Infrastructure

Question 1

What is Amazon ElastiCache Redis?

Answer 1

Amazon ElastiCache for Redis is a fully managed, in-memory data store service provided by Amazon Web Services (AWS). It supports the popular open-source in-memory key-value store Redis. ElastiCache allows you to deploy and operate a Redis cluster without the need to manage the underlying infrastructure.

Amazon ElastiCache for Redis is commonly used for use cases like caching, session storage, leaderboards, and real-time analytics where low-latency access to data is crucial. It is suitable for a wide range of applications, including web applications, gaming, and analytics platforms that require fast and scalable in-memory data storage.

Question 2

Edge Location

Answer 2

An “edge location” in the context of Amazon Web Services (AWS) refers to a specific endpoint of the content delivery network (CDN) service known as Amazon CloudFront. CloudFront uses a network of globally distributed edge locations to deliver content with low latency and high data transfer speeds to end-users.

Question 3

Wat is Amazon EC2 Dedicated Host?

Answer 3

An Amazon EC2 Dedicated Host is a physical server fully dedicated for your use, so you can help address corporate compliance requirements. Amazon EC2 Dedicated Hosts allow you to use your eligible software licenses from vendors such as Microsoft and Oracle on Amazon EC2, so that you get the flexibility and cost effectiveness of using your own licenses, but with the resiliency, simplicity and elasticity of AWS

Question 4

What is AWS CodeCommit?

Answer 4

AWS CodeCommit is a fully-managed source control service that hosts secure Git-based repositories. It makes it easy for teams to collaborate on code in a secure and highly scalable ecosystem.

CodeCommit eliminates the need to operate your own source control system or worry about scaling its infrastructure. You can use CodeCommit to securely store anything from source code to binaries, and it works seamlessly with your existing Git tools.

Question 5

What is Amazon CloudFront?

Answer 5

Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds, all within a developer-friendly environment.

Question 6

What is AWS Outposts?

Answer 6

AWS Outposts is a fully managed service that offers the same AWS infrastructure, AWS services, APIs, and tools to virtually any datacenter, co-location space, or on-premises facility for a truly consistent hybrid experience. With AWS Outposts you can extend your VPC into the on-premises data center.

Question 7

Wat does Amazon Connect do?

Answer 7

Amazon Connect provides a seamless omnichannel experience through a single unified contact center for voice, chat, and task management.

Question 8

What does Direct Connect do?

Answer 8

Direct Connect is used for creating a low-latency private connection to an on-premises data center but it cannot be used to extend the VPC.

An AWS Direct Connect connection is a private, dedicated link to AWS. As it does not use the internet, performance is consistent.

Question 9

What does Amazon WorkSpaces do?

Answer 9

Amazon WorkSpaces is a managed, secure Desktop-as-a-Service (DaaS) solution.

Question 10

For what purpose would a Cloud Practitioner access AWS Artifact?

Answer 10

Gain access to AWS security and compliance documents.

Question 11

What are AWS Identity and Access Management (IAM) access keys used for?

Answer 11

Access keys are long-term credentials for an IAM user or the AWS account root user. You can use access keys to sign programmatic requests to the AWS CLI or AWS API (directly or using the AWS SDK).

Question 12

What is AWS Cost Explorer?

Answer 12

AWS Cost Explorer has an easy-to-use interface that lets you visualize, understand, and manage your AWS costs and usage over time. AWS Cost Explorer provides you with a set of default reports that you can use as the starting place for your analysis. From there, use the filtering and grouping capabilities to dive deeper into your cost and usage data and generate custom insights.

Question 13

What does AWS Budgets do?

Answer 13

AWS Budgets allows you to set custom budgets to track your cost and usage from the simplest to the most complex use cases.
With AWS Budgets, you can choose to be alerted by email or SNS notification when actual or forecasted cost and usage exceed your budget threshold, or when your actual RI and Savings Plans’ utilization or coverage drops below your desired threshold.

Question 14

What does Amazon Inspector do?

Answer 14

Amazon Inspector is an automated security assessment service that helps improve the security and compliance of applications deployed on AWS

Question 15

What does AWS Organizations do?

Answer 15

AWS Organizations allows you to organize accounts, create accounts programmatically, and leverage consolidated billing.

Question 16

What does AWS Batch do?

Answer 16

AWS Batch enables developers, scientists, and engineers to easily and efficiently run hundreds of thousands of batch computing jobs on AWS.

Question 17

What does AWS Elastic Beanstalk do?

Answer 17

AWS Elastic Beanstalk is an easy-to-use service for deploying and scaling web applications and services developed with Java, .NET, PHP, Node.js, Python, Ruby, Go, and Docker on familiar servers such as Apache, Nginx, Passenger, and IIS

Question 18

What does AWS Macie do?

Answer 18

Amazon Macie is a fully managed data security and data privacy service that uses machine learning and pattern matching to discover and protect your sensitive data in AWS. Amazon Macie automates the discovery of sensitive data at scale and lowers the cost of protecting your data.

Macie automatically provides an inventory of Amazon S3 buckets including a list of unencrypted buckets, publicly accessible buckets, and buckets shared with AWS accounts outside those you have defined in AWS Organizations.

Then, Macie applies machine learning and pattern matching techniques to the buckets you select to identify and alert you to sensitive data, such as personally identifiable information (PII).

Question 19

What is AWS Partner Solutions?

Answer 19

Partner Solutions are built by Amazon Web Services (AWS) solutions architects and partners to help you deploy popular technologies on AWS, based on AWS best practices for security and high availability. These accelerators reduce hundreds of manual procedures into just a few steps, so you can build your production environment quickly and start using it immediately.

Each Quick Start includes AWS CloudFormation templates that automate the deployment and a guide that discusses the architecture and provides step-by-step deployment instructions.

Question 20

What is the difference between Amazon EC2 and Amazon S3?

Answer 20

The difference between Amazon EC2 and Amazon S3 is easy to understand: Amazon EC2 is a cloud compute service, while Amazon S3 is a storage service.

Question 21

Which AWS-managed service can be used to process vast amounts of data using a hosted Hadoop framework?

Answer 21

Amazon EMR (Elastic MapReduce) is the AWS-managed service that can be used to process vast amounts of data using a hosted Hadoop framework. EMR provides a cloud-based platform to run big data frameworks such as Apache Hadoop, Apache Spark, Apache Hive, Apache HBase, and more. It simplifies the process of setting up, configuring, and managing clusters for processing and analyzing large amounts of data.

Question 22

AWS Shield?

Answer 22

AWS Shield is a managed Distributed Denial of Service (DDoS) protection service that safeguards applications running on AWS. AWS Shield provides always-on detection and automatic inline mitigations that minimize application downtime and latency, so there is no need to engage AWS Support to benefit from DDoS protection.

Question 23

On-Demand in AWS?

Answer 23

“On-Demand” refers to a pricing model for computing resources where you pay for the compute capacity you consume with no upfront costs or long-term commitments. With On-Demand pricing, you simply pay for the compute capacity on an hourly or per-second basis, depending on the instance type, with no minimum usage requirements.

Question 24

Amazon EC2 Spot Instances?

Answer 24

Amazon EC2 Spot Instances let you take advantage of unused EC2 capacity in the AWS cloud. Spot Instances are available at up to a 90% discount compared to On-Demand prices.

The downside is that if capacity becomes temporarily unavailable, your instances may be terminated.

Question 25

Amazon QuickSight?

Answer 25

Amazon QuickSight is a scalable, serverless, embeddable, machine learning-powered business intelligence (BI) service built for the cloud.

QuickSight lets you easily create and publish interactive BI dashboards that include Machine Learning-powered insights.

QuickSight dashboards can be accessed from any device, and seamlessly embedded into your applications, portals, and websites.

Question 26

AWS Cost and Usage report?

Answer 26

The AWS Cost & Usage Report lists AWS usage for each service category used by an account and its IAM users in hourly or daily line items, as well as any tags that you have activated for cost allocation purposes.

Question 27

AWS Storage Gateway?

Answer 27

AWS Storage Gateway is a hybrid cloud storage service that gives you on-premises access to virtually unlimited cloud storage. Customers use Storage Gateway to simplify storage management and reduce costs for key hybrid cloud storage use cases.

Question 28

AWS OpsWorks?

Answer 28

AWS OpsWorks is a configuration management service that provides managed instances of Chef and Puppet. Chef and Puppet are automation platforms that allow you to use code to automate the configurations of your servers.

OpsWorks lets you use Chef and Puppet to automate how servers are configured, deployed, and managed across your Amazon EC2 instances or on-premises compute environments,

Question 29

AWS Systems Manager?

Answer 29

AWS Systems Manager gives you visibility and control of your infrastructure on AWS. Systems Manager provides a unified user interface so you can view operational data from multiple AWS services and allows you to automate operational tasks across your AWS resources.

Question 30

AWS CloudHSM?

Answer 30

The AWS CloudHSM service helps you meet corporate, contractual, and regulatory compliance requirements for data security by using dedicated Hardware Security Module (HSM) instances within the AWS cloud. AWS CloudHSM enables you to easily generate and use your own encryption keys on the AWS Cloud.
CloudHSM is a service that is used to securely store and manage encryption keys.

Question 31

Amazon SES?

Answer 31

Amazon SES is specifically designed to help users send transactional emails, marketing messages, and other types of content to their customers. It provides a reliable and cost-effective way for businesses to communicate with their customer base through emails, which is precisely what the e-commerce company needs for sending transactional emails like order confirmations and password resets.

Question 32

AWS Personal Health Dashboard?

Answer 32

AWS Personal Health Dashboard provides alerts and remediation guidance when AWS is experiencing events that may impact you. While the Service Health Dashboard displays the general status of AWS services, Personal Health Dashboard gives you a personalized view into the performance and availability of the AWS services underlying your AWS resources.

The dashboard displays relevant and timely information to help you manage events in progress, and provides proactive notification to help you plan for scheduled activities. With Personal Health Dashboard, alerts are triggered by changes in the health of AWS resources, giving you event visibility, and guidance to help quickly diagnose and resolve issues.

Question 33

What is the function of Amazon EC2 Auto Scaling?

Answer 33

Scales the number of EC2 instances in or out automatically, based on demand.

Question 34

What can a Cloud Practitioner use the AWS Total Cost of Ownership (TCO) Calculator for?

Answer 34

The TCO calculators allow you to estimate the cost savings when using AWS, compared to on-premises, and provide a detailed set of reports that can be used in executive presentations. The calculators also give you the option to modify assumptions that best meet your business needs.

Question 35

AWS Activate for Startups?

Answer 35

AWS Activate for Startups is the correct answer because this program is specially designed to provide startups with the low-cost, easy-to-use infrastructure needed to scale and grow. It offers a host of benefits including AWS credits, training, technical support, and other resources which can aid startups in building their business successfully.

Question 36

What can be used to allow an application running on an Amazon EC2 instance to securely store data in an Amazon S3 bucket without using long-term credentials?

Answer 36

“AWS IAM access key” is incorrect. Access keys are considered long-term credentials and therefore should not be embedded on EC2 instances in code. Using a role is more secure

Question 37

AWS Trusted Advisor?

Answer 37

AWS Trusted Advisor checks security groups for rules that allow unrestricted access (0.0.0.0/0) to specific ports. Unrestricted access increases opportunities for malicious activity (hacking, denial-of-service attacks, loss of data). The ports with highest risk are flagged red, and those with less risk are flagged yellow. Ports flagged green are typically used by applications that require unrestricted access, such as HTTP and SMTP.

Question 38

Snowball?

Answer 38

AWS Snowball Edge is a type of Snowball device with on-board storage and compute power for select AWS capabilities. Snowball Edge can do local processing and edge-computing workloads in addition to transferring data between your local environment and the AWS Cloud.

Each Snowball Edge device can transport data at speeds faster than the internet. This transport is done by shipping the data in the appliances through a regional carrier. The appliances are rugged, complete with E Ink shipping labels.

Question 39

ECS?

Answer 39

is a fully managed container orchestration service that helps organizations easily deploy, manage, and scale containerized applications.

Question 40

AWS Glue?

Answer 40

AWS Glue is a serverless data integration service that makes it easy to discover, prepare, and combine data for analytics, machine learning, and application development. AWS Glue provides all of the capabilities needed for data integration so that you can start analyzing your data and putting it to use in minutes instead of months.

AWS Glue provides both visual and code-based interfaces to make data integration easier. Users can easily find and access data using the AWS Glue Data Catalog. Data engineers and ETL (extract, transform, and load) developers can visually create, run, and monitor ETL workflows with a few clicks in AWS Glue Studio.

Question 41

AWS CloudTrail

Answer 41

AWS CloudTrail is a service that enables governance, compliance, operational auditing, and risk auditing of your AWS account. With CloudTrail, you can log, continuously monitor, and retain account activity related to actions across your AWS infrastructure.

CloudTrail provides event history of your AWS account activity, including actions taken through the AWS Management Console, AWS SDKs, command line tools, and other AWS services.

This event history simplifies security analysis, resource change tracking, and troubleshooting. In addition, you can use CloudTrail to detect unusual activity in your AWS accounts. These capabilities help simplify operational analysis and troubleshooting.

Question 42

What can a Cloud Practitioner do with the AWS Cost Management tools?

Answer 42

• Create budgets and receive notifications if current or forecasted usage exceeds the budgets.
• Visualize AWS costs by day, service, and linked AWS account.

Question 43

Which AWS services offer compute capabilities?

Answer 43

• AWS Lambda
• Amazon ECS