CCP Flashcards

Question

EFS

Answer 1

(Amazon Elastic File System) Network file system, can be attached to 100s of instanced ina region

Answer 2

Cost optimized storage class for infrequent accessed files

Answer 3

Network File system for windows servers

Answer 4

High performance computing linux file system

Answer 5

Run instances for same application cross multi AZ incase of failure

Answer 6

Ability to accommodate a larger load by making the hardware stronger (scale up), or by adding nodes (scale out)

Answer 7

Once a system is scalable, elasticity means that there will be some “auto-scaling” so that the system can scale based on the load. This is “cloud-friendly”: pay per use, match demand, optimize costs

Answer 8

(not related to scalability - distractor on exam) new IT resources are only a click away, which means that you reduce the time to make those resources available to your developers from weeks to just minutes.

Answer 9

(Elastic Load Balancers) -Distribute traffic across backend EC2 instances, can be Multi-AZ -Supports health checkers -3 types: Application LB (HTTP - L7), Network LB (TCP - L4), Classic LB (old)

Answer 10

(Auto Scaling Groups) -Implement Elasticity for your application, across multiple AZ -Scale EC2 instances based on the demand on your system, replace unhealthy -Integrated with the ELB

Answer 11

-Globally unique name (across all regions all accounts) -Created in a region

Answer 12

-Objects (files) have a key -The key is the FULL url path -The key is composed of a prefix + object name -There’s no concept of directories within buckers although the UI will trick you to think otherwise.

Answer 13

IAM policy, S3 Bucket Policy (public access), S3 Encryption

Answer 14

Host a static website on Amazon S3

Answer 15

multiple versions for files, prevent accidental delete

Answer 16

same-region or cross-region, must enable versioning

Answer 17

Standard, IA, IZ-IA, Intelligent, Glacier (Instant, Flexible, Deep)

Answer 18

import data onto S3 through a physical device, edge computing

Answer 19

Desktop application to manage Snow Family Devices

Answer 20

Hybrid solution to extend on-premises storage to S3

Answer 21

(Online Transactional Processing) RDS managed service for MySQL, MAriaDB, etc Aurora (SQL) proprietary database optimized for cloud

Answer 22

Scale the read workload of your DB Can create up to 5 read replicas Data is only written to main DB

Answer 23

Failover in case of AZ outage (High availability) Data is only read/written to main database Can only have 1 other AZ as failover

Answer 24

MultiRegion (Read Replicas) Disaster Recovery in case of region issue Local performance for global reads Replication cost

Answer 25

ElastiCache

Answer 26

DynamoDB (serverless) & DAX (Cache for DynamoDB)

Answer 27

(Online Analytical Processing): Redshift SQL

Answer 28

EMR (Elastic MapReduce)

Answer 29

Query data on Amazon S3 (serverless & SQL)

Answer 30

Dashboards on your data (Serverless)

Answer 31

“Aurora for MongoDB” (JSON - NoSQL database

Answer 32

(Quantum Ledger Database) Financial Transactions Ledger, like centralized blockchain

Answer 33

Managed HyperLedger Fabric & Ethereum blockchains`

Answer 34

Managed ETL (Extract Transform Load) and Data Catalog service

Answer 35

Database Migration

Answer 36

Graph database used websites like wikipedia, facebook

Answer 37

container technology to run applications

Answer 38

(Elastic Container Service) run Docker containers on EC2 instances you provision and maintain

Answer 39

-Run Docker containers without provisioning the infrastructure -Serverless offering (no EC2 instances)

Answer 40

(Elastic Container Registry) Private Docker Images Repository

Answer 41

run batch jobs on AWS across managed EC2 instances

Answer 42

-predictable & low pricing for simple application & DB stacks -AWS for dummies

Answer 43

Lambda is Serverless, Function as a Service, seamless scaling, reactive

Answer 44

(pay per call or pay per duration) By the time run multiplied by the RAM provisioned By the number of invocations

Answer 45

(AWS only) -Infrastructure as Code, works with almost all of AWS resources -Repeat across Regions & Accounts

Answer 46

(AWS only) -Platform as a Service (PaaS), limited to certain programing languages or Docker -Deploy code consistently with a known architecture

Answer 47

(Hybrid) Deploy & upgrade any app onto servers

Answer 48

(Hybrid) patch, configure, and run commands at scale

Answer 49

(Hybrid) managed Chef and Puppet in AWS

Answer 50

Store code in private git repository (version controlled) GitHub for AWS

Answer 51

Build & test code in AWS

Answer 52

Deploy code on to servers

Answer 53

Orchestration of pipeline (from code to build to deploy)

Answer 54

Store software packaged / dependencies on AWS

Answer 55

Unified view for allowing devs to do CI/CD and code One stop shop for all Code... services

Answer 56

Cloud IDE like visual code with collab

Answer 57

Define your cloud infrastructure using a programming language

Answer 58

Global DNS Great to route users to the closet deployment with least latency Great for disaster recovery strategies

Answer 59

Global Content Delivery Network (CDN) -Replicate part of our app to AWS Edge Locations decrease latency -Cache common request improved user experience & decreased latency

Answer 60

Accelerate global uploads & downloads into Amazon S3

Answer 61

Improve global app availability and performance using the AWS global private network

Answer 62

Deploy Outposts Racks in your own Data Centers to extend AWS services

Answer 63

Brings AWS services to the edge of the 5G networks Ultra-low latency applications

Answer 64

Bring AWS resources closer to users in in large populations Good for latency sensitive applications

Answer 65

Monitor the performance of AWS services and billing metrics

Answer 66

Automate notification, perform EC2 action, notify to SNS based on metric

Answer 67

Collect log files from EC2 instances, servers, Lambda functions, etc

Answer 68

Collect log files from EC2 instances, servers, Lambda functions, etc

Answer 69

audit API calls made within your AWS account

Answer 70

automated analysis of your CloudTrail Events

Answer 71

trace requests made through your distributed applications

Answer 72

Status of all AWS services across all regions

Answer 73

AWS events that impact your infrastructure

Answer 74

Automated code reviews and application performance recommendations

Answer 75

(Virtual Private Cloud) private regional network to deploy your resources

Answer 76

Tied to an AZ, network partition of the VPC

Answer 77

at the VPC level, provide internet Access

Answer 78

give internet access to private subnets

Answer 79

(Network Access Control List) Stateless (Allow or Deny) firewall, subnet rules for inbound and outbound

Answer 80

Stateful (Allow), operate at the EC2 instance level or ENL

Answer 81

Connect two VPC with non overlapping IP ranges, nontransitive

Answer 82

Provide private access to AWS services within VPC

Answer 83

Privately connect to a service in a 3rd party VPC

Answer 84

Network traffic logs

Answer 85

VPN over public internet between on-premises DC and AWS

Answer 86

OpenVPN connection from your computer to your VPC

Answer 87

Direct private connection to AWS

Answer 88

Connect thousands of VPC and on-premises networks together

Answer 89

Automatic DDos Protection + 24/7 support for advanced

Answer 90

Web Application Firewall to filter incoming requests based on rules

Answer 91

(Key Management Service) Encryption keys managed by AWS

Answer 92

Hardware encryption, customer manages encryption keys

Answer 93

provision, manage, and deploy SSL/TLS Certificates

Answer 94

Get access to compliance reports such as PCI, ISO, etc

Answer 95

Find malicious behavior with VPC, DNS, and CloudTrail Logs

Answer 96

For EC2 only, install agent and find vulnerabilities

Answer 97

Track config changes and compliance against rules

Answer 98

Find sensitive data (ex:PII data) in Amazon S3 buckets

Answer 99

Track API calls made by users within account

Answer 100

Gather security findings from multiple AWS accounts

Answer 101

Find the root cause of security issues or suspicious activities

Answer 102

report AWS resources used for abusive or illegal purposes

Answer 103

Change account settings Close your AWS account Change or cancel your AWS Support plan Register as a seller in a Reserved Instance Marketplace

Answer 104

face detection, labeling, celebrity recognition

Answer 105

audio to text (ex: subtitles)

Answer 106

text to audio

Answer 107

language translations

Answer 108

build conversational bots - chatbots Powers Alexa

Answer 109

use with lex to create cloud contact center

Answer 110

For Natural Language Processing - NLP

Answer 111

Fully managed service for developers / data scientists to build ML models

Answer 112

Machine learning for highly accurate forecasts and predictions

Answer 113

Fully managed document search service powered by ML

Answer 114

Personalized recommendations, same tech used on amazon.com

Answer 115

detect text and data in documents

Answer 116

-Pay as you go -Save when you reserve -Pay less by using more -Pay less as AWS grows

Answer 117

-On-demand, pay as you go -Reserved, up to 75% off, 1 or 3 years commitment, All upfront, partial upfront, or no upfront -Spot Instances, Bid for unused capacity, can loose it -Dedicated Host, on-demand, reservation for 1 or 3 years -Savings plans save on sustained usage

Answer 118

-Lambda Pay per call Pay per duration -ECS EC2 Launch Type Model: No additional fees, you pay for AWS resources stored and created in your application -Fargate Fargate Launch Type Model: Pay for vCPU and memory resources allocated to your applications in your containers

Answer 119

-Comprehensive set of AWS cost and usage data available, including additional metadata about AWS services, pricing, reservations -Lists AWS usage for each service category used by an account and its IAM users in hourly or daily line items, as well as any tags that you have activated for cost allocation purposes

Answer 120

-Virtualize, understand, and manage your AWS costs and usage over time -Choose an optimal Savings plan (to lower prices on your bill) -Forecast usage up to 12 months based on previous usage

Answer 121

Create budget and send alarms when costs exceeds the budget

Answer 122

High level AWS account assessment tool -Cost optimization -Performance -Security -Fault tolerance -Service limits

Answer 123

For Basic & Developer Support Plan -S3 Bucket Permissions -Security Groups - Specific Ports Unrestricted -IAM use (one IAM user minimum) -MFA on Root Account -EBS Public Snapshots -RDS Public Snapshots -Service limits

Answer 124

-Full checks available on 5 categories -Ability to set CloudWatch alarms when reaching limits -Programmatic Access using AWS Support API

Answer 125

Recommends resources’ configurations to reduce cost using machine learning

Answer 126

Cost of services on AWS

Answer 127

High level overview + free tier dashboard

Answer 128

Tag resources to create detailed reports

Answer 129

Most comprehensive billing dataset

Answer 130

View current usage (detailed) and forecast usage

Answer 131

In us-east-1 -track overall and per-service billing

Answer 132

more advanced - track usage, costs, RI, and get alerts

Answer 133

easy way to save based on long-term usage of AWS

Answer 134

Identity and Access Management inside your AWS account For users that you trust and belong to your company

Answer 135

Manage multiple AWS accounts

Answer 136

(Security Token Service) Temporary, limited privileges credentials to access AWS resources

Answer 137

create a database of users for your mobile & web applications

Answer 138

integrate Microsoft Active Directory in AWS

Answer 139

One login for multiple AWS accounts & applications

Answer 140

-Managed Desktop as a Service (DaaS) solution to easily provision Windows or Linux desktops -Great to eliminate management of on-premise VDI (Virtual Desktop Infrastructure)

Answer 141

-Desktop Application Streaming Service -The Application is delivered from within a web browser -Example: Steam and use blender via the browser

Answer 142

Create and run virtual realty (VR, augmented reality (AR), and 3D applications

Answer 143

Allows you to easily connect IoT devices to the AWS Cloud

Answer 144

Used to convert media files stored in S3 into media files in the formats required by consumer playback devices (phones etc.)

Answer 145

-Store and sync data across mobile and web apps in real-time -Makes use of GraphQL (mobile technology from Facebook)

Answer 146

A set of tools and services that helps you develop and deploy scalable full stack web and mobile applications

Answer 147

Fully-managed service that tests your web and mobile apps against desktop browsers, real mobile devices, and tablets

Answer 148

Fully-managed service to centrally manage and automate backups across AWS services

Answer 149

-Cheapest: Backup and restore -average: Pilot Light -Expensive: Warm StandBy -Most expensive: Multi-site / Hot-site

Answer 150

Quickly and easily Recover your physical, virtual, and cloud-based servers into AWS

Answer 151

Replication tasks are incremental after the first full load

Answer 152

Plan migration projects by gathering information about on-premises data centers Agentless Discovery (AWS Agentless Discovery Connector) Agent-based Discovery (AWS Application Discovery Agent) AWS Application Migration Service (MGN) Lift and shift (rehost) solution which simplify migrating applications to AWS

Answer 153

Based on Chaos Engineering stressing an application by creating disruptive events (sudden increase of CPu or memory), observing how the system responds, and implementing improvements

Answer 154

-Build serverless visual workflow to orchestrate your Lambda functions -Features: sequence, parallel, conditions, timeouts, error handling

Answer 155

Fully managed service that lets you control satellite communications, process data, and scale your satellite operations

Answer 156

-Scalable 2-way (outbound/inbound) marketing communications service -Supports email, SMS, push, voice, and in-app messaging

Answer 157

Operation Excellence Includes the ability to run and monitor systems to deliver business value and to continually improve supporting processes and procedures -Perform operations as code -Annotate documentation -Make frequent, small, reversible changes -Refine operations procedures frequently -Anticipate failure -Learn from all operational failures

Answer 158

Security Includes the ability to protect information, systems, and assets while delivering business value through risk assessments and mitigation strategies -implement a strong identity foundation -Enable traceability -Apply security at all layers -Automate security best practices -Protect data in transit and at rest -Keep people away from data -Prepare for security events

Answer 159

Reliability Ability of a system to recover from infrastructure or service disruptions dynamically acquire computing resources to meet demand, and mitigate disruptions such as misconfigurations or transient network issues -Test recovery procedures -automatically recover from failure -Scale horizontally to increase aggregate system availability -Stop guessing capacity -Manage change in automation

Answer 160

Performance Efficiency Includes the ability to use computing resources efficiently to meet system requirements, and to maintain that efficiency as demand changes and technologies evolve -Democratize advances technologies -Go global in minutes -Use serverless architectures -Experiment more often -Mechanical sympathy

Answer 161

Cost Optimization Includes the ability to run systems to deliver business value at the lowest price point -Adopt a consumption mode -Measure overall efficiency -Stop spending money on data center operations -Analyze and attribute expenditure -Use managed and application level services to reduce cost of ownership

Answer 162

Sustainability The sustainability pillar focuses on minimizing the environmental impacts of running cloud workloads. -Understand your impact -Establish sustainability goals -Maximize utilization -Anticipate and adopt new, more efficient hardware and software offerings -Use managed services -Reduce the downstream impacts of your cloud workloads

Answer 163

APN = AWS Partner Network -APN Technology Partners: Providing hardware, connectivity, and software -APN Consulting Partners: professional services firm to help build on AWS -APN Training Partners: Find who can help you learn AWS -AWS Competency Program: AWS Competencies are granted to APN partners who have demonstrated technical proficiency and proven customer success in specialized solution areas -AWS Navigate program: help partners become better Partners

Answer 164

Quickly find a professional help for your AWS projects