AWS Solution Architect Certification: AWS Glossary Quiz (more 1)

AWS Solution Architect Certification: AWS Glossary Quiz - more (it's pretty long!)


Same format as last time, pick the correct glossary name for the concept(s). Answers at the end.


Qn 1: A statement within a policy that allows or denies access to a particular resource

permission
quota
rules
allow

Qn 2: An extension to network address translation (NAT) that permits multiple devices on a local area network (LAN) to be mapped to a single public IP address. The goal is to conserve IP addresses.

Port address translation
IP address translation

AWS WAF
instance address translation


Qn 3: A simple primary key, composed of one attribute (also known as a hash attribute).

global secondary index
partition key

local secondary index
grant key

See here for DynamoDB example. Also Kinesis. Appears to be a DB concept? See Cassandra docs.

Qn 4 A contiguous portion of the object's data in a multipart upload request (S3)

section
part
piece
multi part data



Qn 5 The process of responding to an API request by returning a large list of records in small separate parts. 

marker
pagination
request limit
multi-part format

(NB: This appears to be at the API level only, tricky to work out which services support it. An example).

Qn 6: A workflow construct that defines the way software changes go through a release process.

pipeline
workflow
triggers
actions


Qn 7: IAM: A document defining permissions that apply to a user, group, or role; the permissions in turn determine what users can do in AWS. Typically allows access to specific actions, and can optionally grant that the actions are allowed for specific resources, like EC2 instances, Amazon S3 buckets, and so on. Can also explicitly deny access.

rules
policy
allow
triggers

Qn 8: Auto Scaling: An object that stores the information needed to launch or terminate instances for an Auto Scaling group. Executing it causes instances to be launched or terminated. You can configure an alarm to invoke an Auto Scaling policy.

group scaling
policy
group rules
alarms

Qn 9: A tool in the IAM AWS Management Console that helps you build a policy by selecting elements from lists of available options.

policy generator
URL simulator
option list selector
IAM validator

Qn 10: A tool in the IAM AWS Management Console that helps you test and troubleshoot policies so you can see their effects in real-world scenarios.

scenario troubleshooter
policy simulator
IAM validator
IAM tester


Qn 11: A tool in the IAM AWS Management Console that examines your existing IAM access control policies to ensure that they comply with the IAM policy grammar.

grammar simulator
policy validator
access control compliance
IAM assurance

Qn 12: A web address that uses query string authentication


Amazon AppStream
presigned URL
bucket
active trusted signers


Qn 13: One or two attributes that uniquely identify each item in a Amazon DynamoDB table, so that no two items can have the same key.

main attribute
primary key
table key
sorting key

Qn 14: What's an original shard also called? Amazon Elasticsearch Service (Amazon ES): A partition of data in an index. You can split an index into multiple shards, which can be original shards and replica shards (copies of the original shards). Replica shards provide failover, which means that a replica shard is promoted to an original shard if a cluster node that contains an original shard fails. Replica shards also can handle requests.

green shard
primary shard
yellow shard
red shard

Qn 15: The user, service, or account that receives permissions that are defined in a policy. A in the statement "A has permission to do B to C."

account
principal
user
delegate

Qn 16: When using Amazon CloudFront to serve content with an Amazon S3 bucket as the origin, a method of controlling access to your content by requiring users to use signed URLs. Signed URLs can restrict user access based on the current date and time and/or the IP addresses that the requests originate from.


canned access policy
asymmetric encryption
Amazon VPC
private content

Qn 17: What's the non-public IP address called? All EC2 instances are assigned two IP addresses at launch, which are directly mapped to each other through Network Address Translation (NAT): a non-public address (following RFC 1918) and a public address. Exception: Instances launched in Amazon VPC are assigned only a non-public IP address.

blacklist IP address
private IP address
block IP address
VPC IP address

Qn 18: VPC subnet whose instances cannot be reached from the Internet.

VPN subnet
private subnet
gateway subnet
secret subnet

Qn 19: A storage option designed to deliver fast, predictable, and consistent I/O performance. When you specify an IOPS rate while creating a DB instance, Amazon RDS provides that IOPS rate for the lifetime of the DB instance.

Provisioned IOPS
Minimum IOPS
Guaranteed IOPS
Maximum IOPS

Qn 20: An Amazon Machine Image (AMI) that all AWS accounts have permission to launch.

open AMI
free AMI
public AMI
common AMI

Qn 21 subnet whose instances can be reached from the Internet.

open subnet
public subnet
universal subnet
internet gateway subnet

Qn 22: Allows guest VMs to run on host systems that do not have special support extensions for full hardware and CPU virtualization. Because these guests run a modified operating system that does not use hardware emulation, they cannot provide hardware-related features such as enhanced networking or GPU support.


Paravirtual virtualization (PV)
Hardware Virtual Machine virtualization
Quasi virtualization
Modified virtualization

Qn 23:  What's the non-private IP address called? EC2 instances are assigned two IP addresses at launch, which are directly mapped to each other through Network Address Translation (NAT): a private address (following RFC 1918) and a non-private address. Exception: Instances launched in Amazon VPC are assigned only a private IP address.

open IP address
public IP address
common IP address
non-private IP address




THE END

THE END

THE END

THE END

THE END



sensorama machine Morton Heilig


Quasi Virtualization! A quasi-real experience machine!

In case you hadn't worked out the pattern, these were all the "P" glossary entries, i.e. all answers start with P!




Comments

  1. Rekha Roy22 November 2021 at 07:05

    Want to change your career in Selenium? Red Prism Group is one of the best training coaching for Selenium in Noida. Now start your career for Selenium Automation with Red Prism Group. Join training institute for selenium in noida.

    ReplyDelete

Post a Comment

Popular posts from this blog

AWS Certification glossary quiz: IAM

Image
I also keep getting stuck on IAM and key related questions so here's a quiz on IAM. Qn1  One of two possible outcomes (the other is  deny ) when an  IAM  access  policy  is evaluated. When a user makes a request to AWS, AWS evaluates the request based on all permissions that apply to the user and then returns either deny or this one. alarm permit true allo w Qn2  A web service that enables  Amazon Web Services  (AWS)  customers to manage users and user permissions within AWS. AWS user service (AUS) AWS customer service (ACS) AWS access management (AAM) AWS Identity and Access Management  (IAM) Qn3:  An  IAM   managed policy  that is created and managed by AWS. AWS management AWS policy AWS IAM policy AWS managed policy Qn4:  A web service for requesting temporary, limited-privilege credentials for  AWS Identity and Access Management  (IAM)  users or for users that you authenticate ( federated users ). AWS credential service (AWS ACS) AWS token service
Read more

AWS SWF vs Lambda + step functions? Simple answer is use Lambda for all new applications.

Image
I do like my Lamb (daaaa)! What's the difference between SWF and Lambda + step functions? Well, for a start they can be used together. Benefits and Limitations of using Lambda Tasks There are a number of benefits of using Lambda tasks in place of a traditional Amazon SWF activity: Lambda tasks don’t need to be registered or versioned like Amazon SWF activity types. You can use any existing Lambda functions that you've already defined in your workflows. Lambda functions are called directly by Amazon SWF; there is no need for you to implement a worker program to execute them as you must do with traditional activities. Lambda provides you with metrics and logs for tracking and analyzing your function executions. There are also a number of limitations regarding Lambda tasks that you should be aware of: Lambda tasks can only be run in AWS regions that provide support for Lambda. See  Lambda Regions and Endpoints  in the  Amazon Web Services General
Read more

Chapter 11: AWS Directory Service, Cloud Directory

Image
"Name or Number please?" So the 1st telephones systems were point to point, and then hub and spoke. You rang the local exchange, asked to talk to Auntie Jill and the "operator" (think the Matrix) would ring Auntie Jill's phone and connect you (literally with a patch cord) once Auntie Jill had answered. If you wanted to talk to someone not on the local network the operator would call another operator (how did they know which one?) and ask to them to connect and you would eventually get patched through. This was even more fun if you wanted to ring someone overseas, as you would hear the patchwork of operators, some speaking foreign languages (what fun), the the sounds getting fainter and weirder (lots of clicks, "undersea" sound effects like talking down a tube, echos, etc) until finally you heard Auntie Jill's voice saying "hello?" and you could talk to them (which was expensive, and the operators would sometimes break in and say
Read more