Miscellaneous

Question 1

cAWS Acceptable Use Policy

Answer 1

provides info on prohibited actions on the AWS.

Question 2

AWS Services where users can collect, view, and analyze metrics for every active SNS

Answer 2

Amazon SNS and Amazon CloudWatch

Question 3

AWS CloudTrail

Answer 3

service logging all API calls made in your AWS account, for compliance and auditing

Question 4

Which component of the AWS global infrastructure does Amazon CloudFront use to ensure low-latency delivery?

Answer 4

Edge Locations

• uses a global network of points of presence PoP (edge locations) worldwide.

Question 5

AWS Secrets Manager

Answer 5

store, retrieve, monitor secrets centrally.

ex: database credentials

Question 6

AWS Management Console

Answer 6

used to access and manage AWS through a web-based user interface.

Question 7

AWS Shield

Answer 7

managed Distributed Denial of Service (DDoS) protection service that safeguards applications running on AWS.

Question 8

AWS Trusted Advisor

Answer 8

recommendations/guidance that help you follow AWS best practices; w/ cost optimization, security, performance.

Question 9

CloudWatch

Answer 9

monitoring service, collects metrics, can set billing alarms for your AWS resources

Question 10

AWS Budgets

Answer 10

billing notification when your actual or forecasted costs exceed your budgeted amount

Question 11

Difference between AWS Budgets and Amazon CloudWatch billing alarms?

Answer 11

Amazon CloudWatch billing alarms alert you only when your actual cost exceeds a certain threshold, while AWS Budgets can be configured to alert you when the actual or FORECASTED cost exceeds a certain threshold.

Question 12

3 Cloud Computing Models

Answer 12

IaaS
PaaS
Saas

Question 13

IaaS

Answer 13

Infrastructure as a Service (IaaS) - provides flexibility and management control over your IT resources (EC2 is IaaS)

Question 14

PaaS

Answer 14

Platform as a Service (PaaS) -
manages infrastructure (hardware and operating systems). you focus on the deployment and management of your applications.

Question 15

SaaS

Answer 15

Software as a Service (SaaS) provides you with a completed product that is run and managed by the provider.

Question 16

TAM (Technical Account Manager)

Answer 16

Enterprise customers.
Provides technical expertise of AWS services

Question 17

Infrastructure Event Management (IEM)

Answer 17

Enterprise customers.
helps you plan for large-scale events

( such as product or application launches )

Question 18

AWS Cost & Usage Report

Answer 18

most detailed information about your AWS costs and usage.

Question 19

AWS Pricing Calculator

Answer 19

web service, estimate cost for your AWS monthly bill based on your expected (FUTURE) usage

Question 20

AWS Systems Manager

Answer 20

view operational data and automate tasks from multiple AWS services

Question 21

CloudFront

Answer 21

content delivery network (CDN) service that securely delivers data, video, apps TO customers globally with low latency & high speed

Question 22

CloudFormation

Answer 22

allows you to manage your AWS resources as code in text file

Question 23

Amazon Kinesis Video Streams

Answer 23

lets you stream videos from devices TO AWS for analytics in real time.

Question 24

AWS Organizations

Answer 24

helps manage billing and all your AWS accounts;

Question 25

AWS Config

Answer 25

helps AWS customers audit and monitor all resource change

Question 26

AWS Artifact

Answer 26

portal to your AWS agreements, security and compliance reports

Question 27

AWS Certificate Manager

Answer 27

service to manage, and deploy Secure Sockets Layer/Transport Layer Security (SSL/TLS) certificates for use with AWS services

Question 28

AWS Support Concierge

Answer 28

Enterprise Support plan; assist customers w/ billing and account inquiries

Question 29

AWS Customer Service

Answer 29

all aws customers have. they help AWS customers with their billing and account inquiries

Question 30

AWS Operations Support

Answer 30

Enterprise Support plan; provides operations assessments and analysis to identify gaps across the operations lifecycle, as well as recommendations based on best practices.

Question 31

AWS Health Dashboard

Answer 31

Business Support Plan.

view of the health of AWS services, and alerts when your resources are impacted.

Question 32

Penetration testing

Answer 32

testing a network or web app to find security vulnerabilities (that an attacker could exploit. security related.)

Question 33

Amazon ElastiCache

Answer 33

web service helps deploy, scale in-memory data store or cache in the cloud. improves the performance of web apps.

provide ultrafast and inexpensive access to copies of data

Question 34

AWS Storage Gateway

Answer 34

(bridge) a hybrid storage service that enables your on-premises applications to seamlessly use AWS cloud storage.

Question 35

Amazon EBS volume

Answer 35

Elastic Block Store

storage option; offer consistent and low-latency performance;

** can only be attached to 1 compute resource at a time

Question 36

AWS OpsWorks

Answer 36

service that provides managed instances of Chef and Puppet.

Chef and Puppet are automation platforms, use code to automate the configs of your servers

Question 37

AWS Abuse Team

Answer 37

team can assist you when AWS resources are being used to engage in abusive behavior

Question 37

AWS Abuse Team

Answer 37

team can assist you when AWS resources are being used in abusive behavior

Question 38

Amazon Simple Queue Service (SQS)

Answer 38

message queuing service that enables message communication between components of an application.

• enables you to DECOUPLE (build loosely-coupled) and scale microservices

Question 39

Snowball

Answer 39

petabyte-scale data transport solution that uses secure appliances to transfer large amounts of data into and out of the AWS cloud.
w/ built-in computing capabilities that allow to process data locally

Question 40

Amazon VPC

Answer 40

Virtual Private Cloud (Amazon VPC)
Non-managed AWS service you provision an isolated section of the AWS Cloud where you launch AWS resources in a virtual network.

Question 41

AWS Cost Explorer

Answer 41

tool to visualize your costs and usage.
forecasts your future costs based on your PAST usage

Question 42

Edge locations

Answer 42

used by CloudFront to cache and distribute content to your global customers with low latency.

Question 43

Amazon Inspector

Answer 43

security service that helps you improve / test the security and compliance of your apps on AWS.

Question 44

Amazon Aurora

Answer 44

MySQL and PostgreSQL-compatible relational database built for the cloud. (automatically replicate data across Availability Zones.)e

Question 45

Amazon Athena

Answer 45

query service to analyze data in Amazon S3 using SQL. (like Amazon Redshift Spectrum)

Question 46

Auto Scaling

Answer 46

automatically replaces unhealthy nodes and adjusts capacity to maintain app performance

Question 47

What service does AWS provide to help protect AWS Customers from attacks?

Answer 47

Amazon Route 53, Amazon CloudFront, Elastic Load Balancing, and AWS WAF. These services integrate with AWS Shield

Question 48

AWS Shield

Answer 48

managed DDoS protection service that provides always-on detection and automatic inline mitigations to safeguard web applications running on AWS.

Question 49

Cloud9

Answer 49

cloud based IDE

Question 50

Which cloud computing model is EC2?

Answer 50

IaaS

Question 51

APN consulting partners

Answer 51

firms that help customers design, architect, build their workloads and apps on AWS.

Question 52

AWS CLI

Answer 52

control multiple AWS services from the command line & scripts

Question 53

Route 53

Answer 53

DNS (Domain Name System) config/management.
can perform health checks on Amazon EC2 instances
managing global application traffic

Question 54

Elasticity

Answer 54

scale the resources dynamically, by adding and removing resources.

ability to scale up or down when needed.

Question 55

Scalability

Answer 55

adding resources, either making hardware larger (scaling vertically) or adding additional nodes (scaling horizontally).

Question 56

TCO

Answer 56

Total Cost of Ownership (TCO) financial metric to compare costs of a product

Question 57

AWS NACL

Answer 57

Network Access Control Lists

used to check the network accessibility of your EC2 instances

Question 58

Multi-Region Active-Active architecture

Answer 58

your workload is deployed to, and actively serving traffic from, multiple AWS Regions

Question 59

Multi-Region Active-Passive architecture

Answer 59

your workload is deployed to two AWS Regions

Question 60

Savings Plans are available for which AWS compute services? (2)

Answer 60

Lambda and EC2

Question 61

AWS Beanstalk

Answer 61

easy-to-use service for deploying and scaling web apps w/ code

Question 62

AWS Transit Gateway

Answer 62

simplifies how customers interconnect all of their VPC

Question 63

AWS Service Catalog

Answer 63

create and manage IT services for AWS

Question 64

AWS SDK

Answer 64

use AWS services in your apps with API using your programming language

Question 65

Amazon (EMR)

Answer 65

Elastic MapReduce (AWS-Managed Service)

process large amounts of data sets

Question 66

High availability

Answer 66

eliminating single points of failure.

• achieved by deploying your app in multiple Availability Zones in a single Region
• A system is highly available when it can withstand the failure components, such as hard disks, servers, and network links.

Question 67

AWS X-Ray

Answer 67

helps you troubleshoot your app. ex: performance related stuff

Question 68

AWS CodePipeline

Answer 68

service that helps you automate your pipelines

Question 69

Amazon ECR

Answer 69

Elastic Container Registry

container registry offering hosting to deploy app images and artifacts.

Question 70

hypervisor

Answer 70

protect the physical hardware, storage

Question 71

Patch Manager

Answer 71

automates the process of patching Windows and Linux managed instances

Question 72

Fault tolerance

Answer 72

enables a system to continue operating properly in the event of the failure

Question 73

Amazon Redshift

Answer 73

data warehouse service (unlike a database service like Dynamo), a warehouse service is for analytical queries rather than transactional queries

Question 74

Security groups

Answer 74

-for Amazon EC2 instances, controlling both inbound and outbound traffic at the instance level

Question 75

Application Load Balancer

Answer 75

best for load balancing of HTTP(S) traffic.

Question 76

AWS Direct Connect

Answer 76

establish a dedicated network connection from on-premises to AWS

Question 77

Amazon Machine Image

Answer 77

template that contains a software configuration

Question 78

Savings Plans

Answer 78

offers low prices on EC2, Lambda, and Fargate

Question 79

Amazon RDS Read Replicas

Answer 79

provide enhanced performance for database instances

Question 80

Which AWS offerings are serverless services?

Answer 80

Lambda & DynamoDB (fully managed)

Question 81

AWS Well-Architected Framework

Answer 81

scaling horizontally

Question 82

tightly-coupled

Answer 82

monolithic architectures run as a single service

Question 83

loosely-coupled

Answer 83

microservice architecture. independently run services; components don’t develop on each other.

Question 84

tightly-coupled

Answer 84

monolithic architecture. all processes run as a single service

Question 85

3 AWS services that can help you build loosely-coupled applications?

Answer 85

SQS, SNS and EventBridge(CloudWatch Events)

Question 86

AWS ELB

Answer 86

Elastic Load Balancing .

Used to distribute traffic automatically to, for example: Amazon EC2 instances, Lambda functions….. etc

Question 87

tags

Answer 87

key-value pairs that allow you to track usage and spending into groups

Question 88

Greatest impact on cost

Answer 88

Compute, Storage and Data transfer OUT

Question 89

Amazon Lightsail

Answer 89

• low-cost Virtual Private Server (VPS) in the cloud
  -easiest way to launch and manage a site built on WordPress, etc.

Question 90

AWS Resource Groups

Answer 90

Managing of all AWS resources as a group.

ex: different environments: development, testing, and production, Resource Groups for each environment to view and manage your resources

Question 91

AWS CodeBuild

Answer 91

service that lets you compile and test your code.

Question 92

AWS CodeCommit

Answer 92

used to store and version source code

Question 93

AWS CodeDeploy

Answer 93

used to deploy application code to Amazon EC2, AWS Fargate, AWS Lambda etc

Question 94

AWS CodePipeline

Answer 94

automates committing code ( to AWS CodeCommit) to deploying it (with AWS CodeDeploy)

Question 95

Chat access to AWS Support Engineers is available at which tiers?

Answer 95

Business & Enterprise

Question 96

AWS Global Accelerator

Answer 96

improves the availability and performance of the applications for your global users

Question 97

AWS KMS

Answer 97

AWS Key Management Service

Lets you create, manage, and control cryptographic keys across your apps

Question 98

Amazon Macie

Answer 98

Security service, uses machine learning to protect sensitive data in AWS

Question 99

Amazon Redshift Spectrum

Answer 99

run SQL queries in Amazon S3 (like Athena)

Question 100

Amazon Comprehend

Answer 100

a Natural Language Processing (NLP) service that uses machine learning to find meaning in text

Question 101

AWS CloudHSM

Answer 101

Hardware Security Module (HSM) that enables you to generate your own encryption keys

Question 102

Business Support plan

Answer 102

24x7 access to technical support

Question 103

AWS WAF

Answer 103

firewall that protect web apps from attacks. you configure rules that BLOCK TRAFFIC based on conditions

Question 104

Amazon CodeGuru

Answer 104

provides recommendations to improve code quality

Question 105

Amazon EFS

Answer 105

Amazon Elastic File System

designed for high availability and durability storing data redundantly across multiple Availability Zones

provides scalable, elastic file storage; use with AWS Cloud services and on-premises resources

Question 106

seven design principles for security in the cloud:

Answer 106

1. Implement a strong identity foundation
2. Enable traceability
3. Apply security at all layers
   4.Automate security best practices
   5.Protect data in transit and at rest
4. Keep people away from data
   7.Prepare for security events

Question 107

Amazon ECS launch types (2):

Answer 107

Fargate launch type (serverless, and you have less control)
EC2 launch type (server-based, you have more control).

Question 108

Inherited Controls

Answer 108

Physical and Environmental controls (Controls which a customer fully inherits from AWS.)

Question 109

Primary storage service used by Amazon RDS database instances?

Answer 109

EBS (Elastic Block Store)

Question 110

AWS Cognito

Answer 110

lets you add user sign-up, sign-in, and access control to your apps

Question 111

Amazon SES

Answer 111

Amazon Simple Email Service.
-cloud-based email sending service designed to help digital marketers and developers send marketing, notification, and transactional emails.

Question 112

EC2 instance billing

Answer 112

instances billed one second increments, minimum of 1 minute.

Question 113

What is the primary storage service used by Amazon RDS database instances?

Answer 113

(Amazon EBS) Amazon Elastic Block Store volumes for database storage.

Question 114

Based on the AWS Shared Responsibility Model, which of the following are the sole responsibility of AWS?

Answer 114

Hardware maintenance
Creating hypervisors

Question 115

AWS ACM

Answer 115

AWS Certificate Manager
service that lets you manage, SSL/TLS certificates for use with AWS services

Question 116

Amazon Cloud Directory

Answer 116

directory service to manage your aws resources such as users, groups, locations, devices, and policies

Question 117

Which AWS services or features support data replication across AWS Regions?

Answer 117

Amazon S3(Cross-Region Replication) and Amazon RDS (read replicas across Regions)

Question 118

Which Amazon EC2 pricing model adjusts based on supply and demand of EC2 instances

Answer 118

Spot Instance

Question 119

Savings Plans

Answer 119

flexibility to use the instance configurations that best meet your needs, instead of making a commitment to a specific instance configuration

Question 120

AWS Professional Services

Answer 120

team of experts that helps customers realize their desired business outcomes when using AWS

Question 121

Reserved Instance types?

Answer 121

Standard or Convertible (can be changed)

Question 122

In Amazon RDS databases AWS is responsible for:

Answer 122

1- Managing the underlying infrastructure
2- Managing the operating system.
3- Database setup.
4- Patching and backups.

Question 123

EBS Pricing based on?

Answer 123

Volumes and Snapshots

Question 124

Why are Serverless Architectures more economical than Server-based Architectures?

Answer 124

Serverless architectures can reduce costs because you do not have to manage or pay for underutilized servers, or provision redundant infrastructure to implement high availability.

Question 125

Amazon Connect

Answer 125

cloud-based customer contact center solution.

Question 126

Amazon DynamoDB

Answer 126

(AWS Managed Service) A NoSQL database. non-relational db. uses a key-valuesto store and retrieve data. does NOT do complex queries

Question 127

Parallelize tasks

Answer 127

use a load balancer to distribute the incoming requests across multiple instances

Question 128

Adjusting compute capacity dynamically to reduce cost is an implementation of which AWS cloud best practice?

Answer 128

Implement elasticity, meaning they can instantly grow ( to maintain performance) or shrink ( to reduce costs).

Question 129

Adjusting compute capacity dynamically to reduce cost is an implementation of which AWS cloud best practice?

Answer 129

Implement elasticity, meaning they can instantly grow ( to maintain performance) or shrink ( to reduce costs).

Question 130

AWS-Managed Service

Answer 130

AWS Lambda,
Amazon RDS,
Amazon Redshift,
Amazon CloudFront,
Amazon S3,
DyanmoDB,
AWS EMR.

Question 131

AWS Managed Services (AMS) service

Answer 131

operates AWS on behalf of enterprise customers and partners

Question 132

The principle “design for failure and nothing will fail” is very important when designing your AWS Cloud architecture. Which of the following would help adhere to this principle?

Answer 132

Elastic Load Balancing
Availability Zones

Question 133

Which S3 storage class is best for data with unpredictable access patterns?

Answer 133

S3 Intelligent-Tiering

Question 134

AWS Organizations has five main benefits:

Answer 134

1) Centrally manage access polices across multiple AWS accounts.
2) Automate AWS account creation and management.
3) Control access to AWS services.
4) Consolidate billing across multiple AWS accounts.
5) Configure AWS services across multiple accounts.

Question 135

Six Pillars of the AWS Well-Architected Framework:

Answer 135

1- Operational Excellence (ability to run and monitor systems to deliver business value and to continually improve supporting processes and procedure)
2- Security (protect information, systems, and assets)
3- Reliability (system to recover from infrastructure or service disruptions)
4- Performance Efficiency ( ability to use computing resources efficiently to meet system requirements)
5- Cost Optimization
6- Sustainability

Question 136

Which AWS Support Plans gives you 24/7 access to Cloud Support Engineers via email, chat or phone?

Answer 136

Enterprise and Business

Question 137

Federation

Answer 137

can use single sign-on to access your AWS accounts using credentials from your corporate directory

Question 138

IAM Permissions

Answer 138

let you specify the desired access to AWS resources. Permissions are granted to IAM entities (users, user groups, and roles), by default these entities start with no permissions.

Question 139

What does Amazon GuardDuty do to protect AWS accounts and workloads?

Answer 139

continuously monitors for malicious activity and unauthorized behavior to protect your AWS accounts

integrates with Amazon CloudWatch Events and AWS Lambda to allow you to set up automated remediation actions against discovered security issues.

Question 140

services that automatically replicate data across Availability Zones.

Answer 140

S3
Amazon Aurora

Question 140

services that automatically replicate data across Availability Zones.

Answer 140

S3
Amazon Aurora

Question 141

AWS provides three pricing models:

Answer 141

1- Pay-as-you-go (NO upfront fee)
2- Save when you commit
3- Pay less by using more

Question 142

Business Support provides:

Answer 142

full set of Trusted Advisor checks and guidance
AWS Health API i

Question 143

Which plan provides 15 minutes response-time support if your business critical system goes down

Answer 143

Enterprise

Question 144

Which plan provides 1 hour response-time support if your business critical system goes down

Answer 144

Business

Question 145

According to the AWS shared responsibility model, what are the controls that customers fully inherit from AWS?

Answer 145

physical controls and environmental controls.

Question 146

IAM role

Answer 146

IAM identity that you can create in your account that has specific permissions and is assumable by anyone who needs it
* does not have standard long-term credentials

Question 147

What can AWS customers do to benefit from the elasticity of the AWS Cloud?

Answer 147

Serverless Computing provides the highest level of elasticity. Serverless enables you to build modern applications with increased agility and lower total cost of ownership.

Question 148

On-Demand instances

Answer 148

You can increase or decrease your compute capacity depending on the demands of your application and only pay for what you use

Remove the need to buy “safety net” capacity to handle periodic traffic spikes.

good for unpredictable workloads

Question 149

Amazon SNS

Answer 149

fully managed messaging service for both application-to-application (A2A) and application-to-person (A2P)