Timed Mode Set 7 – AWS Certified Solutions Architect Associate Flashcards
What hardware device service comes installed with AWS DataSync?
Snowcone comes pre-installed with DataSync agent.
What service can be used with Glue Data Catalog to store and retrieve table metadata for the Amazon S3 data in your AWS account.
Athena.
What is a service you can used to visualize Athena SQL queries ?
Amazon QuickSight
What is an online tool that provides you with REAL-TIME GUIDANCE to help you provision your resources following AWS best practices?
AWS Trusted Advisor
EMR runs on different instance types for different tasks, what are the best instances for each of the types below:
-Primary (Master) node
-Core nodes
-Task nodes
-Primary (Master) node = On-Demand
-Core nodes = On-Demand OR instance-fleet mix
-Task nodes = Spot OR instance-fleet mix
What is the best way to automate the creation, retention, and deletion of EBS snapshots?
Amazon Data Lifecycle Manager
What is the best way to deploy any serverless or container-based application with increased efficiency, consistency, and control?
Specifically the app is managed by AWS and its Dev friendly.
AWS Proton.
Whats the best way to rehost (Lift-and-Shift) an application with the data and OS info from On-Prem to AWS?
Must not interrupt normal business ops.
AWS Application Migration Service (MGN).
This is great for lift and shift (rehost), moving the workload from on prem.
What is a requirement for using a Prometheus agent with EKS?
To use Prometheus with EKS you MUST first integrate it with a CloudWatch agent.
What is the best way to collect metrics and logs for your EKS cluster?
CloudWatch Container Insights.
What AWS services does CW Container Insights support?
-ECS
-EKS
-K8s on EC2
-Fargate (ECS and EKS both)
What is the AWS best practice way of automatically starting and stopping an EC2 and/or DB instances based on a predetermined schedule?
AWS Lambda function is the best way to start and stop EC2 and RDS DB instances … With low overhead and cost considerations
What AWS service is best for triggering a Lambda function at specific times or intervals?
EventBridge (CloudWatch Events).
What Linux service is more comparable to EventBridge?
Cron. Cronjobs.
Eventbridge uses cron format.
What is the difference between FSx Lustre with Persistent mode and
Scratch mode?
Persistent is best for sustained throughput
Scratch is designed for temporary storage.
What is best to protect DynamoDB tables from accidental write or delete operations?
Enable Point-In-Time Recovery (PITR) in DynamoDB.
PITR is continuous backups, restore. 35 day retention period
*Review question 8 on subnets
do it
What is a dedicated instance ?
A Dedicated instance runs in a VPC on hardware that’s dedicated to a single customer.
Can both Reserved Instance types - Standard AND Convertible - be resold at the RI Marketplace?
Only Standard, NOT Convertible!!!!
For an SFTP solution needing high IOPS performance, should you use S3 or EFS?
EFS.
Better IOPS than S3
For compliance, what needs to be done to identify if a Log file has been tampered with in CloudTrail?
Enable the CloudTrail Log File Validation feature on all trails.
What is the difference between Lambda functions RESOURCE policy and EXECUTION role?
Resource based policy - allows an AWS service to invoke Lambda.
Execution Roles - Allows Lambda access to other AWS services.
For S3 lifecycle storage class transitions, how long must objects be stored in the current storage class before they can be transitioned?
(from standard –> IA or OneZone IA, for Example)
objects must be stored in current class for 30 DAYS before moving to 1ZIA or IA.
What is best way to centrally manage security group rules across an organization to allow new CIDR ranges and remove old CIDR ranges as needed?
VPC customer-managed prefix list .
Provision a VPC customer-managed prefix list using the AWS CLI or the Amazon VPC console and add the CIDR blocks to be included in the list.
