Services

Question 1

Athena

Answer 1

interactive query services that makes it easy to analyze data in S3 using standard SQL. Serverless. Pay only for queries that you run.

Question 2

EMR

Answer 2

Elastic Map Reduce
provides a managed Hadoop framework that makes it easy, fast, and cost-effective to process vast amounts of data across EC2 instances; handles big data use cases, ETL, ML, etc.

Question 3

CloudSearch

Answer 3

managed service that makes it simple to set up, manage, and scale a search solution for your website or applications. Supports 34 languages

Question 4

Elasticsearch Service

Answer 4

deploy, secure, and operate search analytics and visualize data in real-time

Question 5

Kinesis

Answer 5

collect, process, and analyze real-time streaming data so you can get timely insights and react quickly to new information. Ex: video, audio, application logs, website clickstreams, and IoT telemetry data. Four services within it: Firehouse (loading), Data Analytics (analyze), Data Streams (streaming), Video Streams (video streaming…)

Question 6

Redshift

Answer 6

fast, scalable data warehouse that makes it simple and cost-effective to analyze all your data cross your data warehouse and lake. 10x faster performance than other warehouses by using ML, deploy a new warehouse in minutes. 25 cents/hour and scale to $250/terabyte per year (less than 1/10 the cost of other solutions).

Question 7

QuickSight

Answer 7

fast, cloud-powered BI services that helps you deliver insights to everyone in your organization. interactive dashboards, embed into your apps, provide your customers with self-service analytics

Question 8

Data Pipeline

Answer 8

web services that processes and moves data between different AWS compute and storage services (S3, RDS, DynamoDB, and EMR). Fault tolerate and HA>

Question 9

Glue

Answer 9

fully managed ETL service

Question 10

Lake Formation

Answer 10

set up a secure data lake in days.

Question 11

MSK

Answer 11

Managed Streaming for Kafka. fully managed services that makes it easy for you to build and run applications that use Apache Kafka to process streaming data.

Question 12

Step Functions

Answer 12

workflows are made up of a series of step
output of one step acting as input into the next

lets you coordinate multiple AWS services into serverless workflows so you can build and update apps quickly

stitch together services like Lambda and ECS

app dev is simpler using step functions
translates your work flow into machine diagram that is easy to understand, change, and explain to others

Question 13

MQ

Answer 13

managed message broker service for Apache ActiveMQ - makes it easy to set up and operate message brokers in the cloud

Question 14

SQS

Answer 14

Simple Queue Service.
fully managed message queuing services that enables you to decouple and scale microservices, distributed systems, and serverless applications.

Question 15

SNS

Answer 15

Simple Notification Service

used for building and integrating loosely-coupled, distributed applications

highly available, durable, secure, fully managed pub/sub messaging service that enables you to decouple microservices, distributed systems, and serverless applications.

Question 16

SWF

Answer 16

Simple Workflow

web service that makes it easy to coordinate work across distributed application components. SWF enables applications for a range of use cases, including media processing, web application back-ends, business process workflows, and analytics pipelines, to be designed as a coordination of tasks

helps developers build, run, and scale background jobs that have parallel or sequential steps - a “task coordinator” in the cloud

Question 17

Sumerian

Answer 17

lets you create and run virtual reality, augmented reality, and 3D applications quickly and easily

Question 18

Cost Explorer

Answer 18

easy to use interface that lets you visualize, understand, and manage your AWS costs and usage over time.

Question 19

Budgets

Answer 19

gives you the ability to set custom budgets that alert you when your cost or usage exceed (or are forecasted to exceed) your budgeted amount

Question 20

Cost & Usage Report

Answer 20

single location for accessing comprehensive information about your AWS costs and usage

Question 21

Reserved Instance (RI) Reporting

Answer 21

visualize your RI data; how much are you actually using vs. spending with an RI

RI is good for long-term, static requirements as you must lock-in for 1 or 3 years in return for a decent discount

Standard RIs: most significant discount (up to 75% off On-Demand) and are best suited for steady-state usage

Convertible RIs: discount (up to 54% off On-Demand) and the capability to change the attributes of the RI as long as the exchange results in the creation of Reserved Instances of equal or greater value. best suited for steady-state usage

Scheduled RIs: available to launch within the time windows you reserve. This option allows you to match your capacity reservation to a predictable recurring schedule that only requires a fraction of a day, a week, or a month

Question 22

Managed Blockchain

Answer 22

fully managed service

build applications where multiple parties can execute transactions without the need for a trusted, central authority.

use open source frameworks Hyperledger Fabric and Ethereum

Question 23

Alexa for Business

Answer 23

enables orgs and emps to use Alex sto get more work done - their “intelligent assistant”

Question 24

WorkDocs

Answer 24

fully managed secure enterprise storage and sharing services with strong administrative controls and feedback capabilities that improve user productivity

Question 25

WorkMail / Chime

Answer 25

Email / messaging service

Question 26

EC2

Answer 26

managed at a regional level

charge for data EGRESS (out of instance)

Reservations apply

web service that provides secure, resizable compute capacity in the cloud. it is designed to make web scale computing easier for developers. this is your “server instances” called EC2 instances. scale up and down. you’ve got on-demand instances where you “pay as you go”. you also have RIs which provide you a significant discount (UP TO 75%), and Spot instances - allow you to big on spare Amazon EC2 computing capacity

Question 27

Auto Scaling

Answer 27

maintain application availability and allows you to automatically add or remove EC2 instances according to conditions you define

Question 28

Elastic Container Registry

Answer 28

full managed

Docker container registry

makes it easy for developers to store, manage, and deploy Docker container images.

Integrated with ECS (Elastic Container Service). eliminates the need to operate your own container repositories or worry about scaling the underlying infrastructure

Question 29

ECS

Answer 29

Elastic Container Service.
container orchestration service that supports Docker containers and allows you to easily run and scale containerized applications on AWS

container management service that supports Docker containers and allows you to easily run applications on a managed cluster of Amazon EC2 instances

Question 30

LightSail

Answer 30

easiest way to launch and manage a virtual private server with AWS. it includes everything you need: a virtual machine, SSD-based storage, data transfer, DNS management, and a static IP address

Question 31

Batch

Answer 31

run efficiently 100,000s of batch computing jobs on AWS. no need to install and manage batch computing software or server clusters

Question 32

Elastic Beanstalk

Answer 32

upload your code and Beanstalk handles the deployment (provisioning, load balancing, and auto scaling)… service for deploying and scaling web applications and services developed with Java, .NET, PHP, Node.js, Python, Ruby, Go, and Docker on servers like Apache, Nginx, Passenger, and Internet Information Services

Question 33

Fargate

Answer 33

compute engine for ECS that allows you to run containers without having to manage servers or clusters

Question 34

Lambda

Answer 34

lets you run code without provisioning or managing servers

pay only for the compute time you consume; when code isn’t running YOU DONT PAY;

upload your code and Lambda takes care of everything required to run and scale your code with HA

doesn’t require you to make any capacity decisions upfront

Question 35

Serverless Application Repository

Answer 35

deploy code samples, components, and complete applications for common use cases such as web and mobile back-ends, event and data processing, logging, monitoring, IoT, and more - packaged with SAM (serverless Application Model)

Question 36

Storage Gateway

Answer 36

hybrid storage service that enables your onprem apps to seamlessly use AWS cloud storage

Question 37

S3 Glacier

Answer 37

secure, durable, and extremely low cost storage service for data archiving and long-term backup. Designed to deliver 9 “9s” of durability. Store for as little as $0.004 / GB / month. 3 options for access to archives, from a few minutes to several hours

Question 38

FSx for Windows File Server

Answer 38

fully managed native microsoft windows file system; so you can easily move your windows-based applications that require file storage to aws.

Question 39

FSx for Lustre

Answer 39

fully managed file system that is optimized for compute-intensive workloads, such as high performance computing, ML, and media data processing workflows

Question 40

EFS

Answer 40

Elastic File System
file system for Linux-based workloads for use with AWS Cloud services and on-premises resources

This is storage service but not a backup service. You can backup EFS using the AWS Backup service or using EFS-to-EFS backup.

use for highly parallelized, scale-out workloads that require the highest possible throughput to single-threaded, latency-sensitive workloads

lift and shift
big data
web serving and content management
app dev and testing
media/entertainment workflows
database backups
container storage

Question 41

EBS

Answer 41

Elastic Block Store.

“virtual hard disk in the cloud”

provides persistent block storage volumes for use with EC2 instances in the cloud. Each EBS volume is automatically replicated within its AZ to protect you from component failure

pay a low price for only what you provision

Question 42

S3

Answer 42

Simple Storage Service.

object storage service that is SUPER scalable. designed for 11 9’s of durability

doesn’t require you to make any capacity decisions upfront

common use cases: hosting static website + media hosting

managed at a regional level

Question 43

WAF

Answer 43

service protects against common exploits that could compromise application availability, compromise security or consume excessive resources

Web application firewall that helps protect your web apps from common web exploits that could suck

Question 44

SSO

Answer 44

Single Sign On.

centrally manage SSO access to multiple AWS accounts and business applications

you can create SAML (security assertion markup language) 2.0 integrations

Question 45

Shield

Answer 45

managed DDos (distributed denial of service) protection service that safeguards web apps running on AWS

THIS IS FREE (shield standard)

when you use shield standard with CloudFront and Route 53, you receive comprehensive availability protection against all known infrastructure (layer 3 and 4) attacks.

Shield Advanced

Question 46

Secrets Manager

Answer 46

helps you protect secrets needed to access your applications, services and IT resources

Question 47

AWS Organizations

Answer 47

policy-based management for mulitple AWS accounts; create groups, automate account creation, appply and manage policies for those groups.

FREE

Question 48

KMS

Answer 48

Key Management Service

create and manage keys and control the use of encryption across a wide range of AWS services

Question 49

Firewall Manager

Answer 49

security mgt service that makes it easier ot cenrally configure and manage AWS WAF rules across your accounts and applications

Question 50

Directory Service

Answer 50

for Microsoft AD aka “AWS Managed Microsoft AD”

enables your directory-aware workloads and AWS resources to use managed AD in the AWS Cloud

Question 51

CloudHSM

Answer 51

cloud based HSM (hardware security module) that lets you easily generate and use your own encryption keys on AWS clouds

Question 52

Certificate Manager

Answer 52

provision, manage, and deploy Secure Sockets Layer / Transport Layer Security (SSL / TLS) certificates for use with AWS services and your internal connected resources

Question 53

Artifact

Answer 53

go-to, central resource for compliance-related information that matters to you

available in the console, is a self-service audit artifact retrieval portal that provides our customers with on-demand access to AWS’ compliance documentation and AWS agreements

Question 54

Macie

Answer 54

security service tha tuses ML to automatically discover, classify, and protect sensitive data in AWS

Question 55

Inspector

Answer 55

automated security assessment service that helps improve the security and compliance of applications deployed on AWS

assesses for exposure, vulnerabilities, and deviations form best practices

spits out a list of detailed security findings prioritized by level of severity

Question 56

GuardDuty

Answer 56

threat detection service that monitors for malicious behavior

Question 57

IAM

Answer 57

Identity & Access Management

securely control acess to AWS services and resources for your users

manage IAM users and their access > leverage MFA
manage IAM roles and permissions > you can create roles in IAM and manage permiossions to control which operations can be performed by the entity or AWS services (temporary)

manage federated users and their permissions

Question 58

ELB

Answer 58

Elastic Load Balancing

automatically distributes incoming app traffic across multiple targets such as EC2 instances, containers, and IP addresses. it can handle varying load of your app traffic in a single AZ or across multiple

3 types of load balances that all feature the HA automatic scaling and security necessary to make your applications fault tolerant

1) application LB: use for HTTP and HTTPS traffic
2) network LB: use for TCP traffic where extreme performance is required
3) classic LB: intended for apps that were built within the EC2-Classic network

Question 59

CloudMap

Answer 59

discovery service - define custom names for your app resources and it maintains the updated location of these dynamically changing resources

Question 60

AWS Transit Gateway

Answer 60

service that enables customers to connect their VPC and on-premises networks to a single gateway

only create a single connection from the central gateway in to each VPC

a hub that controls how traffic is routed among all the connected networks which act like spokes

Question 61

API Gateway

Answer 61

fully managed service that makes it easy for devleopers to create, publish, maintain, monitor, and secure APIs at any scale

you can create an API that acts as a front door for apps to access data, business logic, or functionality from your back-end services

Question 62

Route 53

Answer 62

a highly available and scalable cloud Domain Name System (DNS) web service. It is designed to give developers and businesses an extremely reliable and cost-effective way to route end users to Internet applications by translating human readable names, such as www.example.com, into the numeric IP addresses, such as 192.0.2.1, that computers use to connect to each other. Amazon Route 53 is fully compliant with IPv6 as well.

services include domain registration, DNS, health checking (availability monitoring) and traffic management

Route 53 routing policies include Simple, Weighted, Latency based, Failover, Geo-location, Geo-Proximity, Multi-Value and Traffic Flow

Question 63

VPC

Answer 63

Virtual Private Cloud

lets you provision a logically isolated section of the AWS cloud where you can launch resources in a vitual network that YOU define

you have complete control over your networking environment, including section of your own IP address range, creation of subnets. you can use IPv4 and IPv6 in you VPC

you can:

1) create a public-facing subject for your web servers that has access to the internet
2) place your backend systems such as data bases or app servers in a private-facing subnet with NO internet access

Question 64

SMS

Answer 64

Server Migration Service

agentless service which makes it easier and faster for you to migrate thousands of on-premises workloads to AWS

automate, schedule, and track incremental replications of live server volumes

Question 65

Snowball vs. Snowmobile

Answer 65

petabyte-scale data transport solution that uses secure appliances to transfer large amounts of data into and out of AWS. 80TB per device. AWS call this a “petabyte-scale data transfer service”.

SnowMOBILE: “Exabyte-scale data transfer service”.you can move 100PB per snowmobile

Question 66

DMS

Answer 66

Database Migration Service

source database remains fully operational during migration, minimizing downtime to apps that rely on the database

migrate your data to and from most widely used commercial and open-source databases

you can use it for homogeneous migrations such as Oracle > Oracle or Oracle or Amazon Aurora

Question 67

Migration Hub

Answer 67

single location to track the progress of application migrations across multiple AWS and partner solutions

Question 68

Well-Architected Tool

Answer 68

helps you review the state of your workloads and compares them to the latest AWS architectural best practices

based on the AWS Well-Architected Framework - developed to help cloud architects build secure, high-performing, resilient, and efficient app infrastructure

Question 69

CloudFront

Answer 69

fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds

CloudFront is integrated with AWS; work swith AWS Shield for DDoS mitigation, S3, ELB, or EC2, and Lambda@Edge

Question 70

Network ACLs

Answer 70

Network Access Control List

operate at the subnet level

an optional layer of security for your VPC that acts as a firewall for controlling traffic in and out of one or more subnets. Works with security groups.

Question 71

OpsWorks

Answer 71

a configuration management service that provides managed instances of Chef and Puppet. With Chef, you use code templates, or cookbooks, to describe the desired configuration of instances or on-premises server

Question 72

Elastic Transcoder

Answer 72

a highly scalable, easy to use and cost-effective way for developers and businesses to convert (or “transcode”) video and audio files from their source format into versions that will playback on devices like smartphones, tablets and PCs

Question 73

DynamoDB

Answer 73

Amazon’s fully managed non-relational database service

Reservations apply

Question 74

Organizations

Answer 74

enables you to create groups of AWS accounts and then centrally manage policies across those accounts. AWS Organizations provides consolidated billing in both feature sets, which allows you set up a single payment method in the organization’s master account and still receive an invoice for individual activity in each member account. Volume pricing discounts can be applied to resources

Question 75

CodeCommit

Answer 75

fully-managed source control service that hosts secure Git-based repositiories. It makes it easy for teams to collaborate on code in a secure and highly scalable ecosystem

Question 76

CodeStar

Answer 76

enables you to quickly develop, build, and deploy applications on AWS.

provides a unified user interface, enabling you to easily manage your software development activities in one place

Question 77

Cloud9

Answer 77

cloud-based integrated development environment (IDE) that lets you write, run, and debug your code with just a browser

Question 78

AWS managed VPN

Answer 78

can be used to quickly connect from an office to an Amazon VPC

(Direct Connect provides high-bandwidth, low-latency connectivity but takes weeks to months to setup (and is much more expensive)

Question 79

ALB

Answer 79

Application Load Balancer (ALB) – layer 7 load balancer that routes connections based on the content of the request

Question 80

NLB

Answer 80

Network Load Balancer (NLB) – layer 4 load balancer that routes connections based on IP protocol data

Question 81

CLB

Answer 81

Classic Load Balancer (CLB) – this is the oldest of the three and provides basic load balancing at both layer 4 and layer 7

Question 82

AWS Storage Gateway

Answer 82

enables hybrid storage between on-premises environments and the AWS Cloud. It provides low-latency performance by caching frequently accessed data on premises, while storing data securely and durably in Amazon cloud storage services.

AWS Storage Gateway supports three storage interfaces: file, volume, and tape

Question 83

AWS Managed Services

Answer 83

manages the daily operations of your AWS infrastructure in alignment with ITIL processes
AWS Managed Services provides a baseline integration with IT Service Management (ITSM) tools such as the ServiceNow platform

provides ongoing management of your AWS infrastructure so you can focus on your applications.

Managed Services currently supports the 20+ services most critical for Enterprises

designed to meet the needs of Enterprises that require stringent SLAs, adherence to corporate compliance, and integration with their systems and ITIL®-based processes

Question 84

Service Catalog

Answer 84

allows organizations to create and manage catalogs of IT services that are approved for use on AWS. These IT services can include everything from virtual machine images, servers, software, and databases to complete multi-tier application architectures

Question 85

Formation

Answer 85

provides a common language for you to describe and provision all the infrastructure resources in your cloud environment.

allows you to use a simple text file to model and provision, in an automated and secure manner, all the resources needed for your applications across all regions and accounts

Question 86

AMI

Answer 86

Amazon Machine Image

Community AMIs– free to use, generally you just select the operating system you want

AWS Marketplace AMIs– pay to use, generally come packaged with additional, licensed software

My AMIs– AMIs that you create yourself

Question 87

ElastiCache

Answer 87

Reservations apply

makes it easy to deploy, operate, and scale an in-memory cache in the cloud. The service improves the performance of web applications by allowing you to retrieve information from fast, managed, in-memory caches, instead of relying entirely on slower disk- based databases.

Question 88

RDS

Answer 88

Relational Database Service

makes it easy to set up, operate, and scale a relational database in the cloud.

cost-efficient and resizable capacity while automating time-consuming administration tasks such as hardware provisioning, database setup, patching and backups.

provides you with six familiar database engines to choose from, including Amazon
Aurora, PostgreSQL, MySQL, MariaDB, Oracle Database, and SQL Server. You can use the AWS Database Migration Service

Question 89

Elastic Transcoder

Answer 89

way for developers and businesses to convert (or “transcode”) media files from their source format into versions that will playback on devices like smartphones, tablets and PCs.

Question 90

Config

Answer 90

assess, audit, and evaluate the configurations of your AWS resources.

continuously monitors and records your AWS resource configurations and allows you to automate the evaluation of recorded configurations against desired configurations.

Question 91

S3 Transfer Acceleration

Answer 91

transfers of files over long distances between your client and an S3 bucket. Transfer Acceleration takes advantage of CloudFront’s globally distributed edge locations

Question 92

NAT Gateway

Answer 92

Network Address Translation

enable instances in a private subject to connect to the internet, but prevent internet from initiating a connection with those instances

BETTER AVAILABILITY AND BANDWIDTH OVER NAT INSTANCES

Question 93

Guard Duty

Answer 93

threat detection and continuous security monitoring for malicious or unauthorized behavior to help you protect your AWS accounts and workloads.

Question 94

Trusted Advisor

Answer 94

online resource to help you reduce cost, increase performance, and improve security by optimizing your AWS environment. Trusted Advisor provides real time guidance to help you provision your resources following AWS best practices. Offers a Service Limits check (in the Performance category) that displays your usage and limits for some aspects of some services

Question 95

Work Spaces

Answer 95

managed desktop computing service running on the AWS cloud

Question 96

Migration Hub

Answer 96

provides a single location to track the progress of application migrations across multiple AWS and partner solutions.

Question 97

Server Migration Service

Answer 97

migrate thousands of on-premises workloads to AWS. AWS SMS allows you to automate, schedule, and track incremental replications of live server volumes, making it easier for you to coordinate large-scale server migrations. Currently, you can migrate virtual machines from VMware vSphere and Windows Hyper-V to AWS using AWS Server Migration Service