Governance/Migration

Question 1

What is Organizations?

Answer 1

allows you to create multiple AWS accounts and control them from a single location rather than having to jump from account to account

Question 2

What is best practice regarding logging over multiple AWS accounts?

Answer 2

Have one account aggregate all the logs (Cloudtrail supports this)

Question 3

Can Organizations create and destroy AWS accounts?

Answer 3

Yes

Question 4

Can reserved instances be shared across accounts?

Answer 4

Yes

Question 5

If you want consolidated billing, what should you use?

Answer 5

Organizations

Question 6

If you want to set limits to what certain AWS accounts can do, what should you use?

Answer 6

Service Control Policies (SCP) in Organizations

Question 7

Can SCP’s be applied to the root account?

Answer 7

yes

Question 8

What is AWS RAM?

Answer 8

A free service that allows you to share AWS resources with other accounts and within your organization

Question 9

If you don’t want to duplicate copies in different accounts but want to share resources, what should you use?

Answer 9

AWS RAM

Question 10

When should you use AWS RAM vs VPC peering?

Answer 10

VPC peering is better for across regions, RAM is better for same region

Question 11

What is cross-account role access?

Answer 11

temporary access to other accounts that is easily controlled

Question 12

How often should roles be used in order to grant users access to certain resources or accounts?

Answer 12

All the time

Question 13

How should temporary employees get access to resources?

Answer 13

Through roles

Question 14

What is Config?

Answer 14

An inventory management and control tool

Question 15

If you need the ability to be alerted whenever a rule is violated, what should you use?

Answer 15

Config

Question 16

If you need to enforce standards, what you should you use?

Answer 16

Config

Question 17

If you want to track deleted AWS resources, what should you use?

Answer 17

Config

Question 18

What is Directory Service?

Answer 18

a fully managed version of active directory

Question 19

What is AD Connector?

Answer 19

A tunnel between AWS and your on premises AD

Question 20

What is Simple AD?

Answer 20

Standalone directory running in AWS

Question 21

What is Cost Explorer?

Answer 21

an easy to use tool that allows you to visualize your cloud costs?

Question 22

By what categorization is the common way to get reports from Cost Explorer?

Answer 22

resource tags

Question 23

If you need to predict money spent for the upcoming month, what should you use?

Answer 23

Cost Explorer

Question 24

What is AWS Budgets?

Answer 24

allows organizations to track ongoing spending and create alerts to let users know when they’re spending close to thier limit.

Question 25

What are the 4 types of budgets you can create with Budgets?

Answer 25

Cost, Usage, Reservation, and Saving plans

Question 26

What is AWS Cost and Usage Reports?

Answer 26

CUR is a service that gives a comprehensive cost and usage report

Question 27

How often does AWS update the CUR?

Answer 27

daily

Question 28

Can you use CUR’s within Organizations?

Answer 28

Yes

Question 29

Where do CUR’s get stored?

Answer 29

S3

Question 30

If you want a detailed or daily usage report, what should you use?

Answer 30

Cost Usage Report

Question 31

What is AWS Compute Optimizer?

Answer 31

A service that analyzes the utilizations of AWS resources and provides reports and graphs to help you decide the best way to optimize resource usage

Question 32

What must you do to get Compute optimizer?

Answer 32

Opt in

Question 33

What are savings plans?

Answer 33

Ways to get deals on AWS compute, similar to RI’s

Question 34

What is trusted advisor?

Answer 34

a fully managed best practice auditing tool

Question 35

What are the 5 areas trusted advisor looks over?

Answer 35

Cost optimization, performance, security, fault tolerance, service limits

Question 36

Via what service does trusted advisor let you know things need changing?

Answer 36

SNS

Question 37

How could you automate fixes that trusted advisor tells you you should make?

Answer 37

Eventbridge to trigger lamda functions

Question 38

What is AWS Control Tower?

Answer 38

An easy way to set up and govern an AWS multi-account environment

Question 39

If you want to automate account deployments, what should you use?

Answer 39

Control Tower

Question 40

If you need to set up guardrails against noncompliant actions AWS accounts could do, what should you use?

Answer 40

Control Tower to leverage service control policies

Question 41

If you need to manage software licenses with different vendors, what should you use?

Answer 41

AWS License Manager

Question 42

What is AWS Health?

Answer 42

Gain visibility of resource performance and availability of AWS services or accounts

Question 43

How can automate actions based on AWS Health alerts?

Answer 43

EventBridge

Question 44

If you wanted to automate the rebooting of EC2 instances, what services would you utilize to do so?

Answer 44

AWS Health and EventBridge

Question 45

What is AWS service catalogs?

Answer 45

allows organizations to create and manage catalogs of approved IT services

Question 46

What is AWS Proton?

Answer 46

Creates and managed infrastructure and deployment tooling for users

Question 47

If you want to automate infrastructure as code, what should you use?

Answer 47

AWS Proton

Question 48

What is AWS Well-Architected Tool?

Answer 48

provides a consistent process for measuring cloud architectures and guides for making workloads more reliable, secure, efficient, and cost effective

Question 49

What are the components of a well architected framework?

Answer 49

operational excellence, reliability, security, performance efficiency, cost optimization, sustainability

Question 50

What two services are used for preventive and detective guardrails within AWS Control Tower?

Answer 50

AWS Config, AWS Organizations (for SCPs)

Question 51

If you wanted a way to track AWS architecture and check for best practice violations, what should you use?

Answer 51

AWS Config

Question 52

If you want to consolidate logs across multiple AWS accounts, what service should you use?

Answer 52

Organizations

Question 53

What are three mediums of a migrating to AWS?

Answer 53

Over the internet, direct connect, or physically bundling it and delivering it to AWS

Question 54

What is AWS Snow?

Answer 54

A delivery of harddrives meant for migrating your data to AWS

Question 55

How much can snowcone transfer?

Answer 55

up to 8TB

Question 56

How much can snowball transfer?

Answer 56

up to 81 TB

Question 57

How much can snowmobile transfer?

Answer 57

up to 100 PB

Question 58

Can the snow family bring AWS data to you?

Answer 58

Yes

Question 59

What is the typical turnaround for AWS Snow?

Answer 59

a week

Question 60

What is Storage Gateway?

Answer 60

A hybrid cloud storage service that helps you to merge on-prem resources with the cloud

Question 61

What are typical use cases for Storage Gateway?

Answer 61

a one-time migration or long term pairing of your on prem architecture with AWS

Question 62

if you want to back up on your on prem data to S3, what should you use?

Answer 62

file gateway

Question 63

If you want to back up the drives of your on-prem machines to AWS, what should you use?

Answer 63

Volume Gateway

Question 64

What is DataSync?

Answer 64

allows you to easily move data from on prem NFS and SMB shared to AWS storage solutions

Question 65

What endpoints are there for DataSync?

Answer 65

S3, EFS, and FSx

Question 66

What is the AWS Transfer Family?

Answer 66

allows you to easily move files in and out of S3 or EFS using SFTP, FTPS, or FTP

Question 66

What is the AWS Transfer Family?

Answer 66

allows you to easily move files in and out of S3 or EFS using SFTP, FTPS, or FTP

Question 67

If you need to bring legacy application storage to the cloud, what should you use?

Answer 67

AWS Transfer Family

Question 68

What is AWS Migration Hub

Answer 68

A single place to track the progress of your application migration to AWS

Question 69

What is AWS Application Discovery Service?

Answer 69

AN easy to way to migrate VM’s to the AWS

Question 70

What does AWS MGN offer?

Answer 70

Application migration service allows an automated lift and shift of migrating infrastructure to AWS

Question 71

How is RTO measured?

Answer 71

seconds

Question 72

How is RPO measured?

Answer 72

sub-seconds

Question 73

What is AWS Database Migrations Service?

Answer 73

AWS DMS

Question 74

What is AWS Database Migrations Service?

Answer 74

AWS DMS allows for easy migration of relational databases, data warehouses, noSQL databases, and other data stores to AWS

Question 75

Can AWS DMS migrate data within AWS to another AWS service?

Answer 75

No, only into and out of AWS

Question 76

Can you do one time migrations or ongoing migrations with AWS DMS?

Answer 76

both

Question 77

What is AWS SCT?

Answer 77

AWS Schema Conversion Tool can convert database schemas from one engine to another

Question 78

What is AWS SCT?

Answer 78

AWS Schema Conversion Tool can convert database schemas from one engine to another

Question 79

What is a full load migration?

Answer 79

all existing data is moved from source to target in parallel

Question 80

What is a full load and change data capture migration

Answer 80

full load migration plus it loads any changes occurred during the migration

Question 81

What is change data capture migration?

Answer 81

Only migrate the changes made in the database

Question 82

What type of migration is the only one to guarantee transactional integrity?

Answer 82

CDC migration

Question 83

What service would you use to migrate a database from on-premises to RDS?

Answer 83

Database migration service

Question 84

What would be the best service to utilize to migrate 80T of data into S3 if you have limited bandwidth at your data center?

Answer 84

Snowball

Question 85

What service would you use for a one time migration of data into AWS if costs are a factor?

Answer 85

AWS DataSync