Practice 4

Question 1

CloudTrail logs provide you with

Answer 1

detailed API tracking for Amazon S3 bucket-level and object-level operations

Question 2

server access logs for Amazon S3 provide you

Answer 2

visibility into object-level operations on your data in Amazon S3 (referrer, turnaround time)

Question 3

s3 hosted style format

Answer 3

http://bucket.s3.amazonaws.com

Question 4

s3 path style format

Answer 4

http://s2.amazonaws.com/bucket

Question 5

AWS Batch

Answer 5

is primarily used to efficiently run hundreds of thousands of batch computing jobs in AWS

Question 6

cluster endpoint

Answer 6

connects to the current primary DB instance for a DB cluster (only one that can do writer operations)

Question 7

each aurora db cluster has one cluster endpoint and one primary db instance - T or F

Answer 7

true

Question 8

reader endpoint

Answer 8

connects to one of the available aurora replicas for that db cluster (each aurora db has one reader end point)

Question 9

custom endpoint

Answer 9

represent a set of DB instances that you choose

Question 10

instance endpoint

Answer 10

connects to specifc DB instance within an Aurora Cluster (to diagnose capacity or performance issues that affect one specific instance in an Aurora Cluster)

Question 11

Amazon Resource Names (ARNs)

Answer 11

uniquely identify AWS resources

Question 12

AWS Resource ID is primarily used to

Answer 12

find your resources in the Amazon EC2 console only and not your entire VPC or AWS accoun

Question 13

AWS Service Namespaces only helps you

Answer 13

identify an AWS service and not a unique resource (for amazon S3 - it’s s3)

Question 14

Calculation for the IOPS

Answer 14

50 * GiB (volume) = IOPS

ex: given a 10 GiB volume = 50 * 10GiB = 500 IOPS

Question 15

You only need one public subnet per Availability Zone - T or F

Answer 15

true

Question 16

DynamoDB auto scaling uses the ? to dynamically adjust provisioned throughput capacity on your behalf, in response to actual traffic patterns.

Answer 16

AWS Application Auto Scaling service

Question 17

Enable Cross-Region Snapshots Copy in your Amazon Redshift Cluste

Answer 17

copy snapshots for a cluster to another region

Question 18

Aurora is compatible with 2 dbs

Answer 18

Mysql and postgreSqL

Question 19

DynamoDB is compatible with ? DB

Answer 19

NOSQL

Question 20

Data pipeline is primarily used as

Answer 20

a cloud-based data workflow service that helps you process and move data between different AWS services and on-premises data sources.

Question 21

AWS services to build a fault-tolerant and highly available architecture?

Answer 21

EC2 and ELB

Question 22

Lambda@Edge is a

Answer 22

feature of Amazon CloudFront that lets you run code closer to users of your application, which improves performance and reduces latency.

Question 23

Route 53 does not have any computing capability. - t or f

Answer 23

true

Question 24

enhanced monitoring metrics that Amazon CloudWatch gathers from Amazon RDS DB instances

Answer 24

1. RDS child processes - summary of the RDS processes that support the DB instance
2. RDS processes - summary of the resources used by the RDS management agent, diagnostics monitoring processes, and other AWS processes that are required to support RDS DB instances
3. OS processes - summary of the kernel and system processes, which generally have minimal impact on performance

Question 25

Where can you safely import the SSL/TLS certificate of your application?

Answer 25

1. AWS Certificate Manager (ACM) | 2. IAM Certificate Store

Question 26

AWS X-Ray 

Answer 26

used to to trace and analyze user requests as they travel through your Amazon API Gateway APIs to the underlying services.

Question 27

CloudWatch returns ? if the check fails

Answer 27

impaired

Question 28

Cloudwatch status insufficient-data means

Answer 28

checks may still be in progress on the volume

Question 29

Cloudwatch status - warning

Answer 29

degraded/severely degraded (volume performance is below/well below expectations)

Question 30

if identity store which is currently being used is not compatible with SAML - what can be done

Answer 30

If your identity store is not compatible with SAML 2.0, then you can : 1. build a custom identity broker application to perform a similar function. 2. The broker application authenticates users, requests temporary credentials for users from AWS, and then provides them to the user to access AWS resources.

Question 31

Amazon EBS can deliver performance for workloads that require the lowest-latency access to data from a single EC2 instance - true or false

Answer 31

true

Question 32

the new EC2 instance does not automatically get a DNS hostname because the DNS resolution and DNS hostnames attributes are disabled in the newly created VPC (non default vpc) - t or f

Answer 32

true

Question 33

Proxy Protocol is an

Answer 33

Internet protocol used to carry connection information from the source requesting the connection to the destination for which the connection was requested

Question 34

Connection Draining

Answer 34

ELB configuration - To ensure that a Classic Load Balancer stops sending requests to instances that are de-registering or unhealthy while keeping the existing connections open, we use this