Practitioner Definitions

Question 1

Business, People, Governance, Platform, Security, and Operations

Answer 1

6 core perspective of AWS CAF

Question 2

6 R’s Migration to AWS

Answer 2

Rehosting, Replatforming, Refactoring/Re-Architecting, Repurchasing, Retaining, Retiring

Question 3

Operational, Security, Reliability, Performance, Cost, Sustainability

Answer 3

Well-Architected Framework pillars

Question 4

6 Advantages of cloud computing

Answer 4

1, Trade upfront expense for variable expense
2, Benefit from massive economies of scale
3, Stop guessing capacity
4, Increase speed and agility
5, Stop spending money running and maintaining data center
6, Go global in minutes

Question 5

Amazon CodeWhisperer

Answer 5

Get code recommendations while writing code and identify security issues in your code

Question 6

Amazon Transcribe

Answer 6

Convert speech to text

Question 7

Amazon Comprehend

Answer 7

Discover patterns in Text

Question 8

Amazon Fraud Detector

Answer 8

Identify potentially fraudulent online activities

Question 9

Amazon Lex

Answer 9

Build voice and text chatbots

Question 10

Amazon Polly

Answer 10

Convert text to speech

Question 11

Amazon Rekonition

Answer 11

Allow you to have video and image analysis capabilities in your app.

Question 12

1, General purpose instances
2, Compute optimized instances
3, Memory optimized instances
4, Accelerated computing instances
5, Storage optimized instaces

Answer 12

5 EC2 instance types

Question 13

Provide a balance of compute, memory, and networking resources.

application servers
gaming servers
backend servers for enterprise app
small and medium databases

Answer 13

General purpose instance

Question 14

Ideal for compute-bound applications that benefit from high-performance processors.

Ideal for high-performance web servers, compute-intensive app server, and dedicated gaming servers.

Answer 14

Compute optimized instances

Question 15

Designed to deliver fast performance for workloads that process large datasets in memory.

Answer 15

Memory optimized instances

Question 16

Designed for workloads that require high, sequential read and write access to large datasets on local storage.

Examples of workloads: distributed file systems, data warehousing app and high frequency online transaction processing(OLTP) systems.

Answer 16

Storage optimized instances

Question 17

Accelerated computing instances

Answer 17

Hardware accelerators or coprocessors to perform some functions more efficiently than is possible in software running on CPUs.

Question 18

5 Pricing categories

Answer 18

1, On-Demand
2, Reserved Instances
3, EC2 Instance Savings Plans
4, Spot Instances
5, Dedicated Hosts

Question 19

On-Demand

Answer 19

Ideal for short-term, irregular workloads that cannot be interrupted.

use instances include: developing and testing applications and running applications that have unpredictable usage patterns.

Does not recommended for workloads that > 1yr

Question 20

Reserved Instances

Answer 20

Billing discount applied to the use of On-Demand instances in your account.

Standard reserved instances: know EC2 instance type and size.

Convertible reserved instances: different AZ or different instance types.

Question 21

Savings plans instances

Answer 21

EC2 instance costs when you make an hourly spend commitment to an instance family and region for 1yr or 3yrs.

72% saving compared to On-Demand rates.

Question 22

Spot Instances

Answer 22

Ideal for workload with flexible start and end times, or that can withstand interruption.

90% off compared On-Demand price.

Question 23

Dedicated Hosts

Answer 23

Physical servers with EC2 instance capacity that is fully dedicated to your use

Question 24

Scalability

Answer 24

Involves beginning with only the resources you need and designing your architecture to auto respond to changing demand by scaling out or in.

Question 25

EC2 auto scaling

Answer 25

Enables you to auto add or remove EC2 instances in response to changing app demand. Dynamic scaling - responds to changing demand. Predictive scaling - auto schedules the right number for EC2 instances based on predicted demand.

Question 26

Elastic Load Balancing

Answer 26

Automatically distributes incoming app traffic across multiple resources.

Question 27

Monolithic application

Answer 27

Tightly coupled components. If single component fails, other fail. components include databases, servers, UI, business logic.

Question 28

SNS (Simple Notification Service)

Answer 28

publish/subscribe service can be web servers, email address, lambda functions or several other options

Question 29

Microservices

Answer 29

Loosely coupled components.

Question 30

Two services facilitate microservices application integration

Answer 30

SNS (Simple Notification Service) SQS (Simple Queue Service)

Question 31

SQS (Simple qQueue Service)

Answer 31

Message queuing service. You can send, store, and received messages between software components, without losing messages or requiring other services to be available.

Question 32

Lambda

Answer 32

service that lets you run code without needing to provision or manage servers. Pay only for the compute time that you consume.

Question 33

ECS (Elastic container service)

Answer 33

highly scalable, high performance container management system that enables you to run and scale containerized app on AWS Supports Docker container

Question 34

EKS (Elastic Kubernetes Service)

Answer 34

Fully managed service that you can use to run Kubernetes on AWS

Question 35

Fargate

Answer 35

Serverless compute engine for containers. it works with both Amazon ECS and EKS. Pay only for the resources that are required to run your containers.

Question 36

Four factors to determining the right region for services, data, and app

Answer 36

1, Compliance with data governance and legal requirements 2, Proximity to your customers 3, Available services within a region 4, Pricing

Question 37

AZ (Availability Zone)

Answer 37

single data center or a group of data center within a region.

Question 38

Edge location

Answer 38

a site that ClouFront uses to store cached copies of your content closer to your customers for faster delivery.

Question 39

Elastic Beanstalk

Answer 39

you provide code and configuration setting, and Elastic beanstalk deploys and resources necessary to perform the follow tasks: - adjust capacity - load balancing - auto scaling - app health monitoring

Question 40

CloudFormation

Answer 40

you can treat your infrastructure as code. you can build an environment by writing lines of code instead of using AWS management console. YAML or JSON

Question 41

AWS Outposts

Answer 41

Extend AWS infrastructure and services to different locations including your on-premises data center

Question 42

VPC

Answer 42

Virtual private cloud enables you to provision and isolated section of the AWS Cloud.

Question 43

Subnet

Answer 43

is a section of a VPC that can contain resources such as EC2 instance public subnets - EC2 instances private subnet - Databases

Question 44

Internet Gateway

Answer 44

allow public traffic from the internet to access your VPC

Question 45

Virtual private gateway

Answer 45

to access private resources in a VPC

Question 46

Network ACLs

Answer 46

Virtual firewall that controls inbound and outbound traffic at the SUBNET level Allow all inbound trafic by default Stateless

Question 47

Security Group

Answer 47

Virtual firewall that controls inbound and outbound traffic from an EC2 instance. Deny all inbound traffic by default Stateful

Question 48

Instance stores

Answer 48

Block-level storage volumes behave like physical hard drives temporary block-level storage attached to an EC2 instance and have same lifespan as the instance.

Question 49

EBS

Answer 49

separated block-level storage volumes that you can use with EC2 instances. all data on the attached EBS volume remains available. Store in 1 AZ EBS and EC2 must reside within the same AZ configuration: volume size and type backup by snapshots

Question 50

EBS snapshots

Answer 50

is an incremental backup.

Question 51

S3

Answer 51

service that provides object-level storage 5TB max file size of an object pay only for what you use

Question 52

S3 Standard

Answer 52

- Frequently accessed data - Stores data in a minimum of 3 AZ

Question 53

S3 Standard-IA

Answer 53

- Infrequently accessed data - lower storage price and higher retrieval price - Store minimum of 3 AZ

Question 54

S3 One Zone-IA

Answer 54

- Store in 1 AZ - Lower storage price than S3 standard-IA

Question 55

S3 Intelligent-Tiering

Answer 55

- Ideal for data with unknown changing access patterns - Requires a small monthly monitoring and automation fee per object. - haven't accessed an object for 30 consecutive days. it'll be move to Standard-IA - If access an object in the IA tier, it'll automatically moves to S3 standard

Question 56

S3 Glacier

Answer 56

- Works well for archived data.

Question 57

S3 Outposts

Answer 57

- Makes it easier to retrieve, store, and access data on AWS Outposts

Question 58

File storage

Answer 58

- multiple clients can access data that is stored in shared file folder. compared to block storage and object storage, file storage is ideal for use cases in which a large number of services and resources need to access the same data at the same time.

Question 59

EFS

Answer 59

- Stores in and across Multiple AZ - on-premises servers can access EFS using AWS Direct Connect

Question 60

RDS

Answer 60

Service that enables you to run relational databases in the AWS Cloud. - managed service that automates tasks such as hardware provisioning, database setup, patching, and backups. - RDS database engines offer encryption at rest and encryption in transit.

Question 61

Amazon Aurora

Answer 61

is an enterprise-class relational database. - 5x faster than standard MySQL - Helps reduce database costs by reducing unnecessary (I/O) input/output - ideal for workloads require high availability. replicates 6 copies of data across 3 AZ and continuously back up data.

Question 62

DynamoDB

Answer 62

- serverless - Storing data in a key-value database - auto scales to adjust for changes in capacity.

Question 63

Redshift

Answer 63

Data warehousing service that you can use for big data analytics. - offer ability to collect data from many sources - helps you to understand relationships and trends across your data.

Question 64

DMS

Answer 64

Enables you to migrate relational databases, nonrelational databases, and other types of data stores 3 use cases for DMS - development and test database migrations - database consolidation - continuous replication

Question 65

DocumentDB

Answer 65

is a document database service that supports MongoDB workloads. MongoDB is document database program

Question 66

Neptune

Answer 66

is a Graph database service

Question 67

QLDB

Answer 67

fully managed ledger database that provides a transparent, immutable, and cryptographically verifiable transaction log. - review a complete history of all the changes that have been made to your app data

Question 68

ElastiCache

Answer 68

service that adds caching layers on top of your databases to help improve the read times of common request. - supports two types of data stores: Redis and memcached.

Question 69

managed blockchain

Answer 69

service that you can use to create and manage blockchain networks with open-source frameworks

Question 70

DynamoDB Accelerator

Answer 70

is an in-memory cache for DynamoDB

Question 71

IAM policies

Answer 71

Document that allows or denies permissions to AWS service and resources.

Question 71

IAM

Answer 71

enables you to manage access to AWS services and resources securely.

Question 72

IAM roles

Answer 72

Identity that you can assume to gain temporary access to permissions

Question 72

AWS Organizations

Answer 72

consolidate and manage multiple AWS accounts within a central location. root - parent container for all the accounts in your org.

Question 73

SCPs

Answer 73

Enable you to place restrictions on the AWS services, resources, and individual API action that users and roles in each account can access.

Question 74

OUs

Answer 74

Organizational units easier to manage accounts with similar business or security requirements.

Question 75

Artifact

Answer 75

Service that provides on-demand access to AWS security and compliance reports and select online agreements. - Artifact Agreements - Artifact Reports

Question 76

Customer compliance center

Answer 76

Contains resources to help you learn more about AWS compliance

Question 77

AWS Shield

Answer 77

Service that protects app against DDoS attack standard - free, most common, frequently occurring DDoS Advance - Paid service, provides detailed attack diagnostics.

Question 78

KMS

Answer 78

Key Management service enables you to perform encryption operations through the use of cryptographic keys.

Question 79

WAF

Answer 79

web app firewall lets you monitor network requests that come into your web app. works together with CloudFront and App load balancer.

Question 80

Amazon Inspector

Answer 80

improve the security and compliance of app by running auto security assessments.

Question 81

Amazon GuardDuty

Answer 81

Service that provides intelligent threat detection for your infrastructure and resources.ƒ

Question 82

CloudWatch

Answer 82

web service that enables you to monitor and manage various metrics and configure alarm action based on data from those metrics.

Question 83

CloudTrail

Answer 83

records API calls for your account.

Question 84

CloudTrail Insights

Answer 84

allows CloudTrail to automatically detect unusual API activities in you AWS account

Question 85

Trusted Advisor

Answer 85

web service that inspects your AWS env and provides real-time recommendations in accordance with AWS best practices.

Question 86

Trusted Advisor 5 categories

Answer 86

- cost optimization, - performance - security - fault tolerance - service limits

Question 87

TAM

Answer 87

Technical account manager primary point of contact at AWS Enterprise support level Enterprise support

Question 88

Pricing Calculator

Answer 88

let your explore services and create an estimate for the cost of your use cases.

Question 89

Billing and cost management dashboard

Answer 89

pay your AWS bill, monitor your usage, and analyze and control your costs.

Question 90

Cost Explorer

Answer 90

tool that lets you visualize, understand, and manage your costs and usage over time. - report top 5 cost accruing services.

Question 91

SageMaker

Answer 91

helps you to quickly build, train, and deploy machine learning models

Question 92

Lightsail

Answer 92

Offers low and predictable pricing virtual servers, storage/database options.

Question 93

Elasticache

Answer 93

Caches with in-memory database with high-performance and low latency

Question 94

X-Ray

Answer 94

provides detailed data on requests that your app serves.

Question 95

AWS Glue

Answer 95

is a serverless data integration service that makes it easy for analytics users to discover, prepare, move, and integrate data from multiple sources.

Question 96

AWS Config

Answer 96

helps you record configuration changes to software within EC2 instances in your AWS account and also virtual machines (VMs) or servers in your on-premises environment. The configuration information recorded by AWS Config includes Operating System updates, network configuration, and installed applications.

Question 97

Amazon Macie

Answer 97

 data security service that uses machine learning (ML) and pattern matching to discover and help protect your sensitive data. including PII

Question 98

AWS Transit Gateway

Answer 98

allows you to centralize network connectivity and management, simplifying the process of interconnecting multiple VPCs across different AWS accounts within the same region.

Question 99

VPC peering

Answer 99

connection is a networking connection between two VPCs that enables you to route traffic between them using private IPv4 addresses or IPv6 addresses.

Question 100

AWS control Tower

Answer 100

Provides you with the ability to setup, govern, and manage multiple AWS acounts

Question 101

Amazon WorkSpaces

Question 102

Aws Athena

Answer 102

interactive query service that allows you to conveniently analyze data stored in Amazon Simple Storage Service (S3) by using basic SQL.