AWS (Fach) / Certified Developer (Lektion)

In dieser Lektion befinden sich 296 Karteikarten

sdfsadf

Diese Lektion wurde von mapawa erstellt.

Lektion lernen

zurück  |  weiter 2 / 6

  • What's the place to store credentials? AWS Parameter store
  • What's the difference between Secrets Manager and Parameter Store? parameter store is more flexible, but less well integrated with technical applications
  • What is the EC2 image pipeline? Image building settings & process
  • What's the ec2 image recipe? source image and build components
  • What's the ec2 image builder build components? The software to include
  • To which open source solutions is Amazon Machine Image comparable? Docker
  • Are AMI multi-region? No
  • Can you copy an encrypted AMI to an unencrpyted AMI? no
  • What is a DNA A record? Mapping the DNS name to an IP adress
  • When adding a role to IAM, how long will approx. take to take effect? It will take effect almost immediately
  • Which volume type gives you SAN performance in the cloud and is suitable for the largest, most critical, high-performance applications? Provisioned IOPS SSD io2 Block Express
  • Individual EC2 instances are provisioned at what tier of the regional hierarchy? Availability zones
  • Which ElastiCache solution should you use for a leaderbord? redis
  • You have been asked to encrypt an existing AMI that is unencrypted. How would you approach this? Copy the AMI and specify encryption
  • Which encryption Options do exists in S3? - Encryption in transit - Encryption at rest - serverside - Encryption at rest - client side
  • How is Encryption in Transit achieved in S3? SSL/TLS
  • What are the 3 options for server side encryption at rest in s3? - SSE-S3 (default) - SSE-KMS - SSE-C
  • Where are the encryption keys managed in S3 SSE-KMS? AWS Key managment service
  • What is Amazon CloudFront? Content Delivery Network
  • What is a Cloudfront Edge Location The location where the content is actually cached
  • What is the relation between Cloudfront Edge Locations and Regions/AZ? There is no relation
  • What is the cloud front origin? The location from where the content is served
  • What is the CloudFront Distribution? Origin and config of the delivered content
  • Are Edge locations read-only? No
  • What is S3 Transfer Acceleration? Utilization of CloudFront to speed up S3 Transfers
  • What is TTL in Cloudfront? Time to live, period after which cached objects automatically expire
  • Can you clear the Cloudfront cache manually, so before the TTL runs out? Yes, but'll cost you
  • What is an Origin Access User? - special CloudFront user - accesses files in buckets - serves them to user
  • What does the HTTP Head Method return? The resources response header
  • What does Athena allow you to do? Perform SQL queries on your S3 objects
  • Name 3 uses cases for Athena - query log files - perform cost analysis - generate business reports
  • Is Athena serverless? yes
  • Which features allows users to have secure access to private files located in S3? - CloudFront Origin Access Identity - Cloudfront Signed URLs - Cloudfront Signed Cookies
  • What is the minimum allowed file size in s3? 0 bytes
  • What is the maximum allowed file size in S3? 5 TB
  • Name a method on how an S3 bucket owner can grant access to private objects presigned URL
  • If you encrypt a bucket on S3, what type of encryption does AWS use? Advanced Encryption Standard (AES-256)
  • Which service can be used to help you determine whether any personally identifiable information (PII) is being stored in an S3 bucket? Macie
  • What is the largest size file you can transfer to S3 using a single PUT operation? 5 GB
  • What is the total limit of data you can store in an S3 bucket? There is no limit
  • How is an S3 URL composed? https://<BUCKET_NAME>.s3.<REGION>.amazonaws.com/<OBJECT_KEY>
  • Name the 4 properties of an S3 object - key - value - version - metadata
  • How can you enforce encryption in an S3 bucket? Deny all requests without the "x-amz-server-side-encryption" header
  • What are the three options for CloudFront AllowedMethods? - GET, HEAD - GET, HEAD, OPTIONS - GET, HEAD, OPTIONS, POST; PUT; DELETE, PATCH
  • What is the purpose of the AWS Certificate Manager? SSL certs
  • Which type of API Gateway would you use for a chat application? Web socket API Gateway
  • Which version exists per default when creating a lambda function $LATEST
  • What could be the cause if you receive a TooManyRequestException on your Lambda functions? too many concurrent functions executed
  • When can you do to ensure that you have enough lambda executions available for your critical functions? Use reserved concurrency
  • Which configuration information do you need to provide in order for Lambda to access private resources? - VPC - Subnets - security groups

zurück  |  weiter 2 / 6