Cloud computing midterm

Resource center access, service health dashboard, product FAQs, discussion forums, and support for heath checks

Basic Support

We must ensure the IT is aligned with business needs, and that IT investments can be traced to demonstrable business results

Business perspective

Customers that run production workloads

Business support

Business capabilities

Business, people, governance

Perspectives consist of sets of ___

Capabilities

There are three cloud deployment models

Cloud Hybrid On-premise or private cloud

Access to services by discrete commands or scripts

Command Line Interface (AWS CLI)

Your choice of region is typically based on ____ or to ______

Compliance requirements Reduce latency

Three fundamental drivers of cot with AWS

Compute, storage, data transfer

Which of the following is AWS's responsibility under the AWS shared responsibility model?

Maintaining physical hardware

Under which service category does the Amazon VPC service appear

Networking and content delivery

Smaller discount

No upfront payments reserves Instance (NURI)

AWS provides you with _____ to compute, storage, network, database, and other IT resources and management tools

On-demand access

We align with and support the operations of the business and define how day-to-day, quarter-to-quarter, and year to year business will be conducted

Operations perspective

Lower discount

Partial upfront reserved Instance (PURI)

How do you pay for AWS

Pay for what you use Pay less when you reserve Pay less when you use more and as AWS grows

You ______, for _________

Pay only for the individual services you need As long as you use them

We must prioritize training, staffing, and organizational changes to build an agile organizational changes to build an agile organization

People perspective

PaaS

Platform as a Service

We must understand and communicate the nature of IT systems and their relationships. We must be able to describe the architecture of the target state environment in detail

Platform perspective

Technical capabilities

Platform, security, operations

Who is responsible-AWS or the customer: securing the SSH keys

The customer

Who is responsible-AWS or the customer: upgrades and patches to operating system on the EC2 instance

The customer

API

Application Programming Interface

Software solutions

Are flexible Can change more quickly, easily, and cost-effectively than hardware solutions Eliminate the undifferentiated heavy-lifting tasks

Who is responsible-AWS or the customer: Ensuring that the AWS Management Console is not hacked

AWS

Who is responsible-AWS or the customer: Oracle upgrades or patches if the Oracle instance runs as an Amazon RDS instance

AWS

Who is responsible-AWS or the customer: Physical security of the data center?

AWS

Who is responsible-AWS or the customer: Protecting against network outages in AWS Regions

AWS

Who is responsible-AWS or the customer: Virtualization infrastructure

AWS

Who is responsible-AWS or the customer: ensuring network isolation between AWS customers's data

AWS

Who is responsible-AWS or the customer:Ensuring low-latency network connection between the web server and the S3 bucket

AWS

Provides access to security and compliance reports

AWS Artifact

_______ provides guidance and best practices to help organizations build a comprehensive approach to cloud computing across the and throughout the IT lifecycle to accelerate successful cloud adoption

AWS CAF

Is used to access, audit, and evaluate the configurations of AWS resources

AWS Config

The ____ consists of regions and availability zones

AWS Global Infrastructure

Easy-to-use graphical interface

AWS Management Console

Enables you to consolidate multiple AWS accounts so that you centrally manage them

AWS Organizations

Which component of AWS global infrastructure does Amazon Cloudfront use to ensure low-latency delivery

AWS edge location

Provides information about the policies processes and controls that are established and operated by AWS

AWS security compliance programs

Largest discount

All upfront reserved instance (AURI)

Why's is AWS more economical than traditional data centers for applications with varying compute workloads?

Amazon EC2 can be launched on-demand when needed.

The services you select ____ your _____

Depends on Business goals and technology requirements

Support for early development on AWS

Developer Support

_____ and _____ improve profirmance by caching conetent closer time users

Edge locations Regional edge caches

Customers that run business and mission- critical workloads

Enterprise support

AWS offers

Flexibility

We must ensure that skills and processes align IT strategy and goals with business strategy and goals so the organization can maximize the business value of its IT investment and minimize business risks.

Governance perspective

Which of the following services are global instead of regional. Check Amazon EC2, IAM, Lambda and route 53

IAM and Route 53 are global

A collection of IAM users that are granted identical authorization

IAM group

The document that defines which resources can be accessed and the level of access to each resource

IAM policy

Useful mechanism to grant a set of permissions for making AWS service requests

IAM role

A person or application that can authenticate an AWS account

IAM user

IaaS

Infrastructure as a Service

Who is responsible-AWS or the customer: enforcing multi-factor authentication for all user logins

The customer

Hardware solutions

Require space, staff, physical security, planning, capital expenditure Have a long hardware procurement cycle Require you to provision capacity by guessing theoretical maximum peaks

Which AWS service provides infrastructure security optimization recommendations

Reserved instance

AWS is a _____ that offers a _____

Secure cloud platform Broad set of global cloud based products

We must ensure that the organization meets its security objectives

Security perspective

Under which service category does IAM service appear

Security, identity, and compliance

AWS CAF is organized into ______

Six perspectives

Access services directly from your code (such as Java, Python, and others)

Software Development Kits (SDKs)

SaaS

Software as a Service

Cloud computing enables you to _______, and instead ___________

Stop thinking of your infrastructure as hardware Think of (and use) it as software

Does the subnet that you selected exist at the level of the region or the level of the availability zone

Subnets exist at the level of the availability zone

Who is responsible-AWS or the customer: EC2 security group settings

The Customer

Who is responsible-AWS or the customer: Configuration of applications that run on the EC2 instance

The customer

Who is responsible-AWS or the customer: Configuring the VPC

The customer

Who is responsible-AWS or the customer: Configuring the subnet

The customer

Who is responsible-AWS or the customer: Oracle upgrades or patches is Oracle runs on an EC2 instance

The customer

Who is responsible-AWS or the customer: S3 bucket access configuration

The customer

Cloud Computing

The on-demand delivery of compute power, database, storage, applications, and other IT resources via the internet with pay-as-you-go pricing

______ is the financial estimate to help identify direct and indirect costs of a system

Total cost of ownership (TCO)

Does the VPC exist at the level of the Region or the level of the availability Zone?

VPCs exist at the Region level

A ____ is any piece of software that makes itself available over the internet and uses a standardized format for the request and the response of an application programming interface interaction

Web service

AWS services _____ like building blocks

Work together