Testing

Question 1

IAM Stands for:

Answer 1

Identity and Access Management

Question 2

What does a IAM User use to Log in:

Answer 2

Username and Password

Question 3

CLI stands for:

Answer 3

Command Line Interface

Question 4

API stands for:

Answer 4

Application Programming Interface

Question 5

CLI/API uses what to log in

Answer 5

Access Keys and Access Key IDs

Question 6

MFA stands for:

Answer 6

Multi Factor Authentication

Question 7

SCP Stands for:

Answer 7

Service Control Policies

Question 8

IAM Best Prctices:

Answer 8

1. Lock AWS account user access keys
2. Create individual users
3. Use groups to assign permissions to users
4. Grant least privilege
5. Start with AWS managed policies
6. Use customer managed policies
7. Use access levels to review permissions
8. Strong Password policy
9. MFA
10. Use Roles for apps and to delegate permissions
11. do not share keys
12. rotate credentials
13. remove unnecessary credentials
14. Use policy conditions
15. Monitor activity

Question 9

EBS stands for:

Answer 9

Elastic block store

Question 10

What is Block Storage and what is AWS service

Answer 10

Hard drives connected to a system (a C: or D: drive

Question 11

What is Block Storage and what is AWS service

Answer 11

Hard drives connected to a system (a C: or D: drive

Question 12

EC2 Stands for:

Answer 12

Elastic Compute Cloud

Question 13

What does EC2 do?

Answer 13

Runs virtual servers or instances in the cloud

Question 14

What is User Data

Answer 14

User Data is code that runs commands

Question 15

What is Meta Data

Answer 15

Metadata returns information

Question 16

What is LightSail

Answer 16

SUPER SIMPLE cheap cloud server for those with little expertise

Question 17

What is Batch

Answer 17

Allows you to run thousands of computing jobs on AWS

It dynamically provisions the optimal quantity and types of resources

Question 18

What is a Docker Container

Answer 18

It is a place to store all the steps to run an app including OS, code, settings, etc
It makes the movable from hardware and very efficient

Question 19

What does ECS stand for

Answer 19

Elastic Container Service

Question 20

What is a cluster

Answer 20

a logical grouping of tasks or services

Question 21

What is ECS Launch Type

Answer 21

it is an elastic container that you keep control of
You are charged per instance
You are responsible for optimization and management but get more control

Question 22

What is ECS Fargate

Answer 22

it is an elastic container that is managed by AWS
Charged per running tasks
You have limited control

Question 23

EBS Snapshots do what

Answer 23

Capture a volume at a point in time

Question 24

where is a snapshot stored

Answer 24

Inside a region outside of a AZ

Question 25

Differences between SnapA and SnapB and SnapC

Answer 25

Snap A is the OG while all those after are the changes that are made after the OG

Question 26

What does DLM stand for

Answer 26

Data Lifecycle Manager

Question 27

What does DLM do

Answer 27

automates creation, retention, and deletion of snapshots

Question 28

What does S3 stand for:

Answer 28

Simple Storage Service

Question 29

What kind of storage system is S3

Answer 29

Object storage

Question 30

What are the 6 classes of S3 storage

Answer 30

1. Standard
2. Intelligent Tiering
3. Standard-IA
4. One Zone-IA
5. Glacier
6. Glacier Deep Archive

Question 31

Standard S3 Storage

Answer 31

3 AZ

common data

Question 32

Intelligent Tiering

Answer 32

3 AZ

It moves data to the most logical storage class

Question 33

Standard-IA Storage Class

Answer 33

3 AZ

charged per GB retrieved so it needs to data not regularly accessed

Question 34

One Zone-IA Storage class

Answer 34

Like Standard-IA but in one AZ

It makes the data less protected at a cheaper price

Question 35

Glacier Storage

Answer 35

3 AZ

Available in minutes at an updated price

Question 36

Glacier Deep Dive

Answer 36

3 AZ
Available in hours
protected data that you do not need right away

Question 37

S3 Versioning

Answer 37

Keeping multiple variants in the same bucket

used to preserve, retrieve and restore objects

Question 38

S3 Replication

Answer 38

CRR Replicates data across region

SRR Replicates data in the same region

Question 39

Storage Gateway uses

Answer 39

Moving data from on premises to the cloud

Question 40

File Gateway

Answer 40

Storage gateway using a file based system

Question 41

Volume Gateway

Answer 41

Block based storage gateway system

Question 42

Backup Gateway

Answer 42

Storage gateway that uses block or file protocols

Question 43

S3 Features

Answer 43

Transfer acceleration
Requester pays
Events
Static website hosting
Encryption
Replication

Question 44

What is Route 53

Answer 44

It is a DNS or Domain Naming System

Question 45

Route 53 Policies

Answer 45

simple
failover
geolocation
geo proximity
latency
Multivalue answer
weighted

Question 46

Route 53 features

Answer 46

Domain registration
hosts zones
health checks
monitors Traffic flow

Question 47

Auto scaling Groups

Answer 47

EC2 Status Check

CloudWatch

Question 48

EC2 Status Check

Answer 48

If one instance fails status check will replace that instance

Question 49

CloudWatch does what

Answer 49

Monitors Metrics

adds and removes instances based on metrics

Question 50

What does Auto Scaling do?

Answer 50

Launches and terminates instances automatically
scales horizontally
Responds to checks and metrics
can scale on demand or by a schedule
set policies on how to respond

Question 51

What does ELB stand for:

Answer 51

Elastic Load Balancer

Question 52

4 types of Elastic Load Balancers

Answer 52

Application
Network
Classic
Gateway

Question 53

Application Load Balancer

Answer 53

Operates at request level (level 7)

Question 54

Network Load Balancer

Answer 54

Operates at the connection level (level 4)

Question 55

Classic Load Balancer

Answer 55

Older generation that uses both level 4 and 7

Question 56

Gateway Load Balancer

Answer 56

used in front of virtual apps such as firewalls

Question 57

Scaling Policies

Answer 57

Target Tracking
Simple Scaling
Step Scaling
Scheduled scaling

Question 58

Benefits of Serverless services

Answer 58

No instances
No hardware
No management
Capacity provisioning and patching
Provides auto scaling

Question 59

Serverless services

Answer 59

Lambda
Fargate
EventBridge
Step Function
SQS
SNS
S3
API Gateways
DynamoDB

Question 60

Lambda Functions

Answer 60

Executes code when needed

only pay when code runs

Question 61

Lambda function benefits

Answer 61

no servers
Continuous Scaling
millisecond billing
integrates with services

Question 62

SQS stands for what

Answer 62

Simple Queue Service

Question 63

SQS does what

Answer 63

It decouples the App tier from the Web tier.

pull based. the app will pull the info from the queue

Question 64

MQ is a what

Answer 64

Message broker service

Question 65

MQ does what

Answer 65

It works like sqs EXCEPT:
it works with industry standards like apache
and
it is a push based system

Question 66

SNS stand for what

Answer 66

Simple Notification Service

Question 67

What does SNS do?

Answer 67

Pushes out information out instead of pull like SQS

pushes info to topic which will be sent to all accounts attached to that topic

Question 68

Step Functions

Answer 68

Coordinates workflows automatically

Uses visual workflows and run state machines

Question 69

SWF stands for what?

Answer 69

Simple Workflow Service

Question 70

SWF does What?

Answer 70

Works like Step functions but in workflows that require human interaction

Question 71

EventBridge Does what?

Answer 71

It is a serverless event bus

it takes data that triggers an event to signal to the right server

Question 72

API stands for what?

Answer 72

Application Programming Interface

Question 73

API Gateways do what?

Answer 73

It is the front door for applications
Connects multiple ways
forwards requests to Lambda or VPCs

Question 74

VPC Stands for?

Answer 74

Virtual Private Cloud

Question 75

What are Security Groups

Answer 75

Firewall for Instances

Question 76

What does ACL stand for

Answer 76

Access Control List

Question 77

What is ACLs purpose

Answer 77

A firewall at the Subnet level

Question 78

3 types of IP addresses

Answer 78

Public
Private
Elastic

Question 79

Qualities of a Public IP address

Answer 79

Dynamic
lost when instance stops
cannot be moved between instances

Question 80

Qualities of a Private IP

Answer 80

Attached to ALL instances

Retained when instance stops

Question 81

Qualities of an Elastic IP

Answer 81

Static public address
Retained when instance stops
can be moved between instance
Pay if not in use

Question 82

What does NAT stand for

Answer 82

Network Address Translation

Question 83

NAT Instances and Gateways uses and their difference

Answer 83

used for accessing internet from private subnets
Instances managed by you
Gateways managed by AWS

Question 84

VPC Peering

Answer 84

Routes made between VPC and IP address

Question 85

VPN stands for what

Answer 85

Virtual Private Network

Question 86

Managed VPN

Answer 86

VPN connection between on premises sites and AWS

Question 87

Direct Connect

Answer 87

Private connection from on premises to AWS

Question 88

Transit Gateway

Answer 88

Connects VPCs and on premises through a central hub

Question 89

Outposts

Answer 89

Deploy actual infrastructure on premises to connect to AWS

Question 90

What is CloudFront

Answer 90

Content delivery Network

Question 91

What does CloudFront do?

Answer 91

Sends data to edge locations

Allows customers to access data quickly

Question 92

What does Global Accelerator do?

Answer 92

Routes connections to app endpoints

improves availability and performance of apps

Question 93

What does CloudFormation do?

Answer 93

Infrastructure provisioned automatically through code

allows you to provision consistently

Question 94

What does CDK stand for

Answer 94

Cloud Development Kit

Question 95

What does Cloud Development Kit do?

Answer 95

Open source framework to define app resources using familiar programming languages

Question 96

What does Beanstalk do?

Answer 96

Management service for Web Apps

Deploys environment that can include Auto scaling, elastic load balancing and databases

Question 97

What does X-Ray do?

Answer 97

Analyze and debug production

Question 98

What does OpsWorks do?

Answer 98

It is a Config Management service in Chef or Puppet

Question 99

RDS stands for

Answer 99

Relational Database Service

Question 100

What does RDS use for encryption

Answer 100

KMS

Question 101

What does RDS support

Answer 101

SQL
Oracle
MySQL
Postgre
Aurora
MariaDB

Question 102

What is Aurora

Answer 102

A relational database that is compatible with MySQL and Postgre

Question 103

What is DynamoDB

Answer 103

Fully managed NoSQL Key/Value Store

It is a non-relational, Key-Value System

Question 104

DynamoDB Features

Answer 104

Serverless
NoSQL
Push button horizontal
DAX
Back ups
Global Table

Question 105

What is Redshift

Answer 105

A relational database and SQL Data Warehouse

Used for Online analytics processing (OLAP)

Question 106

EMR stands for what?

Answer 106

Elastic Map Reduce

Question 107

What does EMR do?

Answer 107

Manages Cluster Platforms frameworked in Hadoop and Spark
Performs ETL (extract, transform, and load) functions
Processes data for analytics and business intelligence

Question 108

What does Elasticache do?

Answer 108

It is a key-value store
fully manages implementations of redis and memcached
you put it in front of databases like RDS and Dynamo to lower latency of extracting data

Question 109

What does Athena do?

Answer 109

Runs queries on S3 data

Question 110

What does Glue do?

Answer 110

It is a ETL service for the metadata stored by Athena

Question 111

How do Kinesis Data Streams work

Answer 111

Producers send data to shards

consumers process data to save to another source

Question 112

How does Kinesis firehose work

Answer 112

automated data sent without shards

Saves data directly to another source

Question 113

How does Kinesis Data Analytics work

Answer 113

Real time SQL processing for streaming

Question 114

What does SQL stand for

Answer 114

Structured query langauge

Question 115

What does Pipeline do

Answer 115

processes and moves data between different services

Question 116

What is Quicksight

Answer 116

Business Intelligence Service

Creates and publish interactive BI dashboards for machine learning

Question 117

What is Neptune

Answer 117

Fully managed graph database service

Question 118

What is DocumentDB

Answer 118

A fully managed Document database that queries and indexes JSON data

Question 119

What is QLDB

Answer 119

A fully managed ledger database that provides verifiable transaction logging

Question 120

What is Managed Blockchain

Answer 120

Joining public and private networks using ethereum

Question 121

What is Organizations

Answer 121

a consolidation of multiple accounts

most important feature for test is consolidated billing

Question 122

What is control tower

Answer 122

Simplifies the creation of multiple accounts by setting up governance, compliance, and security guardrails

Question 123

What is Systems Manager

Answer 123

Manages multiple AWS Resources

Question 124

System Manager components

Answer 124

Automation
Run Command
Inventory
Patch Manager
Session Manager
Parameter Store

Question 125

What is Service Catalog

Answer 125

Creates and manage catalogs of IT services

Allows you to manage commonly deployed services

Question 126

What is Config

Answer 126

It is a fully managed compliance management service

Helps with Autiting, Security Analysis, and Resource Change Tracking

Question 127

What is Trusted advisor

Answer 127

Helps Optimize your environment

Question 128

What does Trusted Advisor Advise on

Answer 128

Cost Optimization
Performance
Security
Fault Tolerance

Question 129

What is Personal Health Dashboard

Answer 129

A Dashboard that provides alerts when events will affect you

Question 130

What is Service Health Dashboard

Answer 130

Provides the Current status of AWS Services

Question 131

What is Directory Service

Answer 131

Fully managed hosts active directory

Question 132

What is AD Connector

Answer 132

Allows on premises user to log into AWS with SSO

Question 133

What is Simple AD

Answer 133

Low scale/cost Active Directory

Question 134

What does System Manager Parameter Store do

Answer 134

Provides Secure, hierarchical storage

Question 135

What can systems manager parameter store

Answer 135

passwords
data strings
license codes

Question 136

What are the values in systems manager parameter store

Answer 136

do it all as parameter values
plaintext (unencrypted)
ciphertext (encrypted)

Question 137

What is Secret Manager

Answer 137

it is similar to parameter store BUT

allows native and automatic key rotation, fine grained permissions, and central auditing

Question 138

What does KMS stand for

Answer 138

Key Management Service

Question 139

What does KMS do

Answer 139

Creates and manages Keys

Question 140

CloudHSM stands for

Answer 140

Cloud based hardware security Module

Question 141

What does CloudHSM do

Answer 141

Generates your own encryption keys

more control and more secure than KMS but more expensive

Question 142

What is CloudTrail

Answer 142

Logs API activity for auditing

Can trigger cloudwatch events

Question 143

What are VPC Flow Logs

Answer 143

Capture the information about IP traffic going to and from the VPC interfaces

Question 144

Where are Flow Logs created

Answer 144

VPC
Subnet
Network Interfaces

Question 145

What does S3 Access Logs do

Answer 145

Provides records for the requests made to a bucket

Question 146

S3 Access Logs details include

Answer 146

Requester
Bucket Name
Time
Action
Response Status
Possible Error Codes

Question 147

What does Detective do?

Answer 147

Analyze, Investigate, and Identify security issues root causes

Question 148

Data sources for Detective

Answer 148

VPC Flow Logs
CloudTrail
GuardDuty

Question 149

What is GuardDuty and what does it detect

Answer 149

Intelligent Threat Detection Service
Detects:
Account Compromise
Instance Compromise
Malicious Reconnaissance
Bucket Compromise

Question 150

What is Macie

Answer 150

Fully managed Data security

Uses machine learning and pattern matching to find and protect sensitive data in S3

Question 151

What does WAF stand for

Answer 151

Web Application Firewall

Question 152

What does WAF do

Answer 152

Creates rules that block common exploits like SQL injection and Cross site scripting

Question 153

What is Sheild

Answer 153

Managed DDoS protection service

Question 154

What is Artifact

Answer 154

Provides on demand security and compliance reports

Question 155

What is Security Hub

Answer 155

Provides a view of security alerts across AWS Accounts

Question 156

What is Security Bulletins

Answer 156

Security and privacy events affecting AWS Services

Question 157

Why should you contact the Trust and Safety team

Answer 157

Spam
Port Scanning
DDoS
Intrusion Attempts
Hosting of objectional or copyrighted material
Distributing Malware

Question 158

Penetration Testing

Answer 158

Testing Security by simulating an attack

is allowed for 8 services without permission

Question 159

What are the pillars of Well-Architected

Answer 159

Operational Excellence
Security
Reliability
Performance Efficiency
Cost Optimization

Question 160

What does Well Architected Consist of:

Answer 160

Guidance
Tool
Lenses
Architecture Center

Question 161

Operational Excellence Pillar

Answer 161

Support Development of Workloads

Question 162

Security Pillar

Answer 162

Protect data, systems, and assets

Question 163

Reliability Pillar

Answer 163

Ensuring workload can perform

Question 164

Performance Efficiency Pillar

Answer 164

Ability to use computing resources meet system requirements

Question 165

Cost Optimization Pillar

Answer 165

Ability to run systems at the lowest price

Question 166

What do you pay for in AWS

Answer 166

Compute
Storage
Outbound Data

Question 167

What are the basics for On-Demand pricing

Answer 167

Standard rate

No Commitments

Question 168

What are the basics for Reserved pricing

Answer 168

1-3 year commitment

75% discount

Question 169

What are the basics for Spot Instant pricing

Answer 169

Bid for unused space
Up to 90% discount
can be terminated at anytime

Question 170

What are the basics for Dedicated instances pricing

Answer 170

Physical isolation at host hardware

Pay per instance

Question 171

What are the basics for Dedicated Hosts pricing

Answer 171

Physical server dedicated for your use
socket core visibility
Host affinity
Pay per host

Question 172

What are the basics for Saving Plans pricing

Answer 172

Commitment to consistent amount of usage
Pay per hour
1-3 year commitment

Question 173

What do you pay for in S3

Answer 173

Storage class
Storage quantity
Number of requests
data transfer out

Question 174

What do you pay for in Glacier

Answer 174

Expedited
Standard
Bulk

Question 175

What do you pay for in EBS

Answer 175

Volumes - GB per month

Snapshots - Space consumed by Snapshots

Question 176

What do you pay for in RDS

Answer 176

Clock hours of server up time
Database characteristics
Database purchase type

Question 177

What do you pay for in DynamoDB

Answer 177

Reading, Writing, and Storing Data

Either on-demand or provisioned

Question 178

What do you pay for in Lambda

Answer 178

Number of requests
Duration of request (to the nearest millisecond)
Price is dependent

Question 179

Benefits of Consolidated billing

Answer 179

One bill
Easy tracking
combined usage

Question 180

What do you do in Budgets

Answer 180

Set custom budgets

configure alerts

Question 181

What does budgets integrate with

Answer 181

Cost explorer
Chatbot
Service catalog

Question 182

What is Cost explorer

Answer 182

View charts of your costs to discover patterns of spending

Question 183

What does Cost and Usage report break down

Answer 183

Hour
Day
Month
Product
Product resource
Tags

Question 184

What does Price list API do?

Answer 184

Queries prices of services

Question 185

What does DMS stand for

Answer 185

Database migration service

Question 186

What does DMS do

Answer 186

Migrates Databases

Source database remains operational during transfer

Question 187

What does SMS stand for

Answer 187

Server migration service

Question 188

What does SMS do

Answer 188

Migrates servers and virtual machines

Question 189

What does DataSync do

Answer 189

Online data transfer service

Transfers data between on premises and storage services

Question 190

What is the Snowball Family used for

Answer 190

Used for migrating large volumes of data to AWS

Question 191

What does Rekognition do

Answer 191

Image and video analysis

Question 192

What does Transcribe do

Answer 192

Add speech to text capabilities to apps

Question 193

What does Translate do

Answer 193

Neural machine translation service

Question 194

What does Sagemaker do

Answer 194

helps data scientists prepare, build, train, and deploy high quality machine learning models

Question 195

What does Comprehend do

Answer 195

natural language processing service

Uses machine learning to understand unstructured (like a written letter) information

Question 196

What does Lex do

Answer 196

It is a conversational AI for chatbots

Question 197

What does Polly do

Answer 197

Turns text into life like speech

Question 198

What does Workspaces do

Answer 198

Managed DaaS solution

Works with windows or linux

Question 199

What does Appstream 2.0 do

Answer 199

Fully managed non persistent app streaming service

Question 200

What does Worklink do

Answer 200

Provides secure, one click access to your internal websites from mobile phones

Question 201

What does Workdocs do

Answer 201

Google suite by amazon

Question 202

What does IoT core do

Answer 202

Lets you to connect to IoT devices to the cloud without the need to manage servers

Question 203

What does IoT stand for

Answer 203

Internet of Things