Practitioner Definitions Flashcards

1
Q

Business, People, Governance, Platform, Security, and Operations

A

6 core perspective of AWS CAF

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

6 R’s Migration to AWS

A

Rehosting, Replatforming, Refactoring/Re-Architecting, Repurchasing, Retaining, Retiring

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Operational, Security, Reliability, Performance, Cost, Sustainability

A

Well-Architected Framework pillars

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

6 Advantages of cloud computing

A

1, Trade upfront expense for variable expense
2, Benefit from massive economies of scale
3, Stop guessing capacity
4, Increase speed and agility
5, Stop spending money running and maintaining data center
6, Go global in minutes

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Amazon CodeWhisperer

A

Get code recommendations while writing code and identify security issues in your code

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Amazon Transcribe

A

Convert speech to text

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Amazon Comprehend

A

Discover patterns in Text

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Amazon Fraud Detector

A

Identify potentially fraudulent online activities

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Amazon Lex

A

Build voice and text chatbots

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Amazon Polly

A

Convert text to speech

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Amazon Rekonition

A

Allow you to have video and image analysis capabilities in your app.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

1, General purpose instances
2, Compute optimized instances
3, Memory optimized instances
4, Accelerated computing instances
5, Storage optimized instaces

A

5 EC2 instance types

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Provide a balance of compute, memory, and networking resources.

application servers
gaming servers
backend servers for enterprise app
small and medium databases

A

General purpose instance

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Ideal for compute-bound applications that benefit from high-performance processors.

Ideal for high-performance web servers, compute-intensive app server, and dedicated gaming servers.

A

Compute optimized instances

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Designed to deliver fast performance for workloads that process large datasets in memory.

A

Memory optimized instances

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Designed for workloads that require high, sequential read and write access to large datasets on local storage.

Examples of workloads: distributed file systems, data warehousing app and high frequency online transaction processing(OLTP) systems.

A

Storage optimized instances

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

Accelerated computing instances

A

Hardware accelerators or coprocessors to perform some functions more efficiently than is possible in software running on CPUs.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

5 Pricing categories

A

1, On-Demand
2, Reserved Instances
3, EC2 Instance Savings Plans
4, Spot Instances
5, Dedicated Hosts

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
19
Q

On-Demand

A

Ideal for short-term, irregular workloads that cannot be interrupted.

use instances include: developing and testing applications and running applications that have unpredictable usage patterns.

Does not recommended for workloads that > 1yr

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
20
Q

Reserved Instances

A

Billing discount applied to the use of On-Demand instances in your account.

Standard reserved instances: know EC2 instance type and size.

Convertible reserved instances: different AZ or different instance types.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
21
Q

Savings plans instances

A

EC2 instance costs when you make an hourly spend commitment to an instance family and region for 1yr or 3yrs.

72% saving compared to On-Demand rates.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
22
Q

Spot Instances

A

Ideal for workload with flexible start and end times, or that can withstand interruption.

90% off compared On-Demand price.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
23
Q

Dedicated Hosts

A

Physical servers with EC2 instance capacity that is fully dedicated to your use

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
24
Q

Scalability

A

Involves beginning with only the resources you need and designing your architecture to auto respond to changing demand by scaling out or in.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
25
Q

EC2 auto scaling

A

Enables you to auto add or remove EC2 instances in response to changing app demand.

Dynamic scaling - responds to changing demand.

Predictive scaling - auto schedules the right number for EC2 instances based on predicted demand.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
26
Q

Elastic Load Balancing

A

Automatically distributes incoming app traffic across multiple resources.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
27
Q

Monolithic application

A

Tightly coupled components. If single component fails, other fail.

components include databases, servers, UI, business logic.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
28
Q

SNS (Simple Notification Service)

A

publish/subscribe service

can be web servers, email address, lambda functions or several other options

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
29
Q

Microservices

A

Loosely coupled components.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
30
Q

Two services facilitate microservices application integration

A

SNS (Simple Notification Service)
SQS (Simple Queue Service)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
31
Q

SQS (Simple qQueue Service)

A

Message queuing service. You can send, store, and received messages between software components, without losing messages or requiring other services to be available.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
32
Q

Lambda

A

service that lets you run code without needing to provision or manage servers.

Pay only for the compute time that you consume.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
33
Q

ECS (Elastic container service)

A

highly scalable, high performance container management system that enables you to run and scale containerized app on AWS

Supports Docker container

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
34
Q

EKS (Elastic Kubernetes Service)

A

Fully managed service that you can use to run Kubernetes on AWS

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
35
Q

Fargate

A

Serverless compute engine for containers. it works with both Amazon ECS and EKS.

Pay only for the resources that are required to run your containers.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
36
Q

Four factors to determining the right region for services, data, and app

A

1, Compliance with data governance and legal requirements
2, Proximity to your customers
3, Available services within a region
4, Pricing

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
37
Q

AZ (Availability Zone)

A

single data center or a group of data center within a region.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
38
Q

Edge location

A

a site that ClouFront uses to store cached copies of your content closer to your customers for faster delivery.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
39
Q

Elastic Beanstalk

A

you provide code and configuration setting, and Elastic beanstalk deploys and resources necessary to perform the follow tasks:

  • adjust capacity
  • load balancing
  • auto scaling
  • app health monitoring
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
40
Q

CloudFormation

A

you can treat your infrastructure as code. you can build an environment by writing lines of code instead of using AWS management console.

YAML or JSON

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
41
Q

AWS Outposts

A

Extend AWS infrastructure and services to different locations including your on-premises data center

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
42
Q

VPC

A

Virtual private cloud

enables you to provision and isolated section of the AWS Cloud.

43
Q

Subnet

A

is a section of a VPC that can contain resources such as EC2 instance

public subnets - EC2 instances
private subnet - Databases

44
Q

Internet Gateway

A

allow public traffic from the internet to access your VPC

45
Q

Virtual private gateway

A

to access private resources in a VPC

46
Q

Network ACLs

A

Virtual firewall that controls inbound and outbound traffic at the SUBNET level

Allow all inbound trafic by default

Stateless

47
Q

Security Group

A

Virtual firewall that controls inbound and outbound traffic from an EC2 instance.

Deny all inbound traffic by default

Stateful

48
Q

Instance stores

A

Block-level storage volumes behave like physical hard drives

temporary block-level storage attached to an EC2 instance and have same lifespan as the instance.

49
Q

EBS

A

separated block-level storage volumes that you can use with EC2 instances.

all data on the attached EBS volume remains available.

Store in 1 AZ

EBS and EC2 must reside within the same AZ

configuration: volume size and type

backup by snapshots

50
Q

EBS snapshots

A

is an incremental backup.

51
Q

S3

A

service that provides object-level storage

5TB max file size of an object

pay only for what you use

52
Q

S3 Standard

A
  • Frequently accessed data
  • Stores data in a minimum of 3 AZ
53
Q

S3 Standard-IA

A
  • Infrequently accessed data
  • lower storage price and higher retrieval price
  • Store minimum of 3 AZ
54
Q

S3 One Zone-IA

A
  • Store in 1 AZ
  • Lower storage price than S3 standard-IA
55
Q

S3 Intelligent-Tiering

A
  • Ideal for data with unknown changing access patterns
  • Requires a small monthly monitoring and automation fee per object.
  • haven’t accessed an object for 30 consecutive days. it’ll be move to Standard-IA
  • If access an object in the IA tier, it’ll automatically moves to S3 standard
56
Q

S3 Glacier

A
  • Works well for archived data.
57
Q

S3 Outposts

A
  • Makes it easier to retrieve, store, and access data on AWS Outposts
58
Q

File storage

A
  • multiple clients can access data that is stored in shared file folder.

compared to block storage and object storage, file storage is ideal for use cases in which a large number of services and resources need to access the same data at the same time.

59
Q

EFS

A
  • Stores in and across Multiple AZ
  • on-premises servers can access EFS using AWS Direct Connect
60
Q

RDS

A

Service that enables you to run relational databases in the AWS Cloud.

  • managed service that automates tasks such as hardware provisioning, database setup, patching, and backups.
  • RDS database engines offer encryption at rest and encryption in transit.
61
Q

Amazon Aurora

A

is an enterprise-class relational database.

  • 5x faster than standard MySQL
  • Helps reduce database costs by reducing unnecessary (I/O) input/output
  • ideal for workloads require high availability. replicates 6 copies of data across 3 AZ and continuously back up data.
62
Q

DynamoDB

A
  • serverless
  • Storing data in a key-value database
  • auto scales to adjust for changes in capacity.
63
Q

Redshift

A

Data warehousing service that you can use for big data analytics.

  • offer ability to collect data from many sources
  • helps you to understand relationships and trends across your data.
64
Q

DMS

A

Enables you to migrate relational databases, nonrelational databases, and other types of data stores

3 use cases for DMS
- development and test database migrations
- database consolidation
- continuous replication

65
Q

DocumentDB

A

is a document database service that supports MongoDB workloads.

MongoDB is document database program

66
Q

Neptune

A

is a Graph database service

67
Q

QLDB

A

fully managed ledger database that provides a transparent, immutable, and cryptographically verifiable transaction log.

  • review a complete history of all the changes that have been made to your app data
68
Q

ElastiCache

A

service that adds caching layers on top of your databases to help improve the read times of common request.

  • supports two types of data stores: Redis and memcached.
69
Q

managed blockchain

A

service that you can use to create and manage blockchain networks with open-source frameworks

70
Q

DynamoDB Accelerator

A

is an in-memory cache for DynamoDB

71
Q

IAM policies

A

Document that allows or denies permissions to AWS service and resources.

71
Q

IAM

A

enables you to manage access to AWS services and resources securely.

72
Q

IAM roles

A

Identity that you can assume to gain temporary access to permissions

72
Q

AWS Organizations

A

consolidate and manage multiple AWS accounts within a central location.

root - parent container for all the accounts in your org.

73
Q

SCPs

A

Enable you to place restrictions on the AWS services, resources, and individual API action that users and roles in each account can access.

74
Q

OUs

A

Organizational units

easier to manage accounts with similar business or security requirements.

75
Q

Artifact

A

Service that provides on-demand access to AWS security and compliance reports and select online agreements.

  • Artifact Agreements
  • Artifact Reports
76
Q

Customer compliance center

A

Contains resources to help you learn more about AWS compliance

77
Q

AWS Shield

A

Service that protects app against DDoS attack

standard - free, most common, frequently occurring DDoS

Advance - Paid service, provides detailed attack diagnostics.

78
Q

KMS

A

Key Management service

enables you to perform encryption operations through the use of cryptographic keys.

79
Q

WAF

A

web app firewall

lets you monitor network requests that come into your web app.

works together with CloudFront and App load balancer.

80
Q

Amazon Inspector

A

improve the security and compliance of app by running auto security assessments.

81
Q

Amazon GuardDuty

A

Service that provides intelligent threat detection for your infrastructure and resources.ƒ

82
Q

CloudWatch

A

web service that enables you to monitor and manage various metrics and configure alarm action based on data from those metrics.

83
Q

CloudTrail

A

records API calls for your account.

84
Q

CloudTrail Insights

A

allows CloudTrail to automatically detect unusual API activities in you AWS account

85
Q

Trusted Advisor

A

web service that inspects your AWS env and provides real-time recommendations in accordance with AWS best practices.

86
Q

Trusted Advisor 5 categories

A
  • cost optimization,
  • performance
  • security
  • fault tolerance
  • service limits
87
Q

TAM

A

Technical account manager

primary point of contact at AWS

Enterprise support level

Enterprise support

88
Q

Pricing Calculator

A

let your explore services and create an estimate for the cost of your use cases.

89
Q

Billing and cost management dashboard

A

pay your AWS bill, monitor your usage, and analyze and control your costs.

90
Q

Cost Explorer

A

tool that lets you visualize, understand, and manage your costs and usage over time.

  • report top 5 cost accruing services.
91
Q

SageMaker

A

helps you to quickly build, train, and deploy machine learning models

92
Q

Lightsail

A

Offers low and predictable pricing virtual servers, storage/database options.

93
Q

Elasticache

A

Caches with in-memory database with high-performance and low latency

94
Q

X-Ray

A

provides detailed data on requests that your app serves.

95
Q

AWS Glue

A

is a serverless data integration service that makes it easy for analytics users to discover, prepare, move, and integrate data from multiple sources.

96
Q

AWS Config

A

helps you record configuration changes to software within EC2 instances in your AWS account and also virtual machines (VMs) or servers in your on-premises environment. The configuration information recorded by AWS Config includes Operating System updates, network configuration, and installed applications.

97
Q

Amazon Macie

A

data security service that uses machine learning (ML) and pattern matching to discover and help protect your sensitive data.

including PII

98
Q

AWS Transit Gateway

A

allows you to centralize network connectivity and management, simplifying the process of interconnecting multiple VPCs across different AWS accounts within the same region.

99
Q

VPC peering

A

connection is a networking connection between two VPCs that enables you to route traffic between them using private IPv4 addresses or IPv6 addresses.

100
Q

AWS control Tower

A

Provides you with the ability to setup, govern, and manage multiple AWS acounts

101
Q

Amazon WorkSpaces

A
102
Q

Aws Athena

A

interactive query service that allows you to conveniently analyze data stored in Amazon Simple Storage Service (S3) by using basic SQL.