Technology Flashcards
You have a MySQL database that you want to migrate to the cloud, and you need it to be significantly faster there. You are looking for a speed increase up to 5 times the current performance. Which AWS offering could you use?
Amazon Aurora
Aurora is a relational database compatible with MySQL and PostgreSQL that was created by AWS. It’s a lot faster then AWS RDS
AWS Personal Health Dashboard
AWS Personal Health Dashboard gives you a personalized view of the status of services and resources used by your applications.
Notifications are also provided for scheduled events that may impact AWS customers.
publishes alerts and remediation guidance when issues with AWS services arise.
Load balancer types offered by AWS
Classic
Application
Network
You have been tasked with creating identical, repeatable infrastructure for your customers. Which service will you use?
CloudFormation
CloudFormation provides the ability to provision a repeatedly deployable environment for your customers
AWS Config
AWS Config is used to assess, audit, and evaluate the configurations of your AWS resources.
MariaDB
MariaDB is a type of RDS engine on AWS
MariaDB is a popular open source relational database created by the original developers of MySQL. Amazon RDS makes it easy to set up, operate, and scale MariaDB server deployments in the cloud. With Amazon RDS, you can deploy scalable MariaDB cloud databases in minutes with cost-efficient and resizable hardware capacity.
Redshift
Redshift is for data warehousing. Amazon Redshift provides the best solution for performing queries based on a predefined set of dimensions. Redshift organizes data for high performance based on user-specified distribution schemes.
Redshift allows you to run complex analytic queries against petabytes of structured data, using sophisticated query optimization, columnar storage on high-performance local disks, and massively parallel query execution.
Amazon ElastiCache provides in-memory performance, but no data organization assistance. Amazon Aurora and Amazon DynamoDB are good solutions, but Redshift’s columnar storage gives it the edge.
AWS Aurora
Aurora is a type of RDS engine on AWS - Designed for unparalleled high performance and availability at global scale with full MySQL and PostgreSQL compatibility
Gives you the performance and availability of commercial-grade databases at one-tenth the cost.
A company is using CloudTrail to simplify operational analysis and troubleshooting. When tracking user activity, which content fields does CloudTrail track when a user accesses the AWS Management Console?
Region - CloudTrail tracks the AWS Region that the request was made to, such as us-east-1.
Username - CloudTrail allows you to track the username.
CloudTrail DOES NOT track tags.
Which of the following languages can be used to author CloudFormation templates
CloudFormation supports both JavaScript Object Notation (JSON) and YAML Ain’t Markup Language (aka YAML) for authoring CloudFormation templates
AWS CloudTrail
CloudTrail tracks user activity and API calls within your account.
AWS Inspector
Inspector works with EC2 instances to uncover and report vulnerabilities.
Which storage service can provide very high durability storage for objects?
Amazon S3 - S3 provides high durability storage of objects.
DynamoDB
DynamoDB is a NoSQL database. It is ideal for storing key-value pairs.
DynamoDB is a fast and flexible NoSQL database. NoSQL databases are non-relational and have a dynamic structure, whereas SQL is relational and has a pre-defined structure
AWS Service Health Dashboard
AWS Service Health Dashboard as the answer, it does not provide a personalized view of AWS services; it displays their general status.
Which of the following can be specified as an origin when creating a CloudFront distribution?
A CloudFront origin can be an S3 bucket, an elastic load balancer, or a valid domain name.
Classic Load Balancer
Classic Load Balancer provides basic load balancing across multiple Amazon EC2 instances and operates at both the request level and connection level. Classic Load Balancer is intended for applications that were built within the EC2-Classic network
Which of the following data archival services is extremely inexpensive but can have a multi-hour data-retrieval window?
Glacier offers extremely inexpensive data archival, but requires a 3- to 5-hour data-retrieval window for standard retrievals - though this time can be reduced for a price.
You are trying out AWS on a trial basis and need to deploy an application without having to configure servers. Which AWS service can you use?
Elastic Beanstalk allows you to deploy your web applications and web services to AWS
Lambda
Lambda allows you to run a variable and intermittent code without paying for compute time when your code isn’t running.
Lambda is the AWS Function as a Service (FaaS) offering that lets you run code without provisioning or managing servers
Lambda is event-driven, and a change to an S3 bucket is an example of an event
is a serverless, event-driven compute service that lets you run code for virtually any type of application or backend service without provisioning or managing servers. You can trigger Lambda from over 200 AWS services and software as a service (SaaS) applications, and only pay for what you use.
By default, what can a private subnet communicate with?
Other private subnets in the same VPC
By default, a private subnet can only communicate with other subnets in the same VPC, be they private or public. In order to communicate to the internet, a NAT gateway and internet gateway are required, and to enable communication between subnets in different VPCs, the VPCs must first be peered.
SageMaker
SageMaker helps you build, train, and deploy machine learning models quickly.
Polly
Polly turns text into speech
Bucket policies
Bucket policies allow you to control access to entire buckets, whereas access control lists let you control access to individual objects within an S3 bucket.
Use bucket policies to make entire buckets public (like 1 hosting an S3 website)
AWS Application Discovery Service
AWS Application Discovery Service helps you gather information about your on-premises environment and is considered a migration tool.
AWS OpsWorks
OpsWorks allows you to use Chef or Puppet to automate the configuration of your servers and deploy code.
AWS Snowball
AWS Snowball is a petabyte-scale data transport service that uses secure devices to transfer large amounts of data into and out of the AWS Cloud.
provides secure, rugged devices, so you can bring AWS computing and storage capabilities to your edge environments, and transfer data into and out of AWS
You have just created a new bucket and uploaded a file into it. Will this be automatically viewable by anyone on the internet?
No - by default, buckets and their contents are private
By default, all data stored in S3 is not viewable by the public. If you want a bucket or object to be accessible by the public, you must explicitly make it so. NAT gateways and internet gateways are needed to allow communications between VPCs and the internet, but they are not required when it comes to S3
S3 One Zone-Infrequent Access
S3 One Zone-Infrequent Access is designed for customers who want a lower cost option for infrequently accessed data but do not require the multiple Availability Zone data resilience model of the S3 Standard or S3 Standard-Infrequent Access storage classes.
Fast retrieval!! S3 One Zone-Infrequent Access provides millisecond access when the data is needed.
S3 Standard
S3 Standard is used for general-purpose storage. Your data is stored across multiple Availability Zones and is recommended for data that is frequently accessed. This is the most expensive option of the S3 storage classes.
Snowmobile
The Snow Family allows you to transfer large amounts of on-premises data to AWS using a physical device. Snowmobile transports multi-petabyte or exabyte-scale data
For which of the below is S3 a suitable storage solution?
S3 is object storage suitable for the storage of “flat” files like documents, photos, etc.
Use cases that require very atomic or consistent reading and writing, such as databases and operating systems, are more suited to EBS (Elastic Block Store) storage.
CloudFront
is a CDN (content delivery network) that delivers data and applications globally with low latency. It speeds up the delivery of content to your users
Rekognition
The company can use Rekognition to identify objects like protective equipment in their images and detect if employees are wearing the required protective equipment – preforms image analysis
When you upload an object to S3 storage, where will AWS keep it?
In multiple Availability Zones within the Region you select. Any object uploaded to S3 is automatically stored in multiple Availability Zones in the Region in which it was uploaded. This means that if any single AZ in a Region is experiencing issues, objects stored in S3 will still be available. Although objects in S3 can be made to be accessible globally, by default they are always stored in a redundant fashion in only the Region they were uploaded, ruling out the other answers.
Cloud9
Cloud9 allows application developers to write code within an integrated development environment (IDE) from within their web browser.
A developer would like to build a serverless application but doesn’t want to install files or configure their local development machine. Which service will allow the developer to build the application by writing code in a web browser?
Cloud9 - Cloud9 allows application developers to write code within an integrated development environment (IDE) from within their web browser.
Convertible reserved instance? (EC2)
One-year to three-year term.
Enables you to modify Availability Zone, scope, networking type, and instance size (within the same instance type) of your Reserved Instance.
What is standard reserved instance in AWS?
Standard Reserved Instances provide you with a significant discount (up to 72%) compared to On-Demand Instance pricing, and can be purchased for a 1-year or 3-year term. Customers have the flexibility to change the Availability Zone, the instance size, and networking type of their Standard Reserved Instances.
Standard vs. Convertible RIs
Standard - Enables you to modify Availability Zone, scope, networking type, and instance size (within the same instance type) of your Reserved Instance.
Convertible - Enables you to exchange one or more Convertible Reserved Instances for another Convertible Reserved Instance with a different configuration, including instance family, operating system, and tenancy.
A company is planning for a one-time sale of 75% off all products on its website. They expect to see a short-term spike on the sale day. Which EC2 instance type should the company use to meet its requirements and maximize flexibility?
On-Demand is good for applications that have unpredictable workloads that can’t be interrupted.
Application Load Balancer
An Application Load Balancer is best suited for load balancing of HTTP and HTTPS traffic and provides advanced request routing targeted at the delivery of modern application architectures, including microservices and containers
Network Load Balancer
A Network Load Balancer is best suited for load balancing of Transmission Control Protocol (TCP), User Datagram Protocol (UDP), and Transport Layer Security (TLS) traffic where extreme performance is required.
An organization needs to run a MySQL relational database on AWS. They plan to hire their own database administrators to manage their databases, including taking backups, using replication, and clustering. Which option provides the customer the control and flexibility needed?
Install the MySQL database directly on an EC2 instance.
Installing the database directly to EC2 gives the customer complete control over the database and its management.
Your company has decided to migrate a SQL Server database to a newly created AWS account. Which service can be used to migrate the database?
Database Migration Service
DMS helps you migrate databases to or within AWS.
Which of the following are steps you should take in securing your AWS account?
Activate Multi-factor Authentication (MFA) on your root account.
Use groups to delegate access to IAM users. - Groups should be used to delegate permissions to the users you create, instead of individual assigning policies to IAM users, since it makes administration easier.
Create individual IAM users. - You should always create IAM users for individual users, since the root account should never be used for actual work.
Your company utilizes DNS and wants to migrate DNS and management of DNS to the cloud. Which AWS service would you use?
Route 53 is a DNS service that routes users to applications.
Kinesis
Kinesis allows you to analyze data and video streams in real time.
Web Application Firewall (WAF)
WAF helps protect your web applications against common web attacks like SQL injection attacks and cross-site scripting.
Lightsail
Lightsail allows you to quickly launch all the resources you need for small projects like preconfigured applications like WordPress.
Amazon CloudWatch
CloudWatch is a collection of services that help you monitor and observe your cloud resources.
AWS Elastic Beanstalk
AWS Elastic Beanstalk is an easy-to-use service for deploying and scaling web applications and services developed with Java, .NET, PHP, Node.js, Python, Ruby, Go, and Docker on familiar servers such as Apache, Nginx, Passenger, and IIS.
You can simply upload your code and Elastic Beanstalk automatically handles the deployment, from capacity provisioning, load balancing, auto-scaling to application health monitoring. At the same time, you retain full control over the AWS resources powering your application and can access the underlying resources at any time
You have infrequently accessed data in S3 buckets that you want to transfer to Glacier. What can you use in AWS to do this?
S3 Lifecycle policy
You can add rules in an S3 Lifecycle configuration to tell Amazon S3 to transition objects to another Amazon S3 storage class. For example: When you know objects are infrequently accessed, you might transition them to the S3 Standard-IA storage class. You might want to archive objects that you don’t need to access in real time to the S3 Glacier storage class.
A software company is looking for a tool to automate their deployments from end to end. Which AWS service can provide this continuous delivery functionality?
CodePipeline automates the software release process. - AWS CodePipeline is a fully managed continuous delivery service that helps you automate your release pipelines
NOT CodeDeploy - AWS CodeDeploy is a fully managed deployment service that automates software deployments to a variety of compute services such as Amazon EC2, AWS Fargate, AWS Lambda, and your on-premises servers
Elastic Beanstalk
Elastic Beanstalk allows you to deploy your web applications and web services to AWS
You can simply upload your code and Elastic Beanstalk automatically handles the deployment, from capacity provisioning, load balancing, auto-scaling to application health monitoring. At the same time, you retain full control over the AWS resources powering your application and can access the underlying resources at any time.
Which of the following best describes EBS (Elastic Block Store)?
A virtual hard disk in the cloud
An Elastic Block Store volume is best described as a virtual hard disk in the cloud - storage that, for all intents and purposes, appears to be directly attached to your instance. These are used by the virtual server instances in the cloud, which are known as EC2 instances
Snowball Edge
Snowball Edge offers on-board storage and compute power that can handle local processing and edge-computing workloads in disconnected environments and handles transferring data between your local environment and AWS. Snowball Edge supports S3, EC2, Lambda, and IoT Greengrass.
AWS Fargate
AWS Fargate is a serverless, pay-as-you-go compute engine that lets you focus on building applications without managing servers. AWS Fargate is compatible with both Amazon Elastic Container Service (ECS) and Amazon Elastic Kubernetes Service (EKS).
ElastiCache
You can use ElastiCache to store the results of often-used queries, and this will allow quicker retrieval of this data.
You have a read-heavy application workload resulting in I/O-intensive Amazon RDS database queries. Which service is most suitable to improve performance? –> Redis, which is a version of ElastiCache, which could be used to help w/ this
Comprehend
Comprehend is a natural language processing (NLP) service that uses machine learning to discover relationships and insights in text
A customer would like to use machine learning to uncover the meaning and relationships in text from customer support incidents to ensure customers are happy after speaking to a support agent.
Macie
Macie uses machine learning to discover sensitive data stored on Amazon S3. Macie automatically detects a large and growing list of sensitive data types, including personally identifiable information (PII) such as names, addresses, and credit card numbers.
AWS CodeCommit
CodeCommit is a source control system for private Git repositories
will allow you to host Git-based repositories
AWS CodeBuild
CodeBuild allows you to build and test your application source code.
CodeDeploy
a fully managed deployment service that automates software deployments to a variety of compute services such as Amazon EC2, AWS Fargate, AWS Lambda, and your on-premises servers.
While CodeDeploy can deploy code to the cloud and on-premises, it is not used to automate the configuration of servers like OpsWork
Storage Gateway
Storage Gateway is a hybrid storage service that allows you to connect on-premises and cloud data.
While a Site-to-Site VPN supports a hybrid model, it’s not the best and most efficient solution.
You want to use an AWS service that enables you to notify select Tech Support members in your company (via email) of any cloud-related issues to attend to. Which of the following services will accomplish that?
Simple Notification Service – With Simple Notification Service, or Amazon SNS, you can create and appropriately name a topic to which you publish your messages. Then, the select Tech Support members can subscribe to that topic to receive these messages as email notifications
SES is ideal for marketing campaigns, not the scenario described.
NAT gateway
A NAT gateway is required to allow resources in a private subnet to access the internet
Amazon EMR
Amazon EMR is a cloud big data platform for running large-scale distributed data processing jobs, interactive SQL queries, and machine learning (ML) applications using open-source analytics frameworks such as Apache Spark, Apache Hive, and Presto.
