1
Q

What is an instance profile?

A

A container for an IAM role that you can use to pass role information to an EC2 instance when the instance starts

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What do manual approval actions in a CodePipeline publish to?

A

An SNS topic

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Can CodeBuild trigger a Lambda function directly?

A

No, you have to use CloudWatch Events

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What does SAML stand for?

A

Security Assertion Markup Language

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What do you need to create in order to provide AWS credentials to the users of your enterprise if your corporate identity store is not SAML compatible?

A

A custom broker, which is going to authenticate the users with your corporate identity store, and then retrieve temporary AWS creds from STS

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What RDS feature (for Microsoft SQL Server) encrypts data before it is written to storage, and automatically decrypts data when the data is read from storage

A

Transparent Data Encryption

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

You have a CLB in front of your EC2 instances. One died, then got manually rebooted, and the health check passed. What do you have to do to attach it back to the ELB?

A

Nothing, the ELB will direct traffic to it after the health check treshold is passed

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Which runtime allow you to pass directly the function code inline to the function resource in a CloudFormation template?
Code:
ZipFile: โ€œXXXโ€

A

Nodejs and Python

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What should you use to install the xray daemon on EC2 instances?

A

A user data script

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Where are event source mapping created when making a lambda function which processes all events in a DynamoDB stream?

A

In Lambda

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Which task placement strategy takes the least amount of configuration?

A

random

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What is the only read consistency available for global secondary indexes?

A

Eventual consistency

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What are the 4 python helper scripts that you can use in CloudFormation?

A

cfn-init
cfn-signal
cfn-get-metadata
cfn-hup

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What CloudFormation helper script is used to signal with a CreationPolicy or WaitCondition, so you can synchronize other resources in the stack when the prerequisite resource or application is ready?

A

cfn-signal

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

What CloudFormation helper script is used to retrieve metadata for a resource or path to a specific key?

A

cfn-get-metadata

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

What CloudFormation helper script is used to check for updates to metadata and execute custom hooks when changes are detected?

A

cfn-hup

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

What CloudFormation helper script is used to retrieve and interpret resource metadata, install packages, create files, and start services?

A

cfn-init

18
Q

What are the two types of event source in Lambda?

A

Poll-based (ex: Kinesis)

Push-based (ex: API Gateway, S3)

19
Q

What is Amazon Pinpoint?

A

A service which simply allows you to engage with your customers across multiple messaging channels

20
Q

Why use AWS Secrets Manager over the Systems Manager Parameter Store to store your secrets for a secured service/database?

A

Because you can configure AWS Secrets Manager to automatically rotate the secrets. It natively knows how to rotate secrets for supported RDS DBs.

21
Q

What is AWS Batch used for?

A

Run hundreds of thousands of batch computing jobs in AWS

22
Q

What are markers used for in SWF?

A

Record events in the workflow execution history for application specific purposes (record custom information to help implement decider logic)

23
Q

What are signals used for in SWF?

A

Inject information into a running workflow execution

24
Q

What are timers used for in SWF?

A

Notify your decider when a certain amount of time has elapsed and does not meet the requirement in this scenario

25
Q

What are tags used for in SWF?

A

Filter the listing of the executions when you use the visibility operations

26
Q

What is Amazon Lightsail?

A

Virtual servers, storage, databases, and networking for a low, predictable price

27
Q

What API allows you to retrieve traces ID and annotations?

A

GetTraceSummaries

28
Q

What does the consolidated billing feature in AWS Organization allows you to do?

A

To consolidate payment for multiple AWS accounts or multiple AISPL accounts

29
Q

What do all organizations in AWS Organizations have?

A

A master account that pays the charges for all the member accounts

30
Q

What does a Cross-Account Lambda Authorizer allows?

A

Enables you to use an AWS Lambda function from a different AWS account as your API authorizer

31
Q

Where should add information about the SQL calls to an RDS DB?

A

Subsegment section of the segment document since you want to trace the downstream call to RDS and not the actual request to your application

32
Q

In front of what can an AWS WAF be installed?

A

CloudFront
API Gateway
ALB

33
Q

What is Amazon GuardDuty?

A

A threat detection service that continuously monitors for malicious activity and unauthorized behavior

34
Q

What is AWS Firewall Manager?

A

A service which simplifies your AWS WAF and AWS Shield Advanced administration and maintenance tasks across multiple accounts and resources

35
Q

What RDS feature allows us to get the percentage of the CPU bandwidth and total memory consumed by each database process in our RDS instance?

A

Enhanced Monitoring in RDS

36
Q

Should you put your core logic in your Lambda function handler?

A

No!

37
Q

What should you use to pass operational parameters to your function?

A

Environment variables

38
Q

Should you use recursive code in your Lambda function?

A

No

39
Q

Where should you put your Lambda function if it needs access to RDS/ElastiCache/other AWS resources?

A

In a VPC

40
Q

What should you set up if your Lambda function needs access to private AWS resources (RDS, ElastiCache, etc.) AND other resources accessible through the Internet?

A

Set up a VPC and make sure NAT works

41
Q

What is the maximum total size of all indexed items in LSI for each partition key value?

A

10 GB