about where the discount was allocated. This makes it easier to trace which instances are benefitting from specific reservations.

Leverage strategic data integrations

– Using the Amazon Athena data integration feature, you can quickly query your cost and usage information using standard SQL queries. You can also upload your data directly into Amazon Redshift or Amazon QuickSight.

Allows you to load your cost and usage information into Amazon Athena, Amazon Redshift, and AWS QuickSight

Question 16

cost moneyyy $$

Answer 16

Transfer of EC2 files between two AWS Regions

Question 17

does it cost money? Setting up additional VPCs in your account

Answer 17

No its free

Question 18

does it cost money? Provisioning Elastic IPs and attaching them to running EC2 instances

Answer 18

no. only if they are not attached to ec2

Question 19

Egress data to the internet

Answer 19

data transfer out from Amazon S3 to the internet
he action of going out of or leaving a place.

Question 20

global

Answer 20

IAM, STS, Route 53, CloudFront, and WAF.

Question 21

zonal

Answer 21

EC2 Instances and EBS Volumes which are tied to the Availability Zone where they were launched

Question 22

regional

Answer 22

he EBS snapshots are considered regional since it is not tied to a specific Availability Zone.

Amazon EFS

– AWS Batch

Question 23

which is more expensive? EBS or S3 Glacier Flexible retrieval

Answer 23

Amazon EBS is incorrect because this is a type of block storage that is not suitable to be used for database backups. It is also more expensive than S3 Glacier Flexible Retrieval.

Question 24

What are the two ways to grant permission to amazon s3 resources?

Answer 24

Bucket policy and user policy are two of the access policy options available for you to grant permission to your Amazon S3 resources.

Question 25

What are access keys?

Answer 25

Access keys are long-term credentials for an IAM user or the AWS account root user

Question 26

access keys consists of what?

Answer 26

Access keys consist of two parts:

1. Access key ID (for example: AKIAIOSTUTORIALSDOJO)
2. Secret access key (for example: wJalrXUtnFEMI/K7MDENG/bTutorialsDojoKEY).

Question 27

an account alias is in IAM?

Answer 27

A substitute for an account ID in the web address for your account

Question 28

Security group

Answer 28

instances

Question 29

Network ACL

Answer 29

subnets

Question 30

permitted

Answer 30

– Amazon EC2 instances
- Elastic Load Balancers
– Amazon API Gateways
- NAT Gateways
– Amazon CloudFront
– Amazon RDS
– Amazon Aurora

– AWS Lambda and Lambda Edge functions

– Amazon Lightsail resources

– Amazon Elastic Beanstalk environments

Question 31

s3 versioning

Answer 31

Versioning in Amazon S3 is a means of keeping multiple variants of an object in the same bucket. You can use the S3 Versioning feature to preserve, retrieve, and restore every version of every object stored in your buckets. With versioning you can recover more easily from both unintended user actions and application failures

Question 32

Name ways you can launch RDS

Answer 32

You can launch a new RDS database cluster using the AWS Management Console, AWS CLI, AWS SDK and AWS CloudFormation.

Question 33

aws global accelerator

Answer 33

AWS Global Accelerator uses the AWS global network to optimize the path from your users to your applications, improving the performance of your traffic by as much as 60%. AWS Global Accelerator continually monitors the health of your application endpoints and redirects traffic to healthy endpoints in less than 30 seconds.

Question 34

aws root user tasks

Answer 34

Change your account settings. This includes the account name, email address, root user password, and root user access keys. Other account settings, such as contact information, payment currency preference, and AWS Regions, don’t require root user credentials.

Restore IAM user permissions. If the only IAM administrator accidentally revokes their own permissions, you can sign in as the root user to edit policies and restore those permissions.

Activate IAM access to the Billing and Cost Management console.

View certain tax invoices. An IAM user with the aws-portal:ViewBilling permission can view and download VAT invoices from AWS Europe, but not AWS Inc. or Amazon Internet Services Private Limited (AISPL).

Close your AWS account.

Register as a seller in the Reserved Instance Marketplace.

Configure an Amazon S3 bucket to enable MFA (multi-factor authentication).

Edit or delete an Amazon Simple Storage Service (Amazon S3) bucket policy that includes an invalid virtual private cloud (VPC) ID or VPC endpoint ID.

Sign up for AWS GovCloud (US).

Request AWS GovCloud (US) account root user access keys from AWS Support.

Question 35

ECS

Answer 35

Amazon ECS eliminates the need to install, operate, and scale container management infrastructure, and simplifies the creation of environments with familiar AWS core features like Security Groups, Elastic Load Balancing, and AWS Identity and Access Management (IAM).”

Question 36

AWS Transit Gateway
B. AWS Transit Gateway

Question 37

LIST OF COMPUTE

Answer 37

Amazon EC2
Amazon EC2 Auto Scaling
Amazon Elastic Container Registry
Amazon Elastic Container Service
Amazon Elastic Kubernetes Service
Amazon Lightsail
AWS Batch
AWS Elastic Beanstalk
AWS Fargate
AWS Lambda
AWS Serverless Application Repository
AWS Outposts
VMware Cloud on AWS

Question 38

DDOS

Answer 38

shield
waf
cloudfront
aws firewall manager
aws global accelerator
elastic load balanccing
amazon route 53
elastic ip address

Question 39

When building a cloud Total Cost of Ownership (TCO) model, which cost elements should be considered for workloads running on AWS? (Choose three.)

Answer 39

data, storage compute

Question 40

Which AWS service would a customer use with a static website to achieve lower latency and high transfer speeds?
A. AWS Lambda
B. Amazon DynamoDB Accelerator
C. Amazon Route 53
D. Amazon CloudFront

Answer 40

D

Question 41

hybrid

Answer 41

aws post
wavelenght
local zone
snow

ecs
eks

aws storage gateway
aws backup
aws datasync
aws transfer family

aws direct connect
amazon route 53 resolver

aws directory
iam
systems manager
opswork

aws code deploy
cloud waqtfch
xray