AWS Solutions Architect Definitions

Question 1

IAM (Identity and Access Management)

Answer 1

control access to resources

Question 2

IAM User

Answer 2

not root, access to aws account

Question 3

IAM Group

Answer 3

groups for IAM users

Question 4

IAM policy

Answer 4

rules for access for user, groups, role to services

Question 5

IAM MFA

Answer 5

Multi Factor Auth for IAM user login

Question 6

AWS Access Keys

Answer 6

programmatic access to AWS services

Question 7

AWS CLI, SDK, CloudShell, Management Console

Answer 7

ways to request services through AWS API

Question 8

IAM Security Tools

Answer 8

• monitor IAM
• IAM credentials report, IAM access advisor

Question 9

EC2

Answer 9

virtual server

Question 10

EC2 Lifecycle states

Answer 10

pending, running, stopping, stopped, shutting-down, terminated

Question 11

EC2 setup

Answer 11

• choose AMI
• choose instance type
• assign tags
• create key pair
• sec groups with rules
• choose VPC, subnet, AZ
• assign storage

Question 12

aws configure

Answer 12

• specify access key under IAM user for AWS CLI setup

Question 13

Security groups

Answer 13

• inbound and outbound rules for traffic control and resource protection

Question 14

Ports

Answer 14

virtual network connection endpoint

Question 15

SSH

Answer 15

Secure Shell Connect
- used for remote login and CLI execution

Question 16

Spot Instances

Answer 16

interruptable spare EC2 capacity

Question 17

Spot Fleet

Answer 17

pool of spot and on demand instances

Question 18

Reserved Instances

Answer 18

reserved instances
- standard, convertible

Question 19

IP addresses

Answer 19

connection of device on network

Question 20

EC2 Placement Groups

Answer 20

instance placement strategy

Question 21

EC2 placement groups strategies

Answer 21

cluster, spread, partition

Question 22

Elastic Network Interface

Answer 22

network card gives device access to a network

Question 23

EC2 Hibernate

Answer 23

option to save RAM state post termination

Question 24

VPC (virtual private cloud)

Answer 24

isolated virtual network within certain ip range

Question 25

Subnets

Answer 25

ip range within VPC, single AZ, in which resources are allocated

Question 26

EBS (Elastic Block Storage)

Answer 26

persistent virtual storage volume mountable to instances

Question 27

EBS Snapshot

Answer 27

backup of data and workloads at a point in time

Question 28

EBS multi-attach

Answer 28

attach single EBS volume shared between instances

Question 29

EBS Encryption

Answer 29

encrypted volume with data at rest and in transit using AWS KMS keys

Question 30

AMI (Amazon Machine Image)

Answer 30

preconfigured image with OS, software, tools, utilities, data, scripts pre-installed to start on ec2

Question 31

EC2 Instance Store

Answer 31

ephemeral storage to an instance

Question 32

EFS (Elastic File System)

Answer 32

scalabale file storage for instances

Question 33

Scalability

Answer 33

adjusting supply based on fluctualting demands - horizontal, vertical

Question 34

Availability

Answer 34

- state of having application available despite failures

Question 35

ELB (Elastic Load Balancer)

Answer 35

distribute network traffic across resources

Question 36

ALB (Application)

Answer 36

routing at HTTP/HTTPS layer

Question 37

NLB (Network)

Answer 37

routing at TCP/SSL layer

Question 38

GWLB (Gateway)

Answer 38

distribute traffic to network security monitoring

Question 39

IAM Role

Answer 39

temp role for access by ec2 or users

Question 40

AWS account

Answer 40

- resources assigned here - root account