SG-1 Cost, Security, and Identity Flashcards
What is AWS Cost Explorer?
Visualize and manage AWS costs
AWS Cost Explorer helps users understand their spending patterns and optimize costs.
What does the AWS Cost and Usage Report provide?
Detailed spreadsheets describing AWS costs
This report includes detailed information on usage and costs associated with AWS services.
What functionality does AWS Budgets offer?
Set spending limits and get alerts
Users can track their spending against defined budgets and receive notifications.
What are the levels of AWS Support Plans?
Basic, Developer, Business, Enterprise support levels
These plans vary in terms of support response times and available resources.
What is the purpose of AWS Service Catalog?
Controls which services can be used in an organization
This allows organizations to manage their service offerings effectively.
What are Service Quotas?
Limits on AWS resources (e.g., max EC2 instances)
Service Quotas help manage resource usage and prevent over-provisioning.
What is AWS Organizations used for?
Manage multiple AWS accounts centrally
This service simplifies billing and governance across accounts.
What does AWS Secrets Manager do?
Securely store and manage API keys and secrets
It helps protect sensitive information from unauthorized access.
What is AWS Identity and Access Management (IAM)?
Manage permissions for AWS users and services
IAM allows for fine-grained access control to AWS resources.
What are Security Groups in AWS?
Stateful firewall that controls instance-level traffic
Security Groups allow users to define inbound and outbound traffic rules.
What is a Network Access Control List (NACL)?
Stateless firewall that controls subnet-level traffic
NACLs provide an additional layer of security at the subnet level.
What is the purpose of AWS Shield?
Protects AWS resources from DDoS attacks
AWS Shield offers two levels of protection: Standard and Advanced.
What does AWS Web Application Firewall (WAF) protect against?
Protects web applications from common threats
WAF helps mitigate risks from SQL injection and cross-site scripting.
What is AWS Artifact?
Download AWS compliance reports
This service provides access to compliance documentation and reports.
What does AWS Certificate Manager do?
Create and manage SSL/TLS certificates
It simplifies the process of provisioning and deploying certificates.
What is AWS CloudHSM?
Physical device for storing encryption keys
CloudHSM provides a secure environment for key management.
What functionality does Amazon Cognito provide?
Provides authentication (e.g., login via Google, Apple)
Cognito enables user sign-up, sign-in, and access control for web and mobile apps.