Deck 4

Question 1

Is it possible to continue using an EBS volume while a snapshot is being taken?

Answer 1

Yes

Question 2

SQS parameter that indicates time to wait until a message is available in the queue before sending a repsonse

Answer 2

WaitTimeSeconds

Question 3

SSL/TLS protocols not supported by ELBs

Answer 3

SSL 1.0

Question 4

Elasticache metric for the number of get requests the cache has received where the key requested was not found

Answer 4

GetMisses

Question 5

Command line command to disable specified alrms in CloudWatch

Answer 5

mon-disable-alarm-actions

Question 6

API call to disable specified alrms in CloudWatch

Answer 6

disable-alarm-actions

Question 7

SQS parameter to specify an initial invisibility period for a message that youhave added to a queue

Answer 7

DelaySeconds

Question 8

What do you need to do to ensure EC2 instances marked unhealthy by the ELB will be terminated and
replaced?

Answer 8

Add an Elastic Load Balancing health check to your Auto Scaling group

Question 9

Regarding the attaching of ENI to an instance, what does ‘warm attach’ refer to?

Answer 9

Attaching an ENI to an instance when it is stopped

Question 10

Regarding the attaching of ENI to an instance, what does ‘hot attach’ refer to?

Answer 10

Attaching an ENI to an instance when it is stopped

Question 11

Regarding the attaching of ENI to an instance, what does ‘cold attach’ refer to?

Answer 11

Attaching an ENI to an instance when it is launching

Question 12

Min and max retention period for RDS backup

Answer 12

Min: 0 (no backup)
Max: 35

Question 13

Logical grouping of instances within a single Availability Zone, recommended for applications that benefit from low network latency, high network throughput, or both.

Answer 13

Placement group

Question 14

Are S3 objects stored in more than one region?

Answer 14

Objects stored in a region never leave the region unless you explicitly transfer them to another region.

Question 15

Is it possible for an ELB to balance traffic between 2 regions?

Answer 15

No

Question 16

How to determine that an object was successfully stored in S3?

Answer 16

Use the Content-MD5 form field

Question 17

Is it possible to create a route 53 CNAME for the apex?

Answer 17

No

Question 18

SWF

Answer 18

Simple Workflow Service makes easy to build applications that use AWS to coordinate work across distributed components

Question 19

What is a placement group?

Answer 19

A placement group is a logical grouping of instances within a single Availability Zone. Placement groups are recommended for applications that benefit from low network latency, high network throughput, or both. To provide the lowest latency, and the highest packet-per-second network performance for your placement group, choose an instance type that supports enhanced networking.

Question 20

S3 object size limit

Answer 20

5TB

Question 21

How to log client connection information to an ELB?

Answer 21

Enable access logs in the ELB

Question 22

Price paid monthly to use the repository of public datasets

Answer 22

They are free to use

Question 23

Types of SG for RDS

Answer 23

• EC2 SG
• DB SG
• VPC SG

Question 24

What is server side encryption in S3?

Answer 24

It encrypts the files that you send to Amazon S3, on the server side.

Question 25

What are query requests?

Answer 25

Query requests are HTTP or HTTPS requests that use the HTTP verb GET or POST and a Query parameter named Action.

Question 26

Is it possible to decrease the storage size of an RDS instance?

Answer 26

No. You cannot reduce storage size once it has been allocated.

Question 27

It is possible to expose a snapshot only to specific AWS accounts?

Answer 27

To expose the snapshot to only specific AWS accounts, choose Private, enter the ID of the AWS account (without hyphens) in the AWS Account Number field, and choose Add Permission. Repeat until you’ve added all the required AWS accounts

Question 28

Does Amazon RDS for SQL Server currently support importing data into the msdb database?

Answer 28

No

Question 29

What to do if after a Multi-AZ failover read replica appears “stuck”?

Answer 29

Delete read replica and replace it

Question 30

What is Elastic Beanstalk?

Answer 30

Service that provides the possibility of deploying and managing applications in the AWS Cloud without worrying about the infrastructure that runs those applications

Question 31

Items deleted when deleting IAM user

Answer 31

The user
Any group memberships—that is, the user is removed from any IAM groups that the user was a member of
Any password associated with the user
Any access keys belonging to the user
All inline policies embedded in the user (policies that are applied to a user via group permissions are not affected)
Note
Any managed policies attached to the user are detached from the user when the user is deleted. Managed policies are not deleted when you delete a user.
Any associated MFA device

Question 32

Maximum response time for a Business level Premium Support case

Answer 32

1 hour

Question 33

Is it possible to delete a snapshot of the root device of an EBS volume used by a registered AMI?

Answer 33

No. Note that you can’t delete a snapshot of the root device of an EBS volume used by a registered AMI. You must first deregister the AMI before you can delete the snapshot.

Question 34

When you promote a Read replica what happens with backup configuration?

Answer 34

The new DB instance that is created when you promote a Read Replica retains the backup retention period, backup window period, and parameter group of the former Read Replica source.

Question 35

How are the enhanced AWS Support tiers different from Basic Support?

Answer 35

Basic, Developer, Business, Enterprise

Question 36

Is it possible to encrypt connections between my application and my DB Instance using SSL?

Answer 36

Yes, this option is currently supported for the MySQL, MariaDB, SQL Server, PostgreSQL, and Oracle engines

Question 37

When setting up management network using elastic network interfaces. To ensure failover capabilities, consider …

Answer 37

using a secondary private IP for incoming traffic on an elastic network interface

Question 38

Making your snapshot public shares all snapshot data with everyone. Can the snapshots with AWS
Marketplace product codes be made public?

Answer 38

Making your snapshot public shares all snapshot data with everyone; however, snapshots with AWS Marketplace product codes cannot be made public. Encrypted snapshots cannot be shared between accounts or made public.

Question 39

In regards to IAM you can edit user properties later, but you cannot use the console to change….

Answer 39

Username

Question 40

S3 storage options

Answer 40

• Standard
• Standard-infrequent access
• Reduced Redundancy Storage

Question 41

Maximum throughput for DynamoDB

Answer 41

DynamoDB is designed to scale without limits However, if you wish to exceed throughput rates of 10,000 write capacity units or 10,000 read capacity units for an individual table, you must first contact Amazon through this online form. If you wish to provision more than 20,000 write capacity units or 20,000 read capacity units from a single subscriber account you must first contact us using the form described above.

Question 42

EC2 API Tools

Answer 42

Client interface to the Amazon EC2 web service. Use these tools to register and launch instances, manipulate SGs, and more.

Question 43

How many levels can you nest in groups?

Answer 43

Groups can’t be nested; they can contain only users, not other groups.

Question 44

Max length for tag key and value

Answer 44

Key: 128 Unicode characters

Value: 256 Unicode characters

Question 45

What you should enable in order to identify the originating IP address of a client connecting to your servers using TCP love ad balancing?

Answer 45

Proxy protocol on the ELB

Question 46

How do you add an instance store volume to a running instance?

Answer 46

You can specify the instance store volumes for your instance only when you launch an instance. You can’t attach instance store volumes to an instance after you’ve launched it.

Question 47

Is it possible to create a policy affecting an object?

Answer 47

No. Policies are bucket level. ACLs can be bucket or object.

Question 48

Default maximums for each of the IAM entities

Answer 48

Groups per AWS account: 100
Users per AWS account: 5000
Roles per AWS account: 250
Number of groups per user: 10 (that is, one user can be part of these many groups.

Question 49

Cloudformation limits

Answer 49

There are no limits to the number of templates but each AWS CloudFormation account is
limited to a maximum of 20 stacks by default. The Template, Parameter, Output, and Resource description
fields are limited to 4096 characters. The user can include up to 60 parameters and 60 outputs in a template.

Question 50

When AWS will delete a SQS queue?

Answer 50

Amazon SQS can delete a queue without notification if one of the following actions hasn’t been performed on
it for 30 consecutive days: SendMessage, ReceiveMessage, DeleteMessage, GetQueueAttributes,
SetQueueAttributes, AddPermission, and RemovePermission.

Question 51

Which AWS RDS logs cannot be viewed from the console for MySQL?

Answer 51

Transaction log

Question 52

What do you need in order to upload an entire folder to S3?

Answer 52

Enable Enhanced Uploader to install the necessary Java applet. After you choose the Enhanced Uploader, if the uploader is not ready to use after two minutes, you might need to change your platform (Windows or Mac) or browser configuration to get the Java applet to work

Question 53

Timestamp difference accepted by CW

Answer 53

The time stamp sent by the user can be up to two weeks in the past and up to two hours into the future.

Question 54

Sending custom data to CW, what to do when the user data is more random and not generated at regular intervals?

Answer 54

For the period when there is no data the user should send the value as 0

Question 55

Characters allowed for IAM users, groups, roles and instance profiles

Answer 55

Names must contain only alphanumeric characters and/or the following: +=,.@-_

Question 56

If the load balancer is configured to support Server Order Preference…

Answer 56

…then the load balancer selects the first cipher in its list that is in the client’s list of ciphers.

Question 57

ASG monitoring type enabled by default

Answer 57

• basic monitoring: when you create the launch configuration using the AWS Management Console
• detailed monitoring: when you create the launch configuration using the AWS CLI or an API.

Question 58

Technology used for multi AZ

Answer 58

Multi AZ deployments for Oracle, PostgreSQL, and MySQL DB instances use Amazon
technology, while SQL Server (MS SQL) DB instances use SQL Server Mirroring.

Question 59

CW PutMetricData request size limit?

Answer 59

Each PutMetricData request is limited to 8 KB in size for HTTP GET requests and is limited to 40 KB in size for HTTP POST requests

Question 60

What happens If the

user has an IP address prefix in the VPC that overlaps with one of the networks’ prefixes?

Answer 60

If the
user has an IP address prefix in the VPC that overlaps with one of the networks’ prefixes, any traffic to the network’s prefix is dropped.

Question 61

How to to coordinate Availability Zones between accounts?

Answer 61

To ensure that resources are distributed across the Availability Zones for a region, we independently map Availability Zones to identifiers for each account. For example, your Availability Zone us-east-1a might not be the same location as us-east-1a for another account. There’s no way for you to coordinate Availability Zones between accounts.

Question 62

Maximum connection draining timeout?

Answer 62

The maximum timeout value can be set between 1 and 3,600 seconds (the default is 300 seconds).

Question 63

Data needed for sending custom metrics to CW

Answer 63

The user has to include the metric name,

namespace and timezone as part of the request.

Question 64

How can you aggregate CW data between regions?

Answer 64

Note that Amazon CloudWatch cannot aggregate data across regions. Metrics are completely separate between regions.
You have to aggregate the data.