Missed Questions Flashcards
What options exist for accidental deletion in S3?
Versioning on deletions
What is a predefined security policy?
Determine protocols and ciphers used between load balancer and client
What resource allows creation of subnets, modify IP address ranges, change network configurations, etc?
Virtual Private Cloud
What is the best solution for multiple new employees that need different access?
Use AWS Organizations and service control policies to manage actions and services
What’s the best option for EC2 only needed for 9 months?
Partial Upfront Reserved Instance
What storage class when unsure of access patterns of your data objects?
S3 Intelligent-Tiering
What automatic monitoring is available in 5-minute increments for EC2?
Basic (free and collects metrics at 5-minute intervals)
How to get a CPU dashboard of metrics at 1-minute intervals?
Detailed Monitoring for EC2 instances and CloudWatch for the dashboard
CloudWatch vs CloudTrail
CloudTrail is for logging via API; CloudWatch is for viewing metrics
Linux OS on EC2 - how is it classified and who is responsible for patching?
Guest Operating System; Customer’s Responsibility
What tools to migrate MySQL DB to Amazon RDS?
AWS DMS and MySQL tools
What instances would an Auto Scaling group use?
Spot Instances and On-Demand Instances
What are S3 Bucket Name limitiations?
No uppercase, no underscores, no name duplications anywhere
What component can allow private subnet to connect to internet and make connections highly available?
NAT Gateway
What regional storage option gives ability to store and manage files?
Amazon EFS (Elastic File System)
What pillar is effective running workloads and gaining insight into operations and process improvements for business value?
Operational Excellence
What piller is a workload functioning correctly and consistently?
Reliability
What piller is efficient usage of resources and maintaining efficiency as demands and tech chnages?
Performance Efficiency
What pillar is ensuring security and asset protection?
Security
What pillar is operating systems in a way that delivers business value in most economical way?
Cost Optimization
What service can create hierarchical estimate of costs grouped by sections of the organization’s architecture?
AWS Pricing Calculator
When does DynamoDB encrypt data at rest?
Only when creating a new table structure
Which component allows keeping up with employees, project listings, and tech resources over time?
Entity Lifecycle Tracking
What VPC endpoint focuses only on DynamoDB and Amazon S3?
Gateway type endpoint
Who is responsible for encrypting data at rest for a file sharing server?
The customer
How can you connect VPCs so devices can communicate?
VPC Peering
What is the AWS-provided firewall and who configures it?
It’s a Security Group (acts as a firewall) and the customer configures it
What is an Elastic IP?
Public, static IPv4 address allocated to your account until you release it. It can be rapidly remapped to another instance, but is only for 1 Region.
It incurs a cost whether it is used or not, until released.
What is a key benefit of S3 related to data durability?
Data is automatically distributed across 3 Availability Zones within a Region
Which caching solution routes traffic within AWS resources and also outside AWS using cloud DNS?
Route 53
What compute resources option for a CONSISTENT level of resource usage for 3 years?
Savings Plan model - up to 72% savings compared to On-Demand. Anything beyond the committed amount is processed as On-Demand
What S3 bucket policy can limit access to a specific object?
IP Address Range, Custom Prefix, and AWS Account
What instance type allows changing resource type during the term?
Convertible Reserved Instances - but only when changing to higher or equal value to original instance
What’s the first thing to do when logging in as root user for the first time?
Turn on Mult-factor authentication
