Management and Governance

Question 1

A monitoring and management service built for developers, system operators, site reliability engineers (SRE), and IT managers. Collects monitoring and operational data in the form of logs, metrics, and events,

Answer 1

Amazon CloudWatch

Question 2

Monitors your applications and automatically adjusts capacity to maintain steady, predictable performance at the lowest possible cost

Answer 2

AWS Auto Scaling

Question 3

Interactive agent that makes it easy to monitor and interact with your AWS resources in your Slack channels and Amazon Chime chat rooms

Answer 3

AWS Chatbot

Question 4

Recommends optimal AWS resources for your workloads to reduce costs and improve performance by using machine learning to analyze historical utilization metrics. Helps you choose optimal configurations for three types of AWS resources: Amazon EC2 instances, Amazon EBS volumes, and AWS Lambda functions,
based on your utilization data

Answer 4

AWS Compute Optimizer

Question 5

Automates the set-up of a baseline environment, or landing zone, that is a secure, well-architected multi-account AWS environment. It configures AWS management and security services based on established best practices in a secure, compliant, multi-account environment.

Answer 5

AWS Control Tower

Question 6

Gives developers and systems administrators an easy way to create and manage a collection of related AWS resources, provisioning and updating them in an orderly and predictable fashion. You can also use the sample templates or create your own templates to describe your AWS resource

Answer 6

AWS CloudFormation

After the AWS resources are deployed, you can modify and update them in a controlled and predictable way, in effect applying version control to your AWS infrastructure the same way you do with your software. You can also visualize your templates as diagrams and edit them using a drag-and-drop interface with the AWS CloudFormation Designer

Question 7

A web service that records AWS API calls for your account and delivers log files to you. The recorded information includes the identity of the API caller, the time of the API call, the source IP address of the API caller, the request parameters, and the response elements returned by the AWS service

Answer 7

AWS CloudTrail

Question 8

A fully managed service that provides you with an AWS resource inventory, configuration history, and configuration change notifications to enable security and governance.

Answer 8

AWS Config

Config Rules feature enables you to create rules that automatically check the configuration of AWS resources recorded by AWS Config

Use case: discover existing and deleted AWS resources, determine your overall compliance against rules, and dive into configuration details of a resource at any point in time. These capabilities enable compliance auditing, security analysis, resource change tracking, and troubleshooting.

Question 9

Offers a guided way of sizing, configuring, and deploying AWS resources for third-party applications such as Microsoft SQL Server Always On and HANA based SAP systems, without the need to manually identify and provision individual AWS resources.

Answer 9

AWS Launch Wizard

Use case: Provides an estimated cost of deployment, and lets you modify your resources to instantly view an updated cost assessment. Once you approve the AWS resources, Launch Wizard automatically provisions and configures the selected resources to create a fully-functioning, production-ready application. AWS Launch Wizard also creates CloudFormation templates that can serve as a baseline to accelerate subsequent deployments.

Question 10

Centrally manage and govern your environment as you grow and scale your AWS resources.

Answer 10

AWS Organizations

Use case: programmatically create new AWS accounts and allocate resources, group accounts to organize your workflows, apply policies to accounts or groups for governance, and simplify billing by using a single payment method for all of your accounts.

Question 11

Configuration management service that provides managed instances of Chef and Puppet

Answer 11

AWS OpsWorks

Chef and Puppet: automation platforms that allow you to use code to automate the configurations of your servers

Question 12

First fully managed delivery service for container and serverless applications. Connect and coordinate all the different tools needed for infrastructure provisioning, code deployments, monitoring, and updates.

Answer 12

AWS Proton

USE CASE: giving platform teams the tools they need to manage this complexity and enforce consistent standards while making it easy for developers to deploy their code using containers and serverless technologies

Question 13

Allows organizations to create and manage catalogs of IT services that are approved for use on AWS. Centrally manage commonly deployed IT services and helps you achieve consistent governance and meet your compliance requirements, while enabling users to quickly deploy only the approved IT services they need.

Answer 13

AWS Service Catalog

Question 14

Gives you visibility and control of your infrastructure on AWS

Answer 14

AWS Systems Manager

USE CASE: you can group resources, like Amazon EC2 instances, Amazon S3 buckets, or Amazon RDS instances, by application, view operational data for monitoring and troubleshooting, and take action on your groups of resources.

Question 15

AWS Systems Manager tool:

Lets you create a logical group of resources associated with a particular workload such as different layers of an application stack, or production versus development environments.

Answer 15

Resource groups

Question 16

AWS Systems Manager tool:

Displays operational data that the AWS Systems Manager automatically aggregates for each resource group

Answer 16

Insights Dashboard

Question 17

AWS Systems Manager tool:

Provides a simple way of automating common administrative tasks like remotely executing shell scripts or PowerShell commands, installing software updates, or making changes to the configuration of OS, software, EC2 and instances and servers in your on-premises data center

Answer 17

Run Command

Question 18

AWS Systems Manager tool:

Helps you define and maintain consistent OS configurations such as firewall settings and anti-malware definitions to comply with your policies

Answer 18

State Manager

Question 19

AWS Systems Manager tool:

Helps you collect and query configuration and inventory information about your instances and the software installed on them

Answer 19

Inventory

Question 20

AWS Systems Manager tool:

Lets you define a recurring window of time to run administrative and maintenance tasks across your instances.

Answer 20

Maintenance Window

Question 21

AWS Systems Manager tool:

Helps you select and deploy operating system and software patches automatically across large groups of instances.

Answer 21

Patch Manager

Question 22

AWS Systems Manager tool:

Simplifies common maintenance and deployment tasks, such as updating Amazon Machine Images (AMIs). Use the tool to apply patches, update drivers and agents, or bake applications into your AMI using a streamlined, repeatable, and auditable process.

Answer 22

Automation

Question 23

AWS Systems Manager tool:

Provides an encrypted location to store important administrative information such as passwords and database strings.

Answer 23

Parameter Store

Question 24

AWS Systems Manager tool:

Helps you securely distribute and install software packages, such as software agents. Allows you to centrally store and systematically distribute software packages while you maintain control over versioning

Answer 24

Distributor

Question 25

AWS Systems Manager tool:

Provides a browser-based interactive shell and CLI for managing Windows and Linux EC2 instances, without the need to open inbound ports, manage SSH keys, or use bastion hosts.

Answer 25

Session Manager

Question 26

AWS Systems Manager contains:

Answer 26

• Resource groups
• Insights Dashboard
• Run Command
• State Manager
• Inventory
• Maintenance Window
• Patch Manager:
• Automation
• Parameter Store
• Distributor
• Session Manager

Question 27

An online resource to help you reduce cost, increase performance, and improve security by optimizing your AWS environment. Also provides real-time guidance to help you provision your resources following AWS best practices.

Answer 27

AWS Trusted Advisor

Question 28

Provides alerts and remediation guidance when AWS is experiencing events that might affect you.

Answer 28

AWS Personal Health Dashboard

Question 29

Difference between Service Health Dashboard and Personal Health Dashboard

Answer 29

While the Service Health Dashboard displays the general status of AWS services, Personal Health Dashboard gives you a personalized view into the performance and availability of the AWS services underlying your AWS resources.

Question 30

Provides ongoing management of your AWS infrastructure so you can focus on your applications, helps to reduce your operational overhead and risk.

Answer 30

AWS Managed Services

Question 31

Lets customers view and manage a select set of resources to support incident response while on-the-go

Answer 31

AWS Console Mobile Application

USE CASE: monitor resources through a dedicated dashboard and view configuration details, metrics, and alarms for select AWS services. The Dashboard provides permitted users with a single view a resource’s status, with real-time data on Amazon CloudWatch, Personal Health Dashboard, and AWS Billing and Cost Management.

Question 32

Makes it easier to manage licenses in AWS and on-premises servers from software vendors such as Microsoft, SAP, Oracle, and IBM.

Answer 32

AWS License Manager

USE CASE: create customized licensing rules that emulate the terms of their licensing agreements, and then enforce these rules when an instance of Amazon EC2 gets launched.

Question 33

Review the state of your workloads and compares them to the latest AWS architectural best practices.

Answer 33

AWS Well-Architected Tool