Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

SysOps Admin > Extras > Flashcards

Extras Flashcards

1
Q

What’s the AWS Service Catalog?

A
  1. Catalog: It’s a catalog of products available as a portal CFN templates
  2. Access control: Users, groups and roles get access to a portfolio of products
  3. Enforce standards:
    a. Approved resources only
    b. compliance with internal policies
    c. allowed services only
    d. configuration standards are maintained
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q 
CloudFront Errors
400 - B
403 - A
404 - F
502 - B
503 - S
504 - G
A

400: Bad request → malformed request
403: Access denied → public access for S3 object using S3:GetObject (your s3 object isn’t public)
404: File not found
502: Bad gateway → CF can’t connect to origin
503: Service unavailable → performance issue on origin server
504: Gateway timeout → request expired before a response was received from the origin server.

  • Server side errors: Usually caused by high traffic to the website and the server is not responding.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What’s the most important thing in order to Direct Connect with Multiple Accounts to work?

A

Accounts have to be under the same Payer Account in order to share Direct Connect Gateway.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Inter-Region VPC Peering:

  • ______ ranges must be unique and cannot overlap
  • Allows two ___ in different regions to communicate
  • Traffic is ______ and it does not go through the _____ _____.
A
  • CIDR
  • VPCs
  • Encrypted/ Public Internet
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

When enabling HTTPS on your website, what kind of certificate do you need to associate with it?

A

SSL/TLS Certificate.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What is the AWS recommended way to store and manage certificates?

A

By using AWS Certificate Manager (ACM)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

If ACM is not supported in your Region, which AWS service should you use in order to store certificates?

A

You can use IAM to store them, only if ACM is not supported in your Region.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Which service do these best practices belong to?

  • Control access using IAM
  • Be aware of service limits
  • Avoid Manual updates → it can cause mismatches
  • Use CloudTrail
  • Stack Policy → it’s a JSON document that describes what update actions can be performed on designated resources.
    • Helps protect critical stack resources from unintentional updates and mistakes caused by human error.
A

CloudFormation Best Practices

How well did you know this?
1
Not at all
2
3
4
5
Perfectly

SysOps Admin (8 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions