AWS Global Infrastructure and Services Overview
Availability Zone (AZ)
A distinct location within a Region that is insulated from failures in other Availability Zones, and provides inexpensive, low-latency network connectivity to other Availability Zones in the same Region. AZs are connected with low-latency private links (not public internet)
Amazon DynamoDB
A fast and flexible NoSQL database service for all applications that need consistent, single-digit millisecond latency at any scale. It is a fully managed cloud database and supports both document and key-value store models
Region
A named set of AWS resources in the same geographical area. A Region comprises at least two Availability Zones. Communication between regions is across the public Internet.
Amazon Simple Storage Service (S3)
A scalable, durable platform to make data accessible from any Internet location, for user-generated content, active archive, serverless computing, Big Data storage or backup and recovery. AWS provides a simple web service interface to store and retrieve any amount of data from anywhere on the web.
What is an AWS region? A. A region is a geographical area divided into Availability Zones. Each region contains at least two Availability Zones. B. A region is an independent data center, located in different countries around the globe. C. A region is a subset of AWS technologies. For example, the Compute region consists of EC2, ECS, Lambda, etc. D. A region is a collection of Edge Locations available in specific countries.
A. A region is a geographical area divided into Availability Zones. Each region contains at least two Availability Zones
Which AWS service is specifically designed to assist you in processing large data sets? A. EMR B. Big Data Processing C. EC2 D. ElastiCache
A. Amazon EMR is a web service that makes it easy to process large amounts of data efficiently. Further information: https://docs.aws.amazon.com/emr/latest/ManagementGuide/emr-what-is-emr.html
What is the fundamental difference between Elastic Beanstalk & CloudFormation? A. Elastic Beanstalk automatically handles the deployment of your code -- from capacity provisioning, load balancing, auto-scaling to application health monitoring -- based on the code you upload to it, whereas CloudFormation is an automated provisioning engine designed to deploy entire cloud environments via a JSON script. B. Elastic Beanstalk is a monitoring tool used to view the performance of your AWS resources, whereas CloudFormation is an automated provisioning engine designed to deploy entire cloud environments via a JSON script. C. There is no difference between the two. Elastic Beanstalk was simply the code name used internally for CloudFormation, prior to the product being released. D. Elastic Beanstalk automatically handles the deployment of your code -- from capacity provisioning, load balancing, auto-scaling to application health monitoring -- based on the code you upload to it, whereas CloudFormation is a security service designed to harden your cloud against an attack such as a DDoS.
A. Elastic Beanstalk automatically handles the deployment of your code -- from capacity provisioning, load balancing, auto-scaling to application health monitoring -- based on the code you upload to it, whereas CloudFormation is an automated provisioning engine designed to deploy entire cloud environments via a JSON script.
An AWS VPC is a component of which group of AWS services? A. Networking Services B. Database Services C. Global Infrastructure D. Compute Services
A. Networking Services - A Virtual Private Cloud (VPC) is a virtual network dedicated to a single AWS account. It is logically isolated from other virtual networks in the AWS cloud, providing compute resources with security and robust networking functionality
What AWS service would you use primarily for data warehousing? A. Redshift B. DynamoDB C. RDS D. DMS
A. Redshift
Amazon's highly scalable DNS service is known as ________. A. Route 53 B. Elastic Map Reduce C. Directory Service D. CloudTrail
A. Route53 is AWS' DNS service. The name is a portmanteau of Route 66, an American highway, and 53, the port used for DNS
Your system administrators need to receive notification of specified events affecting your AWS environment (such as alarms, etc.) Which service should you enable? A. SNS B. Mobile Hub C. Cognito D. Device Farm
A. SNS
AWS Application Discovery Service
AWS Application Discovery Service helps systems integrators quickly and reliably plan application migration projects by automatically identifying applications running in on-premises data centers, their associated dependencies, and their performance profiles.
Amazon Batch
AWS Batch dynamically provisions the optimal quantity and type of compute resources (e.g., CPU or memory optimized instances) based on the volume and specific resource requirements of the batch jobs submitted. Allows users to easily and efficiently run hundreds of thousands of batch computing jobs on AWS
AWS Certificate Manager
AWS Certificate Manager is a service that lets you easily provision, manage, and deploy Secure Sockets Layer/Transport Layer Security (SSL/TLS) certificates.
AWS CloudFormation
AWS CloudFormation provides a common language for you to describe and provision all the infrastructure resources in your cloud environment. CloudFormation allows you to use a simple text file to model and provision, in an automated and secure manner, all the resources needed for your applications across all regions and accounts.
AWS CloudTrail
AWS CloudTrail is a service that enables governance, compliance, operational auditing, and risk auditing of your AWS account. With CloudTrail, you can log, continuously monitor, and retain account activity related to actions across your AWS infrastructure. CloudTrail provides event history of your AWS account activity, including actions taken through the AWS Management Console, AWS SDKs, command line tools, and other AWS services
AWS Config
AWS Config is a service that enables you to assess, audit, and evaluate the configurations of your AWS resources. Config continuously monitors and records your AWS resource configurations and allows you to automate the evaluation of recorded configurations against desired configurations
AWS Database Migration Service
AWS Database Migration Service helps you migrate databases to AWS easily and securely. The source database remains fully operational during the migration, minimizing downtime to applications that rely on the database. The AWS Database Migration Service can migrate your data to and from most widely used commercial and open-source databases.
AWS Directory Service
AWS Directory Service for Microsoft Active Directory (Enterprise Edition), also known as AWS Microsoft AD, enables your directory-aware workloads and AWS resources to use managed Active Directory in the AWS Cloud.
AWS Elastic Beanstalk
AWS Elastic Beanstalk is an easy-to-use service for deploying and scaling web applications and services developed in certain languages and on certain platforms. It automatically handles the deployment, from capacity provisioning, load balancing, auto-scaling to application health monitoring.
AWS Firewall Manager
AWS Firewall Manager is a security management service that makes it easier to centrally configure and manage AWS WAF rules across your accounts and applications.
AWS Key Management Service
AWS Key Management Service (KMS) is a managed service that makes it easy for you to create and control the encryption keys used to encrypt your data.
AWS Lambda
AWS Lambda lets you run code without provisioning or managing servers. You can run code for virtually any type of application or backend service—all with zero administration.
AWS Managed Services
AWS Managed Services provides ongoing management of your AWS infrastructure so you can focus on your applications.
AWS Migration Hub
AWS Migration Hub provides a single place to discover your existing servers, plan migrations, and track the status of each application migration.
AWS OpsWorks
AWS OpsWorks is a configuration management service that provides managed instances of Chef and Puppet. Chef and Puppet are automation platforms that allow you to use code to automate the configurations of your servers.
AWS Organizations
AWS Organizations offers policy-based management for multiple AWS accounts. With Organizations, you can create groups of accounts and then apply policies to those groups.
AWS Secrets Manager
AWS Secrets Manager enables you to easily rotate, manage, and retrieve database credentials, API keys, and other secrets throughout their lifecycle.
AWS Server Migration Service
AWS Server Migration Service (SMS) is an agentless service which makes it easier and faster for you to migrate thousands of on-premises workloads to AWS.
Service Catalog
AWS Service Catalog allows organizations to create and manage catalogs of IT services that are approved for use on AWS.
AWS Shield
AWS Shield is a managed Distributed Denial of Service (DDoS) protection service that safeguards web applications running on AWS.
AWS Single Sign-On
AWS Single Sign-On (SSO) is a cloud SSO service that makes it easy to centrally manage SSO access to multiple AWS accounts and business applications.
AWS Step Functions
AWS Step Functions makes it easy to coordinate the components of distributed applications and microservices using visual workflows.
Systems Manager
AWS Systems Manager gives you visibility and control of your infrastructure on AWS. Systems Manager provides a unified user interface so you can view operational data from multiple AWS services and allows you to automate operational tasks across your AWS resources
AWS Trusted Advisor
AWS Trusted Advisor is an online resource to help you reduce cost, increase performance, and improve security by optimizing your AWS environment, Trusted Advisor provides real time guidance to help you provision your resources following AWS best practices.
AWS Web Application Firewall (WAF)
AWS WAF is a web application firewall that helps protect your web applications from common web exploits that could affect application availability, compromise security, or consume excessive resources.
Amazon Relational Database Service (RDS)
Allows the set up and operation of scalable databases in the cloud. Supports familiar database engines to choose from, including Amazon Aurora, Oracle, Microsoft SQL Server, PostgreSQL, MySQL and MariaDB.
API Gateway
Amazon API Gateway is a fully managed service that makes it easy for developers to create, publish, maintain, monitor, and secure APIs at any scale. Amazon API Gateway handles all the tasks involved in accepting and processing up to hundreds of thousands of concurrent API calls, including traffic management, authorization and access control, monitoring, and API version management.
AppStream 2.0
Amazon AppStream 2.0 is a secure, managed application streaming service that provides users instant access to desktop applications through a browser on any computer, anywhere, at any time.
Amazon Cloud Directory
Amazon Cloud Directory enables you to build flexible cloud-native directories for organizing hierarchies of data along multiple dimensions.
CloudFront
Amazon CloudFront is a global content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to your viewers with low latency and high transfer speeds
CloudSearch
Amazon CloudSearch is a managed service in the AWS Cloud that makes it simple and cost-effective to set up, manage, and scale a search solution for your website or application.
AWS CloudWatch
Amazon CloudWatch is a monitoring service for AWS cloud resources and the applications you run on AWS. It can be used to collect and track metrics, collect and monitor log files, set alarms, and automatically react to changes in your AWS resources.
Amazon Cognito
Amazon Cognito lets you add user sign-up/sign-in and access control to your web and mobile apps quickly and easily.
Amazon EC2 Container Registry
Amazon EC2 Container Registry (ECR) is a fully-managed Docker container registry that makes it easy for developers to store, manage, and deploy Docker container images.
Amazon EC2 Container Service
Amazon EC2 Container Service (ECS) is a highly scalable, high-performance container management service that supports Docker containers
Amazon ElastiCache
Amazon ElastiCache makes it easy to deploy, operate, and scale an in-memory data store or cache in the cloud. The service improves the performance of web applications by allowing you to retrieve information from fast, managed, in-memory caches, instead of relying entirely on slower disk-based databases. Offers Redis and Memcached offerings.
Amazon Elastic Block Store (EBS)
Amazon Elastic Block Store (Amazon EBS) provides high availabiliy, consistent, low-latency persistent block storage volumes for use with Amazon EC2 instances in the AWS Cloud
Amazon EC2
Amazon Elastic Compute Cloud (Amazon EC2) is a web service that provides secure, resizable compute capacity in the cloud. Allows you to launch and manage virtual machine images.
Amazon Elastic File System (EFS)
Amazon Elastic File System (Amazon EFS) provides simple, scalable file storage for use with Amazon EC2 instances in the AWS Cloud. It delivers a file system interface with standard file system access semantics for Amazon EC2 instances. EFS grows and shrinks capacity automatically, and provides high throughput with consistently low latencies. EFS is designed for high availability and durability, and provides performance for a broad spectrum of workloads and applications, including Big Data and analytics, media processing workflows, content management, web serving, container storage, and home directories.
ElasticSearch
Amazon Elasticsearch Service makes it easy to deploy, secure, operate, and scale Elasticsearch for log analytics, full text search, application monitoring, and more
Amazon Glacier
Amazon Glacier is an extremely low-cost and highly durable object storage service for long-term backup and archive of any type of data.
Amazon GuardDuty
Amazon GuardDuty is a managed threat detection service that provides you with a more accurate and easy way to continuously monitor and protect your AWS accounts and workloads.
Amazon Inspector
Amazon Inspector is an automated security assessment service that helps improve the security and compliance of applications deployed on AWS.
Kinesis Video Streams
Amazon Kinesis Video Streams makes it easy to securely stream video from connected devices to AWS for analytics, machine learning (ML), playback, and other processing
Amazon Lightsail
Amazon Lightsail is designed to be the easiest way to launch and manage a virtual private server with AWS. Includes virtual machine, SSD- based storage, data transfer, DNS management, and a static IP address
Amazon MQ
Amazon MQ is a managed message broker service for Apache ActiveMQ that makes it easy to set up and operate message brokers in the cloud
Amazon Macie
Amazon Macie is a machine learning-powered security service to discover, classify, and protect sensitive data.
Amazon Neptune
Amazon Neptune is a fast, reliable, fully-managed graph database service that makes it easy to build and run applications that work with highly connected datasets.
Amazon Redshift
Amazon Redshift is a fast, fully managed, petabyte-scale data warehouse that makes it simple and cost-effective to analyze all your data using your existing business intelligence tools
Amazon Simple Email Service (SES)
Amazon Simple Email Service (Amazon SES) is a cloud-based email sending service designed to help digital marketers and application developers send marketing, notification, and transactional emails.
Amazon Simple Notification Service (SNS)
Amazon Simple Notification Service (SNS) is a flexible, fully managed pub/sub messaging and mobile notifications service for coordinating the delivery of messages to subscribing endpoints and clients. Allows you to Decouple and scale microservices, distributed systems, and serverless applications
Amazon Simple Queue Service (SQS)
Amazon Simple Queue Service (SQS) is a fully managed message queuing service that enables you to decouple and scale microservices, distributed systems, and serverless applications. SQS offers two types of message queues. Standard queues offer maximum throughput, best-effort ordering, and at-least-once delivery. SQS FIFO queues are designed to guarantee that messages are processed exactly once, in the exact order that they are sent.
Amazon Simple Workflow (SWF)
Amazon Simple Workflow (Amazon SWF) helps developers build, run, and scale background jobs that have parallel or sequential steps. You can think of Amazon SWF as a fully-managed state tracker and task coordinator in the cloud
VPC
Amazon Virtual Private Cloud (Amazon VPC) lets you provision a logically isolated section of the AWS Cloud where you can launch AWS resources in a virtual network that you define.
Workspaces
Amazon WorkSpaces is a managed, secure cloud desktop service. You can use Amazon WorkSpaces to provision either Windows or Linux desktops in just a few minutes and quickly scale to provide thousands of desktops to workers across the globe
Which AWS service is used for collating large amounts of data streamed from multiple sources? A. CloudCapture B. Kinesis C. CloudFront D. SQS
B. Amazon Kinesis is used to collect, process, and analyze real-time, streaming data.
You need to supply auditors with logs showing which Users provisioned given resources on your AWS infrastructure. Which service would best satisfy this need? A. Opsworks B. CloudTrail C. CloudFormation D. CloudWatch
B. CloudTrail - AWS CloudTrail is a service that enables governance, compliance, operational auditing, and risk auditing of your AWS account.
You need to monitor the performance of your EC2 instances (including metrics such as CPU Utilization, Disk IO, etc.) Which service would best meet this requirement? A. CloudMonitor B. CloudWatch C. CloudAudit D. CloudTrail
B. CloudWatch
Which database service would you use to migrate a database from Oracle to MySQL? A. ElastiCache B. DMS C. Redshift D. RDS
B. DMS - AWS Database Migration Service (DMS) can migrate your data to and from most widely used commercial and open-source databases such as Oracle, PostgreSQL, Microsoft SQL Server, Amazon Redshift, Amazon Aurora, Amazon DynamoDB, Amazon S3, MariaDB, and MySQL
Which of the following is Amazon's No-SQL database service? A. ElastiCache B. DynamoDB C. RDS D. Redshift
B. DynamoDB - DynamoDB is AWS' No-SQL database service. Further information: https://aws.amazon.com/documentation/dynamodb/
Which AWS service is specifically designed to automatically provision the resources required to host the code a developer uploads during the Development process? A. CloudTrail B. Elastic Beanstalk C. CloudFormation D. CloudFormer
B. Elastic Beanstalk
You need a configuration management service that will allow your system administrators to use Chef to configure and operate your web applications. Which AWS service would best suit your needs? A. Trusted Advisor B. OpsWorks C. CloudWatch D. CloudTrail
B. OpsWorks - AWS OpsWorks is a configuration management service that uses Chef, an automation platform that treats server configurations as code.
Which AWS service offers durable storage for flat files? A. SQS B. S3 C. CloudFront Edge Locations D. Kinesis
B. S3 - S3 is object storage built to store and retrieve any amount of data from anywhere - web sites and mobile apps, corporate applications, and data from IoT sensors or devices
Which of the following is a petabyte-scale data transfer solution? A. Avalanche B. Snowball C. SQS D. SWF
B. Snowball is a petabyte-scale data transport solution that uses secure appliances to transfer large amounts of data into and out of the AWS cloud.
You need to add new users to your AWS account and set password rotation policies for these new users. Which AWS service should you use to do so? A. Inspector B. Key Management Service C. Identity Access Management (IAM) D. Directory Service
C. Identity Access Management (IAM)
You need to implement an automated service that will scan your AWS environment with the goal of both improving security and reducing costs. Which service should you use? A. Service Catalog B. Config Rules C. Trusted Advisor D. CloudTrail
C. Trusted Advisor - An online resource to help you reduce cost, increase performance, and improve security by optimizing your AWS environment, Trusted Advisor provides real time guidance to help you provision your resources following AWS best practices. Further information: https://docs.aws.amazon.com/awssupport/latest/user/getting-started.html#tr
Which AWS service is a Content Delivery Network? A. CloudFront B. CloudStream C. CloudFormation D. CloudPush
CloudFront is AWS content delivery network. Further information: https://aws.amazon.com/cloudfront/
Which AWS service offers the following database engines: SQL, MySQL, MariaDB, PostgreSQL, Aurora, and Oracle? A. Kinesis B. DynamoDB C. Redshift D. Relational Database Service (RDS)
D. Amazon RDS - offers those database engines as a managed service. Further information: https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/Welcome.html
Which statement best describes Availability Zones? A. A Content Distribution Network used to distribute content to users. B. Restricted areas designed specifically for the creation of Virtual Private Clouds. C. Two zones containing compute resources that are designed to automatically maintain synchronized copies of each other's data. D. Distinct locations from within an AWS region that are engineered to be isolated from failures.
D. An Availability Zone (AZ) is a distinct location within an AWS Region. Each Region comprises at least two AZs.
What does an AWS Region consist of? A. A collection of databases that can only be accessed from a specific geographic region. B. A console that gives you a quick, global picture of your cloud computing environment. C. A collection of data centers that is spread evenly around a specific continent. D. A distinct location within a geographic area designed to provide high availability to a specific geography.
D. Each region is a separate geographic area. Each region has multiple, isolated locations known as Availability Zones. Further information: https://aws.amazon.com/about-aws/global-infrastructure/https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/using-regions-avail
Your digital media agency needs to convert its media files to formats that can be viewed on a variety of devices. Which AWS service should you use to meet this need? A. Appstream B. SWF C. SQS D. Elastic Transcoder
D. Elastic Transcoder
Which AWS service would be the best choice for long term data archival? A. EFS B. CloudFront C. S3 D. Glacier
D. Glacier
What is an Amazon VPC? A. Virtual Public Cloud B. Virtual Private Compute C. Virtual Public Compute D. Virtual Private Cloud
D. Virtual Private Cloud - VPC stands for Virtual Private Cloud
AWS Direct Connect
Dedicated network connection between your network and your Amazon VPC
Which AWS service is effectively a NAS in the cloud, allowing you to connect it to multiple EC2 instances at once? A. SQS B. EFS C. SNS D. EBS
EFS - Amazon EFS (Elastic File System) provides simple, scalable file storage for use with Amazon EC2 instances. EBS - Amazon Elastic Block Store (Amazon EBS) provides block level storage volumes for use with EC2 instances. EBS volumes are highly available and reliable storage volumes that can be attached to any running instance that is in the same Availability Zone.
Athena
Easily analyze data in Amazon S3, using standard SQL. Pay only for the queries you run.
Edge location
Edge locations are locations maintained by AWS through a worldwide network of data centers for the distribution of content to reduce latency
Data Pipeline
Helps you reliably process and move data between different AWS compute and storage services, as well as on-premise data sources, at specified intervals.
Route53
Highly available and scalable cloud DNS to connect user requests to your AWS resources
Amazon Kinesis
Ingesting large amounts of data. Makes it easy to collect, process, and analyze real-time, streaming data so you can get timely insights and react quickly to new information
Amazon Aurora
MySQL and PostgreSQL-compatible relational database with enterprise grade performance, availability, and security
Glue
Prepare and load data to data stores (ETL)
EMR
Provides a managed Hadoop framework to process vast amounts of data quickly and cost-effectively. Run open source frameworks such as Apache Spark, HBase, Presto, and Flink.
AWS Snowball
Snowball is a petabyte-scale data transport solution appliance that uses devices designed to be secure to transfer large amounts of data into and out of the AWS Cloud.
AWS Storage Gateway
Software appliance that seamlessly links on-premisis environments to Amazon Cloud Storage supporting hybrid Cloud Storage with Seamless Integration and Optimized Data Transfer.
AWS Artifact
The AWS Artifact portal provides on-demand access to AWS' security and compliance documents, also known as audit artifacts.
AWS CloudHSM
The AWS CloudHSM service helps you meet corporate, contractual and regulatory compliance requirements for data security by using dedicated Hardware Security Module (HSM) appliances within the AWS cloud.
AWS Identity and Access Management (IAM)
Use AWS Identity and Access Management (IAM) to control users' access to AWS services. Create and manage users and groups, and grant or deny access.
QuickSight
Very fast, easy-to-use, cloud-powered business analytics for 1/10th the cost of traditional BI solutions.
