Questions and Answers
What does IAM (Identity and Access Management) primarily manage?
Which AWS service allows you to automatically scale your resources based on demand?
What is saved in an EBS Snapshot?
Which of the following EC2 purchasing options is most suitable for variable workloads?
Signup and view all the answers
What feature of Amazon S3 allows you to prevent accidental deletions of files?
Signup and view all the answers
Which component of Amazon RDS supports high availability?
Signup and view all the answers
How does Elastic Load Balancing (ELB) enhance application availability?
Signup and view all the answers
Which AWS service is designed for querying data on Amazon S3 without provisioning any resources?
Signup and view all the answers
Which storage class in Amazon S3 is most suitable for data that is rarely accessed?
Signup and view all the answers
What best describes the function of EC2 User Data?
Signup and view all the answers
Study Notes
IAM (Identity and Access Management)
- Users are individual identities with passwords for AWS Console access.
- Groups consist solely of users, simplifying permission management.
- Policies are JSON documents that define specific permissions for users or groups.
- Roles are associated with EC2 instances or AWS services, granting necessary permissions.
- Security measures include Multi-Factor Authentication (MFA) and strict password policies.
- AWS CLI allows management of services through command-line interface.
- AWS SDK enables service management using various programming languages.
- Access Keys are required for AWS CLI and SDK access.
- IAM Credential Reports and IAM Access Advisor assist in auditing access and permissions.
EC2 (Elastic Compute Cloud)
- An EC2 instance is defined by the combination of an Amazon Machine Image (AMI), instance size, storage, security group, and user data.
- Security Groups act as firewalls for EC2 instances, controlling inbound and outbound traffic.
- EC2 User Data runs scripts automatically when an instance first launches.
- SSH (Secure Shell) is used to connect to EC2 instances, utilizing port 22.
- EC2 Instance Role connects instances with IAM roles for permissions management.
- Purchasing options include On-demand, Spot, Reserved (Standard + Convertible), Dedicated Host, and Dedicated Instance.
EC2 Instance Storage
- EBS (Elastic Block Store) Volumes are network drives that can be attached to a single EC2 instance within an Availability Zone.
- EBS Snapshots enable backup and transfer of EBS volumes across Availability Zones.
- AMIs allow creation of pre-configured EC2 instances with custom settings.
- EC2 Image Builder automates the process of building, testing, and distributing AMIs.
- EC2 Instance Store offers high-performance disk storage but data is lost if the instance is stopped/terminated.
- EFS (Elastic File System) supports multiple instances in a region, acting as a shared network file system.
- EFS-IA is an infrequent access storage class, designed for cost savings on lesser-used data.
- FSx for Windows and FSx for Lustre cater to Windows servers and high-performance Linux computing, respectively.
ELB & ASG
- High Availability, Scalability (vertical and horizontal), Elasticity, and Agility are key concepts in cloud infrastructure.
- Elastic Load Balancers (ELB) distribute incoming traffic across multiple backend EC2 instances with support for health checks.
- Different types of ELB include Classic, Application (HTTP-L7), Network (TCP-L4), and Gateway (L3).
- Auto Scaling Groups (ASG) allow automatic scaling of EC2 instances based on system demand, functioning with multiple Availability Zones.
- ASGs replace unhealthy instances and integrate seamlessly with ELB, ensuring performance stability.
Amazon S3
- S3 uses Buckets (globally unique names) and Objects (files) within specific regions.
- Security in S3 includes IAM policies, bucket policies for public access, and S3 encryption methods.
- S3 can host static websites with its built-in capabilities.
- Versioning allows for maintaining multiple file versions and prevents accidental deletions.
- S3 Replication can be configured for same-region or cross-region data transfer, requiring versioning to be enabled.
- Storage Classes in S3 include Standard, Infrequent Access (IA), One Zone-IA, Intelligent-Tiering, and Glacier (ranging from instant access to deep archiving).
Snow Family
- Devices such as SnowCone and Snowball facilitate data import into S3, supporting edge computing needs.
- SnowCone offers storage capacities of 8TB HDD and 14TB SSD with a total size of up to 24TB.
- Snowball Edge provides up to 80TB usable with potential storage expansion to petabytes.
- Snowmobile is capable of transferring data over 100PB, scaling up to exabyte ranges.
- OpsHub is a desktop application designed for managing Snow Family devices.
- The Storage Gateway serves as a hybrid solution extending on-premises storage to S3.
Databases & Analytics
- Relational Databases for OLTP include RDS and Aurora, with configurations for Multi-AZ, Read Replicas, and Multi-Region setups.
- ElasticCache serves in-memory database needs.
- DynamoDB is a serverless key/value database, with DAX providing caching solutions for enhanced performance.
- Redshift acts as a warehouse for OLAP workloads using SQL.
- EMR (Elastic MapReduce) supports Hadoop cluster operations.
- Athena permits serverless querying of S3 data using SQL.
- QuickSight delivers serverless data visualization and dashboarding capabilities.
- DocumentDB mirrors MongoDB's capabilities with JSON data handling.
- Amazon QLDB offers an immutable ledger for financial transactions, ensuring cryptographic verification of records.
Studying That Suits You
Use AI to generate personalized quizzes and flashcards to suit your learning preferences.
Description
Prepare for the AWS Cloud Practitioner Certification with this summary of essential concepts. This guide includes key topics like Identity and Access Management (IAM), users, groups, policies, roles, and security measures, as well as tools like AWS CLI and AWS SDK. Get ready for your exam with these important notes!
