Reverse AWS CCP Flashcards
helps provision resources following AWS best practices
Trusted Advisor
Monitoring tool for applications, performance changes , optimize resource utilization and view operational health
CloudWatch
Assess, audit and evaluate the configurations of AWS resources
AWS Config
security assessment service for EC2 instances
Amazon Inspector
Read only copy databases that are sync’d with the RDS master database used to increase read performance and scalability
Read Replication Configuraiton
provides alerts and remediation guidance when AWS is experiencing issues.
AWS Personal Health Dashboard
Marketplace for vendors / consultants to sell AWS services (professional) or list their custom software(s)
AWS Marketplace
provide users with single sign-on access to all their assigned accounts and applications from one place (usually a website).
AWS Single Sign-On
A service to enable sign-up, sign-in and access control for web and mobile apps.
AWS Cognito
A service to provision users, securely control access to AWS services and resources for users
AWS Identity and Access Management (IAM)
helps ensure you have the correct number of EC2 instances to handle the application load
Auto Scaling
An application deployment that supports automatic failover between availability zones (AZ)
Multi AZ Deployment
distributes traffic (TCP, UDP, TLS) and does not scale resources
Network Load Balancer
Distribute traffic between EC2 instances (can be multiple Azs). Does not scale resources.
Application Load Balancer
AWS is responsible for the security “of” the cloud. The customer is responsible for security “in” the cloud.
AWS Shared Responsibility Model
PaaS, automatically handles the deployment details, capacity provisioning, load balancing, auto-scaling, and application health monitoring
AWS Elastic Beanstalk
IaaS, Model and provision resources needed for an application (Done through a UI tool!)
AWS CloudFormation
Apply permissions to IAM users and roles
Service Control Policies (SCP)
A service to monitor activity on all accounts for governance, compliance, risk, and auditing purposes.
CloudTrail
A service to automate the creation of users and groups and the security policies applied to them
AWS Organizations
Proprietary Amazon relational database
Amazon Aurora
A service for hosting 3rd party relational databases like mySQL, MS SQL Server, Oracle, etc..
Amazon RDS
High performance, multi-region, key-value and document database that is fully managed
Amazon DynamoDB
Datawarehouse DB for large scale data storage and analysis
Amazon RedShift
Yes but customers are excluded from pen testing the AWS infrastructure and AWS Services
Pen tests allowed on AWS?
Protect secrets needed to access applications, services and IT resources
AWS Secrets Manager
Describes key concepts, design principles and architectural best practices
Well-Architected Framework
operational excellence, security, reliability, performance efficiency, and cost optimization
5 pillars of the Well-Architected framework
Service and resource limits in AWS
AWS Service Quotas
Serverless compute engine that will spin up resources based on the containers application specifications.
AWS Fargate
Build, train and deploy machine learning (ML) models
Amazon SageMaker
Publication and subscription service
Amazon Simple Notificaiton Service (SNS)
AWS Well-Architected Framework pillar that recommends maintaining infrastructure as code
Operational Excellence
Browser-based CLI
AWS Systems Manager Session Manager
Amazons DNS
Amazon Route 53
Lets you run code without provisioning or managing servers
AWS Lambda
Lowest-cost storage class and supports long-term retention (Automatically encrypted)
S3 Glacier Deep Archive
Amazon Elastic File System is a network file system for cloud services and can be used on-prem
Amazon EFS
Hybrid cloud storage service that gives you on-premises access to cloud storage (automatically encrypted)
AWS Storage Gateway
Configuration management service for Chef and Puppet
AWS OpsWorks
Automation platforms for automated server configurations
Chef and Puppet
Automate code deployments to EC2 and on-prem instances
AWS CodeDeploy
Enables developers, scientists, and engineers to run batch computing jobs
AWS Batch
Identify the optimal AWS resource configurations using historical metrics (EC2, EBS, Lambda, RAM Size)
AWS Compute Optimizer
Dedicated private connection from a remote network to your VPC (does not use the public internet)
AWS Direct Connect
Privately connect your VPC to supported AWS services (powered by AWS PrivateLink)
VPC (virtual private cloud) Endpoint
A network connection between two VPCs that enables you to route traffic between them privately
VPC Peering
Publishes most up-to-the-minute information on the status and availability of all AWS services
AWS Service Health Dashboard
Amazon Simple Storage Service is an object storage service
S3
Temporary block-level storage for your instance
Instance Store
Block storage service designed for use with Amazon Elastic Compute Cloud (EC2)
Amazon Elastic Block Store (EBS)
Provides the information required to launch an EC2 instance
Amazon Machine Image (AMI)
Lets you visualize, understand, and manage your AWS costs and usage over time
AWS Cost Explorer
Lets you review AWS services and create a cost estimate (before you commit to using AWS
AWS Price Calculator
Contains the most comprehensive cost and usage data
AWS Cost and Usage Reports
Basic, Developer, Business, and Enterprise
AWS support plans
Select AWS services closer to the end users
AWS Local Zones
Cache copies of content for faster access by end users (CloudFront uses these)
AWS Edge Locations
Extend AWS cloud to 5g edge locations
AWS Wavelength
A web service that speeds up content delivery of static and dynamic web pages (via AWS Edge Locations)
AWS CloudFront
Makes it easy for you to create and manage cryptographic keys and control their use
AWS Key Management Service
Enables you to easily generate and use your encryption keys on the AWS Cloud
CloudHSM (Hardware Security Module)
Allows AWS to offer lower pay-as-you-go prices as usage from hundreds of thousands of customers is aggregated in the cloud
Massive economies of scale
Multi-AZ enhances database availability of which DB type?
RDS databases
What policy describes prohibited uses of the web services?
AWS Acceptable Use Policy
Analyze and debug serverless and distributed applications
AWS X-Ray
Capture usage data for real-time insights
Amazon Pinpoint
Is AWS Auto Scaling and IAM free to use?
Yes
Which AWS services offer block-level storage?
EBS and Instance Store
Container management service that supports Docker containers
Elastic Container Service (ECS)
Turn text into lifelike speech
Amazon Polly
Turn speech into text
Amazon Transcribe
Data security and data privacy service that uses machine learning and pattern matching to discover and protect your sensitive data in AWS
Amazon Macie
AWS ETL service
AWS Glue
AWS Directory Service for Microsoft Active Directory
AWS Directory Service
How can IT professionals stop guessing about capacity and increase speed and agility?
Advantages of using the AWS Cloud
What type of security key is a device that you can plug into a USB port on your computer
U2F security keys
Used to store, manage, and deploy Docker container images
Amazon Elastic Container Registry (ECR)
What are the benefits of using AWS Elastic Load Balancing (ELB)?
High availability and fault tolerance
What will help you deploy popular technologies on AWS, based on AWS best practices for security and high availability
AWS Quick Starts References
Does Amazon DynamoDB offer cross-region support?
Yes
Continuous delivery service that enables you to model, visualize, and automate the steps required to release your software
AWS CodePipeline
Fully-managed source control service that hosts secure Git-based repositories
AWS CodeCommit
Does AWS Route 53 use weighted routing policies?
Yes
