Deployment and operations management

Question 1

What are the 4 types of deployment?

Answer 1

1) Rolling deployment
2) A/B testing (A/B deployment)
3) Canary release
4) Blue/Green deployment

Question 2

What are the 3 steps in a rolling deployment?

Answer 2

1) Create a new launch configuration with the updated AMI (can’t do this to the existing servers)
2) Start terminating old EC2 instances
3) When the new servers come up they now have version 2 of the launch config

Question 3

When is an A/B testing deployment useful? and how do you do this?

Answer 3

When you want to test a new format a website. Use Route traffic to route a % of traffic to new version e.g. 10% then move to 100% over time

Question 4

What is a canary release deployment?

Answer 4

When you release one EC2 instance with the new update and watch to see how it performs before rolling it out to other instances

Question 5

What is a blue/green method of deployment?

Answer 5

When you run both the old version and the new version of an application. You can always revert back to the original application.

Question 6

What is the main benefit of using a Blue/green deployment method?

Answer 6

allows you to achieve an immutable infrastructure, where you do not make changes to your application after it’s deployed, but you redeploy a together. This makes it easy to roll back.

Question 7

What are the 5 methods of achieving a Blue/Green deployment with different services…

Answer 7

1) Update DNS with Route53 to point to a new ELB or instance
2) Swap autoscaling groups already primed with a new version of instanced behind an ELB
3) Change autoscaling group launch configuration to use the new AMI version and terminate old instances (and create new ones)
4) Swap the environment URL of Elastic beanstalk
5) Clone stack in AWS Opsworks and update the DNS

Question 8

Name 3 scenarios where a blue/green deployment method would NOT be appropriate…

Answer 8

1) When the data-store schema is too tightly coupled to the code changes (schemas need to be forward and backwards compatible)
2) when the upgrade requires special routines to be run during deployment
3) When you are using an off the shelf product

Question 9

Define Continuous Integration…

Answer 9

Where you merge code changes back to a main branch as frequently as possible with automated testing as you go.

Question 10

Define Continuous delivery…

Answer 10

Where you automate your release process to the point you can deploy at the click of a button

Question 11

Define Continuous deployment…

Answer 11

Where each code change that passes all stage of a release process is released to production with no human intervention is required… you automate the entire chain

Question 12

What is the primary object of CI and CD?

Answer 12

To create small, incremental compartmentalised improvements and features to reduce deployment risk and tried to limit negative impact

Question 13

What has to be strong for CI?

Answer 13

Your testing game gotta be STRONG

Question 14

What is AWS CodeCommit?

Answer 14

AWS hosted git repo

Question 15

What AWS code build?

Answer 15

Helps to compile, test and create deployment packages

Question 16

What is AWS code deploy?

Answer 16

Helps to deploy deployment packages

Question 17

What is AWS code pipeline?

Answer 17

An orchestration service that allows is to do all of the code creation, testing, deployment….

Question 18

What is AWS X-ray?

Answer 18

A service to help in the debugging of distributed apps or serverless apps

Question 19

What is AWS CodeStar?

Answer 19

A service that leverages all of the CI/CD tools (AWS code* services) to define templates to make them more ‘turn key’

Question 20

What is Elastic Beanstalk?

Answer 20

An orchestration services that makes it easy to push-button deploy scalable web landscapes. Creates an easy deployment model, but not great if you need control or flexibility.

Question 21

What are the 6 deployment options available within Elastic Beanstalk? (defines as well)

Answer 21

1) All at once- A new application version is deployed to existing instances all at once, potentially resulting in downtime.
2) Rolling- Once by one, the new application version is deployed to existing instances in batches
3) Rolling with additional batch- Launch new version of instances prior to taking any old version instances out of service
4) Immutable- Launch a full set of new version instances in a separate auto-scaling group and only cuts over when health check is passed
5) Traffic splitting- Percent of client traffic is routed to new instances for purpose of “canary” testing
6) Blue/Green- The CNAME DNS entry is changed when a new version is fully IP leaving the old version in place until new version is fully verified

Question 22

Which Elastic Beanstalk deployment method has the shortest and the longest deployment time?

Answer 22

Shortest- all in one

longest- Blue/Green

Question 23

Which is the only Elastic Beanstalk method that could result in downtime?

Answer 23

All in one method

Question 24

What is CloudFormation?

Answer 24

Infrastructure as code service, to define a AWS environment

Question 25

What language are CloudFormation templates written in?

Answer 25

YAML or JSON

Question 26

What is a CloudFormation template?

Answer 26

Template- The JSON or YAML text file that contains instructions for building out the AWS environment

Question 27

What is a CloudFormation stack?

Answer 27

The entire environment described by the template and created, updated and deleted as a single unit

Question 28

What is a CloudFormation Change Set?

Answer 28

A summary of proposed changes to your stack that will allow you to see how those changes might impact your existing resources before implementing them.

Question 29

What is a stack policy?

Answer 29

A stack policy is designed to protect resources within your stack from being unintentionally deleted or updated e.g. deny a production database from being shut down.

Question 30

How can you add a stack policy?

Answer 30

Via the CLI or console

Question 31

How can you add a stack policy to an EXISTING stack?

Answer 31

Only via the CLI

Question 32

Can a stack policy be removed once applied?

Answer 32

Nope, but it can be modified

Question 33

Name 5 CloudFormation best practices…

Answer 33

1) Use AWS provided helper scripts- to install software on EC2 instances and start services
2) Use CloudFormation to make changes to your landscape rather than doing directly to the resource
3) Make use of change sets to identify potential trouble spots in your updates
4) Use stack policies to explicitly protest sensitive portions of your stack
5) Use version control systems such as code commit or github to track changes to templates

Question 34

What is ECS (5 points)?

Answer 34

1) AWS-specific platform that supports Docker containers
2) Considered simpler to learn and use
3) Leverages AWS services like Route53, ALB and CloudWatch
4) Tasks are instances of containers that are run on underlying compute but are more or less isolated
5) Limited extensibility

Question 35

What is EKS? (5 points)

Answer 35

1) Compatible with upstream K8s so it is easy to lift and shift
2) Considered to be more feature rich
3) A hosted k8 platform that handles many things internally
4) Containers are called pods, they can have shared access to each other
5) Extensible via a wide variety of third party community add-ons

Question 36

What are the 2 launch types available with ECS?

Answer 36

1) Amazon EC2-you provision this and responsible for the pool, more granular control
2) Amazon fargate- Automatically provisions underlying infrastructure

Question 37

What is API-gateway?

Answer 37

A managed HA service for front-end REST APIs. Can be used in the backend with Lambda. Deployed via CloudFront.

Question 38

What is AWS config? provide an example…

Answer 38

Allows access, audit and evaluates configurations of your AWS resources. Create a baseline of various configurations and setting and then can track any variations against these baselines. e.g. Is backup enabled on RDS? Are EBS volumes encrypted?

Question 39

What is AWS Opsworks stacks?

Answer 39

Stacks are collections of resources needed to support a service or application. A layer concept, with each layer representing a different component of an application e.g. EC2 instances, RDS, ELBs…

You can create a stack and clone these, but only within the same region

Question 40

What is AWS systems manager?

Answer 40

A centralised console and toolset for a wide variety of system management tasks. Designed for managing a large fleet of systems e.g. 10,000s of EC2s…

Question 41

What is the SSM agent?

Answer 41

AWS System Manager agent- is installed on AMIs by default and is used to collects information for the AWS system manager

Question 42

What are the 10 services that AWS systems manager provides for AWS services? define and example….

Answer 42

1) Inventory- collects OS, application and instance metadata about instances e.g. which servers have HTTP 2.2.x or earlier
2) State manager- Creates states that represent certain configurations are applied to instances (grouping) e.g. keep track of of which instances have been updated to the current version of Apache HTTP server
3) Logging- Cloudwatch log agent e.g. stream logs of webservers
4) Parameter store- Shared secure storage for config data e.g. store RDS credentials and retrieve upon boot
5) Insights dashboard- Account level view of cloud trail, config e.t.c e.g. single viewpoint for any exceptions on config compliance
6) Resource groups- group resource through tagging- e.g. create a dashboard of all assets belonging to our production landscape
7) Maintenance windows- Define schedules to instances to patch, update apps, run scripts e.g. Defile hours 00:00 to 02:00 to patch
8) Automation- Automating routine maintenance tasks and scripts e.g. stop DEV and QA instances over the weekend
9) Run command- run commands and scripts without logging in or via SSH
10) Patch manger- Automates the process of patching instances e.g. apply a security patch in the next maintenance window

Question 43

What does the patch manager baseline achieve?

Answer 43

Auto approves and applies patches of “critical” or “security updates” to servers. This can be automated e.g. apply patches after they have been available for 7 days…

Question 44

What is an AWS system manager document? (SSM document)

Answer 44

They enable you to define actions that the system manager can perform. These are in JSON or YAML.

Question 45

What are the 3 types of system manager documents?

Answer 45

1) command document
2) policy document
3) automation document

Question 46

What ASM function is the command document type used with and what is its purpose?

Answer 46

Run commands use command documents to execute commands. State manager uses command documents to apply a configuration.

Question 47

What ASM function is the policy document type used with and what is its purpose?

Answer 47

Used with state manger. Policy documents enforce a policy on your targets.

Question 48

What ASM function is the Automation document type used with and what is its purpose?

Answer 48

Automation function. Uses automation documents when performing common maintenance and deployment tasks e.g. updating and AMI

Question 49

What is Amazon Workspace?

Answer 49

A full windows or linux desktop as a service that you remote into

Question 50

What is Amazon appstream?

Answer 50

Encapsulates specific applications and allows you to access those apps via a web browser

Question 51

What is Amazon workdocs?

Answer 51

Online document storage and collaboration platform. Supports version management, sharing documents and collaborative edits.

Question 52

What AmzonMail?

Answer 52

Fully managed email and calendar as a service

Question 53

What is Amazon WorkLink?

Answer 53

Provides secure access to internal web applications for mobile devices.

Question 54

What is Alexa for business?

Answer 54

A way to deploy Alexa functionality and skills internally at your enterprise e.g. Alexa… is this conference room free?

Question 55

What are the 3 domains of the AWS ML landscape? and who are the target users? examples?

Answer 55

1) AI services- easy to use no ML knowledge- Amazon polly
2) ML services- ML developers and data scientist- Sage maker
3) ML Frameworks- ML researchers and academics- e.g. TensorFlow

Question 56

What is Amazon comprehend? and when would you use it?

Answer 56

what- NLP that finds insight within text

when- sentiment analysis of social media posts

Question 57

What is Amazon forecast? and when would you use it?

Answer 57

what- combines time-series data with other variables to deliver highly accurate forecasts
when- forecast seasonal demand e.g. tie colour

Question 58

What is Amazon Lex? and when would you use it?

Answer 58

what- Build conversational interfaces that can understand the intent and context of natural speech

when- create a customer service chatbot to automatically chance routine requests

Question 59

What is Amazon personalise? and when would you use it?

Answer 59

what- Recommendation engine as a service based on demographics and behaviour data
when- provide potential upsell products at checkout

Question 60

What is Amazon Polly? and when would you use it?

Answer 60

What- text-to-speech service supporting multiple accents and voices
when- Provide dynamically generated personalised voice response for inbound callers

Question 61

What is Amazon rekognition? and when would you use it?

Answer 61

what- Image and video analysis to parse and recognise objects, people, activities and facial expressions
when- provide an additional level of authentication through facial recognition of employees

Question 62

What is Amazon textract? and when would you use it?

Answer 62

What- extracts text, content and metadata from scanned documents
when- automatically digitise paper forms

Question 63

What is Amazon transcribe? and when would you use it?

Answer 63

what- speech-to-text as a service

when- automatically create transcripts of recorded presentations

Question 64

What is Amazon translate? and when would you use it?

Answer 64

what- translate text to and from many different languages

when- Dynamically create localised web content for uses based on their geography

Question 65

Is “options” a valid CloudFormation template sections?

Answer 65

Nope

Question 66

Does ECS or EKS support 3rd party add ons?

Answer 66

EKS only

Question 67

What is a disposable upgrade method?

Answer 67

Where you create a new AMI and add it to a new launch configuration. You then update the existing autoscaling group.

Question 68

Is file storage a component of ECS?

Answer 68

Nope, storage is handled by EBS volumes attached to EC2 and not by ECs itself

Question 69

Which resource would you use to get a software licence key from a 3rd party application via an API call?

Answer 69

AWS::cloudformation::CustomResource

Question 70

Does Opsworks support on-prem Linux based systems?

Answer 70

Yes

Question 71

Can you close an opsworks stack to another region?

Answer 71

No

Question 72

How does continuous delivery differ from continuous deployment?

Answer 72

Continuous delivery includes a manual check before release to production.