Misc Flashcards
What is Microsoft VSS?
Microsoft Volume Shadow Copy Service, is a Microsoft Windows Server feature that takes snapshots of volumes that can be used for restoring logical unit numbers and individual files or for data mining.
Is there a downside to snapshots?
If the master gets corrupted, all the subsequent snapshots are not usable.
What is Amazon Elastic Inference?
Allows you to attach low-cost GPU-powered acceleration to Amazon EC2 and Sagemaker instances or Amazon ECS tasks, to reduce the cost of running deep learning inference by up to 75%.
What is an S3 access point?
Access points are named network endpoints that are attached to buckets that you can use to perform S3 object operations, such as GetObject and PutObject.
Each access point has distinct permissions and network controls that S3 applies for any request that is made through that access point.
How small a backup window can be and is there a risk of no backups taken if the window is too small?
The smallest backup window allowed is 1 hour. AWS Backup will start the backup within the window, but it does not need to complete within the window. Thus there is no risk in a small window.
How does Continuous Backup work?
Continually backing up the database to a secure location on your behalf.
You do not have to manage anything for the backups to happen once you enable it.
Does the Organizations level functionality for AWS Backup have to be managed from the Organizations Master Account?
Currently this has to be setup from the Organization management account.
How do I create custom IAM role in AWS Backup?
First having AWS Backup create a default role on your behalf and using the managed policies that are attached to that default role as a reference for the permissions that are required in the custom role you create to pass to AWS Backup.
You should see two managed policies attached to the default role, one for backups and one for restores.
arn: aws:iam::aws:policy/service-role/AWSBackupServiceRolePolicyForBackup
arn: aws:iam::aws:policy/service-role/AWSBackupServiceRolePolicyForRestores
Does AWS Backup guarantees No Reboot to EC2 instances?
AWS Backup does not reboot EC2 instances at any time. When backup calls CreateImage API, NoReboot=True parameter would be passed by default, so EC2 doesn’t shut down the instance before creating the image.
What is PCI-DSS?
Payment Card Industry (PCI) Data Security Standard (DSS).
Applies to entities that store, process, or transmit cardholder data (CHD) or sensitive authentication data (SAD), including merchants, processors, acquirers, issuers, and service providers.
Why is cost of FSx backup more than FSx HDD option?
Amazon FSx backup storage is more expensive than S3 at-rest storage alone for similar reasons as why EBS Snapshots are more expensive than S3 at-rest storage alone - these are fully managed backups (meaning that the service takes care of all the heavylifting of moving data back and forth, organizing data on S3, etc.), they’re file system-consistent, they’re incremental, they provide a short recovery time (RTO) by enabling a quick restore with on-demand loading of data as it is accessed, and most importantly the price comes included with all the S3 requests/activity involved (not just at-rest storage).
What is WORM?
Write once, read many data protection from objects or data being changed.
Does not prevent deletion of data.
How are resources discovered in AWS Backup?
Each time your backup plan runs, it scans your AWS account for all resources that match your resource assignment criteria.
This level of automation allows you to define your backup plan and resource assignment exactly once.
How long does backups survive if the account is deleted or removed?
If you delete the account, the vault and the backups will remain in the account for 90 days until the entire account gets recycled.
What is S3 Glacier Deep Archive?
Archiving long-term backup cycle that might infrequently need to be restored within 12 hours.