AWS Cloud Practitioner Essentiald Flashcards
1
Q
What model does AWS use?
A
A client-server model
2
Q
What does cloud mean for AWS?
A
The on demand delivery of IT resources over the internet with pay as you go pricing
3
Q
What is the undifferentiated heavy lifting of IT?
A
Common, repetitive, and time consuming tasks
4
Q
What are the three cloud computing deployment models?
A
Cloud-based, on prem, and hybrid
5
Q
What is on prem deployment also known as?
A
Private cloud deployment
6
Q
How does the scale of cloud of computing help to save costs?
A
The aggregated cloud usage from a large number of customers results in lower pay as you go prices
7
Q
When compared to on-prem servers, AWS EC2 servers are…
A
Highly flexible, cost effective, and quick
8
Q
Define multitenancy
A
Sharing underlying hardware between virtual machines
9
Q
What is vertically scaling an instance?
A
Making an instance bigger or smaller
10
Q
What is CaaS?
A
Compute as a service
11
Q
What is Amazon EC2?
A
Amazon elastic compute cloud: a secure, resizable capacity in the cloud
12
Q
What are the different instance families of Amazon EC2s?
A
General purpose, compute optimized, memory optimized, accelerated computing, storage optimized
13
Q
What are memory instance types ideal for?
A
High-performance databases
14
Q
What are storage optimized EC2 instance types best for?
A
Data warehousing applications
15
Q
What are general purpose EC2 instance types best at?
A
Balancing compute, memory, and networking resources
16
Q
What are compute optimized EC2 instance types best for?
A
Jobs needing high performance processors
17
Q
What are the Amazon EC2 pricing types?
A
On demand, savings plan, reserved instances, spot instances, dedicated hosts
18
Q
What AWS service takes away the worrying of matching customer demand with your compute power?
A
Amazon EC2 Auto scale
19
Q
If you do not specify a desired amount of EC2 instances when created an autoscale group, what does the desired amount default to?
A
The minimum amount of EC2 instances
20
Q
What is a load balancer?
A
A load balancer takes on requests and routes then servers
21
Q
What is elastic load balancing?
A
Amazon’s service to address the undifferentiated heavy lifting of load balancing
22
Q
What is the advantage of loosely coupled architecture over tightly coupled architecture?
A
Loosely coupled architecture does not have cascading failures from a single failure
23
Q
What does Amazon simple que service (SQS) allow?
A
Send, store, and receive message between software components at any volume
24
Q
What is a payload?
A
The data contained within a message
25
What is a simple definition of Amazon SQS?
Where messages are placed until they are processed
26
What is an Amazon SNS topic?
A channel for messages to be delivered
27
What can tightly coupled architectures be called?
A monolithic application
28
What approach creates a loosely coupled architecture?
A micro service approach
29
Which AWS service is the best for publishing messages to subscribers?
Amazon SNS
30
What are EC2 instances?
Virtual machines
31
What does serverless mean?
You cannot see or access the underlying infrastructure
32
Is AWS Lambda serverless?
Yes
33
What is a container?
A package for code
34
What is AWS Fargate?
A server less compute platform
35
What Amazon services are docker container based?
Amazon ECS and Amazon EKS
36
What is the benefit of serverless?
No need to manage and maintain the servers and the OS
37
What is batch processing?
The process by which a computer completes batches of jobs, often simultaneously in non-stop, sequential order
38
Define latency
The time it takes for data to be sent and received
39
What is Amazon braket?
Amazon’s quantum computing platform
40
What are the 4 key business factors for choosing a AWS region?
Compliance, proximity, feature availability, pricing
41
What is an availability zone?
A single data center or a group of data centers within a Region.
42
Does every AWS region have multiple availability zones?
Yes
43
How many availability zones does AWS recommend you run in a region?
At least 2
44
How far apart are availability zones?
10s of miles
45
What is an AWS region?
A separate geographical location with multiple locations that are isolated from each other.
46
What is an edge location?
a site that Amazon CloudFront uses to store cached copies of your content closer to your customers for faster delivery.
47
Why does API stand for?
Application programming interface
48
What is the purpose of Amazon Command Line Interface?
Make API calls using the terminal on your machine
49
What is the purpose of AWS software development kits?
To interact with AWS resources through various programming languages
50
What is AWS management console?
a web-based interface for accessing and managing AWS services.
51
What are the 3 main ways to interact with AWS?
AWS console management, AWS command line interface, AWS software development kits
52
What is AWS CloudFormation for?
build an environment by writing lines of code instead of using the AWS Management Console to individually provision resources. Allows easy duplication of provisions
53
What do you provide to AWS elastic beanstalk?
Code and configuration settings
54
With code and configuration settings you provide, what can AWS elastic beanstalk do?
Adjust capacity, load balancing, automatic scaling, application health monitoring
55
What does Amazon Virtual Private Cloud do?
provision an isolated section of the AWS Cloud
56
What is a subnet?
A section of a VPC that can contain resources such as Amazon EC2 instances
57
What is needed to allow public traffic from the internet to access your VPC?
An internet gateway
58
What is needed for only authorized individuals to access a VPC?
A virtual private gateway
59
What is AWS direct connect?
a service that enables you to establish a dedicated private connection between your data center and a VPC.
60
In a VPC, can subnets communicate with each other?
Yes
61
What is a packet?
A unit of data sent over the internet or a network
62
For a packet to enter or exit a subnet, what must it get past?
A network access control list
63
What is a network access control list?
a virtual firewall that controls inbound and outbound traffic at the subnet level.
64
What does network ACL being stateless mean?
They remember nothing and check packets that cross the subnet border each way: inbound and outbound.
65
What is security group?
a virtual firewall that controls inbound and outbound traffic for an Amazon EC2 instance.
66
What does security groups being stateful mean?
They remember previous decisions made for incoming packets.
67
What is the network ACL’s default setting?
Allows all inbound and outbound traffic
68
What is domain name system (DNS) resolution?
DNS resolution is the process of translating a domain name to an IP address.
69
What is Amazon route 53?
a DNS web service. It gives developers and businesses a reliable way to route end users to internet applications hosted in AWS.
70
What is Amazon RDS?
Amazon Relational Database Service is a distributed relational database service by Amazon Web Services.
71
Which component or service can be used to establish a private dedicated connection between your company’s data center and AWS?
AWS direct connect
72
What does block level storage behave like?
Physical hard drives
73
What is an instance store?
An instance store is disk storage that is physically attached to the host computer for an EC2 instance, and therefore has the same lifespan as the instance.
74
What happens to an instance store when its EC2 is deleted?
It is also deleted
75
What is Amazon elastic block level storage?
A service that provides block-level storage volumes that you can use with Amazon EC2 instances
76
What happens to Amazon EBS when it’s EC2 is terminated?
The data on the attached EBS volume remains available
77
What is an EBS snapshot?
An incremental backup
78
In object storage, what does each object consist of?
Data, metadata, and a key
79
What is Amazon simple storage service?
a service that provides object-level storage
80
How does Amazon s3 store data?
As objects in buckets
81
What are the Amazon s3 storage classes?
Standard, standard infrequent access, one zone infrequent access, intelligent tiering, glacier, and glacier deep archive
82
What is Amazon elastic file system?
scalable file system used with AWS Cloud services and on-premises resources.
83
Does Amazon EBS or Amazon EFS scale automatically?
Amazon EFS
84
How is data stored in a relational database?
in a way that relates it to other pieces of data.
85
What is Amazon relational database service?
a service that enables you to run relational databases in the AWS Cloud.
86
What does Amazon RDS automate?
Hardware provisioning, database setup, patching, and backups
87
What is Amazon aurora?
A relational database management system built for the cloud with full MySQL and PostgreSQL compatibility
88
What is Amazon DynamoDB?
a key-value database service
89
Is dynamoDB serverless?
Yes
90
Does dynamoDB need you to scale its resources?
No
91
What is Amazon redshift?
A data warehousing service that you can use for big data analytics
92
What is AWS database migration service?
enables you to migrate relational databases, nonrelational databases, and other types of data stores.
93
When using AWS DMS, can the source database and target database be different types?
Yes
94
What is Amazon documentDB?
a document database service that supports MongoDB workloads. (MongoDB is a document database program.)
95
What is Amazon Neptune?
a graph database service
96
What is Amazon quantum ledger database?
a ledger database service.
97
What is Amazon managed blockchain?
a service that you can use to create and manage blockchain networks with open-source frameworks.
98
What is Amazon elasticache?
a service that adds caching layers on top of your databases to help improve the read times of common requests.
99
What is Amazon dynamoDB Accelerator?
an in-memory cache for DynamoDB
100
Across how many availability zones does Amazon EBS store data?
One
101
Across how many availability zones does Amazon EFS store data across?
Multiple
102
What security is AWS customers responsibility?
Security in the cloud
103
What security is the responsibility of AWS?
Security of the cloud
104
What does AWS identity and access management enable?
The managing of access to AWS services and resources securely.
105
Who is the root user?
The person who created the AWS account
106
Should you sign in as the root user for everyday tasks?
No, use a IAM account
107
What is an IAM user?
an identity that you create in AWS. It represents the person or application that interacts with AWS services and resources.
108
What does an IAM user consist of?
a name and credentials.
109
How many IAM users should there be?
One for each person trying to access AWS
110
What is an IAM policy?
a document that allows or denies permissions to AWS services and resources.
111
How much access should you grant an IAM user?
The least amount possible
112
What happens when you assign a policy to IAM group?
All the IAM users in that group are granted the permissions specified by the policy
113
What is an IAM role?
an identity that you can assume to gain temporary access to permissions
114
What does AWS organizations do?
consolidate and manage multiple AWS accounts within a central location.
115
When you create an AWS organization, what is automatically created?
A root which is the parent container for all the accounts in your organization
116
When in AWS organizations, what can you use to place restrictions on the AWS services, resources, and individual API actions that users and roles in each account can access?
Service control policies
117
When in AWS organizations, what can you do to make it easier to manage accounts with similar business or security requirements?
Group accounts into organizational units
118
Who can you apply service control policies to?
Individual member accounts, the organization root, and organizational units
119
What is AWS artifacts?
a service that provides on-demand access to AWS security and compliance reports and select online agreements.
120
What two main sections make up AWS artifacts?
AWS Artifact Agreements and AWS Artifact Reports.
121
What is a distributed denial of service attack?
a deliberate attempt to make a website or application unavailable to users.
122
What is AWS Shield?
a service that protects applications against DDoS attacks.
123
What are the two levels of protection offered by AWS shield?
Standard and advanced
124
What is AWS key management service?
A service that enables you to perform encryption operations through the use of cryptographic keys
125
What is a cryptographic key?
a random string of digits used for locking (encrypting) and unlocking (decrypting) data.
126
What is AWS WAF?
a web application firewall that lets you monitor network requests that come into your web applications.
127
What is Amazon inspector?
A way to perform automated security assessments on your own stuff
128
What is Amazon guard duty?
a service that provides intelligent threat detection for your AWS infrastructure and resources.
129
What is Amazon cloud watch?
a web service that enables you to monitor and manage various metrics and configure alarm actions based on data from those metrics.
130
With cloud watch, what can you create that automatically perform actions if the value of your metric has gone above or below a predefined threshold?
A cloud watch alarm
131
What is Amazon cloud watch dashboard?
A feature that enables you to access all the metrics for your resources from a single location.
132
What is AWS cloud trail ?
records API calls for your account
133
What does AWS cloudtrail record?
Identity of the API caller, the time of the API call, the source IP address of the API caller, and more.
134
When you enable cloudtrail insights, what does this do?
allows CloudTrail to automatically detect unusual API activities in your AWS account.
135
What is AWS trusted advisor?
a web service that inspects your AWS environment and provides real-time recommendations in accordance with AWS best practices.
136
What categories of evaluations does AWS trusted advisor have?
cost optimization, performance, security, fault tolerance, and service limits
137
In the AWS free tier, what are the 3 offers?
Always free, 12 months free, and trails
138
What is the AWS pricing calculator?
A service that lets you explore AWS services and create an estimate for the cost of your use cases on AWS.
139
What is the AWS billing and cost management dashboard for?
to pay your AWS bill, monitor your usage, and analyze and control your costs.
140
What is consolidated billing?
receive a single bill for all AWS accounts in your organization.
141
What AWS feature enables consolidated billing?
AWS organizations
142
What allows you to share bulk discount pricing, savings plans, and reserved instances across the accounts in your organization?
Consolidated billing
143
What does AWS budgets do?
create budgets to plan your service usage, service costs, and instance reservations.
144
How many times a day does the information in AWS budgets update?
3 times
145
What is AWS cost explorer?
a tool that enables you to visualize, understand, and manage your AWS costs and usage over time.
146
How many support plans does AWS offer and what are they?
4: basic, developer, business, enterprise
147
Which support selection is free?
Basic?
148
How do you pay for support plans?
Pay as you go pricing
149
Do you have unlimited access to AWS trusted advisor checks with the basic support plan?
No
150
What is the AWS personal health dashboard?
a tool that provides alerts and remediation guidance when AWS is experiencing events that may affect you.
151
For the paid support plans, list them from cheapest to most expensive
Developer, business, enterprise
152
Which plan is the cheapest that offers unlimited AWS trusted advisor checks?
Business
153
Which support plan has a technical account manager?
Enterprise
154
What is a technical account managers job?
provide guidance, architectural reviews, and ongoing communication with your company as you plan, deploy, and optimize your applications.
155
what does the AWS cloud adoption framework do?
Provide guidance to migrate to AWS which is split into six areas of focus, called perspective
156
What does the business perspective of the AWS cloud adoption framework do?
ensures that IT aligns with business needs and that IT investments link to key business results.
157
What does the people perspective of AWS cloud adoption framework provide?
supports development of an organization-wide change management strategy for successful cloud adoption.
158
What does the governance perspective of the AWS cloud adoption framework provide?
focuses on the skills and processes to align IT strategy with business strategy. This ensures that you maximize the business value and minimize risks.
159
What does the platform perspective of the AWS cloud migration framework provide?
principles and patterns for implementing new solutions on the cloud, and migrating on-premises workloads to the cloud.
160
What does the security perspective of the AWS cloud migration framework provide?
ensures that the organization meets security objectives for visibility, auditability, control, and agility.
161
What does the operations perspective of the AWS cloud migration framework provide?
enable, run, use, operate, and recover IT workloads to the level agreed upon with your business stakeholders.
162
What are the 6 R’s of migration?
Rehosting, replatforming, refactoring/re-architecting, repurchasing, retaining, retiring,
163
What is rehosting during migration?
Moving applications without changes
164
What is replatforming in migration?
making a few cloud optimizations to realize a tangible benefit. Optimization is achieved without changing the core architecture of the application.
165
What is refactoring in migration?
involves reimagining how an application is architected and developed by using cloud-native features. Refactoring is driven by a strong business need to add features, scale, or performance that would otherwise be difficult to achieve in the application’s existing environment.
166
What is repurchasing in a migration?
moving from a traditional license to a software-as-a-service model.
167
What is retaining in migration?
keeping applications that are critical for the business in the source environment.
168
What is retiring in migration process?
process of removing applications that are no longer needed.
169
What is the AWS snow family?
a collection of physical devices that help to physically transport up to exabytes of data into and out of AWS.
170
What are the three members of the AWS snow family?
AWS snow cone, AWS snowball, AWS snowmobile
171
What is the capacity of AWS snow cone?
2 CPUs, 4GB of memory, 8TB of usable storage
172
What are the two types of devices of AWS snowball?
AWS snowball edge storage optimized, AWS snowball edge compute optimized
173
What is the storage and compute of Amazon snowball edge storage optimized?
80tb of storage, 40 CPUs
174
What is the snowball edge compute optimized storage and compute capacity?
42 tb storage, 52 CPUs
175
What are serverless applications?
applications that don’t require you to provision, maintain, or administer servers.
176
What is Amazon sagemaker?
A machine learning development offering from AWS
177
What is the storage capacity of AWS snowmobile?
100 petabytes
178
What is Amazon transcribe?
Convert speech to text
179
What is Amazon comprehend?
Discover patterns in text
180
What is Amazon fraud detector?
Identify potentially fraudulent online activities
181
What is Amazon lex?
Build voice and text chatbots
182
What are the 5 pillars of a well architected framework?
Operational excellence, security, reliability, performance efficiency, cost optimization
183
What are the 6 benefits of cloud computing?
Trade upfront expense for variable expense, benefit from massive economies of scale, stop guessing capacity, increase speed and agility, stop ending money running and maintaining data centers, go global in minutes
184
What is AWS Athena?
an interactive query service that makes it easy to analyze data in Amazon S3 using standard SQL.
185
What does AWS X-ray do?
Traces user requests as they travel through your entire application
186
What is Amazon quick sight?
a fast, cloud-powered business intelligence service that delivers insights to everyone in your organization.
187
Simply put, what is cloud watch for and what is cloud trail for?
CloudWatch is for performance monitoring (CloudTrail is for auditing).
