SG-1 Cost, Security, and Identity

Question 1

What is AWS Cost Explorer?

Answer 1

Visualize and manage AWS costs

AWS Cost Explorer helps users understand their spending patterns and optimize costs.

Question 2

What does the AWS Cost and Usage Report provide?

Answer 2

Detailed spreadsheets describing AWS costs

This report includes detailed information on usage and costs associated with AWS services.

Question 3

What functionality does AWS Budgets offer?

Answer 3

Set spending limits and get alerts

Users can track their spending against defined budgets and receive notifications.

Question 4

What are the levels of AWS Support Plans?

Answer 4

Basic, Developer, Business, Enterprise support levels

These plans vary in terms of support response times and available resources.

Question 5

What is the purpose of AWS Service Catalog?

Answer 5

Controls which services can be used in an organization

This allows organizations to manage their service offerings effectively.

Question 6

What are Service Quotas?

Answer 6

Limits on AWS resources (e.g., max EC2 instances)

Service Quotas help manage resource usage and prevent over-provisioning.

Question 7

What is AWS Organizations used for?

Answer 7

Manage multiple AWS accounts centrally

This service simplifies billing and governance across accounts.

Question 8

What does AWS Secrets Manager do?

Answer 8

Securely store and manage API keys and secrets

It helps protect sensitive information from unauthorized access.

Question 9

What is AWS Identity and Access Management (IAM)?

Answer 9

Manage permissions for AWS users and services

IAM allows for fine-grained access control to AWS resources.

Question 10

What are Security Groups in AWS?

Answer 10

Stateful firewall that controls instance-level traffic

Security Groups allow users to define inbound and outbound traffic rules.

Question 11

What is a Network Access Control List (NACL)?

Answer 11

Stateless firewall that controls subnet-level traffic

NACLs provide an additional layer of security at the subnet level.

Question 12

What is the purpose of AWS Shield?

Answer 12

Protects AWS resources from DDoS attacks

AWS Shield offers two levels of protection: Standard and Advanced.

Question 13

What does AWS Web Application Firewall (WAF) protect against?

Answer 13

Protects web applications from common threats

WAF helps mitigate risks from SQL injection and cross-site scripting.

Question 14

What is AWS Artifact?

Answer 14

Download AWS compliance reports

This service provides access to compliance documentation and reports.

Question 15

What does AWS Certificate Manager do?

Answer 15

Create and manage SSL/TLS certificates

It simplifies the process of provisioning and deploying certificates.

Question 16

What is AWS CloudHSM?

Answer 16

Physical device for storing encryption keys

CloudHSM provides a secure environment for key management.

Question 17

What functionality does Amazon Cognito provide?

Answer 17

Provides authentication (e.g., login via Google, Apple)

Cognito enables user sign-up, sign-in, and access control for web and mobile apps.