AWS Cloud Prac. S.G Flashcards

Question 1

Q

What is AWS Database Migration Service (DMS)?

Answer

A

AWS Database Migration Service (DMS) helps you migrate databases to AWS easily and securely.

Question 2

Q

What is AWS OpsWorks?

Answer

A

AWS OpsWorks is a configuration management service that provides managed instances of Chef and Puppet.

Chef and Puppet are automation platforms that allow you to use code to automate the configurations of your servers.

Question 3

Q

What is AWS Application Migration Service?

Answer

A

AWS Application Migration Service is a highly automated lift-and-shift (rehost) solution that simplifies the process of migrating applications from physical, virtual, and cloud-based infrastructure, ensuring that they are fully operational in any AWS Region without compatibility issues.

Question 4

Q

What is AWS Application Discovery Service?

Answer

A

AWS Application Discovery Service helps enterprise customers plan migration projects by gathering information about their on-premises data centers.

Question 5

Q

What is AWS Support Concierge?

Answer

A

Included as part of the Enterprise Support plan, the Support Concierge Team are AWS billing and account experts that specialize in working with enterprise accounts. The Concierge team will quickly and efficiently assist you with your billing and account inquiries, and work with you to help implement billing and account best practices so that you can focus on running your business.

Short Ans: AWS Support Concierge Service assists customers with account and billing inquiries.

Question 6

Q

What is AWS Customer Service?

Answer

A

AWS Customer Service can help AWS customers with their billing and account inquiries, and it is included in all AWS support plans (Basic, Developer, Business, and Enterprise).

However, due to the fact that AWS Customer Service is not dedicated to specific types of inquiries, it is not as quick or as efficient as the AWS Support Concierge. AWS Support Concierge is available only for AWS Enterprise support subscribers and is dedicated only to help AWS customers with their billing and account inquiries.

Question 7

Q

What is AWS Operations Support?

Answer

A

AWS Operations Support is an Enterprise support program that provides operations assessments and analysis to identify gaps across the operations lifecycle, as well as recommendations based on best practices.

Question 8

Q

What is AWS Operations Support?

Answer

A

AWS Operations Support is an Enterprise support program that provides operations assessments and analysis to identify gaps across the operations lifecycle, as well as recommendations based on best practices.

Question 9

Q

What is AWS Health Dashboard?

Answer

A

The AWS Health Dashboard (previously AWS Personal Health Dashboard) is the single place to learn about the availability and operations of AWS services.

You can view the overall status of all AWS services, and you can sign in to access a personalized view of the health of the specific services that are powering your workloads and applications. AWS Health Dashboard proactively notifies you when AWS experiences any events that may affect you, helping provide quick visibility and guidance to minimize the impact of events in progress, and plan for any scheduled changes, such as AWS hardware maintenance.

Question 10

Q

What is AWS Infrastructure Event Managment?

Answer

A

AWS Infrastructure Event Management is a short-term engagement with AWS Support, included in the Enterprise-level Support product offering, and available for additional purchase for Business-level Support subscribers.

AWS Infrastructure Event Management partners with your technical and project resources to gain a deep understanding of your use case and provide architectural and scaling guidance for an event.

Common use-case examples for AWS Event Management include advertising launches, new product launches, and infrastructure migrations to AWS.

Question 11

Q

What is Amazon EFS?

Answer

A

Amazon EFS is a file-level storage technology that provides massively parallel shared access to thousands of Amazon EC2 instances, enabling your applications to achieve high levels of aggregate throughput and IOPS with consistently low latencies.

Question 12

Q

What is Amazon S3?

Answer

A

Amazon S3 is an object level storage built to store and retrieve any amount of data from anywhere – web sites and mobile apps, corporate applications, and data from IoT sensors or devices.

It is designed to deliver 99.999999999% durability, and stores data for millions of applications used by market leaders in every industry.

Question 13

Q

What is Amazon EBS?

Answer

A

Amazon EBS is a block-level storage that provides storage volumes for use with Amazon EC2 and Amazon RDS instances.

Question 14

Q

What is Amazon Instance Store?

Answer

A

An instance store provides temporary block-level storage for your EC2 instances. Instance store is ideal for temporary storage of information that changes frequently, such as buffers, caches, scratch data, and other temporary content.

Question 15

Q

What is AWS Trusted Advisor?

Answer

A

AWS Trusted Advisor is an online tool that provides you real time guidance to help you provision your resources following AWS best practices.

AWS Trusted Advisor offers a rich set of best practice checks and recommendations across five categories: cost optimization; security; fault tolerance; performance; and service limits (also referred to as service quotas).

AWS Trusted Advisor improves the security of your application by closing gaps, enabling various AWS security features, and examining your permissions.

Question 16

Q

What does AWS Trusted Advisor core security checks include?

Answer

A

1- Security Groups - Specific Ports Unrestricted.

2- Amazon S3 Bucket Permissions.

3- MFA on Root Account.

Question 17

Q

What is the AWS Trusted Advisor core security check “Security Groups” do?

Answer

A

Security Groups - Specific Ports Unrestricted:

Checks security groups for rules that allow unrestricted access to specific ports. Unrestricted access increases opportunities for malicious activity (hacking, denial-of-service attacks, loss of data).

Question 18

Q

What is the AWS Trusted Advisor core security check “Amazon S3 Bucket Permissions” do?

Answer

A

Amazon S3 Bucket Permissions:

Checks buckets in Amazon Simple Storage Service (Amazon S3) that have open access permissions.
Bucket permissions that grant List access to everyone can result in higher than expected charges if objects in the bucket are listed by unintended users at a high frequency.
Bucket permissions that grant Upload/Delete access to everyone create potential security vulnerabilities by allowing anyone to add, modify, or remove items in a bucket. This check examines explicit bucket permissions and associated bucket policies that might override the bucket permissions.

Question 19

Q

What is the AWS Trusted Advisor core security check “MFA on Root Account” do?

Answer

A

MFA on Root Account:

Checks the root account and warns if multi-factor authentication (MFA) is not enabled.

For increased security, AWS recommends that you protect your account by using MFA, which requires a user to enter a unique authentication code from their MFA hardware or virtual device when interacting with the AWS console and associated websites.

Question 20

Q

What is AWS Shield?

Answer

A

AWS Shield is a managed Distributed Denial of Service (DDoS) protection service that safeguards applications running on AWS.

AWS Shield does not provide security recommendations.

Question 21

Q

What is AWS Management Console?

Answer

A

The AWS Management Console is used to access and manage Amazon Web Services through a simple and intuitive web-based user interface.

The console itself doesn’t provide any recommendations

Question 22

Q

What is AWS Secrets Manager?

Answer

A

AWS Secrets Manager is a secrets management service that enables you to store, retrieve, rotate, audit, and monitor secrets centrally.

AWS Secrets Manager allows you to manage secrets such as database credentials, on-premises resource credentials, SaaS application credentials, third-party API keys, and Secure Shell (SSH) keys.

AWS Secrets Manager does not provide security

Question 23

Q

What is Disk disposal?

Answer

A

Disk disposal ( Storage Device Decommissioning): When a storage device has reached the end of its useful life, AWS procedures include a decommissioning process that is designed to prevent customer data from being exposed to unauthorized individuals.

All decommissioned magnetic storage devices are degaussed and physically destroyed in accordance with industry-standard practices.

Question 24

Q

What must an IAM user provide to interact with AWS services using the AWS Command Line Interface (AWS CLI)

Answer

A

Access Keys

Access keys consist of an access key ID and secret access key, which are used to sign programmatic requests to AWS using the CLI or the SDK.

Question 25

Q

Hundreds of thousands of DDoS attacks are recorded every month worldwide. What service does AWS provide to help protect AWS Customers from these attacks?

Answer

A

AWS Shield, AWS WAF

Question 26

Q

What do Amazon Route 53, Amazon CloudFront, Elastic Load Balancing, and AWS WAF have in common?

Answer

A

They control and absorb traffic and deflect unwanted requests.

Question 27

Q

What is Amazon Cognito?

Answer

A

Amazon Cognito allows you to add user sign-up, sign-in, and access control to your web and mobile apps quickly and easily.

Question 28

Q

What is AWS KWS?

Answer

A

AWS KMS provides a highly available key storage, management, and auditing solution for you to encrypt data within your own applications and control the encryption of stored data across AWS services.

Question 29

Q

What is AWS Config?

Answer

A

AWS Config is a service that enables you to monitor, assess, and audit all changes made to your AWS resources.

AWS Config is a fully managed service that provides you with an AWS resource inventory, configuration history, and configuration change notifications to enable security and governance.

With AWS Config you can discover existing AWS resources, export a complete inventory of your AWS resources with all configuration details, and determine how a resource was configured at any point in time. These capabilities enable compliance auditing, security analysis, and resource change tracking.

Question 30

Q

One of the most important AWS best-practices to follow is the cloud architecture principle of elasticity. How does this principle improve your architecture’s design?

Answer

A

By automatically provisioning the required AWS resources based on changes in demand

Question 31

Q

What is Amazon Relational Database?

Answer

A

Amazon Relational Database Service (Amazon RDS) makes it easy to set up, operate, and scale a relational database in the cloud.

It provides cost-efficient, resizable capacity while automating time-consuming administration tasks such as hardware provisioning, operating system maintenance, database setup, patching and backups.

It frees you to focus on your applications so you can give them the fast performance, high availability, security and compatibility they need.

Amazon RDS can be used to host Amazon Aurora, PostgreSQL, MySQL, MariaDB, Oracle, and Microsoft SQL Server databases.

Question 32

Q

What is Amazon Redshift

Answer

A

Amazon Redshift is not a MySQL database service. Amazon Redshift is a fully managed data warehouse service that makes it simple and cost-effective to analyze all your data using standard SQL and your existing Business Intelligence (BI) tools.

Question 33

Q

What is Amazon DynamoDB?

Answer

A

DynamoDB is serverless with no servers to provision, patch, or manage and no software to install, maintain, or operate. DynamoDB automatically scales tables up and down to adjust for capacity and maintain performance. Availability and fault tolerance are built in, eliminating the need to architect your applications for these capabilities.
Amazon DynamoDB is not a MySQL database service. Amazon DynamoDB is a fully managed NoSQL database service.

Question 34

Q

What is Amazon CloudWatch

Answer

A

Amazon CloudWatch is not a database service.

Amazon CloudWatch is a monitoring service that gives you complete visibility of your cloud resources and applications

You can use Amazon CloudWatch to collect and track metrics, collect and monitor log files, set alarms, and automatically react to changes in your AWS resources.

Question 35

Q

Which of the following services allows customers to manage their agreements with AWS?

Answer

A

AWS Artifact

Question 36

Q

What is AWS Artifact?

Answer

A

AWS Artifact is a self-service audit artifact retrieval portal that provides customers with on-demand access to AWS’ compliance documentation and AWS agreements.

You can use AWS Artifact Agreements to review, accept, and track the status of AWS agreements such as the Business Associate Addendum (BAA).

Question 37

Q

What is AWS Organizations?

Answer

A

AWS Organizations helps customers centrally govern their environments as they grow and scale their workloads on AWS.

Whether customers are a growing startup or a large enterprise, Organizations helps them to centrally manage billing; control access, compliance, and security; and share resources across their AWS accounts.

Question 38

Q

What is AWS Systems Manager?

Answer

A

AWS Systems Manager gives you visibility and control of your infrastructure on AWS.

Systems Manager provides a unified user interface so you can view operational data from multiple AWS services and allows you to automate operational tasks across your AWS resources.

Question 39

Q

What is AWS Certificate Manager?

Answer

A

AWS Certificate Manager is a service that lets you easily provision, manage, and deploy public and private Secure Sockets Layer/Transport Layer Security (SSL/TLS) certificates for use with AWS services and your internal connected resources

Question 40

Q

In order to implement best practices when dealing with a “Single Point of Failure,” you should attempt to build as much automation as possible in both detecting and reacting to failure. Which of the following AWS services would help?

Answer

A

Auto Scaling, ELB

Question 41

Q

What is Amazon CloudFront?

Answer

A

Amazon CloudFront is a global content delivery network (CDN) service that gives businesses and web application developers an easy and cost effective way to distribute content (such as videos, data, applications, and APIs) with low latency and high data transfer speeds.

Question 42

Q

What is AWS Direct Connect?

Answer

A

AWS Direct Connect allows you to establish a dedicated network connection from your premises to AWS.

Question 43

Q

What is AWS Regions?

Answer

A

An AWS Region is a physical location in the world where AWS have multiple Availability Zones.

Availability Zones consist of one or more discrete data centers, each with redundant power, networking, and connectivity, housed in separate facilities.

Question 44

Q

What is Amazon VPN?

Answer

A

AWS VPN is comprised of two services: AWS Site-to-Site VPN and AWS Client VPN.

AWS Site-to-Site VPN enables you to securely connect your on-premises network or branch office site to AWS.

AWS Client VPN enables you to securely connect users (from any location) to AWS or on-premises networks.

Question 45

Q

Which of the following does NOT belong to the AWS Cloud Computing models?

Answer

A

Software as a Service (SaaS)
Platform as a Service (PaaS)
Networking as a Service (NaaS)

Question 46

Q

What is Infrastructure as a Service (IaaS)?

Answer

A

Infrastructure as a Service (IaaS) contains the basic building blocks for cloud IT and typically provide access to networking features, computers (virtual or on dedicated hardware), and data storage space. IaaS provides you with the highest level of flexibility and management control over your IT resources and is most similar to existing IT resources that many IT departments and developers are familiar with today.

Question 47

Q

What is Platform as a Service (PaaS)

Answer

A

Platform as a Service (PaaS) removes the need for your organization to manage the underlying infrastructure (usually hardware and operating systems) and allows you to focus on the deployment and management of your applications.

This helps you be more efficient as you don’t need to worry about resource procurement, capacity planning, software maintenance, patching, or any of the other undifferentiated heavy lifting involved in running your application.

Question 48

Q

What is Software as a Service (SaaS) ?

Answer

A

Software as a Service (SaaS) provides you with a completed product that is run and managed by the service provider.

In most cases, people referring to Software as a Service are referring to end-user applications. With a SaaS offering you do not have to think about how the service is maintained or how the underlying infrastructure is managed; you only need to think about how you will use that particular piece of software.

A common example of a SaaS application is web-based email which you can use to send and receive email without having to manage feature additions to the email product or maintain the servers and operating systems that the email program is running on.

Question 49

Q

What is the AWS service that enables AWS architects to manage infrastructure as code?

Answer

A

AWS CloudFormation

Question 50

Q

What is Amazon SES?

Answer

A

Amazon SES refers to the Amazon Simple Email service. Amazon Simple Email Service (Amazon SES) is a cloud-based email sending service designed to help digital marketers and application developers send marketing, notification, and transactional emails.

Question 51

Q

What is Amazon EMR

Answer

A

Amazon EMR is used to run and scale Apache Spark, Hadoop, Presto, and other Big Data Frameworks.

Amazon EMR launches clusters in minutes. You don’t need to worry about node provisioning, infrastructure setup, Hadoop configuration, or cluster tuning. Amazon EMR takes care of these tasks so you can focus on analysis.

Question 52

Q

What is AWS CloudTrail?

Answer

A

AWS CloudTrail is an AWS service that can be used to monitor all user interactions with the AWS environment.

Question 53

Q

What do you gain from setting up consolidated billing for five different AWS accounts under another master account?

Answer

A

Each AWS account gets volume discounts

AWS consolidated billing enables an organization to consolidate payments for multiple AWS accounts within a single organization by making a single paying account.

For billing purposes, AWS treats all the accounts on the consolidated bill as one account.

Question 54

Q

What is AWS Partner Solutions?

Answer

A

AWS Partner Solutions (formerly AWS Quick Starts) outline the architectures for popular enterprise solutions on AWS and provide AWS CloudFormation templates to automate their deployment.

Each Partner Solution launches, configures, and runs the AWS compute, network, storage, and other services required to deploy a specific workload on AWS, using AWS best practices for security and availability.

Question 55

Q

A Japanese company hosts their applications on Amazon EC2 instances in the Tokyo Region. The company has opened new branches in the United States, and the US users are complaining of high latency. What can the company do to reduce latency for the users in the US while minimizing costs?

Answer

A

Deploying new Amazon EC2 instances in a Region located in the US

Question 56

Q

Which service provides DNS in the AWS cloud?

Question 57

Q

What is Amazon Route S3?

Answer

A

Amazon Route 53 is a global service that provides highly available and scalable Domain Name System (DNS) services, domain name registration, and health-checking web services.

It is designed to give developers and businesses an extremely reliable and cost effective way to route end users to Internet applications by translating names like example.com into the numeric IP addresses, such as 192.0.2.1, that computers use to connect to each other.

Route 53 also simplifies the hybrid cloud by providing recursive DNS for your Amazon VPC and on-premises networks over AWS Direct Connect or AWS VPN.

Question 58

Q

What is Amazon Inspector?

Answer

A

Amazon Inspector is an automated security assessment service that helps improve the security and compliance of applications deployed on AWS.

Amazon Inspector automatically assesses applications for vulnerabilities or deviations from best practices. After performing an assessment, Amazon Inspector produces a detailed list of security findings prioritized by level of severity. These findings can be reviewed directly or as part of a detailed assessment report which is available via the Amazon Inspector console or API.

To help get started quickly, Amazon Inspector includes a knowledge base of hundreds of rules mapped to common security best practices and vulnerability definitions. Examples of built-in rules include checking for remote root login being enabled, or vulnerable software versions installed. These rules are regularly updated by AWS security researchers.

Question 59

Q

What is Amazon SNS?

Answer

A

Amazon SNS is a pub/sub messaging service that enables you to decouple microservices, distributed systems, and serverless applications.

Question 60

Q

You want to run a questionnaire application for only one day (without interruption), which Amazon EC2 purchase option should you use?

Answer

A

On-demand instances

Question 61

Q

What are On-Demand instances?

Answer

A

With On-Demand instances, you pay for compute capacity by the hour or second (minimum of 60 seconds) with no long-term commitments. You can increase or decrease your compute capacity depending on the demands of your application and only pay for what you use.

The use of On-Demand instances frees you from the costs and complexities of planning, purchasing, and maintaining hardware and transforms what are commonly large fixed costs into much smaller variable costs. On-Demand instances also remove the need to buy “safety net” capacity to handle periodic traffic spikes.

There are no startup or termination fees associated with Amazon EC2.

Question 62

Q

Under the shared responsibility model, what is the responsibility of AWS?

Answer

A

Under the shared responsibility model, AWS is responsible for the hardware and software that run AWS services. This includes patching the infrastructure software and configuring infrastructure devices. As a customer, you are responsible for implementing best practices for data encryption, patching guest operating system and applications, identity and access management, and network & firewall configurations.

Question 63

Q

What are the principles identified by the well-architected framework

Answer

A

1- Stop guessing your capacity needs
2- Test systems at production scale
3- Automate to make architectural experimentation easier
4- Allow for evolutionary architectures
5- Drive architectures using data
6- Improve through game days

Question 64

Q

What is Amazon VPC?

Answer

A

Amazon Virtual Private Cloud (Amazon VPC) lets you provision a logically isolated section of the AWS Cloud where you can launch AWS resources in a virtual network that you define.

You have complete control over your virtual networking environment. Amazon VPC is not a managed service, you are responsible for managing almost everything when using the Amazon VPC service.

Answer 64

A

Amazon Elastic Compute Cloud (Amazon EC2) is a service that gives you complete control over your compute resources.

Apart from patching the underlying host - which is the responsibility of AWS - you are responsible for managing almost everything in your server instances when using Amazon EC2.

Answer 65

A

AWS Identity and Access Management (IAM) enables you to manage access to AWS services and resources securely.

Using IAM, you can create and manage AWS users and user groups, and use permissions to allow and deny their access to AWS resources.

Answer 66

A

Amazon VPC

Answer 67

A

A subnet is a range of IP addresses within a VPC.

Answer 68

A

An Amazon EC2 Dedicated Host is a physical server with EC2 instance capacity fully dedicated to your use.

Dedicated Hosts can save you money by enabling you to leverage your existing server-bound software license investments (e.g., Windows Server, Windows SQL Server, and SUSE Linux Enterprise Server) within EC2, subject to your license terms. Dedicated Hosts also give you more flexibility, visibility, and control over the placement of instances on dedicated hardware. This makes it easier to ensure you deploy your instances in a way that meets your compliance and regulatory requirements.

Answer 69

A

Scaling horizontally takes place through an increase in the number of resources (e.g., adding more hard drives to a storage array or adding more servers to support an application).

This is a great way to build Internet-scale applications that leverage the elasticity of cloud computing.

Answer 70

A

Scaling vertically takes place through an increase in the specifications of an individual resource (e.g., upgrading a server with a larger hard drive, adding more memory, or provisioning a faster CPU).

On Amazon EC2, this can easily be achieved by stopping an instance and resizing it to an instance type that has more RAM, CPU, I/O,or networking capabilities. This way of scaling can eventually hit a limit and it is not always a cost efficient or highly available approach. However, it is very easy to implement and can be sufficient for many use cases especially as a short term solution.

Answer 71

A

Horizontal Scaling

Vertical-scaling is often limited to the capacity constraints of a single machine, scaling beyond that capacity often involves downtime and comes with an upper limit. With horizontal-scaling it is often easier to scale dynamically by adding more machines in parallel. Hence, in most cases, horizontal-scaling is recommended over vertical-scaling.

Answer 72

A

All accounts can receive the hourly cost benefit of the Reserved Instances

Answer 73

A

AWS Edge Locations

Answer 74

A

1) Centrally manage access polices across multiple AWS accounts.

2) Automate AWS account creation and management.

3) Control access to AWS services.

4) Consolidate billing across multiple AWS accounts.

5) Configure AWS services across multiple accounts.

Answer 75

A

An IAM user group is a collection of IAM users - within the same AWS account - that are managed as a unit.

IAM user groups let customers specify permissions for multiple users, which can make it easier to manage the permissions for those users. For example, customers could have a user group called Admins and give that user group the types of permissions that administrators typically need.

Answer 76

A

Amazon DynamoDB

Answer 77

A

You should grant your users only the permissions they need when they need them and nothing more

Answer 78

A

IAM user groups

Answer 79

A

Reduces inter-dependencies so that failures do not impact other components of the application

As application complexity increases, a desirable attribute of an IT system is that it can be broken into smaller, loosely coupled components. This means that IT systems should be designed in a way that reduces interdependencies—a change or a failure in one component should not cascade to other components.

On the other hand if the components of an application are tightly coupled and one component fails, the entire application will also fail.

Answer 80

A

Implement elasticity

Answer 81

A

Technical Account Manager (TAM)

Answer 82

A

An AWS Identity and Access Management (IAM) user is an entity that you create in AWS to represent the person or service that uses it to directly interact with AWS.

A primary use for IAM users is to grant individuals access to the AWS Management Console for interactive tasks and / or to make programmatic requests to AWS services using the API or CLI.

Answer 83

A

AWS Consulting Partners are professional services firms that help customers design, architect, build, migrate, and manage their workloads and applications on AWS.

Consulting Partners include System Integrators, Strategic Consultancies, Agencies, Managed Service Providers, and Value-Added Resellers.

Answer 84

A

All of the physical security and most of the data/network security are taken care of for you

Increasing speed and agility

Answer 85

A

Shared Controls are controls which apply to both the infrastructure layer and customer layers, but in completely separate contexts or perspectives. In a shared control, AWS provides the requirements for the infrastructure and the customer must provide their own control implementation within their use of AWS services.

Answer 86

A

Creating snapshots of EBS Volumes can help ensure that you have a backup of your EBS volumes just in case any issues arise. You can use Amazon Data Lifecycle Manager (Amazon DLM) to automate the creation, retention, and deletion of EBS snapshots.

Automating snapshot management with Amazon DLM helps you to:

Protect valuable data by enforcing a regular backup schedule.
Retain backups as required by auditors or internal compliance.
Reduce storage costs by deleting outdated backups.
Create disaster recovery backup policies that back up data to isolated accounts.

Answer 87

A

The S3 Intelligent-Tiering storage class is designed to optimize costs by automatically moving data to the most cost-effective access tier, without performance impact or operational overhead.

It works by storing objects in two access tiers: one tier that is optimized for frequent access and another lower-cost tier that is optimized for infrequent access

Answer 88

A

Amazon S3 Glacier Deep Archive is an extremely low-cost storage service that provides secure, durable, and flexible storage for long-term data backup and archival.

Answer 89

A

AWS Snowball is a petabyte-scale data transport solution that uses secure appliances to transfer large amounts of data into and out of the AWS cloud.

Using Snowball addresses common challenges with large-scale data transfers, including high network costs, long transfer times, and security concerns.

AWS Customers use Snowball to migrate analytics data, genomics data, video libraries, image repositories, and backups. Transferring data with Snowball is simple, fast, secure, and can cost as little as one-fifth the cost of using high-speed internet.

Answer 90

A

Amazon Simple Queue Service (SQS) is a fully managed message queuing service that enables you to send, store, and receive messages between software components at any volume, without losing messages or requiring other services to be available.

SQS lets you decouple application components so that they run independently, increasing the overall fault tolerance of the system. Multiple copies of every message are stored redundantly across multiple availability zones so that they are available whenever needed.

Answer 91

A

Amazon Connect is a cloud-based contact center service that makes it easy for businesses to deliver customer service at low cost.

Answer 92

A

AWS Direct Connect is a cloud service solution that is used to establish a dedicated network connection between your premises and AWS.

Answer 93

A

AWS Auto Scaling is the feature that automates the process of adding/removing server capacity (based on demand).

Autoscaling allows you to reduce your costs by automatically turning off resources that aren’t in use. On the other hand, Autoscaling ensures that your application runs effectively by provisioning more server capacity if required.

Answer 94

A

AWS Budgets gives you the ability to set custom budgets that alert you when your costs or usage exceed (or are forecasted to exceed) your budgeted amount.

Answer 95

A

AWS Elastic Load Balancer (ELB) is a service that distributes the incoming application traffic to multiple targets that you define.

Answer 96

A

AWS Cost Explorer provides an easy-to-use interface that lets you visualize, understand, and manage your AWS costs and usage over time.

Answer 97

A

Amazon Aurora is a MySQL and PostgreSQL-compatible relational database built for the cloud.

Amazon Aurora combines the performance and availability of traditional enterprise databases with the simplicity and cost-effectiveness of open source databases. It delivers up to five times the throughput of standard MySQL and up to three times the throughput of standard PostgreSQL.

Amazon Aurora is designed to be compatible with MySQL and with PostgreSQL, so that existing applications and tools can run without requiring modification. It is available through Amazon Relational Database Service (RDS), freeing you from time-consuming administrative tasks such as provisioning, patching, backup, recovery, failure detection, and repair.

Answer 98

A

Amazon Neptune is a graph database service, not a MySQL database service. Amazon Neptune is used to build and run applications that work with highly connected datasets, such as social networking, recommendation engines, and knowledge graphs.

Answer 99

A

Spot instances provide a discount (up to 90%) off the On-Demand price. The Spot price is determined by long-term trends in supply and demand for EC2 spare capacity. If the Spot price exceeds the maximum price you specify for a given instance or if capacity is no longer available, your instance will automatically be interrupted.

     Spot Instances are a cost-effective choice if you can be flexible about when your applications run and if you don't mind if your applications get interrupted. For example, Spot Instances are well-suited for data analysis, batch jobs, background processing, and optional tasks.

Answer 100

A

Reserved instances are recommended for Customers who can commit to using EC2 over a 1 or 3-year term to reduce their total computing costs. Even if the project will last for more than a year, the cost-benefit for acquiring Reserved Instances is not as great as the cost-benefit from using Spot Instances. The Spot option provides the largest discount (up to 90%).

Answer 101

A

Dedicated instances are used when you need your instances to be physically isolated at the host hardware level from instances that belong to other AWS accounts. Dedicated instances are significantly more expensive than Spot Instances.

Answer 102

A

The AWS Abuse team can assist you when AWS resources are being used to engage in the following types of abusive behavior:
I. Spam
II. Port scanning
III. Denial of service attacks (DOS)
IV. Intrusion attempts
V. Hosting objectionable or copyrighted content
VI. Distributing malware

Answer 103

A

The AWS Management Console allows you to access and manage Amazon Web Services through a simple and intuitive web-based user interface. You can also use the AWS Console mobile app to quickly view resources on the go.

Answer 104

A

The AWS Command Line Interface (CLI) is a unified tool to manage your AWS services. With just one tool to download and configure, you can control multiple AWS services from the command line and automate them through scripts.

Answer 105

A

The AWS SDK (Software Development Kit) allows you to interact with AWS services using your preferred programming language.

Answer 106

A

AWS Finance Team provides data driven analysis, strategic decision support, financial planning, and controllership to teams that plan and build data centers, design and source servers, and develop and sell cloud services at massive scale to developers and businesses all over the world.

Answer 107

A

You can use the Amazon Virtual Private Cloud console to launch AWS resources, such as Amazon EC2 instances. You can use it to specify an IP address range for the VPC, add subnets, associate security groups, and configure route tables.

Answer 108

A

An Amazon EBS volume is a durable, block-level storage device that you can attach to a single EC2 instance.

You can use EBS volumes as primary storage for data that requires frequent updates, such as the system drive for an instance or storage for a database application. You can also use them for throughput-intensive applications that perform continuous disk scans.

Answer 109

A

AWS Storage Gateway is not a caching service, it is a hybrid storage service that enables your on-premises applications to seamlessly use AWS cloud storage.

Answer 110

A

AWS Storage Gateway is not a caching service, it is a hybrid storage service that enables your on-premises applications to seamlessly use AWS cloud storage.

Answer 111

A

The AWS Cost & Usage Report is your one-stop shop for accessing the most detailed information available about your AWS costs and usage.

The AWS Cost & Usage Report lists AWS usage for each service category used by an account and its IAM users in hourly or daily line items, as well as any tags that you have activated for cost allocation purposes.

Answer 112

A

1- Accelerate static website content delivery.
- CloudFront can speed up the delivery of your static content (for example, images, style sheets, JavaScript, and so on) to viewers across the globe. By using CloudFront, you can take advantage of the AWS backbone network and CloudFront edge servers to give your viewers a fast, safe, and reliable experience when they visit your website.

2- Live & on-demand video streaming.
- The Amazon CloudFront CDN offers multiple options for streaming your media – both pre-recorded files and live events – at sustained, high throughput required for 4K delivery to global viewers.
3- Security.
- CloudFront integrates seamlessly with AWS Shield for Layer 3/4 DDoS mitigation and AWS WAF for Layer 7 protection.
4- Customizable content delivery with Lambda@Edge.
- Lambda@Edge is a feature of Amazon CloudFront that lets you run code closer to users of your application, which improves performance and reduces latency.

Answer 113

A

AWS CloudFormation allows you to use programming languages or a simple text file to model and provision, in an automated and secure manner, all the resources needed for your applications across all regions and accounts.

Answer 114

A

Amazon Kinesis Video Streams enables you to securely stream video from connected devices (IoT devices) to AWS for analytics, machine learning (ML), playback, and other processing.

Kinesis Video Streams automatically provisions and elastically scales all the infrastructure needed to ingest streaming video data from millions of devices. It durably stores, encrypts, and indexes video data in your streams, and allows you to access your data through easy-to-use APIs.

Brainscape's Knowledge GenomeTM

AWS Cloud Prac. S.G Flashcards

Brainscape's Knowledge Genome^TM