Practitioner Definitions Flashcards

1
Q

Business, People, Governance, Platform, Security, and Operations

A

6 core perspective of AWS CAF

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

6 R’s Migration to AWS

A

Rehosting, Replatforming, Refactoring/Re-Architecting, Repurchasing, Retaining, Retiring

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Operational, Security, Reliability, Performance, Cost, Sustainability

A

Well-Architected Framework pillars

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

6 Advantages of cloud computing

A

1, Trade upfront expense for variable expense
2, Benefit from massive economies of scale
3, Stop guessing capacity
4, Increase speed and agility
5, Stop spending money running and maintaining data center
6, Go global in minutes

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Amazon CodeWhisperer

A

Get code recommendations while writing code and identify security issues in your code

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Amazon Transcribe

A

Convert speech to text

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Amazon Comprehend

A

Discover patterns in Text

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Amazon Fraud Detector

A

Identify potentially fraudulent online activities

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Amazon Lex

A

Build voice and text chatbots

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Amazon Polly

A

Convert text to speech

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Amazon Rekonition

A

Allow you to have video and image analysis capabilities in your app.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

1, General purpose instances
2, Compute optimized instances
3, Memory optimized instances
4, Accelerated computing instances
5, Storage optimized instaces

A

5 EC2 instance types

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Provide a balance of compute, memory, and networking resources.

application servers
gaming servers
backend servers for enterprise app
small and medium databases

A

General purpose instance

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Ideal for compute-bound applications that benefit from high-performance processors.

Ideal for high-performance web servers, compute-intensive app server, and dedicated gaming servers.

A

Compute optimized instances

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Designed to deliver fast performance for workloads that process large datasets in memory.

A

Memory optimized instances

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Designed for workloads that require high, sequential read and write access to large datasets on local storage.

Examples of workloads: distributed file systems, data warehousing app and high frequency online transaction processing(OLTP) systems.

A

Storage optimized instances

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

Accelerated computing instances

A

Hardware accelerators or coprocessors to perform some functions more efficiently than is possible in software running on CPUs.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

5 Pricing categories

A

1, On-Demand
2, Reserved Instances
3, EC2 Instance Savings Plans
4, Spot Instances
5, Dedicated Hosts

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
19
Q

On-Demand

A

Ideal for short-term, irregular workloads that cannot be interrupted.

use instances include: developing and testing applications and running applications that have unpredictable usage patterns.

Does not recommended for workloads that > 1yr

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
20
Q

Reserved Instances

A

Billing discount applied to the use of On-Demand instances in your account.

Standard reserved instances: know EC2 instance type and size.

Convertible reserved instances: different AZ or different instance types.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
21
Q

Savings plans instances

A

EC2 instance costs when you make an hourly spend commitment to an instance family and region for 1yr or 3yrs.

72% saving compared to On-Demand rates.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
22
Q

Spot Instances

A

Ideal for workload with flexible start and end times, or that can withstand interruption.

90% off compared On-Demand price.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
23
Q

Dedicated Hosts

A

Physical servers with EC2 instance capacity that is fully dedicated to your use

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
24
Q

Scalability

A

Involves beginning with only the resources you need and designing your architecture to auto respond to changing demand by scaling out or in.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
25
EC2 auto scaling
Enables you to auto add or remove EC2 instances in response to changing app demand. Dynamic scaling - responds to changing demand. Predictive scaling - auto schedules the right number for EC2 instances based on predicted demand.
26
Elastic Load Balancing
Automatically distributes incoming app traffic across multiple resources.
27
Monolithic application
Tightly coupled components. If single component fails, other fail. components include databases, servers, UI, business logic.
28
SNS (Simple Notification Service)
publish/subscribe service can be web servers, email address, lambda functions or several other options
29
Microservices
Loosely coupled components.
30
Two services facilitate microservices application integration
SNS (Simple Notification Service) SQS (Simple Queue Service)
31
SQS (Simple qQueue Service)
Message queuing service. You can send, store, and received messages between software components, without losing messages or requiring other services to be available.
32
Lambda
service that lets you run code without needing to provision or manage servers. Pay only for the compute time that you consume.
33
ECS (Elastic container service)
highly scalable, high performance container management system that enables you to run and scale containerized app on AWS Supports Docker container
34
EKS (Elastic Kubernetes Service)
Fully managed service that you can use to run Kubernetes on AWS
35
Fargate
Serverless compute engine for containers. it works with both Amazon ECS and EKS. Pay only for the resources that are required to run your containers.
36
Four factors to determining the right region for services, data, and app
1, Compliance with data governance and legal requirements 2, Proximity to your customers 3, Available services within a region 4, Pricing
37
AZ (Availability Zone)
single data center or a group of data center within a region.
38
Edge location
a site that ClouFront uses to store cached copies of your content closer to your customers for faster delivery.
39
Elastic Beanstalk
you provide code and configuration setting, and Elastic beanstalk deploys and resources necessary to perform the follow tasks: - adjust capacity - load balancing - auto scaling - app health monitoring
40
CloudFormation
you can treat your infrastructure as code. you can build an environment by writing lines of code instead of using AWS management console. YAML or JSON
41
AWS Outposts
Extend AWS infrastructure and services to different locations including your on-premises data center
42
VPC
Virtual private cloud enables you to provision and isolated section of the AWS Cloud.
43
Subnet
is a section of a VPC that can contain resources such as EC2 instance public subnets - EC2 instances private subnet - Databases
44
Internet Gateway
allow public traffic from the internet to access your VPC
45
Virtual private gateway
to access private resources in a VPC
46
Network ACLs
Virtual firewall that controls inbound and outbound traffic at the SUBNET level Allow all inbound trafic by default Stateless
47
Security Group
Virtual firewall that controls inbound and outbound traffic from an EC2 instance. Deny all inbound traffic by default Stateful
48
Instance stores
Block-level storage volumes behave like physical hard drives temporary block-level storage attached to an EC2 instance and have same lifespan as the instance.
49
EBS
separated block-level storage volumes that you can use with EC2 instances. all data on the attached EBS volume remains available. Store in 1 AZ EBS and EC2 must reside within the same AZ configuration: volume size and type backup by snapshots
50
EBS snapshots
is an incremental backup.
51
S3
service that provides object-level storage 5TB max file size of an object pay only for what you use
52
S3 Standard
- Frequently accessed data - Stores data in a minimum of 3 AZ
53
S3 Standard-IA
- Infrequently accessed data - lower storage price and higher retrieval price - Store minimum of 3 AZ
54
S3 One Zone-IA
- Store in 1 AZ - Lower storage price than S3 standard-IA
55
S3 Intelligent-Tiering
- Ideal for data with unknown changing access patterns - Requires a small monthly monitoring and automation fee per object. - haven't accessed an object for 30 consecutive days. it'll be move to Standard-IA - If access an object in the IA tier, it'll automatically moves to S3 standard
56
S3 Glacier
- Works well for archived data.
57
S3 Outposts
- Makes it easier to retrieve, store, and access data on AWS Outposts
58
File storage
- multiple clients can access data that is stored in shared file folder. compared to block storage and object storage, file storage is ideal for use cases in which a large number of services and resources need to access the same data at the same time.
59
EFS
- Stores in and across Multiple AZ - on-premises servers can access EFS using AWS Direct Connect
60
RDS
Service that enables you to run relational databases in the AWS Cloud. - managed service that automates tasks such as hardware provisioning, database setup, patching, and backups. - RDS database engines offer encryption at rest and encryption in transit.
61
Amazon Aurora
is an enterprise-class relational database. - 5x faster than standard MySQL - Helps reduce database costs by reducing unnecessary (I/O) input/output - ideal for workloads require high availability. replicates 6 copies of data across 3 AZ and continuously back up data.
62
DynamoDB
- serverless - Storing data in a key-value database - auto scales to adjust for changes in capacity.
63
Redshift
Data warehousing service that you can use for big data analytics. - offer ability to collect data from many sources - helps you to understand relationships and trends across your data.
64
DMS
Enables you to migrate relational databases, nonrelational databases, and other types of data stores 3 use cases for DMS - development and test database migrations - database consolidation - continuous replication
65
DocumentDB
is a document database service that supports MongoDB workloads. MongoDB is document database program
66
Neptune
is a Graph database service
67
QLDB
fully managed ledger database that provides a transparent, immutable, and cryptographically verifiable transaction log. - review a complete history of all the changes that have been made to your app data
68
ElastiCache
service that adds caching layers on top of your databases to help improve the read times of common request. - supports two types of data stores: Redis and memcached.
69
managed blockchain
service that you can use to create and manage blockchain networks with open-source frameworks
70
DynamoDB Accelerator
is an in-memory cache for DynamoDB
71
IAM policies
Document that allows or denies permissions to AWS service and resources.
71
IAM
enables you to manage access to AWS services and resources securely.
72
IAM roles
Identity that you can assume to gain temporary access to permissions
72
AWS Organizations
consolidate and manage multiple AWS accounts within a central location. root - parent container for all the accounts in your org.
73
SCPs
Enable you to place restrictions on the AWS services, resources, and individual API action that users and roles in each account can access.
74
OUs
Organizational units easier to manage accounts with similar business or security requirements.
75
Artifact
Service that provides on-demand access to AWS security and compliance reports and select online agreements. - Artifact Agreements - Artifact Reports
76
Customer compliance center
Contains resources to help you learn more about AWS compliance
77
AWS Shield
Service that protects app against DDoS attack standard - free, most common, frequently occurring DDoS Advance - Paid service, provides detailed attack diagnostics.
78
KMS
Key Management service enables you to perform encryption operations through the use of cryptographic keys.
79
WAF
web app firewall lets you monitor network requests that come into your web app. works together with CloudFront and App load balancer.
80
Amazon Inspector
improve the security and compliance of app by running auto security assessments.
81
Amazon GuardDuty
Service that provides intelligent threat detection for your infrastructure and resources.ƒ
82
CloudWatch
web service that enables you to monitor and manage various metrics and configure alarm action based on data from those metrics.
83
CloudTrail
records API calls for your account.
84
CloudTrail Insights
allows CloudTrail to automatically detect unusual API activities in you AWS account
85
Trusted Advisor
web service that inspects your AWS env and provides real-time recommendations in accordance with AWS best practices.
86
Trusted Advisor 5 categories
- cost optimization, - performance - security - fault tolerance - service limits
87
TAM
Technical account manager primary point of contact at AWS Enterprise support level Enterprise support
88
Pricing Calculator
let your explore services and create an estimate for the cost of your use cases.
89
Billing and cost management dashboard
pay your AWS bill, monitor your usage, and analyze and control your costs.
90
Cost Explorer
tool that lets you visualize, understand, and manage your costs and usage over time. - report top 5 cost accruing services.
91
SageMaker
helps you to quickly build, train, and deploy machine learning models
92
Lightsail
Offers low and predictable pricing virtual servers, storage/database options.
93
Elasticache
Caches with in-memory database with high-performance and low latency
94
X-Ray
provides detailed data on requests that your app serves.
95
AWS Glue
is a serverless data integration service that makes it easy for analytics users to discover, prepare, move, and integrate data from multiple sources.
96
AWS Config
helps you record configuration changes to software within EC2 instances in your AWS account and also virtual machines (VMs) or servers in your on-premises environment. The configuration information recorded by AWS Config includes Operating System updates, network configuration, and installed applications.
97
Amazon Macie
 data security service that uses machine learning (ML) and pattern matching to discover and help protect your sensitive data. including PII
98
AWS Transit Gateway
allows you to centralize network connectivity and management, simplifying the process of interconnecting multiple VPCs across different AWS accounts within the same region.
99
VPC peering
connection is a networking connection between two VPCs that enables you to route traffic between them using private IPv4 addresses or IPv6 addresses.
100
AWS control Tower
Provides you with the ability to setup, govern, and manage multiple AWS acounts
101
Amazon WorkSpaces
102
Aws Athena
interactive query service that allows you to conveniently analyze data stored in Amazon Simple Storage Service (S3) by using basic SQL.