practitioner

Question 1

Advantages of cloud computing

Answer 1

1) trade capital expense to variable expense
2) Benefit from massive economies of scale
3) stop guessing about capacity
4) Increase speed and agility
5) Stop spending money running and maintaining data centers
6) go global in minutes

Question 2

choosing the right AWS region

Answer 2

1) Data sovereignty Laws
2) Latency to end user
3) AWS service (is present in that region or not)

Question 3

Setting up billing alarm

Answer 3

-> CloudWatch -> billing -> click create alarm -> activate SNS (simple notification service )

Question 4

different ways to access AWS (IAM)

Answer 4

1) programmatic access( using the command line)
2) Aws management console
3) Using SDKs ( software development kits)

Question 5

IAM set user permission

Answer 5

1) add the user to a group (the “group” is a place to store users and they will inherit all the permission at that group)
2) copy permission from the existing user
3) attach existing policies directly (policies are basically Json script)

Question 6

IAM identity access management

Answer 6

when we create a user/group it is created globally
ie identity created is not region specific

Question 7

IAM best practice

Answer 7

1) root account for only creating account and not login

2)one user = one real human ( no platform user )

3) use group/policies for better management of user

4) have strong password policies

5)MFA

6)ROLES for AWS service communication with each other )

7)Access key (programmatic access)

8) IAM credential report ( to audit permission for the user/group)

Question 8

IAM credential report

Answer 8

list all users and the details about the Password (if Changed regularly or not) Access key, MFA ( on or off)

Question 9

S3 ( simple storage services )

Answer 9

dksndol

Question 10

Basic of S3

Answer 10

1) the name must be unique globally

2) URL syntax “ https://s3-(? region).amazonaws.com/(bucket name)

3)http-200 means upload is successful

Question 11

characteristics of object present in the S3

Answer 11

1) Key(name)

2)value(the object itself)

3) versionID

4)metadata (info/comments about the data present)

5)Sub resource :-
access control list
torrent

Question 12

S3 features

Answer 12

1) Tiered storage available
2) life-cycle management
3) versioning
4) encryption
5) secure using access control list and bucket policies

Question 13

S3 storage tier

Answer 13

-> standard
-> IA(infrequently accessed)
-> one zone IA
-> intelligent tier
-> s3 glacier Instant Retrieval
-> s3 glacier Flexible Retrieval
-> s3 glacier deep archive

Question 14

s3 for what all charges are applicable

Answer 14

-> storage
->request
-> Storage management pricing
->data transfer
-> transfer acceleration
-> cross-region replication

Question 15

restricting bucket access

Answer 15

-> bucket policies (applied for entire bucket)
-> object policies (applied for individual files)
->IAM

Question 16

cloud front types of distribution

Answer 16

-> Web distribution (mainly for websites)

-> RTMP(for media streaming)

Question 17

Why Roles

Answer 17

roles are much more secure than using access key and secret access key and also easy to manage

like IAM these are not region specific

Question 18

OLTP and OLAP

Answer 18

-> online transaction processing ( used to fetch normal application query wrt data )
-> online analytic processing ( used to pull large data for business intelligence ) data warehousing

Question 19

Load balancer Types

Answer 19

-> Application load balancer (layer 7 makes an intelligent decision)
-> Network load balancer (extreme performance /static IP)
-> Classic load balancer( test and dev low cost)

target group are attached so that when a request comes at port 80 will be shifting the load to the instance present in the target group ( attach suitable sg to allow 80 requests)

Question 20

RDS (types of database engine)

Answer 20

-> SQL server ( Microsoft)
-> oracle
-> MySql server
-> postgress
->Aurora
->Maria db
-> dynamoDB ( NON RDS !! )

Question 21

RDS key features

Answer 21

-> multi AZ ( for disaster recovery )
-> read replicas ( for performance )

Question 22

Data warehouse

Answer 22

use for different types of architecture both from a database perspective and infrastructure layer ( redshift )

Question 23

ElastiCache

Answer 23

is a web service that makes it easy to deploy, operate, and scale an in-memory cache in the cloud. The service improves the performance of web applications by allowing you to retrieve information from fast, managed, in-memory caches, instead of relying entirely on slower disk-based databases.

-> redis
-> memcached

Question 24

Elastic Beanstalk

Answer 24

quickly run the application without worrying about the infrastructure that runs these application

Question 25

traditional vs cloud

Answer 25

-> IT assets are provisioned resources -> Global, available, and scalable -> higher-level managed service -> built-in security -> Architecting for cost -> operations on AWS

Question 26

Scalability

Answer 26

-> scale up -> scale out -> stateless application (lambda) -> distributed load to multiple node -> stateless components (cookies) -> stateful components (shopping cart details) -> implement session affinity (sticky session ) -> distributed processing

Question 27

Disposable resource insted of fixed

Answer 27

-> instantiating compute resource -> bootstrapping -> golden images -> containers -> hybrid -> infrastructure as code ->cloud formation

Question 28

Automation

Answer 28

-> Serverless management and deployment -> infrastructure management -> beanstalk -> ec2 auto-recovery -> system manager -> auto-scaling -> alarms and events -> cloudwatch alarms -> cloudwatch event -> lambda seheduled -> WAF security automation

Question 29

service not servers

Answer 29

managed services serverless architecture

Question 30

AWS global service

Answer 30

IAM ROute53 cloud frount sns ses

Question 31

AWS service to on-prem

Answer 31

snowball (80 TB) snowball edge (basically computer van use lambda ) storage gateway ( stays in on-prem) code deploy ops-works iot greengrass

Question 32

cloud watch

Answer 32

monitoring service to monitor AWS resources and applications in AWS -> ec2 -> auto scaling groups -> load balancer -> rout53 -> ebs -> storage gateway -> cloudfrount

Question 33

aws systems manager

Answer 33

-> manage fleets ec2 instance and vm -> Peace of software is installed in each ec2 -> can be both inside AWS and on-prem -> Use the run command to install patch software -> Integrate with cloudwatch

Question 34

service health dashboard

Answer 34

-> overview of all region -> historical info on AWS service ( daily basis)' -> RSS feeds