AWS Quest 2 Level 3

Question 1

what does S3 stand for?

Answer 1

Simple Storage Service

Question 2

what type of storage service does S3 offer?

Answer 2

object storage

Question 3

how durable is Amazon S3?

Answer 3

11 9s (99.999999999%)

Question 4

what are the 6 Amazon S3 storage classes?

Answer 4

1. S3 Standard
2. S3 Intelligent-Tiering
3. S3 Standard-Infrequent Access (IA)
4. S3 One Zone-Infrequent Access (IA)
5. S3 Glacier
6. S3 Glacier Deep Archive

Question 5

what is S3 Standard storage used for?

Answer 5

general purpose storage

Question 6

what is S3 Intelligent-Tiering storage used for?

Answer 6

storing objects in different storage tiers depending on the objects’ usage

Question 7

what is S3 Standard-Infrequent Access storage used for?

Answer 7

storage of data that is accessed less frequently, but requires rapid access when needed

Question 8

what is S3 One Zone-Infrequent Access storage used for?

Answer 8

storage for data that is accessed less frequently, but requires rapid access when needed, but it is stored only in one Availability Zone (AZ)

Question 9

what is S3 Glacier storage used for?

Answer 9

secure, durable, low-cost storage for data archiving

Question 10

what is S3 Glacier Deep Archive storage used for?

Answer 10

low-cost storage and long-term retention and digital preservation for data that may be accessed once or twice in a year

Question 11

what is S3 on Outposts?

Answer 11

it is object storage for your on-premises AWS Outpost environment

Question 12

what is defined as a set or rules that define actions that Amazon S3 applies to a group of objects, so that you can either transition to another storage class or delete expired objects?

Answer 12

S3 Lifecycle management

Question 13

what can you use to monitor access patterns in order to help you decide when to transition the right data to the right storage class?

Answer 13

S3 Storage Class Analysis

Question 14

what tool will help you to make a cost estimate that fits your unique business needs?

Answer 14

the pricing calculator

Question 15

what feature allows you to add your own code to S3 GET requests to modify and process data as it is returned to an application?

Answer 15

Amazon S3 Object Lambda

Question 16

what is good about S3 Object Lambda?

Answer 16

S3 Object Lambda allows you to create special filters to modify the data returned by a S3 GET request

Question 17

why would you need S3 Object Lambda to filter S3 GET requests?

Answer 17

S3 Object Lambda can perform any manipulation of data required before the GET request is returned, which can be useful if some information should be resized, hidden, put in a specific order, etc…

Question 18

what do you use to easily preserve, retrieve, and restore every version of an object stored in S3, allowing you to recover from unintended user actions and application failures?

Answer 18

S3 Versioning

Question 19

what else can you use to prevent accidental deletions?

Answer 19

Multi-Factor Authentication (MFA) Delete

Question 20

What can be used to replicate objects to one or more destination buckets into the same or different AWS Regions?

Answer 20

S3 Replication

Question 21

What can be used to replicate from a source S3 bucket to one or more destination buckets in different AWS Regions?

Answer 21

S3 Cross-Region Replication (CRR)

Question 22

What can replicate objects between buckets in the same AWS Region?

Answer 22

S3 Same-Region Replication (SRR)

Question 23

What can help you meet compliance requirements for data replication by providing an SLA and visibility into replication times?

Answer 23

S3 Replication Time Control

Question 24

What can you use to ensure data is not deleted for a specified time period?

Answer 24

S3 Object Lock

Question 25

what does WORM stand for?

Answer 25

write-once-read-many

Question 26

What can you use to view usage and costs aggregated by your buckets?

Answer 26

AWS Cost Allocation Reports

Question 27

What can you use to track the operational health of your AWS resources and configure billing alerts tat are sent you when estimated charges reach a user-defined threshold?

Answer 27

Amazon CloudWatch

Question 28

What tracks and reports on buckets-level and object-level activities?

Answer 28

AWS CloudTrail

Question 29

What can you configure to trigger workflows, alerts, and invoke AWS Lambda when a specific change is made to your S3 resources?

Answer 29

S3 Event Notification

Question 30

What provides a single view of object storage usage and activity across all accounts in an organization, with drill-downs to generate insights at all levels?

Answer 30

S3 Storage Lens

Question 31

What can observe and analyze data access patterns to help you determine when to transition less frequently accessed storage to a lower-cost storage class?

Answer 31

S3 Storage Class Analysis

Question 32

name 4 ways to control access management

Answer 32

1. Identity and Access Management (IAM)
2. Access Control Lists (ACL)
3. bucket policies
4. Query String Authentication

Question 33

how does IAM control access?

Answer 33

it controls user access

Question 34

how does ACL control access?

Answer 34

it controls access to individual objects to individual users

Question 35

how do bucket policies control access?

Answer 35

it configures permissions for all objects within a single S3 bucket

Question 36

how does Query String Authentication control access?

Answer 36

it grants time-limited access to others with temporary URLs

Question 37

name two types of S3 encrytpion

Answer 37

server-side encryption

client-side encryption

Question 38

What can you use to check the encryption status of your S3 objects?

Answer 38

S3 Inventory

Question 39

What can you use to protect your buckets from the public?

Answer 39

S3 Block Public Access

Question 40

What is a feature that monitors your bucket access policies, ensuring that the policies provide only the intended access to your S3 resources?

Answer 40

Access Analyzer for S3

Question 41

What Amazon tool uses machine learning and pattern matching in order to discover and protect sensitive data stored in Amazon S3?

Answer 41

Amazon Macie

Question 42

What provides private connectivity between Amazon S3 and on-premises?

Answer 42

AWS PrivateLink for S3

Question 43

What can you use to query your data in S3 without needing to extract and load it into a separate service or platform?

Answer 43

Amazon Athena

Question 44

What can you use to query more data than Amazon Athena?

Answer 44

Amazon Redshift Spectrum

Question 45

What data transfer method can be used for hybrid cloud storage?

Answer 45

AWS Storage Gateway

Question 46

What do you use to transfer data online to AWS?

Answer 46

AWS DataSync

Question 47

What tools provide fully managed, simple and seamless file transfer to Amazon S3 using SFTP, FTPS, and FTP?

Answer 47

AWS Transfer Family

Question 48

What can you use to enable fast transfers of files over long distances between your client and your Amazon S3 bucket?

Answer 48

Amazon S3 Transfer Acceleration

Question 49

What can you use to transfer 8 TB of data offline to S3?

Answer 49

AWS Snowcone

Question 50

What can you use to transfer 80 TB of data offline to S3?

Answer 50

AWS Snowball

Question 51

What can you use to transfer 100 PB of data offline to S3?

Answer 51

AWS Snowmobile

Question 52

What allows you to upload a single object as a set of parts?

Answer 52

Multipart upload

Question 53

what is Multipart upload?

Answer 53

a single object is broken into many parts, stored, and then assembled in the correct order to recreate the object

Question 54

what are advantages of Multipart upload?

Answer 54

1. improved throughput
2. quick recovery from any network issues
3. pause and resume uploads
4. begin an upload before you know the final object size

Question 55

What can you use for faster transfers?

Answer 55

Amazon S3 Transfer Acceleration

Question 56

what are the parts of an Amazon Resource Name (ARN)?

Answer 56

arn:partition:service:region:account-id:resource-id

Question 57

what is the ‘partition’ part of an ARN?

Answer 57

it is a group of AWS Regions

Question 58

what is the ‘service’ part of an ARN?

Answer 58

it is the AWS product (Amazon S3 is a product, therefore it is a service part of an ARN: s3)

Question 59

what is the ‘region’ part of an ARN?

Answer 59

it is the Region code

Question 60

what is the ‘account-id’ part of an ARN?

Answer 60

it is the ID of the AWS account that owns the resource, without the hyphens

Question 61

what is the ‘resource-id’ part of an ARN?

Answer 61

it is the resource identifier. it can be an IAM user, or an instance, or something else