Other Advance

Question 1

What is organization Root in aws organization?

Answer 1

A root is a top-level parent node in the hierarchy of an organization that can contain organizational units (OUs) and accounts. The root contains every AWS account in the organization.

Question 2

What is organization unit in aws organization?

Answer 2

An organizational unit (OU) is a logical grouping of accounts in your organization, created using AWS Organizations. OUs enable you to organize your accounts into a hierarchy and make it easier for you to apply management controls.

Question 3

In AWS organization can we have iam users in all member accounts?

Answer 3

it’s recommended to have only one aws account dedicated for uses and use role to access resources on other aws accounts.

Question 4

What is management account in aws organization?

Answer 4

AWS account which create the aws organization is called management account

Question 5

What is Role switch in AWS Organization?

Answer 5

Role switch allow you to switch access between aws accounts with in aws organization

Question 6

Do we need to create role manually to perform role switch in existing aws accounts?

Answer 6

Yes

Question 7

Do we need to create role manually to perform role switch for new aws accounts?

Answer 7

No it will be created by aws

Question 8

What is Resource Access Manager?

Answer 8

RAM share AWS resources between AWS Accounts

Question 9

Can we share all aws services using RAM?

Answer 9

No only supported service can be shared using RAM

Question 10

RAM is a free service?

Answer 10

Yea

Question 11

Does AWS rotate AZ names ?

Answer 11

Yes

Question 12

us-east-1a in my account is same as us-east1a in your account?

Answer 12

No AWS rotate AZ names…accounts will have different AZ location for same name

Question 13

If AWS rotate AZ Names what gives you consistent AZ reference?

Answer 13

AZ ID is consistent across multiple aws accounts

Question 14

In RAM who share the resources?

Answer 14

Owner account

Question 15

In RAM who has full ownership of resources?

Answer 15

Owner account

Question 16

In AWS RAM what are principals?

Answer 16

Principals are the AWS accounts whom we can share the resources

Question 17

If we share resources using RAM to a AWS account inside ORGANIZATION do we need to accept manually?

Answer 17

accepted automatically with in the organization.

Question 18

If we share resources using RAM to a AWS account outside ORGANIZATION do we need to accept manually?

Answer 18

Manual acceptance is required for non organization AWS accounts or sharing is disabled with AWS organization

Question 19

Using RAM can we share VPC With other AWS accounts?

Answer 19

Yes

Question 20

If we Shared VPC using RAM can a VPC owner modify resources created by other aws accounts?

Answer 20

No

Question 21

Who is the owner of resources created in shared VPC using RAM?

Answer 21

Aws accounts which created the resources are the owner

Question 22

If we Shared VPC using RAM can a VPC owner access resources created by other aws accounts?

Answer 22

No

Question 23

In AWS RAM can you see what resources are shared with other AWS accounts?

Answer 23

No

Question 24

In RAM can participate account see resources available in other participants accounts?

Answer 24

No

Question 25

In RAM can RAM owner account see resources launched in participating accounts?

Answer 25

No

Question 26

Where does workspace store identity?

Answer 26

Directory service

Question 27

Which service in aws provide desktop as a service?

Answer 27

Amazon Workspace

Question 28

Amazon workspace is similar to ?

Answer 28

Citrix/Remote Desktop hosted in AWS

Question 29

Amazon workspace support which OS?

Answer 29

Windows & Linux

Question 30

Does AWS workspace support customer image for Remote Desktop?

Answer 30

Yes

Question 31

What are the pricing options available for Workspace?

Answer 31

Hourly & Monthly

Question 32

Do we have any other hidden cost for workspace?

Answer 32

Yes base infrastructure cost

Question 33

What is the requirement to implement workspace?

Answer 33

We need directory service like Simple AD or AD or AD connector for authentication and user management

Question 34

Where does Workspace networking operates?

Answer 34

Workspace use ENI in a VPC

Question 35

How does workspace connect to on premise infrastructure?

Answer 35

Workspace use VPN or Direct Connect to access on premise infrastructure

Question 36

Can windows workplace access FSx and EC2 windows resources?

Answer 36

Yes

Question 37

Where does workspace store data?

Answer 37

EBS

Question 38

How workspace encrypted data at rest?

Answer 38

KMS

Question 39

Where does workspace store user identities?

Answer 39

Directory service

Question 40

Is Work space is HA?

Answer 40

No

Question 41

Does AZ failure affect workspace?

Answer 41

Yes

Question 42

Workspace runs in which VPC?

Answer 42

AWS Managed VPC

Question 43

Customer connect aws workspace using?

Answer 43

Workspace client app

Question 44

Does workspace gets injected to customer managed VPC?

Answer 44

Yes

Question 45

How workspace connect with internet ?

Answer 45

It use NAT Gateway to connect internet

Question 46

What is authentication and streaming gateway in workspace?

Answer 46

It runs workspace in aws managed VPC and validate identity with Directory service and inject workspace to customers managed VPC and stream it to clients using workspace client app