20 Questions
What is the primary purpose of AWS Identity and Access Management (IAM)?
To manage access to AWS services and resources securely
What is one of the specific conditions that IAM enables to control user access to AWS resources?
Time of day
What is the purpose of AWS Multi-factor Authentication (MFA) in the IAM context?
To require users to prove physical possession of a hardware token or MFA-enabled mobile device
How does IAM help security teams and administrators?
By quickly validating that policies only provide intended public and cross-account access to resources
Which type of load balancer is best suited for load balancing of HTTP and HTTPS traffic?
Application Load Balancer
What type of traffic is the Network Load Balancer best suited for load balancing?
TCP, UDP, and TLS
Which load balancer makes routing decisions at either the transport layer or the application layer?
Network Load Balancer
Which load balancer provides basic load balancing across multiple Amazon EC2 instances and operates at both the request level and the connection level?
Classic Load Balancer
What type of traffic is the Gateway Load Balancer best suited for load balancing?
TCP, UDP, and TLS
Which type of load balancer is transparent to the source and destination of traffic, making it well suited for working with third-party appliances for security, network analytics, and other use cases?
Gateway Load Balancer
What is the primary function of AWS Auto Scaling?
To monitor and automatically adjust capacity to maintain steady performance
Which resources can be managed using AWS Auto Scaling?
Amazon EC2 instances and Amazon DynamoDB tables
How does AWS Auto Scaling make scaling simple?
By combining Amazon EC2 Auto Scaling with AWS Auto Scaling for faster scaling
What does AWS Auto Scaling allow you to set for multiple resources in a single interface?
Utilization levels
What can AWS Auto Scaling help optimize when consuming AWS services?
Availability and costs
Which service is designed for use with Amazon Elastic Compute Cloud (EC2) for both throughput and transaction intensive workloads?
Amazon Elastic Block Store (EBS)
What does AWS Auto Scaling do when demand drops?
Automatically removes excess resource capacity
Which type of applications are widely deployed on Amazon EBS?
Enterprise applications
How are EBS volumes replicated for mission-critical systems?
Replication across Availability Zones (AZ)
What type of workloads can achieve single-digit-millisecond latency using Amazon EBS?
Database workloads
Study Notes
AWS Identity and Access Management (IAM)
- Primary purpose: control access to AWS resources
- Enables control of user access based on specific conditions, such as user identity, location, time of day, and type of request
- Supports Multi-factor Authentication (MFA) to add an extra layer of security for users
Load Balancers
- Application Load Balancer: best suited for load balancing HTTP and HTTPS traffic, makes routing decisions at the application layer (Layer 7)
- Network Load Balancer: best suited for load balancing high-performance, low-latency applications, makes routing decisions at the transport layer (Layer 4)
- Gateway Load Balancer: best suited for load balancing of third-party virtual appliances and scalable network functions, transparent to the source and destination of traffic
- Classic Load Balancer: provides basic load balancing across multiple Amazon EC2 instances, operates at both the request level and the connection level
AWS Auto Scaling
- Primary function: automatically adds or removes compute resources based on demand
- Can manage multiple resources, including Amazon EC2 instances, Amazon Elastic Container Service (ECS) containers, and more
- Simplifies scaling by automatically launching or terminating resources as needed
- Allows setting scaling policies for multiple resources in a single interface
- Helps optimize costs when consuming AWS services
- Automatically reduces resources when demand drops
Amazon EBS
- Widely used for mission-critical systems, databases, and applications requiring high IOPS and low latency
- Volumes can be replicated for mission-critical systems to ensure high availability
- Achieves single-digit-millisecond latency, suitable for high-performance workloads
Test your knowledge of AWS Identity and Access Management (IAM) and its features, including user and group management, permissions, and use cases for fine-grained access control to AWS resources.
Make Your Own Quizzes and Flashcards
Convert your notes into interactive study material.
Get started for free
