SSM

Question 1

Which AWS service provides secure storage and management of secrets stored as plain text or encrypted using KMS?

Answer 1

AWS Systems Manager Parameter Store (SSM Parameter Store)

Question 2

What types of parameters are supported by the SSM Parameter Store?

Answer 2

• String
• StringList (comma-separated values)
• SecureString types

Question 3

How are parameters organized and stored in SSM Parameter Store?

Answer 3

Parameters are stored tree-like hierarchy, and changes to these parameters can trigger events

Question 4

Is there a maximum number of parameters that can be stored in the SSM Parameter Store?

Answer 4

Yes, there is a maximum limit of 10,000 parameters per region

Question 5

What are public parameters in AWS SSM Parameter Store?

Answer 5

Public parameters are predefined parameters published by AWS services, such as EC2, to provide information about common artifacts like AMI IDs

Question 6

How can the SSM Parameter Store be accessed using the CLI?

Answer 6

aws ssm get-parameters --names /my-app/dbstring

aws ssm get-parameters-by-path --path /my-app/ --with-decryption

Question 7

What SSM Parameters Store parameter tier can have parameter policies assigned?

Answer 7

Advanced parameter tier

Question 8

Can SSM Parameters Store parameter policies be assigned to standard parameters?

Answer 8

No

Question 9

What does the SSM Parameters Store Expiration parameter policy do?

Answer 9

Deletes the parameter

Question 10

What does the SSM Parameters Store ExpirationNotification parameter policy do?

Answer 10

Sends an event to EventBridge notifying about parameter expiration

Question 11

What does the SSM Parameters Store NoChangeNotification parameter policy do?

Answer 11

Sends an event to EventBridge if a parameter has not been modified for a set period