JAN5 QUESTIONS Flashcards
TO PASS AWS SA FIRS TIME UP!
AUDITS AWS RESOURCES
AWS CONFIG
API MONITORING SERVICE
AWS CLOUD TRAIL
EVERY TIME A RESOURCE A CHANGED, WHERE DOES CONFIG RECORD THE CHANGE?
S3 BUCKET
LOGGING SERVICE THAT RECORDS ALL API CALLS TO ANY AWS SERVICE
AWS CLOUDTRAIL
RECORDS DETAILS OF A CALL, LIKE WHICH USER OR APPLICATION MADE THE CALL, WHEN IT WAS MADE AND WHAT IP ADDRESS IT WAS MADE FROM
AWS CLOUD TRAIL
REPORTS ON WHAT HAS CHANGED
CONFIG
REPORTS ON WHO MADE THE CHANGE, WHEN AND FROM WHICH LOCATION
CLOUDTRAIL
[TERM LINK] RESOURCE AUDIT
CONFIG
[TERM LINK] API CALL AUDIT
CLOUDWATCH
TYPICALLY USED FOR AUDITING AND COMPLIANCE PURPOSES ACROSS ORGANIZATIONS
AWS CONFIG
WHAT ARE THE TWO DELETEONTERMINATION VALUES?
TRUE / FALSE
IF A DELETEONTERMINATION IS SET TO FALSE, WHAT HAPPENS WHEN AN INSTANCE IS TERMINATED?
IT PRESERVES THE ROOT VOLUME AND ENSURES IT REMAINS INTACT
YOUR DB INSTANCE MUST BE IN THE ______ STATE FOR AUTOMATED BACKUPS TO OCCUR
ACTIVE STATE
YOU CREATE A SNAPSHOT AND THEN YOU HAVE TO
COPY IT TO ANOTHER REGION
SNS TOPICS ARE USED FOR
NOTIFICATION PURPOSES
UNDERLYING STORAGE FOR A DB INSTANCE, AUTOMATED BACKUPS, READ REPLICAS, AND SNAPSHOTS ARE ALL ….
DATA THAT IS ENCRYPTED AT REST
_____ CAN BE CONFIGURED TO USE SERVICE AUTO SCALING TO ADJUST ITS DESIRED COUNT UP OR DOWN IN RESPONSE TO CLOUDWATCH ALARMS
AMAZON ECS
_______ FOR LAMBDA FUNCTIONS ENABLE YOU TO DYNAMICALLY PASS SETTINGS TO YOUR FUNCTION CODE AND LIBRARIES, WITHOUT MAKING CHANGES TO YOUR CODE
ENVIRONMENT VARIABLES
YOU CAN USE _____ TO HELP LIBRARIES KNOW WHAT DIRECTORY TO INSTALL FILES IN, WHERE TO STORE OUTPUTS, STORE CONNECTION AND LOGGING SETTINGS, AND MORE
ENVIRONMENT VARIABLES
______POWERED BY AWS PRIVATELINK, AN AWS TECHNOLOGY THAT ENABLES PRIVATE COMMUNICATION BETWEEN AWS SERVICES USING AN ELASTIC NETWORK
VPC ENDPOINTS
WHEN YOU CREATE A TRAIL THAT APPLIES TO ____ _____ CLOUDTRAIL RECORDS EVENTS IN EACH REGIION AND DELIVERS THE CLOUDTRAIL EVENT LOG FILES TO AN S3 BUCKET THAT YOU SPECIFY
ALL REGIONS
IF A REGION IS ADDED AFTER YOU CREATE A TRAIL THAT APPLIES TO ALL REGIONS, THAT NEW REGION IS _____
AUTOMATICALLY INCLUDED AND EVENTS IN THAT REGION IS LOGGED
YOU CAN CONFIGURE AMAZON REDSHIFT TO AUTOMATICALLY _____
COPY SNAPSHOTS TO ANOTHER REGION
BASTION HOSTS NEED TO BE IN A _____ SUBNET
PUBLIC
BASTION HOST PURPOSE IS TO
PROVIDE ACCESS TO A PRIVATE NETWORK FROM AN EXTERNAL NETWORK
VPC ENDPOINT INTERFACES HAVE TO BE
IN THE SAME REGION
______ IS A CLOUD SERVICE SOLUTION THAT MAKES IT EASY TO ESTABLISH A DEDICATED NETWORK CONNECTION FROM YOUR PREMISES TO AWS
AWS DIRECT CONNECT
____ IS A WEB SERVICE THAT YOU CAN USE TO AUTOMATE THE MOVEMENT AND TRANSFORMATION OF DATA
AWS DATA PIPELINE
COMMONLY USED TO TAKE METADATA AND STORE THE METADATA IN DYNAMODB
AWS LAMBDA
YOU CAN USE _____ TO DELEGATE ACCESS TO USERS, APPLICATIONS, OR SERVICES THAT DON’T NORMALLY HAVE ACCESS TO YOUR AWS RESOURCES
IAM ROLES
DATA IN DYNAMODB IS STORED IN _____ FORMAT
JSON
WHEN AN EC2-CLASSIC INSTANCE IS STOPPED, AWS ______ ANY ELASTIC IP ADDRESS THATS ASSOCIATED WITH INSTANCE
DISASSOCIATES
WHEN AN EC2-CLASSIC INSTANCE IS STOPPED, AWS RELEASES THE
PUBLIC AND PRIVATE IPV4 ADDRESSES
IF YOU USE PuTTY TO CONNECT TO YOUR INSTANCE VIA SSH YOU NEED TO VERIFY THAT YOUR PRIVATE KEY (.pem) HAS BEEN CORRECTLY CONVERTED TO
.ppk (PuTTY FORMAT)
EC2 BASIC DATA AVAILABLE AFTER
5 MINS
EC2 DETAILED MONITORING DATA AVAILABLE AFTER
1 MIN
_____ LAUNCHES A NUMBER OF EC2 INSTANCES FOR ITS HADOOP DATA PROCESSING ENGINE, IS MANAGED BY THE CUSTOMER AND IS USED TO PROCESS VAST AMOUNTS OF DATA
EMR
AVAILABLE AMAZON EC2 METRICS
CPU UTILIZATION, NETWORK UTILIZATION, DISK PERFORMANCE AND DISK READ/WRITES
[TERM LINK] OBJECT BASED
S3