AWS-Tech Concepts

Question 1

What is an AWS Availability Zone?

Answer 1

An Availability Zone (AZ) is a logical group of one or more data centres with redundant power, networking and low-latency connectivity.

Question 2

What is Cloud Computing?

Answer 2

Cloud Computing is the on-demand delivery of IT resources and applications, via the internet, with pay as you go pricing.

Question 3

What is Cloud Formation

Answer 3

Cloud Formation is an AWS service that enables the creation of templates and automate the provisioning of environments.

Question 4

What are characteristics of Elasticity ?

Answer 4

• scale resources up or down easily.
• quick deployment
• instantly scale up
• instantly shut down resources that are no longer required.

Question 5

What is Fault Tolerance?

Answer 5

Is the property that enables a system to continue operating properly in the event of a failure of one or more of its components.

Question 6

What is an AWS Region?

Answer 6

A geographical location in the world, that can contain 1 or more availability zones.

Question 7

What is CloudFront?

Answer 7

Amazon CloudFront is a web service that accelerates distribution of content.

CloudFront delivers your content through a worldwide network of data centers called edge locations, located in high-populated areas.

Question 8

What are Edge Locations?

Answer 8

Edge locations are Data centers located in highly populated areas where Amazon deploys it’s CDN - Cloud front and DNS service.

Question 9

What services are run at the edge locations?

Answer 9

• Amazon Route 53
• Cloudfront
• AWS WAF
• AWS Shield

Question 10

What are reserved instances ?

Answer 10

Purchased instances with a 1-3 year term at a significant discount.

Question 11

What are Scheduled Instances ?

Answer 11

Purchased instances that are always available on the specified recurring schedule. 1 year term only.

Question 12

What are spot instances?

Answer 12

Spot instances are unused instances in AWS, that customers can use intermitently.

The instance runs as long as possible, provided your price request is above the spot price.

This is ideal for workloads that can be interrupted.

Question 13

What are dedicate instances ?

Answer 13

Dedicated Instances are EC2 Instances that run in a VPC, on hardware that’s dedicated to a single account (customer).

Question 14

What are dedicated hosts?

Answer 14

pay for a physical host, single tenant.

Question 15

What is a VPC ?

Answer 15

A VPC is a virtual private network, dedicated to your AWS account.

Question 16

What is SSE ?

Answer 16

Server Side Encryption (SSE) * Amazon S3 Managed keys (SSE-S3) * KMS (SSE-KMS) (provides audit logs) * Customer-Provided Keys (SSE-C)

Question 17

What is RRS ?

Answer 17

Reduced Redundancy Storage

Question 18

What is the availability on RRS?

Answer 18

99.99%

Question 19

What is the durability of RSS?

Answer 19

99.99%

Question 20

What is the durability of S3?

Answer 20

99.999999999%

Question 21

What is the availability on S3?

Answer 21

99.99%

Question 22

What is the minimum files size on S3?

Answer 22

1 Byte

Question 23

What’s the meaning of PCI-DSS?

Answer 23

Payment Card Industry - Data Security Standard

Question 24

What is AWS Organizations?

Answer 24

AWS Organizations is an account management service that enables you to consolidate multiple AWS accounts into an organization that you create and centrally manage.

Question 25

How many ways are there to share S3 buckets accross accounts?

Answer 25

There are 3 possible ways, 2 programmatic only and one programmatic and console

Question 26

What are 3 ways of sharing buckets accross accounts?

Answer 26

1. Bucket Policies and IAM:
   
   • applies to entire bucket
   • Programmatic access only
2. Bucket ACLs and IAM
   
   • Individual Objects
   • Programmatic access only
3. Cross-account IAM Roles
   
   • Programmatic and console.

Question 27

What is a region ?

Answer 27

A region is a physical location in the world with 2 or more availability zones.

Question 28

What is an Availability Zone ?

Answer 28

An Availability Zone is a discreet data centre, with redundant power, networking and connectivity. Two Availability zones that are within a few miles of each other are classified as the same availability zone.

Question 29

What is an Edge Location ?

Answer 29

1)These are endpoint which AWS uses to cache content. 2) Cloudfront is the technology behind this. 3) This is a content delivery Network

Question 30

What are best practices of the root account?

Answer 30

• Enable MFA
• Use a stron password
• Use it for billing purposes only
• Do not deploy resources into the paying account.
• Use Service Control Policies (SCP) on OU or on individual accounts.

Question 31

What does SAML stands for?

Answer 31

Security Assertion Markup Language

Question 32

What is SAML and how does AWS uses it?

Answer 32

SAML allows federated users to authenticate and use AWS resources.

Question 33

In what language are policy documents written?

Answer 33

JSON

Question 34

What can you do to prevent your billing from exceding X amount?

Answer 34

By setting a billing alarm, which uses an SNS notification.

• Log in to your account.
• Go to North Virginia
• Go to CloudWatch - > Billing
• Create an Alarm, set up your threshold
• Create a new SNS notification.
• Confirm your email