Cloud computing midterm
Resource center access, service health dashboard, product FAQs, discussion forums, and support for heath checks
Basic Support
We must ensure the IT is aligned with business needs, and that IT investments can be traced to demonstrable business results
Business perspective
Customers that run production workloads
Business support
Business capabilities
Business, people, governance
Perspectives consist of sets of ___
Capabilities
There are three cloud deployment models
Cloud Hybrid On-premise or private cloud
Access to services by discrete commands or scripts
Command Line Interface (AWS CLI)
Your choice of region is typically based on ____ or to ______
Compliance requirements Reduce latency
Three fundamental drivers of cot with AWS
Compute, storage, data transfer
Which of the following is AWS's responsibility under the AWS shared responsibility model?
Maintaining physical hardware
Under which service category does the Amazon VPC service appear
Networking and content delivery
Smaller discount
No upfront payments reserves Instance (NURI)
AWS provides you with _____ to compute, storage, network, database, and other IT resources and management tools
On-demand access
We align with and support the operations of the business and define how day-to-day, quarter-to-quarter, and year to year business will be conducted
Operations perspective
Lower discount
Partial upfront reserved Instance (PURI)
How do you pay for AWS
Pay for what you use Pay less when you reserve Pay less when you use more and as AWS grows
You ______, for _________
Pay only for the individual services you need As long as you use them
We must prioritize training, staffing, and organizational changes to build an agile organizational changes to build an agile organization
People perspective
PaaS
Platform as a Service
We must understand and communicate the nature of IT systems and their relationships. We must be able to describe the architecture of the target state environment in detail
Platform perspective
Technical capabilities
Platform, security, operations
Who is responsible-AWS or the customer: securing the SSH keys
The customer
Who is responsible-AWS or the customer: upgrades and patches to operating system on the EC2 instance
The customer
API
Application Programming Interface
Software solutions
Are flexible Can change more quickly, easily, and cost-effectively than hardware solutions Eliminate the undifferentiated heavy-lifting tasks
Who is responsible-AWS or the customer: Ensuring that the AWS Management Console is not hacked
AWS
Who is responsible-AWS or the customer: Oracle upgrades or patches if the Oracle instance runs as an Amazon RDS instance
AWS
Who is responsible-AWS or the customer: Physical security of the data center?
AWS
Who is responsible-AWS or the customer: Protecting against network outages in AWS Regions
AWS
Who is responsible-AWS or the customer: Virtualization infrastructure
AWS
Who is responsible-AWS or the customer: ensuring network isolation between AWS customers's data
AWS
Who is responsible-AWS or the customer:Ensuring low-latency network connection between the web server and the S3 bucket
AWS
Provides access to security and compliance reports
AWS Artifact
_______ provides guidance and best practices to help organizations build a comprehensive approach to cloud computing across the and throughout the IT lifecycle to accelerate successful cloud adoption
AWS CAF
Is used to access, audit, and evaluate the configurations of AWS resources
AWS Config
The ____ consists of regions and availability zones
AWS Global Infrastructure
Easy-to-use graphical interface
AWS Management Console
Enables you to consolidate multiple AWS accounts so that you centrally manage them
AWS Organizations
Which component of AWS global infrastructure does Amazon Cloudfront use to ensure low-latency delivery
AWS edge location
Provides information about the policies processes and controls that are established and operated by AWS
AWS security compliance programs
Largest discount
All upfront reserved instance (AURI)
Why's is AWS more economical than traditional data centers for applications with varying compute workloads?
Amazon EC2 can be launched on-demand when needed.
The services you select ____ your _____
Depends on Business goals and technology requirements
Support for early development on AWS
Developer Support
_____ and _____ improve profirmance by caching conetent closer time users
Edge locations Regional edge caches
Customers that run business and mission- critical workloads
Enterprise support
AWS offers
Flexibility
We must ensure that skills and processes align IT strategy and goals with business strategy and goals so the organization can maximize the business value of its IT investment and minimize business risks.
Governance perspective
Which of the following services are global instead of regional. Check Amazon EC2, IAM, Lambda and route 53
IAM and Route 53 are global
A collection of IAM users that are granted identical authorization
IAM group
The document that defines which resources can be accessed and the level of access to each resource
IAM policy
Useful mechanism to grant a set of permissions for making AWS service requests
IAM role
A person or application that can authenticate an AWS account
IAM user
IaaS
Infrastructure as a Service
Who is responsible-AWS or the customer: enforcing multi-factor authentication for all user logins
The customer
Hardware solutions
Require space, staff, physical security, planning, capital expenditure Have a long hardware procurement cycle Require you to provision capacity by guessing theoretical maximum peaks
Which AWS service provides infrastructure security optimization recommendations
Reserved instance
AWS is a _____ that offers a _____
Secure cloud platform Broad set of global cloud based products
We must ensure that the organization meets its security objectives
Security perspective
Under which service category does IAM service appear
Security, identity, and compliance
AWS CAF is organized into ______
Six perspectives
Access services directly from your code (such as Java, Python, and others)
Software Development Kits (SDKs)
SaaS
Software as a Service
Cloud computing enables you to _______, and instead ___________
Stop thinking of your infrastructure as hardware Think of (and use) it as software
Does the subnet that you selected exist at the level of the region or the level of the availability zone
Subnets exist at the level of the availability zone
Who is responsible-AWS or the customer: EC2 security group settings
The Customer
Who is responsible-AWS or the customer: Configuration of applications that run on the EC2 instance
The customer
Who is responsible-AWS or the customer: Configuring the VPC
The customer
Who is responsible-AWS or the customer: Configuring the subnet
The customer
Who is responsible-AWS or the customer: Oracle upgrades or patches is Oracle runs on an EC2 instance
The customer
Who is responsible-AWS or the customer: S3 bucket access configuration
The customer
Cloud Computing
The on-demand delivery of compute power, database, storage, applications, and other IT resources via the internet with pay-as-you-go pricing
______ is the financial estimate to help identify direct and indirect costs of a system
Total cost of ownership (TCO)
Does the VPC exist at the level of the Region or the level of the availability Zone?
VPCs exist at the Region level
A ____ is any piece of software that makes itself available over the internet and uses a standardized format for the request and the response of an application programming interface interaction
Web service
AWS services _____ like building blocks
Work together