Services Flashcards

Question

Neptune

Answer 1

- Managed graph database for highly connected data like social networks. - Supports billions of relationships with millisecond query times. - Replicates across AZs with up to 15 read replicas for reliability. - Perfect for recommendation engines, fraud detection, and knowledge graphs.

Answer 2

- Serverless time-series database for tracking events over time. - Scales to trillions of daily events, 1000x faster than relational DBs. - Built-in analytics for trends, cheaper than traditional options. - Used for IoT, app monitoring, and real-time telemetry data.

Answer 3

- Managed ledger database for immutable, verifiable transaction records. - Tracks every change with cryptographic integrity, no deletions allowed. - Offers SQL-like queries, outperforming blockchain for financial logs. - Ideal for auditing supply chains, banking, or compliance tracking.

Answer 4

- Managed service to join or create blockchain networks like Hyperledger or Ethereum. - Simplifies setup and scaling, no need to run your own nodes. - Enables decentralized apps without managing the blockchain infra. - Fits use cases like secure transactions or cross-party trust networks.

Answer 5

- Serverless ETL (extract, transform, load) service for data prep and analytics. - Crawls data sources like S3 or RDS to auto-generate transformation scripts. - Loads processed data into warehouses like Redshift or S3 buckets. - Includes a Data Catalog for metadata, used by Athena and EMR.

Answer 6

- Managed service to migrate databases to AWS with minimal downtime. - Supports homogeneous (e.g., Oracle to Oracle) and heterogeneous (e.g., SQL to Aurora) moves. - Runs on EC2, keeping source DB live during replication. - Helps shift on-premises or other cloud DBs to AWS efficiently.

Answer 7

- Platform for packaging apps into containers for consistent deployment. - Runs the same everywhere—any OS, any cloud, no compatibility woes. - Lightweight and fast, scaling containers up or down in seconds. - Not an AWS service, but foundational for AWS container offerings.

Answer 8

- Managed service to run Docker containers on AWS with EC2 clusters. - Orchestrates container deployment, scaling, and load balancing. - Requires you to provision and manage the underlying EC2 instances. - Integrates with ALB for routing traffic to containerized apps.

Answer 9

- Serverless compute engine for running Docker containers without managing servers. - Scales container resources (CPU, memory) based on your specs. - Works with ECS or EKS, eliminating EC2 instance oversight. - Pay-per-use model, ideal for hands-off container workloads.

Answer 10

- Fully managed private Docker registry for storing and managing container images. - Integrates with ECS and EKS for seamless container deployment. - Secures images with encryption and IAM-based access control. - Pay-per-use storage and data transfer, no upfront costs.

Answer 11

- Managed Kubernetes service for orchestrating containerized apps on AWS. - Runs Kubernetes clusters on EC2 or Fargate, handling control plane tasks. - Scales and updates automatically, supporting cloud-agnostic workloads. - Ideal for complex, multi-container apps needing robust orchestration.

Answer 12

- Computing model where you run code without managing servers. - AWS handles infrastructure, scaling, and maintenance behind the scenes. - Pay only for execution time or usage, not idle resources. - Includes services like Lambda, Fargate, and DynamoDB for app building.

Answer 13

- Serverless compute service running functions in response to events. - Scales automatically, executing code in milliseconds with no server setup. - Supports multiple languages, triggered by S3, API Gateway, or CloudWatch. - Free tier offers 1M requests/month, great for event-driven tasks.

Answer 14

- Managed service to create, publish, and secure RESTful or WebSocket APIs. - Routes client requests to backend services like Lambda or DynamoDB. - Handles throttling, authentication, and monitoring out of the box. - Scales effortlessly, perfect for building serverless APIs.

Answer 15

- Managed service for running batch computing jobs on EC2 instances. - Dynamically provisions compute resources for jobs with a start and end. - Uses Docker images via ECS, optimizing cost with Spot Instances. - Suits data processing or simulations, not serverless like Lambda.

Answer 16

- Simplified virtual server service for beginners with fixed pricing. - Bundles compute, storage, and networking for easy app or site hosting. - Offers templates (e.g., WordPress) but lacks auto-scaling. - Cheaper alternative to EC2, ideal for small-scale dev or testing.

Answer 17

- Infrastructure-as-code service to define and deploy AWS resources via templates. - Automates resource creation in the right order using JSON or YAML files. - Enables consistent, repeatable setups across environments like dev or prod. - Free to use, though you pay for the resources it provisions.

Answer 18

- Open-source tool to define and manage infrastructure as code, usable with AWS. - Uses HCL (HashiCorp Configuration Language) to provision resources across clouds. - Differs from CloudFormation by being cloud-agnostic, not AWS-specific. - Popular for multi-cloud setups, but requires manual state management vs. AWS’s managed approach.

Answer 19

- Tool to define AWS infrastructure using familiar programming languages. - Compiles code (e.g., Python, TypeScript) into CloudFormation templates. - Combines app code and infra deployment in one workflow. - Boosts developer productivity for Lambda or container-based projects.

Answer 20

- Platform-as-a-service for deploying apps without managing infrastructure. - Handles EC2, load balancing, and auto-scaling behind a simple interface. - Supports languages like Java, Node.js, and Docker, free but charges for resources. - Best for developers wanting quick setups over full control.

Answer 21

- Automated deployment service for apps to EC2, on-premises, or Lambda. - Rolls out updates with minimal downtime using deployment strategies. - Works across hybrid environments, ensuring consistent releases. - Integrates with CI/CD pipelines for streamlined app updates.

Answer 22

- Managed source control service, AWS’s alternative to GitHub. - Stores code in private repositories with encryption and IAM security. - Scales with team size, integrating with other AWS developer tools. - Keeps version history for collaboration on app development.

Answer 23

- Fully managed build service for compiling code and running tests. - Produces deployable artifacts, scaling serverlessly with pay-per-build pricing. - Supports custom build environments via Docker images or presets. - Fits into CI/CD workflows with tools like CodePipeline.

Answer 24

- Continuous integration and deployment service for automating release pipelines. - Orchestrates code from source (e.g., CodeCommit) to build, test, and deploy. - Integrates with AWS services like CodeBuild and Beanstalk. - Speeds up delivery with a visual workflow, fully managed by AWS.

Answer 25

- Managed artifact repository for storing software package dependencies. - Supports tools like Maven, npm, and NuGet for easy retrieval. - Centralizes dependency management for devs and CI/CD systems. - Secures artifacts with IAM and scales without setup hassles.

Answer 26

- Service to manage EC2 instances and on-premises systems at scale. - Automates tasks like patching, configuration, and command execution. - Works via an SSM Agent, pre-installed on AWS AMIs. - Provides operational insights and hybrid management capabilities.

Answer 27

- Feature of Systems Manager for secure shell access to EC2 instances. - Connects via browser or CLI without SSH keys or open ports (e.g., 22). - Logs sessions to S3 or CloudWatch for auditing purposes. - Requires IAM permissions and the SSM Agent on instances.

Answer 28

- Secure storage for configuration data, secrets, and API keys. - Organizes parameters in hierarchies, accessible via SDK or CLI. - Offers encryption with KMS and version tracking for changes. - Free for standard use, integrates with apps and automation scripts.

Answer 29

- Managed DNS service to route traffic to AWS resources or external endpoints. - Offers routing policies like latency-based, failover, and weighted for optimization. - Highly available and scalable, resolving domain names globally. - Can register domains and integrate with health checks for reliability.

Answer 30

- Content Delivery Network (CDN) to cache and deliver content globally. - Speeds up websites and apps using edge locations near users. - Protects against DDoS with Shield and integrates with S3 or custom origins. - Pay-per-use for data transfer and requests, boosting performance.

Answer 31

- Security feature for CloudFront to restrict direct access to S3 origins. - Ensures only CloudFront can fetch content, enhancing S3 bucket protection. - Replaces older Origin Access Identity, simpler to configure. - Key for securing static website hosting or private content delivery.

Answer 32

- Speeds up S3 uploads by routing data through AWS edge locations. - Uses optimized network paths to cut transfer times globally. - Best for large files or distant users, testable via AWS speed tool. - Adds a small cost but leverages AWS’s private backbone.

Answer 33

- Improves app performance by routing traffic over AWS’s global network. - Assigns static IPs to direct users to nearest healthy endpoints. - Boosts availability with automatic failover across regions. - Complements load balancers, ideal for low-latency global apps.

Answer 34

- On-premises hardware racks running AWS services like EC2 and S3. - Extends AWS infra to hybrid setups for low-latency or local data needs. - Fully managed by AWS, you handle physical security. - Suits compliance, migration, or edge processing use cases.

Answer 35

- Deploys AWS services at the edge of 5G networks via telco data centers. - Cuts latency for mobile apps like gaming or AR/VR on 5G devices. - Traffic stays within the provider’s network, not the public internet. - Links to parent AWS regions for broader compute access.

Answer 36

- Extends AWS compute and storage closer to end users outside main regions. - Reduces latency for apps like gaming or content delivery in specific cities. - Supports services like EC2 and RDS, tied to a parent region. - Pay-per-use, ideal for latency-sensitive workloads.

Answer 37

- Managed message queuing service to decouple app components. - Scales from one to thousands of messages per second, serverless. - Holds messages up to 14 days, deleted after consumption. - Offers FIFO queues for ordered processing when needed.

Answer 38

- Streams: Real-time data ingestion and processing from many sources. - Firehose: Loads streaming data into S3, Redshift, or other sinks. - Both scale massively, Streams for custom apps, Firehose for simplicity. - Used for analytics, IoT, or log processing with pay-per-use.

Answer 39

- Pub/sub messaging service to send notifications to many subscribers. - Pushes messages to SQS, Lambda, email, SMS, or HTTP endpoints. - Supports millions of subscribers per topic, fully managed. - Great for fan-out patterns or event-driven alerts.

Answer 40

- Managed message broker for ActiveMQ and RabbitMQ protocols. - Bridges traditional apps to cloud without rewriting, not as scalable as SQS/SNS. - Runs in clusters with failover, supporting queues and topics. - Fits hybrid migrations needing MQTT or AMQP compatibility.

Answer 41

- Collects and tracks metrics from AWS services like EC2 or S3 usage. - Creates dashboards to visualize performance over time. - Sets alarms to trigger actions (e.g., SNS) when thresholds are hit. - Free basic monitoring, detailed metrics add small costs.

Answer 42

- Stores and analyzes log data from AWS services and apps. - Streams logs in real-time from Lambda, ECS, or EC2 with an agent. - Adjustable retention periods, searchable for troubleshooting. - Pay for storage and ingestion, key for debugging.

Answer 43

- Event bus service to connect apps with AWS or custom events. - Schedules tasks (e.g., Lambda hourly) or reacts to changes (e.g., S3 uploads). - Integrates with SaaS partners like Datadog, scaling serverlessly. - Replaces older CloudWatch Events with broader functionality.

Answer 44

- Records API calls and account activity for auditing and governance. - Tracks actions from console, CLI, SDK, or services, enabled by default. - Stores logs in S3 or CloudWatch for long-term analysis. - Essential for security compliance and troubleshooting.

Answer 45

- Traces requests across distributed apps to debug performance issues. - Maps service dependencies and pinpoints bottlenecks or errors. - Works with Lambda, EC2, and API Gateway, fully managed. - Helps ensure apps meet latency or SLA goals.

Answer 46

- ML-powered tool for code reviews and runtime performance insights. - Reviewer finds bugs and security issues in Java/Python code. - Profiler optimizes app efficiency, spotting resource waste. - Integrates with GitHub or AWS services for dev workflows. - Front: AWS Health Dashboard

Answer 47

- Monitors AWS service status and account-specific health events. - Shows global outages and personalized resource impacts. - Offers alerts and remediation steps for affected services. - Free tool, with detailed views for Business/Enterprise plans.

Answer 48

- Private, isolated network space to launch AWS resources. - Controls IP ranges, subnets, and routing within your AWS environment. - Enhances security with customizable access rules. - Foundational for most AWS deployments, regionally scoped.

Answer 49

- Static public IPv4 address you can assign to instances or services. - Stays fixed despite instance stops/starts, unlike dynamic IPs. - Costs $0.005/hour when not attached, free when in use. - Useful for consistent access or failover setups.

Answer 50

- Subnets split VPC into AZ-specific segments, public or private. - Internet Gateway connects public subnets to the internet. - NAT Gateways let private subnets access the web outbound. - Core trio for VPC networking and connectivity control.

Answer 51

- Stateless firewall at subnet level with allow/deny rules. - Filters traffic by IP and port, applied to all instances in subnet. - Unlike Security Groups, doesn’t track connection state. - Adds layered security to VPC beyond instance-level controls.

Answer 52

- Captures IP traffic details for VPC interfaces or subnets. - Logs data to S3 or CloudWatch for monitoring and analysis. - Troubleshoots connectivity or security issues effectively. - Optional feature, charged by data volume processed.

Answer 53

- Privately connects two VPCs to act as one network. - Works across accounts or regions, no overlapping IP ranges. - Non-transitive, requiring direct peering for each link. - Simplifies resource sharing without public internet.

Answer 54

- Gateway links VPC to S3/DynamoDB privately, skipping internet. - Interface connects to other AWS services via private IPs. - Boosts security and cuts latency for service access. - Cost-effective, with Gateway free and Interface hourly billed.

Answer 55

- Site-to-Site VPN links on-premises to AWS over encrypted internet. - Direct Connect offers dedicated, private physical connection. - VPN is quick/cheap; DX is fast/secure but takes weeks. - Both integrate on-premises with VPC for hybrid setups.

Answer 56

- CGW is your on-premises VPN device for Site-to-Site VPN. - Pair with VGW enables secure tunneling between your network and AWS. - Key components for hybrid connectivity setup.

Answer 57

- VGW is AWS’s VPC endpoint for VPN or Direct Connect. - Pair with CGW enables secure tunneling between your network and AWS. - Key components for hybrid connectivity setup.

Answer 58

- Connects user devices to AWS VPC or on-premises via OpenVPN. - Uses private IPs over public internet for secure access. - Links to EC2 or extends to on-site networks with VPN. - Ideal for remote workers needing VPC resource access.

Answer 59

- Central hub for connecting multiple VPCs and on-premises networks. - Simplifies complex peering with a hub-and-spoke model. - Scales to thousands of connections, supporting DX and VPN. - Reduces management overhead for large network topologies.

Answer 60

- AWS secures the cloud (infrastructure, hardware, global network). - You secure your data, apps, and configs in the cloud. - Splits duties like patching: AWS for hosts, you for OS/apps. - Core concept for understanding AWS security roles.

Answer 61

- Protects web apps from Layer 7 exploits like SQL injection. - Filters HTTP traffic on ALB, API Gateway, or CloudFront. - Custom rules block IPs, countries, or malicious patterns. - Pay-per-rule and request, bolstering app security.

Answer 62

- Standard: Free DDoS protection for all AWS users, Layer 3/4 attacks. - Advanced: $3,000/month for sophisticated threats, 24/7 support. - Shields EC2, ELB, CloudFront, and Route 53 from floods. - Standard is automatic; Advanced adds cost protection.

Answer 63

- Managed firewall for VPC, filtering Layers 3-7 traffic. - Controls inbound, outbound, and VPC-to-VPC flows. - Scales with network, integrating with VPN or Direct Connect. - Fine-tunes security beyond NACLs and Security Groups.

Answer 64

- Centralizes security rule management across AWS accounts. - Applies WAF, Shield, or Network Firewall policies organization-wide. - Auto-enforces rules on new resources for compliance. - Requires AWS Organizations, simplifying multi-account security.

Answer 65

- Allowed on EC2, ELB, RDS, and more without prior AWS approval. - Prohibits DDoS, flooding, or DNS attacks unless coordinated. - Test security of your AWS setup, e.g., unrestricted SSH. - Contact AWS for simulated attack permissions.

Answer 66

- Managed service to create and control encryption keys for AWS resources. - Encrypts data in S3, EBS, RDS, and more with customer-managed keys. - Integrates with IAM for key access and supports key rotation. - Low-cost, pay-per-use for key operations and storage.

Answer 67

- Dedicated hardware for managing your own encryption keys in AWS. - Offers FIPS 140-2 Level 3 compliance, unlike KMS’s shared model. - You control key lifecycle fully, AWS provisions the hardware. - Pricier option for strict regulatory or custom security needs.

Answer 68

- Provisions and manages SSL/TLS certificates for secure connections. - Free public certificates, auto-renews for ELB, CloudFront, or API Gateway. - Simplifies HTTPS setup without manual certificate handling. - Private certificates available for internal use at a cost.

Answer 69

- Stores and rotates sensitive data like passwords or API keys. - Integrates with RDS for DB credentials, encrypted via KMS. - Automates secret rotation (e.g., every 30 days) for security. - Pay-per-secret and API call, boosting app credential safety.

Answer 70

- Portal for on-demand access to AWS compliance reports and agreements. - Provides SOC, PCI, and ISO docs for audits, free to use. - Supports internal compliance reviews with downloadable files. - Global service, no setup needed, just account access.

Answer 71

- ML-driven threat detection for AWS accounts and workloads. - Analyzes CloudTrail, VPC Flow Logs, and DNS for anomalies. - Alerts on suspicious activity via EventBridge or console. - Continuous monitoring, priced per data volume analyzed.

Answer 72

- Scans EC2, Lambda, and container images for security vulnerabilities. - Uses a CVE database to flag software risks and misconfigurations. - Generates findings for remediation, integrable with Security Hub. - Pay-per-assessment, enhancing app security posture.

Answer 73

- Tracks and audits AWS resource configurations over time. - Records changes (e.g., S3 bucket permissions) with S3 storage option. - Alerts via SNS when rules (e.g., no public access) are violated. - Per-region service, costs based on recorded items.

Answer 74

- ML-powered service to detect sensitive data (e.g., PII) in S3. - Scans buckets for unencrypted or public data, alerting via EventBridge. - Helps with data privacy compliance like GDPR or HIPAA. - Charges per GB scanned, protecting against leaks.

Answer 75

- Central dashboard for security and compliance across AWS accounts. - Aggregates findings from GuardDuty, Inspector, Macie, and more. - Offers automated checks against AWS best practices. - Paid service, requires Config, unifies security oversight.

Answer 76

- Investigates security issues using ML and graph-based analysis. - Pulls data from CloudTrail, VPC Flow Logs, and GuardDuty. - Visualizes root causes of alerts from Security Hub or Macie. - Pay-per-GB of data processed, deepens incident response.

Answer 77

- Reporting tool for suspected misuse of AWS resources (e.g., spam, DDoS). - Submit via form or email to AWS Abuse team for investigation. - Covers illegal content, malware, or network attacks. - Free to report, protects AWS ecosystem integrity.

Answer 78

- Full access to all AWS services, tied to account creation email. - Only root can change account settings or close the account. - Avoid daily use; secure with MFA, delegate via IAM. - Critical for initial setup or rare high-level tasks.

Answer 79

- Identifies resources shared externally (e.g., S3, IAM roles). - Defines trust zones (account/organization) to flag unintended access. - Scans KMS keys, SQS queues, and more for security gaps. - Free tool, strengthens permission boundaries.

Answer 80

- ML service to analyze images and videos for objects, faces, or text. - Detects labels, verifies identities, or counts people with facial analysis. - Used for moderation, security, or media tagging workflows. - Pay-per-image/video processed, no infra management.

Answer 81

- Converts speech to text using automatic speech recognition (ASR). - Redacts PII and identifies languages in audio files automatically. - Transcribes calls or generates captions for media assets. - Pay-per-second of audio, serverless and scalable.

Answer 82

- Turns text into lifelike speech with deep learning voices. - Generates audio in multiple languages for apps or devices. - Customizable speech styles, used for accessibility or IVR. - Pay-per-character converted, fully managed by AWS.

Answer 83

- Real-time language translation service for text content. - Scales to large volumes, localizing apps or documents. - Supports dozens of languages with natural phrasing. - Pay-per-character, simple API-driven solution.

Answer 84

- Builds conversational chatbots using Alexa’s speech tech. - Converts speech to text and understands intent via NLP. - Powers interactive bots for customer service or apps. - Pay-per-request, integrates with Lambda for logic.

Answer 85

- Cloud-based contact center service for handling calls and chats. - Creates workflows with Lex for automated customer interactions. - Scales with demand, cheaper than on-premises solutions. - Pay-per-use, integrates with CRM for seamless support.

Answer 86

- NLP service to extract insights from text (e.g., sentiment, entities). - Identifies key phrases, topics, or positivity in unstructured data. - Used for customer feedback analysis or content categorization. - Pay-per-unit processed, serverless and ML-driven.-

Answer 87

- Managed service for building, training, and deploying ML models. - Simplifies ML workflows with pre-built algorithms and tools. - Scales compute for model training, integrates with S3 for data. - Pay-per-use, aimed at developers and data scientists.

Answer 88

- ML-driven service to predict future trends from time-series data. - Analyzes historical data (e.g., sales) for accurate forecasts. - Reduces planning time from months to hours, fully managed. - Used for demand prediction or resource planning, pay-per-use.

Answer 89

- Intelligent search service powered by ML for document queries. - Extracts answers from PDFs, Word docs, or FAQs naturally. - Learns from user interactions to refine results over time. - Pay-per-query, integrates with S3 or RDS data sources.

Answer 90

- ML service for real-time personalized recommendations. - Powers suggestions like Amazon.com’s “you might like” feature. - Trains on user data, deployable to apps or websites fast. - Pay-per-event, ideal for retail or media personalization.

Answer 91

- Extracts text and data from scanned documents using ML. - Reads forms, tables, or handwriting in PDFs and images. - Automates data entry for finance, healthcare, or tax use cases. - Pay-per-page, serverless with no setup required.

Answer 92

- Global service to manage multiple AWS accounts centrally. - Groups accounts into organizational units for policy control. - Consolidates billing and applies account-wide restrictions. - Free to use, enables scalability and governance.

Answer 93

- JSON policies to allow or deny actions across AWS accounts. - Applies to OUs or accounts, not the root/master account. - Enforces compliance (e.g., block S3 access) with explicit allows. - Part of AWS Organizations, no extra cost.

Answer 94

- Logical groupings of AWS accounts within Organizations. - Nestable (e.g., Dev under Prod) for hierarchical management. - Inherits SCPs from parent OUs for policy enforcement. - Simplifies applying rules or billing across account sets.

Answer 95

- Combines usage and costs from all accounts in an Organization. - Offers volume discounts and shared reserved instance savings. - Single bill from the master account, simplifying payments. - Optional feature, toggleable in AWS Organizations.

Answer 96

- Governance rules in Control Tower to enforce policies or detect issues. - Applies to OUs (e.g., mandate MFA or block regions). - Automates compliance across accounts, proactive or reactive. - Enhances multi-account setups, part of Control Tower.

Answer 97

- Sets up and governs a secure multi-account AWS environment. - Automates account creation with best-practice blueprints. - Uses Guardrails and Organizations for policy management. - Dashboard tracks compliance, paid via underlying services.

Answer 98

- Shares resources (e.g., VPC subnets, Aurora) across accounts. - Avoids duplication, linking resources within Organizations. - Simplifies access with no extra infrastructure needed. - Free service, pay for shared resource usage only.

Answer 99

- Curates approved AWS products (CloudFormation templates) for users. - Admins define standardized offerings for governance. - Users launch pre-configured resources from a portal. - Free to use, controls resource sprawl effectively.

Answer 100

- Pay-as-you-go: billed for usage with no commitments. - Reserved: discounts for 1- or 3-year resource commitments. - Volume discounts: lower rates as usage increases. - Free tier: limited free usage for select services (e.g., Lambda).

Answer 101

- Flexible discount plan for committing to hourly spend (1-3 years). - EC2 Savings: up to 72% off, tied to instance family/region. - Compute Savings: up to 66% off, spans EC2, Lambda, Fargate. - Easier than Reserved Instances, applied via Cost Explorer.

Answer 102

- ML tool to recommend optimal resource sizes for cost savings. - Analyzes EC2, ASG, and Lambda usage patterns. - Suggests downsizing over-provisioned instances, up to 25% cheaper. - Free service, exports findings to S3 for review.

Answer 103

- Pricing Calculator (calculator.aws) forecasts solution costs. - Input services and configs for monthly estimate previews. - Helps budget planning before deploying resources. - Free tool, accessible to all AWS users.

Answer 104

- Billing Dashboard shows month-to-date and service breakdowns. - Cost Explorer visualizes usage trends, forecasts up to 12 months. - Tags allocate costs to projects or teams for reporting. - Free basic tracking, detailed features may add fees.

Answer 105

- Billing Alarms in CloudWatch notify when costs hit thresholds. - Tracks global spend (us-east-1), simple SNS alerts. - Helps avoid surprises, free up to 10 alarms per account. - Basic tool, superseded by AWS Budgets for complexity.

Answer 106

- Sets custom cost, usage, or reservation budgets with alerts. - Filters by service, tag, or AZ, up to 5 SNS notifications. - Two free budgets, then $0.02/day each for monitoring. - Tracks and enforces spending limits proactively.

Answer 107

- ML-powered tool to spot unusual AWS spending patterns. - Analyzes billing data and alerts via SNS on anomalies. - Helps catch unexpected costs early, customizable by service. - Part of AWS Cost Management, pay-per-use for monitoring.

Answer 108

- Tracks and manages limits on AWS resource usage (e.g., EC2 instances). - Viewable in the Service Quotas console, request increases as needed. - Alerts via CloudWatch when nearing limits, preventing overuse. - Free tool, ensures compliance with account constraints.

Answer 109

- Provides real-time recommendations for cost, security, and performance. - Checks across categories like service limits and fault tolerance. - Full access with Business/Enterprise plans, basic checks free. - Helps optimize AWS usage and adherence to best practices.

Answer 110

- Basic (free): forums, 7 Trusted Advisor checks, Health Dashboard. - Developer ($29): email support, 24h response for general issues. - Business ($100): 24/7 support, full Trusted Advisor, <1h critical response. - Enterprise ($15,000): TAM, concierge, <15min critical response.

Answer 111

- Issues temporary credentials for AWS resource access. - Enables federation with external identity providers or IAM roles. - Short-term tokens (minutes to hours), enhancing security. - Free service, used heavily with EC2 roles and cross-account access.

Answer 112

- Manages user authentication and authorization for apps. - Supports millions of users with social logins (e.g., Google, Facebook). - Syncs user data across devices, integrates with API Gateway. - Pay-per-active-user, simplifies identity for web/mobile.

Answer 113

- Managed Microsoft AD service for directory-based identity. - Extends on-premises AD to AWS or runs standalone (Simple AD). - Connects via AD Connector proxy for hybrid setups. - Pay-per-hour, used for Windows workloads or SSO.

Answer 114

- Single sign-on for AWS accounts and business apps. - Centralizes access across Organizations, successor to AWS SSO. - Integrates with AD, Okta, or built-in identity store. - Free with Organizations, streamlines user management.

Answer 115

- Managed virtual desktop service for Windows or Linux. - Replaces on-premises VDI, accessible from any device. - Pay-per-hour or monthly, integrates with KMS for security. - Ideal for remote work or temporary desktop needs.

Answer 116

- Streams desktop apps to browsers without local installs. - Scales compute per app, works on any device, fully managed. - Pay-per-user streaming hour, no infra provisioning. - Suits app delivery for training or remote access.

Answer 117

- Connects IoT devices to AWS for data collection and action. - Scales to billions of devices, supports MQTT and HTTPS. - Integrates with Lambda or S3 for processing, serverless. - Pay-per-message, used for smart homes or industrial IoT.

Answer 118

- Converts media files in S3 to playback formats (e.g., MP4). - Scales encoding jobs, fully managed, pay-per-minute. - Simplifies video prep for phones, TVs, or streaming. - Cost-effective for media workflows, no setup needed.

Answer 119

- Managed GraphQL service for real-time app data sync. - Connects to DynamoDB or Lambda, auto-generates client code. - Supports offline access and subscriptions, serverless. - Pay-per-query, powers mobile/web app backends.

Answer 120

- Development platform for full-stack web and mobile apps. - Ties into S3, Cognito, AppSync for auth, storage, and APIs. - Offers CI/CD and front-end libraries, fully managed. - Pay for underlying services, speeds up app launches.

Answer 121

- Visual tool to design and build serverless app architectures. - Generates CloudFormation code from drag-and-drop designs. - Imports existing templates for editing, free to use. - Simplifies IaC for developers new to AWS.

Answer 122

- Tests web/mobile apps on real devices and browsers concurrently. - Configures settings like GPS or Wi-Fi, fully managed. - Pay-per-device-minute, speeds up QA cycles. - Ensures app compatibility across platforms.

Answer 123

- Centralizes backup management across AWS services (e.g., EBS, RDS). - Schedules backups and supports point-in-time recovery. - Offers cross-region/account options with retention policies. - Pay-per-GB stored, simplifies data protection.

Answer 124

- Backup/Restore: Cheapest, restores from snapshots post-failure. - Pilot Light: Minimal core setup in AWS, scales on disaster. - Warm Standby: Full app at small scale, ramps up quickly. - Multi-Site: Fully active duplicate, most expensive, instant failover.

Answer 125

- Replicates servers to AWS for fast recovery from disasters. - Uses low-cost staging EC2/EBS, fails over in minutes. - Protects physical, virtual, or cloud servers, pay-per-source. - Continuous block-level sync, supports failback.

Answer 126

- Moves large data volumes from on-premises to AWS (e.g., S3, EFS). - Schedules incremental syncs, faster than internet transfers. - Fully managed, pay-per-GB transferred, secure. - Simplifies migrations or hybrid data workflows.

Answer 127

- Rehost: Lift-and-shift to AWS (e.g., EC2) without changes. - Replatform: Minor tweaks (e.g., DB to RDS) for optimization. - Refactor: Redesign for cloud-native (e.g., microservices). - Retire/Retain: Decommission or keep as-is, per need.

Answer 128

- Collects data on on-premises servers for migration planning. - Gathers usage, configuration, and dependency info automatically. - Helps map apps to AWS resources, agent-based or agentless. - Free service, integrates with Migration Hub for strategy.

Answer 129

- Automates lift-and-shift migration of apps to AWS (aka MGN). - Replicates servers (physical, virtual, cloud) to EC2 natively. - Minimizes downtime with continuous sync, pay-per-source. - Simplifies moving workloads without major re-architecture.

Answer 130

- Builds a business case for AWS migration with cost analysis. - Assesses on-premises footprint via agentless data collection. - Estimates savings and maps target AWS environments. - Free tool, guides data-driven migration decisions.

Answer 131

- Central dashboard to track app migrations across AWS tools. - Aggregates data from Discovery, MGN, and DMS for visibility. - Monitors progress and status, no extra cost to use. - Coordinates multi-service migration projects efficiently.

Answer 132

- Tests app resilience by injecting controlled failures. - Simulates outages (e.g., EC2 termination) on live systems. - Uses Chaos Engineering to uncover weaknesses, pay-per-action. - Integrates with CloudWatch for monitoring results.

Answer 133

- Orchestrates serverless workflows with visual state machines. - Coordinates Lambda, ECS, or other services in sequence. - Handles retries and errors, pay-per-state transition. - Simplifies complex app logic like order processing.

Answer 134

- Managed service to control satellite comms and data processing. - Uses AWS’s global network of ground stations near regions. - Downlinks satellite data to S3 or EC2 in seconds. - Pay-per-minute, scales satellite ops without hardware.

Answer 135

- Marketing service for two-way communication (email, SMS, push). - Segments audiences and personalizes messages at scale. - Tracks campaign analytics, pay-per-event or message. - Used for transactional alerts or bulk promotions.

Answer 136

- Guides best practices for building AWS solutions. - Covers design principles like scalability and automation. - Foundation for the 6 Pillars, free resource from AWS. - Helps optimize apps for cost, performance, and security.

Answer 137

- Operational Excellence: Run and improve systems efficiently. - Security/Reliability: Protect data and recover from failures. - Performance/Cost: Optimize resources and spending. - Sustainability: Minimize environmental impact of workloads.

Answer 138

- Free tool to review architectures against the 6 Pillars. - Generates reports with improvement recommendations. - Assesses workloads via a questionnaire, no usage cost. - Aligns deployments with AWS best practices.

Answer 139

- Tracks and forecasts carbon emissions from AWS usage. - Breaks down impact by service and region, free to use. - Helps set sustainability goals for cloud workloads. - Supports eco-friendly reporting, no extra setup.

Answer 140

- Strategic guide for digital transformation on AWS. - Spans Business, People, Governance, and Tech perspectives. - Phases: Envision, Align, Launch, Scale—free framework. - Aligns cloud adoption with organizational goals.

Answer 141

- Connects users with AWS-certified experts for project help. - Pay-per-milestone for on-demand consulting or tasks. - Customers request, experts bid, work via AWS platform. - Free to browse, costs vary by expert engagement.

Answer 142

- Community-driven Q&A platform for AWS technical questions. - Earn reputation by answering, backed by AWS engineers. - Replaces forums, free with AWS account access. - Crowdsources solutions for common issues.

Answer 143

- Curates top FAQs and articles from AWS support teams. - Quick answers to common setup or troubleshooting queries. - Free resource, accessible via AWS support pages. - Complements re:Post with official guidance.

Answer 144

- AWS team manages your cloud infra and apps 24/7. - Handles patching, monitoring, and backups for you. - Pay-per-resource, offloads operational burden. - Ideal for enterprises needing full management.

Answer 145

- Ecosystem of partners offering AWS expertise and solutions. - Includes Tech Partners (tools) and Consulting Partners (services). - Training Partners certify pros, no cost to join network. - Enhances AWS adoption with third-party support.

Services Flashcards

(169 cards)