Miscellaneous Flashcards

1
Q

cAWS Acceptable Use Policy

A

provides info on prohibited actions on the AWS.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

AWS Services where users can collect, view, and analyze metrics for every active SNS

A

Amazon SNS and Amazon CloudWatch

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

AWS CloudTrail

A

service logging all API calls made in your AWS account, for compliance and auditing

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Which component of the AWS global infrastructure does Amazon CloudFront use to ensure low-latency delivery?

A

Edge Locations

  • uses a global network of points of presence PoP (edge locations) worldwide.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

AWS Secrets Manager

A

store, retrieve, monitor secrets centrally.

ex: database credentials

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

AWS Management Console

A

used to access and manage AWS through a web-based user interface.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

AWS Shield

A

managed Distributed Denial of Service (DDoS) protection service that safeguards applications running on AWS.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

AWS Trusted Advisor

A

recommendations/guidance that help you follow AWS best practices; w/ cost optimization, security, performance.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

CloudWatch

A

monitoring service, collects metrics, can set billing alarms for your AWS resources

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

AWS Budgets

A

billing notification when your actual or forecasted costs exceed your budgeted amount

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Difference between AWS Budgets and Amazon CloudWatch billing alarms?

A

Amazon CloudWatch billing alarms alert you only when your actual cost exceeds a certain threshold, while AWS Budgets can be configured to alert you when the actual or FORECASTED cost exceeds a certain threshold.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

3 Cloud Computing Models

A

IaaS
PaaS
Saas

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

IaaS

A

Infrastructure as a Service (IaaS) - provides flexibility and management control over your IT resources (EC2 is IaaS)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

PaaS

A

Platform as a Service (PaaS) -
manages infrastructure (hardware and operating systems). you focus on the deployment and management of your applications.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

SaaS

A

Software as a Service (SaaS) provides you with a completed product that is run and managed by the provider.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

TAM (Technical Account Manager)

A

Enterprise customers.
Provides technical expertise of AWS services

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

Infrastructure Event Management (IEM)

A

Enterprise customers.
helps you plan for large-scale events

( such as product or application launches )

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

AWS Cost & Usage Report

A

most detailed information about your AWS costs and usage.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
19
Q

AWS Pricing Calculator

A

web service, estimate cost for your AWS monthly bill based on your expected (FUTURE) usage

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
20
Q

AWS Systems Manager

A

view operational data and automate tasks from multiple AWS services

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
21
Q

CloudFront

A

content delivery network (CDN) service that securely delivers data, video, apps TO customers globally with low latency & high speed

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
22
Q

CloudFormation

A

allows you to manage your AWS resources as code in text file

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
23
Q

Amazon Kinesis Video Streams

A

lets you stream videos from devices TO AWS for analytics in real time.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
24
Q

AWS Organizations

A

helps manage billing and all your AWS accounts;

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
25
Q

AWS Config

A

helps AWS customers audit and monitor all resource change

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
26
Q

AWS Artifact

A

portal to your AWS agreements, security and compliance reports

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
27
Q

AWS Certificate Manager

A

service to manage, and deploy Secure Sockets Layer/Transport Layer Security (SSL/TLS) certificates for use with AWS services

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
28
Q

AWS Support Concierge

A

Enterprise Support plan; assist customers w/ billing and account inquiries

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
29
Q

AWS Customer Service

A

all aws customers have. they help AWS customers with their billing and account inquiries

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
30
Q

AWS Operations Support

A

Enterprise Support plan; provides operations assessments and analysis to identify gaps across the operations lifecycle, as well as recommendations based on best practices.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
31
Q

AWS Health Dashboard

A

Business Support Plan.

view of the health of AWS services, and alerts when your resources are impacted.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
32
Q

Penetration testing

A

testing a network or web app to find security vulnerabilities (that an attacker could exploit. security related.)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
33
Q

Amazon ElastiCache

A

web service helps deploy, scale in-memory data store or cache in the cloud. improves the performance of web apps.

provide ultrafast and inexpensive access to copies of data

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
34
Q

AWS Storage Gateway

A

(bridge) a hybrid storage service that enables your on-premises applications to seamlessly use AWS cloud storage.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
35
Q

Amazon EBS volume

A

Elastic Block Store

storage option; offer consistent and low-latency performance;

** can only be attached to 1 compute resource at a time

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
36
Q

AWS OpsWorks

A

service that provides managed instances of Chef and Puppet.

Chef and Puppet are automation platforms, use code to automate the configs of your servers

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
37
Q

AWS Abuse Team

A

team can assist you when AWS resources are being used to engage in abusive behavior

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
37
Q

AWS Abuse Team

A

team can assist you when AWS resources are being used in abusive behavior

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
38
Q

Amazon Simple Queue Service (SQS)

A

message queuing service that enables message communication between components of an application.

  • enables you to DECOUPLE (build loosely-coupled) and scale microservices
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
39
Q

Snowball

A

petabyte-scale data transport solution that uses secure appliances to transfer large amounts of data into and out of the AWS cloud.
w/ built-in computing capabilities that allow to process data locally

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
40
Q

Amazon VPC

A

Virtual Private Cloud (Amazon VPC)
Non-managed AWS service you provision an isolated section of the AWS Cloud where you launch AWS resources in a virtual network.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
41
Q

AWS Cost Explorer

A

tool to visualize your costs and usage.
forecasts your future costs based on your PAST usage

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
42
Q

Edge locations

A

used by CloudFront to cache and distribute content to your global customers with low latency.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
43
Q

Amazon Inspector

A

security service that helps you improve / test the security and compliance of your apps on AWS.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
44
Q

Amazon Aurora

A

MySQL and PostgreSQL-compatible relational database built for the cloud. (automatically replicate data across Availability Zones.)e

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
45
Q

Amazon Athena

A

query service to analyze data in Amazon S3 using SQL. (like Amazon Redshift Spectrum)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
46
Q

Auto Scaling

A

automatically replaces unhealthy nodes and adjusts capacity to maintain app performance

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
47
Q

What service does AWS provide to help protect AWS Customers from attacks?

A

Amazon Route 53, Amazon CloudFront, Elastic Load Balancing, and AWS WAF. These services integrate with AWS Shield

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
48
Q

AWS Shield

A

managed DDoS protection service that provides always-on detection and automatic inline mitigations to safeguard web applications running on AWS.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
49
Q

Cloud9

A

cloud based IDE

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
50
Q

Which cloud computing model is EC2?

A

IaaS

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
51
Q

APN consulting partners

A

firms that help customers design, architect, build their workloads and apps on AWS.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
52
Q

AWS CLI

A

control multiple AWS services from the command line & scripts

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
53
Q

Route 53

A

DNS (Domain Name System) config/management.
can perform health checks on Amazon EC2 instances
managing global application traffic

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
54
Q

Elasticity

A

scale the resources dynamically, by adding and removing resources.

ability to scale up or down when needed.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
55
Q

Scalability

A

adding resources, either making hardware larger (scaling vertically) or adding additional nodes (scaling horizontally).

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
56
Q

TCO

A

Total Cost of Ownership (TCO) financial metric to compare costs of a product

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
57
Q

AWS NACL

A

Network Access Control Lists

used to check the network accessibility of your EC2 instances

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
58
Q

Multi-Region Active-Active architecture

A

your workload is deployed to, and actively serving traffic from, multiple AWS Regions

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
59
Q

Multi-Region Active-Passive architecture

A

your workload is deployed to two AWS Regions

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
60
Q

Savings Plans are available for which AWS compute services? (2)

A

Lambda and EC2

61
Q

AWS Beanstalk

A

easy-to-use service for deploying and scaling web apps w/ code

62
Q

AWS Transit Gateway

A

simplifies how customers interconnect all of their VPC

63
Q

AWS Service Catalog

A

create and manage IT services for AWS

64
Q

AWS SDK

A

use AWS services in your apps with API using your programming language

65
Q

Amazon (EMR)

A

Elastic MapReduce (AWS-Managed Service)

process large amounts of data sets

66
Q

High availability

A

eliminating single points of failure.

  • achieved by deploying your app in multiple Availability Zones in a single Region
  • A system is highly available when it can withstand the failure components, such as hard disks, servers, and network links.
67
Q

AWS X-Ray

A

helps you troubleshoot your app. ex: performance related stuff

68
Q

AWS CodePipeline

A

service that helps you automate your pipelines

69
Q

Amazon ECR

A

Elastic Container Registry

container registry offering hosting to deploy app images and artifacts.

70
Q

hypervisor

A

protect the physical hardware, storage

71
Q

Patch Manager

A

automates the process of patching Windows and Linux managed instances

72
Q

Fault tolerance

A

enables a system to continue operating properly in the event of the failure

73
Q

Amazon Redshift

A

data warehouse service (unlike a database service like Dynamo), a warehouse service is for analytical queries rather than transactional queries

74
Q

Security groups

A

-for Amazon EC2 instances, controlling both inbound and outbound traffic at the instance level

75
Q

Application Load Balancer

A

best for load balancing of HTTP(S) traffic.

76
Q

AWS Direct Connect

A

establish a dedicated network connection from on-premises to AWS

77
Q

Amazon Machine Image

A

template that contains a software configuration

78
Q

Savings Plans

A

offers low prices on EC2, Lambda, and Fargate

79
Q

Amazon RDS Read Replicas

A

provide enhanced performance for database instances

80
Q

Which AWS offerings are serverless services?

A

Lambda & DynamoDB (fully managed)

81
Q

AWS Well-Architected Framework

A

scaling horizontally

82
Q

tightly-coupled

A

monolithic architectures run as a single service

83
Q

loosely-coupled

A

microservice architecture. independently run services; components don’t develop on each other.

84
Q

tightly-coupled

A

monolithic architecture. all processes run as a single service

85
Q

3 AWS services that can help you build loosely-coupled applications?

A

SQS, SNS and EventBridge(CloudWatch Events)

86
Q

AWS ELB

A

Elastic Load Balancing .

Used to distribute traffic automatically to, for example: Amazon EC2 instances, Lambda functions….. etc

87
Q

tags

A

key-value pairs that allow you to track usage and spending into groups

88
Q

Greatest impact on cost

A

Compute, Storage and Data transfer OUT

89
Q

Amazon Lightsail

A
  • low-cost Virtual Private Server (VPS) in the cloud
    -easiest way to launch and manage a site built on WordPress, etc.
90
Q

AWS Resource Groups

A

Managing of all AWS resources as a group.

ex: different environments: development, testing, and production, Resource Groups for each environment to view and manage your resources

91
Q

AWS CodeBuild

A

service that lets you compile and test your code.

92
Q

AWS CodeCommit

A

used to store and version source code

93
Q

AWS CodeDeploy

A

used to deploy application code to Amazon EC2, AWS Fargate, AWS Lambda etc

94
Q

AWS CodePipeline

A

automates committing code ( to AWS CodeCommit) to deploying it (with AWS CodeDeploy)

95
Q

Chat access to AWS Support Engineers is available at which tiers?

A

Business & Enterprise

96
Q

AWS Global Accelerator

A

improves the availability and performance of the applications for your global users

97
Q

AWS KMS

A

AWS Key Management Service

Lets you create, manage, and control cryptographic keys across your apps

98
Q

Amazon Macie

A

Security service, uses machine learning to protect sensitive data in AWS

99
Q

Amazon Redshift Spectrum

A

run SQL queries in Amazon S3 (like Athena)

100
Q

Amazon Comprehend

A

a Natural Language Processing (NLP) service that uses machine learning to find meaning in text

101
Q

AWS CloudHSM

A

Hardware Security Module (HSM) that enables you to generate your own encryption keys

102
Q

Business Support plan

A

24x7 access to technical support

103
Q

AWS WAF

A

firewall that protect web apps from attacks. you configure rules that BLOCK TRAFFIC based on conditions

104
Q

Amazon CodeGuru

A

provides recommendations to improve code quality

105
Q

Amazon EFS

A

Amazon Elastic File System

designed for high availability and durability storing data redundantly across multiple Availability Zones

provides scalable, elastic file storage; use with AWS Cloud services and on-premises resources

106
Q

seven design principles for security in the cloud:

A
  1. Implement a strong identity foundation
  2. Enable traceability
  3. Apply security at all layers
    4.Automate security best practices
    5.Protect data in transit and at rest
  4. Keep people away from data
    7.Prepare for security events
107
Q

Amazon ECS launch types (2):

A

Fargate launch type (serverless, and you have less control)
EC2 launch type (server-based, you have more control).

108
Q

Inherited Controls

A

Physical and Environmental controls (Controls which a customer fully inherits from AWS.)

109
Q

Primary storage service used by Amazon RDS database instances?

A

EBS (Elastic Block Store)

110
Q

AWS Cognito

A

lets you add user sign-up, sign-in, and access control to your apps

111
Q

Amazon SES

A

Amazon Simple Email Service.
-cloud-based email sending service designed to help digital marketers and developers send marketing, notification, and transactional emails.

112
Q

EC2 instance billing

A

instances billed one second increments, minimum of 1 minute.

113
Q

What is the primary storage service used by Amazon RDS database instances?

A

(Amazon EBS) Amazon Elastic Block Store volumes for database storage.

114
Q

Based on the AWS Shared Responsibility Model, which of the following are the sole responsibility of AWS?

A

Hardware maintenance
Creating hypervisors

115
Q

AWS ACM

A

AWS Certificate Manager
service that lets you manage, SSL/TLS certificates for use with AWS services

116
Q

Amazon Cloud Directory

A

directory service to manage your aws resources such as users, groups, locations, devices, and policies

117
Q

Which AWS services or features support data replication across AWS Regions?

A

Amazon S3(Cross-Region Replication) and Amazon RDS (read replicas across Regions)

118
Q

Which Amazon EC2 pricing model adjusts based on supply and demand of EC2 instances

A

Spot Instance

119
Q

Savings Plans

A

flexibility to use the instance configurations that best meet your needs, instead of making a commitment to a specific instance configuration

120
Q

AWS Professional Services

A

team of experts that helps customers realize their desired business outcomes when using AWS

121
Q

Reserved Instance types?

A

Standard or Convertible (can be changed)

122
Q

In Amazon RDS databases AWS is responsible for:

A

1- Managing the underlying infrastructure
2- Managing the operating system.
3- Database setup.
4- Patching and backups.

123
Q

EBS Pricing based on?

A

Volumes and Snapshots

124
Q

Why are Serverless Architectures more economical than Server-based Architectures?

A

Serverless architectures can reduce costs because you do not have to manage or pay for underutilized servers, or provision redundant infrastructure to implement high availability.

125
Q

Amazon Connect

A

cloud-based customer contact center solution.

126
Q

Amazon DynamoDB

A

(AWS Managed Service) A NoSQL database. non-relational db. uses a key-valuesto store and retrieve data. does NOT do complex queries

127
Q

Parallelize tasks

A

use a load balancer to distribute the incoming requests across multiple instances

128
Q

Adjusting compute capacity dynamically to reduce cost is an implementation of which AWS cloud best practice?

A

Implement elasticity, meaning they can instantly grow ( to maintain performance) or shrink ( to reduce costs).

129
Q

Adjusting compute capacity dynamically to reduce cost is an implementation of which AWS cloud best practice?

A

Implement elasticity, meaning they can instantly grow ( to maintain performance) or shrink ( to reduce costs).

130
Q

AWS-Managed Service

A

AWS Lambda,
Amazon RDS,
Amazon Redshift,
Amazon CloudFront,
Amazon S3,
DyanmoDB,
AWS EMR.

131
Q

AWS Managed Services (AMS) service

A

operates AWS on behalf of enterprise customers and partners

132
Q

The principle “design for failure and nothing will fail” is very important when designing your AWS Cloud architecture. Which of the following would help adhere to this principle?

A

Elastic Load Balancing
Availability Zones

133
Q

Which S3 storage class is best for data with unpredictable access patterns?

A

S3 Intelligent-Tiering

134
Q

AWS Organizations has five main benefits:

A

1) Centrally manage access polices across multiple AWS accounts.
2) Automate AWS account creation and management.
3) Control access to AWS services.
4) Consolidate billing across multiple AWS accounts.
5) Configure AWS services across multiple accounts.

135
Q

Six Pillars of the AWS Well-Architected Framework:

A

1- Operational Excellence (ability to run and monitor systems to deliver business value and to continually improve supporting processes and procedure)
2- Security (protect information, systems, and assets)
3- Reliability (system to recover from infrastructure or service disruptions)
4- Performance Efficiency ( ability to use computing resources efficiently to meet system requirements)
5- Cost Optimization
6- Sustainability

136
Q

Which AWS Support Plans gives you 24/7 access to Cloud Support Engineers via email, chat or phone?

A

Enterprise and Business

137
Q

Federation

A

can use single sign-on to access your AWS accounts using credentials from your corporate directory

138
Q

IAM Permissions

A

let you specify the desired access to AWS resources. Permissions are granted to IAM entities (users, user groups, and roles), by default these entities start with no permissions.

139
Q

What does Amazon GuardDuty do to protect AWS accounts and workloads?

A

continuously monitors for malicious activity and unauthorized behavior to protect your AWS accounts

integrates with Amazon CloudWatch Events and AWS Lambda to allow you to set up automated remediation actions against discovered security issues.

140
Q

services that automatically replicate data across Availability Zones.

A

S3
Amazon Aurora

140
Q

services that automatically replicate data across Availability Zones.

A

S3
Amazon Aurora

141
Q

AWS provides three pricing models:

A

1- Pay-as-you-go (NO upfront fee)
2- Save when you commit
3- Pay less by using more

142
Q

Business Support provides:

A

full set of Trusted Advisor checks and guidance
AWS Health API i

143
Q

Which plan provides 15 minutes response-time support if your business critical system goes down

A

Enterprise

144
Q

Which plan provides 1 hour response-time support if your business critical system goes down

A

Business

145
Q

According to the AWS shared responsibility model, what are the controls that customers fully inherit from AWS?

A

physical controls and environmental controls.

146
Q

IAM role

A

IAM identity that you can create in your account that has specific permissions and is assumable by anyone who needs it
* does not have standard long-term credentials

147
Q

What can AWS customers do to benefit from the elasticity of the AWS Cloud?

A

Serverless Computing provides the highest level of elasticity. Serverless enables you to build modern applications with increased agility and lower total cost of ownership.

148
Q

On-Demand instances

A

You can increase or decrease your compute capacity depending on the demands of your application and only pay for what you use

Remove the need to buy “safety net” capacity to handle periodic traffic spikes.

good for unpredictable workloads

149
Q

Amazon SNS

A

fully managed messaging service for both application-to-application (A2A) and application-to-person (A2P)