AWS Certified Solutions Architect – Study Guide Flashcards


I created these flashcards to help study the book: AWS Certified Solutions Architect Official Study Guide. Each chapter has about fifty cards. You can practice here, or you can access the cards on Quizlet. Purchase the book through Amazon. It would be great if you could purchase it by going through my affiliate link.

Chapter 1: Introduction to AWS

[qdeck][q]The on-demand delivery of IT resources and applications via the Internet with pay-as-you-go pricing.[a]Cloud Computing
[q]Six advantages of cloud computing.[a]Variable vs. Capital Expense, Economies of scale, Stop guessing capacity, Global in minutes, Increase speed and agility
[q]Two types of cloud computing deployment models.[a]All-in cloud-based application, hybrid application
[q]An application that is fully deployed in the cloud, all components running in cloud[a]All-in cloud-based application
[q]An application where existing in-house resources connect/work-with cloud-based resources[a]hybrid deployment
[q]A separate geographic area, part of AWS global infrastructure[a]region
[q]An isolated location within a geographic region. There are multiple instances of these in each region.[a]Availability Zone
[q]Three tools for accessing AWS Cloud services[a]AWS Management Console, AWS Command Line Interface (CLI), AWS Software Development Kit (SDKs)
[q]A web application for managing AWS cloud services[a]AWS Management Console
[q]A tool used to manage AWS cloud services from command line, you download this tool and run locally [a]AWS Command Line Interface
[q]An application programming interface (API) that interacts with web services that make up AWS platform [a] AWS Software Development Kit
[q]A webservice that provides resizable compute capacity in the cloud. Allows organizations to obtain and configure virtual servers.[a]Amazon Elastic Compute Cloud (Amazon EC2)
[q]A zero-administration compute platform for back-end web developers to run code on AWS cloud. Has a fine-grain pricing structure [a]AWS Lambda
[q]Allows organizations to scale Amazon EC2 capacity up or down automatically [a]Auto Scaling
[q]Automatically distributes incoming application traffic across multiple Amazon EC2 instances in the cloud [a]Elastic Load Balancing
[q]A fast and simple way to get web application uploaded and running on AWS. [a]AWS Elastic Beanstalk
[q]Allows organizations to define their own VPN within AWS [a]Amazon Virtual Private Cloud (Amazon VPC)
[q]Allows establishing dedicated network connections from their data center to AWS [a] AWS Direct Connect
[q]A Domain Name System (DNS) web service offered by AWS.[a] Amazon Route 53
[q]Provides object storage facilities to organizations for storing data [a] Amazon Simple Storage Service (Amazon S3)
[q]A low-cost storage service for archiving/long-term backup [a] Amazon Glacier
[q]Block level storage service to use with EC2 instances [a]Amazon Elastic Block Store (Amazon EBS)
[q]Service that connects on-site software with software on AWS storage [a] AWS Storage Gateway
[q]AWS content delivery web service [a]Amazon CloudFront
[q]A fully managed relational database support service. Supports several different database engines. [a] Amazon Relational Database Services (Amazon RDS)
[q]AWS NoSQL database offering. Supports document and key/value data models. [a] Amazon DynamoDB
[q]A petabyte-scale data warehouse service. Uses columnar storage for parallelization. [a] Amazon Redshift
[q]Web-service that simplifies deployment, operation, and scaling of in-memory cache in cloud [a] Amazon ElastiCache
[q]Monitoring service for AWS cloud resources and applications running on AWS [a] Amazon CloudWatch
[q]Provides way to create and manage AWS resource that are related [a] AWS CloudFormation
[q]Records AWS API calls. Interface for auditing and reviewing. [a] AWS CloudTrail
[q]Handles configuration services for AWS applications [a] AWS Config
[q]secures control access to AWS cloud services and resources for users of system. [a]AWS Identity and Access Management(IAM)
[q]Provides way to create and manage encryption keys [a]AWS Key Management Service (KMS)
[q]Provides way to use Microsoft Active Directory on AWS or connect AWS to pre-existing Active Directory in-house. Provides Single Sign on. groups etc. [a]AWS Directory Service
[q]Service for provinging, managing, and deploying Secure Sockets Layer/Transport Layer Security (SSL/TSL) certificates for AWS cloud use [a]AWS Certificate Manager
[q]AWS service to protect AWS web applications from attack [a]AWS Web Application Firewall (WAF)
[q]AWS service that makes creating, publishing, maintaining, monitoring, and securing APIs on AWS. Allows organizations to create their own “frontdoor” api [a]Amazon API Gateway
[q]Provides media transcoding on AWS Cloud [a]Amazon Elastic Transcoder
[q]Web service that handles/manages sending of notifications/messages to recipients [a]Amazon Simple Notification Service (Amazon SES)
[q]Service for developers to create batch jobs with parallel and/or sequential steps [a]Amazon Simple Workflow Service (Amazon SWF)
[q]Messaging queuing service [a]Amazon Simple Queue Service (Amazon SQS)

[/qdeck]

Chapter 2: Amazon Simple Storage Service (Amazon S3) and Amazon Glacier Storage

[qdeck]
[q]Amazon S3 storage is _____ storage[a]object
[q]Objects reside in _____[a]buckets
[q]Simple flat folder with no file system hierarchy is structure of _______[a]buckets
[q]Use ____ to get an object and ____ to put an object[a]GET,PUT
[q]container (web folder) for objects (files) stored in Amazon S3[a]bucket
[q]Object range in size from _____ bytes up to ____[a]0 bytes, 5TB
[q]the unique identifier for a bucket[a]key
[q]In this url, what goes here? http://_____.s3.amazonaws.com/a/b/c/file.doc[a]bucket name
[q]Is this a directory structure in S3? /a/b/c/mydoc.doc[a]no, it is a file name with slashes, there is no file and folder hierarchy
[q]Interface used to work with Amazon S3[a]REST
[q]Storage option that is lower cost but very slightly less reliable[a]Amazon Reduced Redundancy Storage (RRS)
[q]Amazon S3 storage can be used for ____ website hosting[a]static
[q]Steps to create Amazon static website with S3[a]Create bucket with name you want website to have, upload static files, make files public, enable website hosting for bucket, specify index doucment and error document
[q]Designed fro long-lived, less frequently accessed data[a]Amazon S3 Standard – Infrequent Access (Standard-IA)
[q]offers slightly lower durability, reduced cost, most appropriate for derived data that can be easily reproduced[a]Amazon S3 Reduced Redundancy Storage (RRS)
[q]Offers secure, durable, and extremely low-cost storage for data, doesn’t require real-time access, appropriate for archives and long-term backups[a]Amazon Glacier Storage
[q]You encrypt your Amazon S3 data in flight, Ensures all data sent to and from Amazon S3 use HTTPS protocol[a]Amazon S3 Secure Sockets Layer (SSL)
[q]Encrypt Amazon S3 data at rest[a]Server-Side Encryption
[q]encryption solution, AWS handles key management and key protection[a]SSE-S3 (AWS-Managed Keys)
[q]Amazon handles key management and protection for Amazon S3, but you manage the keys[a]SSE-KMS (AWS KMS Keys)
[q]use this when you maintain your own encryption keys but don’t manage or implement client-side encryption library[a]SSE-C (Customer-Provided Keys)
[q]Used to support uploading or copying of large objects, objects larger than 100 mb (should), objects larger than 5 GB (must)[a]Multipart Upload
[q]feature of S3 that allows asynchronously replicate objects in one bucket in one AWS region to another bucket in another AWS region[a]cross-region replication
[q]off by default, can be enabled, logs include information: request account and IP address, bucket name, request time, action (GET,PUT,LIST,etc), response status or error code[a]
[q]Retrieval time that must be acceptable if using Amazon Glacier[a]three to five hours
[q]Data is stored in archives that can contain up to 40TB of data. Can have unlimited archives.[a]Amazon Glacier
[q]containers for archives in Amazon Glacier[a]Vaults
[q]in AWS Glacier can lock a vault using a?[a]Vault lock
[/qdeck]