AWS Cloud Prac

Ace your homework & exams now with Quizwiz!

What are the 5 Key Characteristics of Cloud Computing?

1. On-Demand,Self-Service - A user can consume cloud resources, as needed, automatically, without human interaction 2. Broad network access - Capabilities are available over the network using standard mechanisms. 3. Resource Pooling - The providers resources are pooled and serve multiple consumers using a multi-tenant model 4. Rapid Elasticity - Capabilities can scale "elastically" based on demand 5. Measured Service - Resource usage is monitored and metered.

With Amazon S3, objects are stored in which type of root-level container?

A Bucket

What is a Region?

A Geographical area with 2 or more Availability Zones, Isolated from AWS regions. If one region was to go down, other regions will still be up.

Which type of firewall operates at the instance level?

A Security Group

What is a VPC Endpoint?

A VPC Endpoint is a private connection to public AWS services

What is a VPC?

A Virtual Private Cloud - A logically isolated virtual network in the AWS Cloud. A VPC spans all the availability zones in the region.

What is a Hybrid Cloud?

A combination of on-premises, private cloud, and public cloud services are consumed.

What is a Edge Location?

A location with a cache of content that can be delivered at low latency to users - Used by Cloud Front

What is a Private Cloud?

A private cloud is a enterprise deploys their own infrastructure and applications into their own data center. It is not shared with anyone.

What is a Public Cloud?

A public cloud is the IT services that you consume are hosted and delivered from a third-party and accessed over the internet. Examples: AWS, Microsoft Azure

What is the scope of an Amazon VPC?

A region

A company needs a network connection to the AWS cloud with predictable performance. What should they use?

AWS Direct Connect

How can an organization create a private hybrid cloud connection between their on-premises data center and the AWS Cloud?

AWS Direct Connect

Which storage service can be used on-premises to access cloud storage?

AWS Storage Gateway

What are the three types of authentication methods for AWS?

Access Keys - API's Username & Passwords - AWS Management Console via Browser Signing Certificate - Limited to some AWS Services

How can you add an extra level of security to your root account?

Adding multi-factor authentication (MFA) to your root account adds an extra level of security as a device is needed to login as well as a username and password. This is a security best practice

What are the key characteristics of IAM Policies?

All Permissions are implicitly denied by default The most restrictive policy is applied

Which AWS database service offers seamless horizontal scaling?

Amazon DynamoDB

Which AWS database service offers seamless horizontal scaling?

Amazon DynamoDB offers seamless "push-button" horizontal scaling

What are the services you can do Reservations for?

Amazon EC2 Reserved Instances Amazon DynamoDB Reserved Capacity Amazon ElastiCache Reserved Nodes Amazon Relational Database Service (RDS) Reserved Instances Amazon RedShift Reserved Nodes

Amazon Relational Database Service (RDS) is an example of what type of database?

Amazon RDS is an example of a relational database used for online transaction processing (OLTP) workloads. This means its typically used for production databases that process transactions

What is Amazon RDS?

Amazon Relational Database. An Operational Database that receives data from applications. data is well-formed and structured.

What is AWS IAM?

Amazon Web Services Identity and Access Management

What type of authentication does an API use for AWS?

An API will use an "Access Key" although you can set up multi-factor authentication.

What does ARN stand for?

An Amazon Resource Name (ARN) is associated with entities such as users and groups

Amazon Elastic Block Store (EBS) volumes are stored within which construct?

An Availability Zone

What is a Availability Zone? (AZ)

An Availability Zone is one or more data centers that are physically separate and isolated from other Availability Zones. Each Availability Zone is designed as an independent failure zone.

What is an API?

Application Program Interface

What are the three fundamentals of AWS Pricing?

Compute, Storage, Outbound Data Transfer.

What is a Peering Connection?

Direct Connection between two VPCs

How can an organization enable microsecond latency for a DynamoDB database?

DynamoDB Accelerator (DAX) is an in-memory cache that increases performance of DynamoDB databases

Amazon DynamoDB is good for which use case?

DynamoDB is a No-SQL database which has a flexible schema and is good for unstructured data

What is Amazon ElasticCache?

ElastiCache is a web service that makes it easy to deploy and run memchached or redis protocol-compliant server nodes in the cloud.

Which type of public IP address is retained when the instance is stopped?

Elastic IP Address

What is a Global Network

Highly Available, low-latency private global network interconnecting every data center, AZ, and AWS region

What is IaaS?

Infrastructure as a Service (IaaS) takes the Platform as a Service (PaaS) model another step forward. It provides not just on-demand operating solutions but complete outsourcing options as well. This can include utility or metered computing services, administrative task automation, dynamic scaling, virtualization services, policy implementation and management services, and managed/filtered Internet connectivity. This gives you the most control on VMs/Runtime/App Data. You do not manage the Hypervisor or Physical Hardware.

Which storage device is physically attached to the Amazon EC2 host servers?

Instance Store Volume

What is a Secuirty Group in a VPC?

Instance-level firewall

What is Amazon Redshift?

It is a Data Warehouse for large volumes of aggregated data and you perform analytics on that data.

What is Amazon DynamoDB?

It is a NOSQL Database that has high Input/Output needs and in-memory performance. Great storage performance and dynamic scaling.

With default settings, what will happen to a root EBS volume when the Amazon EC2 instance is terminated?

It will be deleted

IAM Policies are written in?

JSON (Java Script Object Notation)

What are the two types of Elsticache Engines?

Memcached - Simplest model, can run large nodes with multiple cores/threads, can be scaled in and out, can cache objects such as DBs Redis - complex model, supports encryption, master / slave replication, cross AZ (High Availbility), Auto Failover and backup/restore

Which AWS-managed network service can be used to enable Internet connectivity for EC2 instances in private subnets?

NAT Gateway

Amazon S3 is an example of what type of storage system?

Object

What are the AWS Pricing Models

On-Demand - Used for Compute and Database Capacity, No Long-term commitments or upfront payments Dedicated Instances - Available for Amazon EC2, hardware is dedicated to a single customer. Spot Instances - Purchase spare capacity with no commitments, great discounts from hourly rates. Reservations - 1 or 3 year term. You are committed to pay. Options to pay: No Upfront (Monthly payment), Partial Upfront (monthly payment), all upfront

What is PaaS?

Platform as a Service (PaaS) is the concept of providing a computing platform and software solution stack as a virtual or cloud-based service. You managed the Data and the Application. You do not Manage the Runtime or VMs

Which AWS database service is a relational, data warehouse?

RedShift is a relational, SQL database that is well suited for data warehouse use

Which Amazon S3 storage class is used for archiving data for long term retention?

S3 Glacier Deep Archive

What is SaaS?

Software as a Service (SaaS) is a derivative of Platform as a Service (PaaS). Software as a Service provides on-demand online access to specific software applications or suites without the need for local installation (or even local hardware and OS requirements in many cases). This is managed by the provider entirely.

What is a Network ACL in a VPC?

Subnet-level firewall

What are the credentials for an AWS root account?

The account root user credentials are the email address used to create the account and a password

What is a MultiCloud?

Usage of two or more public clouds at a time, and possibly multiple private clouds.

An access key ID and secret access key is associated with IAM entity?

User: An access key ID and secret access key is associated with a user and is used for granting programmatic access using the CLI or API

By default, users are created with what permissions?

Users are created with no permissions. You can then assign permissions using groups and policies

How can fault tolerance be added to an Amazon RDS database?

Using Multi-AZ

Which principal should be used when assigning permissions to users or groups?

When assigning permissions always grant the least privileges required. This is a security best practice

Which IAM entity can be used to delegate permissions?

You can delegate permissions using roles. It's a great way to provide permissions to resources for users and services without using permanent credentials

Why might an organization decide to move an on-premises database to Amazon RDS?

You can reduce operational overhead by moving to AWS managed services. With RDS this means you no longer need to manage the operating system

How do you increase the capacity of an Amazon RDS database?

You can scale Amazon RDS by changing to a larger instance type. This is an example of vertical scaling


Related study sets

Real Estate License Exam - Level 16: Property Insurance

View Set

Chem 1 Chapter 7 part 2 and chapter 8 part 1

View Set

Chemistry Unit 5: The Dynamics of Chemical Reactions and Ocean Acidification Lesson 4

View Set

Family Medicine Aquifer Test Study Guide

View Set