Misc Flashcards
What is Microsoft VSS?
Microsoft Volume Shadow Copy Service, is a Microsoft Windows Server feature that takes snapshots of volumes that can be used for restoring logical unit numbers and individual files or for data mining.
Is there a downside to snapshots?
If the master gets corrupted, all the subsequent snapshots are not usable.
What is Amazon Elastic Inference?
Allows you to attach low-cost GPU-powered acceleration to Amazon EC2 and Sagemaker instances or Amazon ECS tasks, to reduce the cost of running deep learning inference by up to 75%.
What is an S3 access point?
Access points are named network endpoints that are attached to buckets that you can use to perform S3 object operations, such as GetObject and PutObject.
Each access point has distinct permissions and network controls that S3 applies for any request that is made through that access point.
How small a backup window can be and is there a risk of no backups taken if the window is too small?
The smallest backup window allowed is 1 hour. AWS Backup will start the backup within the window, but it does not need to complete within the window. Thus there is no risk in a small window.
How does Continuous Backup work?
Continually backing up the database to a secure location on your behalf.
You do not have to manage anything for the backups to happen once you enable it.
Does the Organizations level functionality for AWS Backup have to be managed from the Organizations Master Account?
Currently this has to be setup from the Organization management account.
How do I create custom IAM role in AWS Backup?
First having AWS Backup create a default role on your behalf and using the managed policies that are attached to that default role as a reference for the permissions that are required in the custom role you create to pass to AWS Backup.
You should see two managed policies attached to the default role, one for backups and one for restores.
arn: aws:iam::aws:policy/service-role/AWSBackupServiceRolePolicyForBackup
arn: aws:iam::aws:policy/service-role/AWSBackupServiceRolePolicyForRestores
Does AWS Backup guarantees No Reboot to EC2 instances?
AWS Backup does not reboot EC2 instances at any time. When backup calls CreateImage API, NoReboot=True parameter would be passed by default, so EC2 doesn’t shut down the instance before creating the image.
What is PCI-DSS?
Payment Card Industry (PCI) Data Security Standard (DSS).
Applies to entities that store, process, or transmit cardholder data (CHD) or sensitive authentication data (SAD), including merchants, processors, acquirers, issuers, and service providers.
Why is cost of FSx backup more than FSx HDD option?
Amazon FSx backup storage is more expensive than S3 at-rest storage alone for similar reasons as why EBS Snapshots are more expensive than S3 at-rest storage alone - these are fully managed backups (meaning that the service takes care of all the heavylifting of moving data back and forth, organizing data on S3, etc.), they’re file system-consistent, they’re incremental, they provide a short recovery time (RTO) by enabling a quick restore with on-demand loading of data as it is accessed, and most importantly the price comes included with all the S3 requests/activity involved (not just at-rest storage).
What is WORM?
Write once, read many data protection from objects or data being changed.
Does not prevent deletion of data.
How are resources discovered in AWS Backup?
Each time your backup plan runs, it scans your AWS account for all resources that match your resource assignment criteria.
This level of automation allows you to define your backup plan and resource assignment exactly once.
How long does backups survive if the account is deleted or removed?
If you delete the account, the vault and the backups will remain in the account for 90 days until the entire account gets recycled.
What is S3 Glacier Deep Archive?
Archiving long-term backup cycle that might infrequently need to be restored within 12 hours.
How to delete old EBS snapshots?
AWS Systems Manager > Automation > Execute
What is point-in-time recovery?
Continuous backup at 1 second interval
Reversed
Microsoft Volume Shadow Copy Service, is a Microsoft Windows Server feature that takes snapshots of volumes that can be used for restoring logical unit numbers and individual files or for data mining.
What is Microsoft VSS?
Reversed
If the master gets corrupted, all the subsequent snapshots are not usable.
Is there a downside to snapshots?
Reversed
Allows you to attach low-cost GPU-powered acceleration to Amazon EC2 and Sagemaker instances or Amazon ECS tasks, to reduce the cost of running deep learning inference by up to 75%.
What is Amazon Elastic Inference?
Reversed
Access points are named network endpoints that are attached to buckets that you can use to perform S3 object operations, such as GetObject and PutObject.
Each access point has distinct permissions and network controls that S3 applies for any request that is made through that access point.
What is an S3 access point?
Reversed
The smallest backup window allowed is 1 hour. AWS Backup will start the backup within the window, but it does not need to complete within the window. Thus there is no risk in a small window.
How small a backup window can be and is there a risk of no backups taken if the window is too small?
Reversed
Continually backing up the database to a secure location on your behalf.
You do not have to manage anything for the backups to happen once you enable it.
How does Continuous Backup work?
Reversed
Currently this has to be setup from the Organization management account.
Does the Organizations level functionality for AWS Backup have to be managed from the Organizations Master Account?
Reversed
First having AWS Backup create a default role on your behalf and using the managed policies that are attached to that default role as a reference for the permissions that are required in the custom role you create to pass to AWS Backup.
You should see two managed policies attached to the default role, one for backups and one for restores.
arn: aws:iam::aws:policy/service-role/AWSBackupServiceRolePolicyForBackup
arn: aws:iam::aws:policy/service-role/AWSBackupServiceRolePolicyForRestores
How do I create custom IAM role in AWS Backup?
Reversed
AWS Backup does not reboot EC2 instances at any time. When backup calls CreateImage API, NoReboot=True parameter would be passed by default, so EC2 doesn’t shut down the instance before creating the image.
Does AWS Backup guarantees No Reboot to EC2 instances?
Reversed
Payment Card Industry (PCI) Data Security Standard (DSS).
Applies to entities that store, process, or transmit cardholder data (CHD) or sensitive authentication data (SAD), including merchants, processors, acquirers, issuers, and service providers.
What is PCI-DSS?
Reversed
Amazon FSx backup storage is more expensive than S3 at-rest storage alone for similar reasons as why EBS Snapshots are more expensive than S3 at-rest storage alone - these are fully managed backups (meaning that the service takes care of all the heavylifting of moving data back and forth, organizing data on S3, etc.), they’re file system-consistent, they’re incremental, they provide a short recovery time (RTO) by enabling a quick restore with on-demand loading of data as it is accessed, and most importantly the price comes included with all the S3 requests/activity involved (not just at-rest storage).
Why is cost of FSx backup more than FSx HDD option?
Reversed
Write once, read many data protection from objects or data being changed.
Does not prevent deletion of data.
What is WORM?
Reversed
Each time your backup plan runs, it scans your AWS account for all resources that match your resource assignment criteria.
This level of automation allows you to define your backup plan and resource assignment exactly once.
How are resources discovered in AWS Backup?
Reversed
If you delete the account, the vault and the backups will remain in the account for 90 days until the entire account gets recycled.
How long does backups survive if the account is deleted or removed?
Reversed
Archiving long-term backup cycle that might infrequently need to be restored within 12 hours.
What is S3 Glacier Deep Archive?
Reversed
AWS Systems Manager > Automation > Execute
How to delete old EBS snapshots?
Reversed
Continuous backup at 1 second interval
What is point-in-time recovery?
