Q65: What is the relationship between AWS global infrastructure and the concept of high availability?

Choose the correct answer:

• A. AWS is centrally located in one location and is subject to widespread outages if something happens at that one location.
• B. AWS regions and Availability Zones allow for redundant architecture to be placed in isolated parts of the world.
• C. Each AWS region handles a different AWS services, and you must use all regions to fully use AWS.
• D. None of the above

Answer

Q66: You are hosting a number of EC2 Instances on AWS. You are looking to monitor CPU Utilization on the Instance. Which service would you use to collect and track performance metrics for AWS services?

• A. Amazon CloudFront
• B. Amazon CloudSearch
• C. Amazon CloudWatch
• D. AWS Managed Services

Top

AWS CCP CLF-C01 on Android –  AWS CCP CLF-C01 on iOS –  AWS CCP CLF-C01 on Windows 10/11

Answer:
Show Answer

Answer: iOS – Android C: Amazon CloudWatch is a monitoring service for AWS cloud resources and the applications you run on AWS. You can use Amazon CloudWatch to collect and track metrics, collect and monitor log files, set alarms, and automatically react to changes in your AWS resources. Reference: AWS cloudwatch

Q67: Which of the following support plans give access to all the checks in the Trusted Advisor service.

Choose 2 answers from the options given below:

• A. Basic
• B. Business
• C. Enterprise
• D. None

Answer:
Show Answer

Answer: iOS – Android B and C: Reference: AWS Premium support compare plans

Q68: Which of the following in AWS maps to a separate geographic location?

A. AWS Region
B. AWS Data Centers
C. AWS Availability Zone

Answer:
Show Answer

Top

Q69: What best describes the concept of scalability?

Choose the correct answer:

• A. The ability for a system to grow and shrink based on demand.
• B. The ability for a system to grow in size, capacity, and/or scope.
• C. The ability for a system be be accessible when you attempt to access it.
• D. The ability for a system to withstand a certain amount of failure and still remain functional.

Answer

Q70: If you wanted to monitor all events in your AWS account, which of the below services would you use?

• A. AWS CloudWatch
• B. AWS CloudWatch logs
• C. AWS Config
• D. AWS CloudTrail

Answer:
Show Answer

D: AWS CloudTrail is a service that enables governance, compliance, operational auditing, and risk
auditing of your AWS account. With CloudTrail, you can log, continuously monitor, and retain account activity related to actions across your AWS infrastructure. CloudTrail provides event history of your AWS account activity, including actions taken through the AWS Management Console, AWS SDKs, command line tools, and other AWS services. This event history simplifies security analysis, resource change tracking, and troubleshooting. Reference: Cloudtrail

Top

Q71: What are the four primary benefits of using the cloud/AWS?

Choose the correct answer:

• A. Fault tolerance, scalability, elasticity, and high availability.
• B. Elasticity, scalability, easy access, limited storage.
• C. Fault tolerance, scalability, sometimes available, unlimited storage
• D. Unlimited storage, limited compute capacity, fault tolerance, and high availability.

Answer:

Q72: What best describes a simplified definition of the “cloud”?

Choose the correct answer:

• A. All the computers in your local home network.
• B. Your internet service provider
• C. A computer located somewhere else that you are utilizing in some capacity.
• D. An on-premise data center that your company owns.

Answer

Show Answer

Q73: Your development team is planning to host a development environment on the cloud. This consists of EC2 and RDS instances. This environment will probably only be required for 2 months.

Which types of instances would you use for this purpose?

• A. On-Demand
• B. Spot
• C. Reserved
• D. Dedicated

Answer:
Show Answer

Answer: iOS – Android (A) The best and cost effective option would be to use On-Demand Instances. The AWS documentation gives the following additional information on On-Demand EC2 Instances. With On-Demand instances you only pay for EC2 instances you use. The use of On-Demand instances frees you from the costs and complexities of planning, purchasing, and maintaining hardware and transforms what are commonly large fixed costs into much smaller variable costs. Reference: AWS ec2 pricing on-demand

Q74: Which of the following can be used to secure EC2 Instances?

• A. Security Groups
• B. EC2 Lists
• C. AWS Configs
• D. AWS CloudWatch

AWS CCP CLF-C01 on Android –  AWS CCP CLF-C01 on iOS –  AWS CCP CLF-C01 on Windows 10/11

Answer:
Show Answer

Answer: iOS – Android security groups acts as a virtual firewall for your instance to control inbound and outbound traffic. When you launch an instance in a VPC, you can assign up to five security groups to the instance. Security groups act at the instance level, not the subnet level. Therefore, each instance in a subnet in your VPC could be assigned to a different set of security groups. If you don’t specify a particular group at launch time, the instance is automatically assigned to the default security group for the VPC. Reference: VPC Security Groups

Q75: What is the purpose of a DNS server?

Choose the correct answer:

• A. To act as an internet search engine.
• B. To protect you from hacking attacks.
• C. To convert common language domain names to IP addresses.
• D. To serve web application content.

Answer:

Top

Q76:What best describes the concept of high availability?

Choose the correct answer:

• A. The ability for a system to grow in size, capacity, and/or scope.
• B. The ability for a system to withstand a certain amount of failure and still remain functional.
• C. The ability for a system to grow and shrink based on demand.
• D. The ability for a system to be accessible when you attempt to access it.

Answer:

Show Answer

AWS CCP CLF-C01 on Android –  AWS CCP CLF-C01 on iOS –  AWS CCP CLF-C01 on Windows 10/11

Q77: What is the major difference between AWS’s RDS and DynamoDB database services?

Choose the correct answer:

• A. RDS offers NoSQL database options, and DynamoDB offers SQL database options.
• B. RDS offers one SQL database option, and DynamoDB offers many NoSQL database options.
• C. RDS offers SQL database options, and DynamoDB offers a NoSQL database option.
• D. None of the above

Answer:

Q78: What are two open source in-memory engines supported by ElastiCache?

Choose the 2 correct answers:

• A. CacheIt
• B. Aurora
• C. MemcacheD
• D. Redis

Answer:

Top

Q79: What AWS database service is used for data warehousing of petabytes of data?

Choose the correct answer:

• A. RDS
• B. Elasticache
• C. Redshift
• D. DynamoDB

Answer:

Q80: Which AWS service uses a combination of publishers and subscribers?

Choose the correct answer:

• A. Lambda
• B. RDS
• C. EC2
• D. SNS

Answer:

Q81: What SQL database engine options are available in RDS?

Choose the 3 correct answers:

• A. MySQL
• B. MongoDB
• C. PostgreSQL
• D. MariaDB

Answer:

Q81: What is the name of AWS’s RDS SQL database engine?

Choose the correct answer:

• A. Lightsail
• B. Aurora
• C. MySQL
• D. SNS

Answer:

Q82: Under what circumstances would you choose to use the AWS service CloudTrail?

Choose the correct answer:

• A. When you want to log what actions various IAM users are taking in your AWS account.
• B. When you want a serverless compute platform.
• C. When you want to collect and view resource metrics.
• D. When you want to send SMS notifications based on events that occur in your account.

Answer:

Q83: If you want to monitor the average CPU usage of your EC2 instances, which AWS service should you use?

Choose the correct answer:

• A. CloudMonitor
• B. CloudTrail
• C. CloudWatch
• D. None of the above

Answer:

Q84: What is AWS’s relational database service?

Choose the correct answer:

• A. ElastiCache
• B. DymamoDB
• C. RDS
• D. Redshift

Answer:

Top

Q85: If you want to have SMS or email notifications sent to various members of your department with status updates on resources in your AWS account, what service should you choose?

Choose the correct answer:

• A. SNS
• B. GetSMS
• C. RDS
• D. STS

Answer:

AWS CCP CLF-C01 on Android –  AWS CCP CLF-C01 on iOS –  AWS CCP CLF-C01 on Windows 10/11

Q86: Which AWS service can provide a Desktop as a Service (DaaS) solution?

A. EC2

B. AWS Systems Manager

C. Amazon WorkSpaces

D. Elastic Beanstalk

Q87: Your company has recently migrated large amounts of data to the AWS cloud in S3 buckets. But it is necessary to discover and protect the sensitive data in these buckets. Which AWS service can do that?

A. GuardDuty

B. Amazon Macie

C. CloudTrail

D. AWS Inspector

Q88: Your Finance Department has instructed you to save costs wherever possible when using the AWS Cloud. You notice that using reserved EC2 instances on a 1year contract will save money. What payment method will save the most money?

A: Deferred

B: Partial Upfront

C: All Upfront

D: No Upfront

Q89: A fantasy sports company needs to run an application for the length of a football season (5 months). They will run the application on an EC2 instance and there can be no interruption. Which purchasing option best suits this use case?

A. On-Demand

B. Reserved

C. Dedicated

D. Spot

Q90: Your company is considering migrating its data center to the cloud. What are the advantages of the AWS cloud over an on-premises data center?

A. Replace upfront operational expenses with low variable operational expenses.

B. Maintain physical access to the new data center, but share responsibility with AWS.

C. Replace low variable costs with upfront capital expenses.

D. Replace upfront capital expenses with low variable costs.

Q91:  You are leading a pilot program to try the AWS Cloud for one of your applications. You have been instructed to provide an estimate of your AWS bill. Which service will allow you to do this by manually entering your planned resources by service?

A. AWS CloudTrail

B. AWS Cost and Usage Report

C. AWS Pricing Calculator

D. AWS Cost Explorer

Q92: Which AWS service would enable you to view the spending distribution in one of your AWS accounts?

A. AWS Spending Explorer

B. Billing Advisor

C. AWS Organizations

D. AWS Cost Explorer

Q93: You are managing the company’s AWS account. The current support plan is Basic, but you would like to begin using Infrastructure Event Management. What support plan (that already includes Infrastructure Event Management without an additional fee) should you upgrade to?

A. Upgrade to Enterprise plan.

B. Do nothing. It is included in the Basic plan.

C. Upgrade to Developer plan.

D. Upgrade to the Business plan. No other steps are necessary.

Q94: You have decided to use the AWS Cost and Usage Report to track your EC2 Reserved Instance costs. To where can these reports be published?

A. Trusted Advisor

B. An S3 Bucket that you own.

C. CloudWatch

D. An AWS owned S3 Bucket.

Q95: What can we do in AWS to receive the benefits of volume pricing for your multiple AWS accounts?

A. Use consolidated billing in AWS Organizations.

B. Purchase services in bulk from AWS Marketplace.

C. Use AWS Trusted Advisor

D. You will receive volume pricing by default.

Q96: A gaming company is using the AWS Developer Tool Suite to develop, build, and deploy their applications. Which AWS service can be used to trace user requests from end-to-end through the application?

A. AWS X-Ray

B. CloudWatch

C. AWS Inspector

D. CloudTrail

Q97: A company needs to use a Load Balancer which can serve traffic at the TCP, and UDP layers. Additionally, it needs to handle millions of requests per second at very low latencies. Which Load Balancer should they use?

A. TCP Load Balancer

B. Application Load Balancer

C. Classic Load Balancer

D. Network Load Balancer

Q98: Your company is migrating its services to the AWS cloud. The DevOps team has heard about infrastructure as code, and wants to investigate this concept. Which AWS service would they investigate?

A. AWS CloudFormation

B. AWS Lambda

C. CodeCommit

D. Elastic Beanstalk

Q99: You have a MySQL database that you want to migrate to the cloud, and you need it to be significantly faster there. You are looking for a speed increase up to 5 times the current performance. Which AWS offering could you use?

A. Elasticache

B. Amazon Aurora

C. DynamoDB

D. Amazon RDS MySQL

Q100:A developer is trying to programmatically retrieve information from an EC2 instance such as public keys, ip address, and instance id. From where can this information be retrieved?

A. Instance metadata

B. Instance Snapshot

C. CloudWatch Logs

D. Instance userdata

Q101: Why is AWS more economical than traditional data centers for applications with varying compute workloads?

A) Amazon EC2 costs are billed on a monthly basis.
B) Users retain full administrative access to their Amazon EC2 instances.
C) Amazon EC2 instances can be launched on demand when needed.
D) Users can permanently run enough instances to handle peak workloads.

Q102: Which AWS service would simplify the migration of a database to AWS?

A) AWS Storage Gateway
B) AWS Database Migration Service (AWS DMS)
C) Amazon EC2
D) Amazon AppStream 2.0
Show Answer

Q103: Which AWS offering enables users to find, buy, and immediately start using software solutions in their AWS environment?

A) AWS Config
B) AWS OpsWorks
C) AWS SDK
D) AWS Marketplace
Show Answer

Q104: Which AWS networking service enables a company to create a virtual network within AWS?

A) AWS Config
B) Amazon Route 53
C) AWS Direct Connect
D) Amazon Virtual Private Cloud (Amazon VPC)
Show Answer

Q105: Which component of the AWS global infrastructure does Amazon CloudFront use to ensure low-latency delivery?

A) AWS Regions
B) Edge locations
C) Availability Zones
D) Virtual Private Cloud (VPC)
Show Answer

Q106: How would a system administrator add an additional layer of login security to a user’s AWS Management Console?

A) Use Amazon Cloud Directory
B) Audit AWS Identity and Access Management (IAM) roles
C) Enable multi-factor authentication
D) Enable AWS CloudTrail
Show Answer

Q107: Which service can identify the user that made the API call when an Amazon EC2 instance is terminated?

A) AWS Trusted Advisor
B) AWS CloudTrail
C) AWS X-Ray
D) AWS Identity and Access Management (AWS IAM)
Show Answer

Q108: Which service would be used to send alerts based on Amazon CloudWatch alarms?

A) Amazon Simple Notification Service (Amazon SNS)
B) AWS CloudTrail
C) AWS Trusted Advisor
D) Amazon Route 53
Show Answer

Q109: Where can a user find information about prohibited actions on the AWS infrastructure?

A) AWS Trusted Advisor
B) AWS Identity and Access Management (IAM)
C) AWS Billing Console
D) AWS Acceptable Use Policy
Show Answer

Q110: Which of the following is an AWS responsibility under the AWS shared responsibility model?

A) Configuring third-party applications
B) Maintaining physical hardware
C) Securing application access and data
D) Managing guest operating systems
Show Answer

Q111: Which recommendations are included in the AWS Trusted Advisor checks? (Select TWO.)

AWS CCP Exam Topics:

The AWS Cloud Practitioner exam is broken down into 4 domains

• Cloud Concepts
• Security and Compliance
• Technology
• Billing and Pricing.

AWS Certified Cloud Practitioner Exam Whitepapers:

AWS has provided whitepapers to help you understand the technical concepts. Below are the recommended whitepapers.

• Overview of Amazon Web Services
• Architecting for the Cloud: AWS Best Practices
• How AWS Pricing works whitepaper.
• The Total Cost of (Non) Ownership of Web Application in the Cloud
• Compare AWS Support Plans

Top

Online Training and Labs for AWS Cloud Certified Practitioner Exam

• A Cloud Guru
• Linux Academy
• Udemy

Top

AWS Cloud Practitioners Jobs

• Jobs Now
• Weworkremotely
• StackOverflow AWS Jobs

Top

AWS Certified Cloud Practitioner Exam info and details, How To:

The AWS Certified Cloud Practitioner Exam is a multiple choice, multiple answer exam. Here is the Exam Overview:

• Certification Name: AWS Certified Cloud Practitioner.
• Prerequisites for the Exam: None.
• Exam Pattern: Multiple Choice Questions
• Number of Questions: 65
• Duration: 90 mins
• Exam fees: US $100
• Exam Guide on AWS Website
• Available languages for tests: English, Japanese, Korean, Simplified Chinese
• Read AWS whitepapers
• Register for certification account here.
• Prepare for Certification Here

Top

Additional Information for reference

Below are some useful reference links that would help you to learn about AWS Practitioner Exam.

• AWS certified cloud practitioner/
• certification faqs
• AWS Cloud Practitioner Certification Exam on Quora

Other Relevant and Recommended AWS Certifications

AWS Certified Cloud Practitioner

AWS Certified Solutions Architect – Associate

AWS Certified Solution Architect Exam Prep App: Free

AAWS Certified Developer – Associate

AWS Certified SysOps Administrator – Associate

AWS Certified Solutions Architect – Professional

AWS Certified DevOps Engineer – Professional

AWS Certified Big Data Specialty

AWS Certified Advanced Networking.

AWS Certified Security – Specialty

Other AWS Certification Exams Questions and Answers Dumps:

Top 20 AWS Certified Associate SysOps Administrator Practice Quiz – Questions and Answers Dumps

Big Data and Data Analytics 101 – Top 100 AWS Certified Data Analytics Specialty Certification Questions and Answers Dumps

CyberSecurity 101 and Top 25 AWS Certified Security Specialty Questions and Answers Dumps

Networking 101 and Top 20 AWS Certified Advanced Networking Specialty Questions and Answers Dumps

Top

Other AWS Facts and Summaries and Questions/Answers Dump

• AWS S3 facts and summaries and Q&A Dump
• AWS DynamoDB facts and summaries and Questions and Answers Dump
• AWS EC2 facts and summaries and Questions and Answers Dump
• AWS Serverless facts and summaries and Questions and Answers Dump
• AWS Developer and Deployment Theory facts and summaries and Questions and Answers Dump
• AWS IAM facts and summaries and Questions and Answers Dump
• AWS Lambda facts and summaries and Questions and Answers Dump
• AWS SQS facts and summaries and Questions and Answers Dump
• AWS RDS facts and summaries and Questions and Answers Dump
• AWS ECS facts and summaries and Questions and Answers Dump
• AWS CloudWatch facts and summaries and Questions and Answers Dump
• AWS SES facts and summaries and Questions and Answers Dump
• AWS EBS facts and summaries and Questions and Answers Dump
• AWS ELB facts and summaries and Questions and Answers Dump
• AWS Autoscaling facts and summaries and Questions and Answers Dump
• AWS VPC facts and summaries and Questions and Answers Dump
• AWS KMS facts and summaries and Questions and Answers Dump
• AWS Elastic Beanstalk facts and summaries and Questions and Answers Dump
• AWS CodeBuild facts and summaries and Questions and Answers Dump
• AWS CodeDeploy facts and summaries and Questions and Answers Dump
• AWS CodePipeline facts and summaries and Questions and Answers Dump
• Pros and Cons of Cloud Computing
• Cloud Customer Insurance – Cloud Provider Insurance – Cyber Insurance

Below is a listing of AWS certification exam quiz apps for all platforms:

AWS CCP CLF-C01 on Android –  AWS CCP CLF-C01 on iOS –  AWS CCP CLF-C01 on Windows 10/11

AWS Certified Cloud practitioner Exam Prep FREE version: CCP, CLF-C01

Online Training and Labs for AWS Certified Solution Architect Associate Exam

• A Cloud Guru
• Linux Academy
• Udemy

Top

AWS Certified Solution Architect Associate Jobs

• Jobs Now
• Weworkremotely
• StackOverflow AWS Jobs

AWS Certification and Training Apps for all platforms:

AWS Cloud practitioner FREE version:

AWS Certified Cloud practitioner for the web:pwa

AWS Certified Cloud practitioner Exam Prep App for iOS

AWS Certified Cloud practitioner Exam Prep App for Microsoft/Windows10

AWS Certified Cloud practitioner Exam Prep App for Android (Google Play Store)

AWS Certified Cloud practitioner Exam Prep App for Android (Amazon App Store)

AWS Certified Cloud practitioner Exam Prep App for Android (Huawei App Gallery)

AWS Solution Architect FREE version:

AWS Certified Solution Architect Associate Exam Prep App for iOS: 

Solution Architect Associate for Android Google Play

AWS Certified Solution Architect Associate Exam Prep App :Pwa

AWS Certified Solution Architect Associate Exam Prep App for Amazon android

AWS Certified Cloud practitioner Exam Prep App for Microsoft/Windows10

AWS Certified Cloud practitioner Exam Prep App for Huawei App Gallery

AWS Cloud Practitioner PRO Versions:

AWS Certified Cloud practitioner PRO Exam Prep App for iOS

AWS Certified Cloud Practitioner PRO Associate Exam Prep App for android google

AWS Certified Cloud practitioner Exam Prep App for Amazon android

AWS Certified Cloud practitioner Exam Prep App for Windows 10

AWS Certified Cloud practitioner Exam Prep PRO App for Android (Huawei App Gallery)

AWS Solution Architect PRO

AWS Certified Solution Architect Associate PRO versions for iOS

AWS Certified Solution Architect Associate PRO Exam Prep App for Android google

AWS Certified Solution Architect Associate PRO Exam Prep App for Windows10

AWS Certified Solution Architect Associate PRO Exam Prep App for Amazon android

Huawei App Gallery: Coming soon

AWS Certified Developer Associates Free version:

AWS Certified Developer Associates for Android (Google Play)

AWS Certified Developer Associates Web/PWA

AWS Certified Developer Associates for iOs

AWS Certified Developer Associates for Android (Huawei App Gallery)

AWS Certified Developer Associates for windows 10 (Microsoft App store)

Amazon App Store: Coming soon

AWS Developer Associates PRO version

PRO version with mock exam for android (Google Play)

PRO version with mock exam ios

AWS Certified Developer Associates PRO for Android (Microsoft App Store)

AWS Certified Developer Associates PRO for Android (Huawei App Gallery): Coming soon

Latest Cloud AWS Cloud Training Questions and Answers from around the Web:

Jon Bonso vs Stephane Maarek CCP Practice Exam Differences

Tutorialsdojo.com are the best in the market IMO

They have a long standing reputation for quality.

I’ve used them, I’ve recommended them to friends and family and I recommend them to students of my AWS courses also.

And last but not least, the Djamgatech Apps for iOs and and android.

Practice on the web directly here via the AWS Cloud Practitioner Exam Perp App

I would also recommend checking: Exam Digest

What is the difference between Amazon EC2 Savings Plans and Spot Instances?

Amazon EC2 Savings Plans are ideal for workloads that involve a consistent amount of compute usage over a 1-year or 3-year term.
With Amazon EC2 Savings Plans, you can reduce your compute costs by up to 72% over On-Demand costs.

Spot Instances are ideal for workloads with flexible start and end times, or that can withstand interruptions. With Spot Instances, you can reduce your compute costs by up to 90% over On-Demand costs.
Unlike Amazon EC2 Savings Plans, Spot Instances do not require contracts or a commitment to a consistent amount of compute usage.

Amazon EBS vs Amazon EFS

An Amazon EBS volume stores data in a single Availability Zone.
To attach an Amazon EC2 instance to an EBS volume, both the Amazon EC2 instance and the EBS volume must reside within the same Availability Zone.

Amazon EFS is a regional service. It stores data in and across multiple Availability Zones.
The duplicate storage enables you to access data concurrently from all the Availability Zones in the Region where a file system is located. Additionally, on-premises servers can access Amazon EFS using AWS Direct Connect.

Which cloud deployment model allows you to connect public cloud resources to on-premises infrastructure?

Applications made available through hybrid deployments connect cloud resources to on-premises infrastructure and applications. For example, you might have an application that runs in the cloud but accesses data stored in your on-premises data center.

What is the difference between Amazon EC2 Savings Plans and Spot Instances?

Amazon EC2 Savings Plans are ideal for workloads that involve a consistent amount of compute usage over a 1-year or 3-year term.
With Amazon EC2 Savings Plans, you can reduce your compute costs by up to 72% over On-Demand costs.

Spot Instances are ideal for workloads with flexible start and end times, or that can withstand interruptions. With Spot Instances, you can reduce your compute costs by up to 90% over On-Demand costs.
Unlike Amazon EC2 Savings Plans, Spot Instances do not require contracts or a commitment to a consistent amount of compute usage.

Which benefit of cloud computing helps you innovate and build faster?

Agility: The cloud gives you quick access to resources and services that help you build and deploy your applications faster.

Which developer tool allows you to write code within your web browser?

Cloud9 is an integrated development environment (IDE) that allows you to write code within your web browser.

Which method of accessing an EC2 instance requires both a private key and a public key?

SSH allows you to access an EC2 instance from your local laptop using a key pair, which consists of a private key and a public key.

Which service allows you to track the name of the user making changes in your AWS account?

CloudTrail tracks user activity and API calls in your account, which includes identity information (the user’s name, source IP address, etc.) about the API caller.

Which analytics service allows you to query data in Amazon S3 using Structured Query Language (SQL)?

Athena is a query service that makes it easy to analyze data in Amazon S3 using SQL.

Which machine learning service helps you build, train, and deploy models quickly?

SageMaker helps you build, train, and deploy machine learning models quickly.

Which EC2 storage mechanism is recommended when running a database on an EC2 instance?

EBS is a storage device you can attach to your instances and is a recommended storage option when you run databases on an instance.

Which storage service is a scalable file system that only works with Linux-based workloads?

EFS is an elastic file system for Linux-based workloads.

Which AWS service provides a secure and resizable compute platform with choice of processor, storage, networking, operating system, and purchase model?

Amazon Elastic Compute Cloud (Amazon EC2) is a web service that provides secure, resizable compute capacity in the cloud. Amazon EC2 offers the broadest and deepest compute platform with choice of processor, storage, networking, operating system, and purchase model. Amazon EC2.

Which services allow you to build hybrid environments by connecting on-premises infrastructure to AWS?

What service could you recommend to a developer to automate the software release process?

CodePipeline is a developer tool that allows you to continuously automate the software release process.

Which service allows you to practice infrastructure as code by provisioning your AWS resources via scripted templates?

CloudFormation allows you to provision your AWS resources via scripted templates.

Which machine learning service allows you to add image analysis to your applications?

Rekognition is a service that makes it easy to add image analysis to your applications.

Which services allow you to run containerized applications without having to manage servers or clusters?

EKS lets you run your containerized Kubernetes applications on both Amazon EC2 and AWS Fargate.

Amazon S3 offers multiple storage classes. Which storage class is best for archiving data when you want the cheapest cost and don’t mind long retrieval times?

S3 Glacier Deep Archive offers the lowest cost and is used to archive data. You can retrieve objects within 12 hours.

In the shared responsibility model, what is the customer responsible for?

You are responsible for patching the guest OS, including updates and security patches.

You are responsible for firewall configuration and securing your application.

A company needs phone, email, and chat access 24 hours a day, 7 days a week. The response time must be less than 1 hour if a production system has a service interruption. Which AWS Support plan meets these requirements at the LOWEST cost?

The Business Support plan provides phone, email, and chat access 24 hours a day, 7 days a week. The Business Support plan has a response time of less than 1 hour if a production system has a service interruption.

For more information about AWS Support plans, see Compare AWS Support Plans.

Which Amazon EC2 pricing model adjusts based on supply and demand of EC2 instances?

Spot Instances are discounted more heavily when there is more capacity available in the Availability Zones.

For more information about Spot Instances, see Amazon EC2 Spot Instances.

Which of the following is an advantage of consolidated billing on AWS?

Consolidated billing is a feature of AWS Organizations. You can combine the usage across all accounts in your organization to share volume pricing discounts, Reserved Instance discounts, and Savings Plans. This solution can result in a lower charge compared to the use of individual standalone accounts.

For more information about consolidated billing, see Consolidated billing for AWS Organizations.

A company requires physical isolation of its Amazon EC2 instances from the instances of other customers. Which instance purchasing option meets this requirement?

With Dedicated Hosts, a physical server is dedicated for your use. Dedicated Hosts provide visibility and the option to control how you place your instances on an isolated, physical server. For more information about Dedicated Hosts, see Amazon EC2 Dedicated Hosts.

A company is hosting a static website from a single Amazon S3 bucket.  Which AWS service will achieve lower latency and high transfer speeds?

CloudFront is a web service that speeds up the distribution of your static and dynamic web content, such as .html, .css, .js, and image files, to your users. Content is cached in edge locations. Content that is repeatedly accessed can be served from the edge locations instead of the source S3 bucket. For more information about CloudFront, see Accelerate static website content delivery.

Which AWS service provides a simple and scalable shared file storage solution for use with Linux-based Amazon EC2 instances and on-premises servers?

Amazon EFS provides an elastic file system that lets you share file data without the need to provision and manage storage. It can be used with AWS Cloud services and on-premises resources, and is built to scale on demand to petabytes without disrupting applications. With Amazon EFS, you can grow and shrink your file systems automatically as you add and remove files, eliminating the need to provision and manage capacity to accommodate growth.

For more information about using Amazon EFS, see Walkthrough: Create and mount a file system on premises with AWS Direct Connect and VPN.

Which service allows you to generate encryption keys managed by AWS?

KMS allows you to generate and manage encryption keys. The keys generated by KMS are managed by AWS.

Which service can integrate with a Lambda function to automatically take remediation steps when it uncovers suspicious network activity when monitoring logs in your AWS account?

GuardDuty can perform automated remediation actions by leveraging Amazon CloudWatch Events and AWS Lambda. GuardDuty continuously monitors for threats and unauthorized behavior to protect your AWS accounts, workloads, and data stored in Amazon S3. GuardDuty analyzes multiple AWS data sources, such as AWS CloudTrail event logs, Amazon VPC Flow Logs, and DNS logs.

Which service allows you to create access keys for someone needing to access AWS via the command line interface (CLI)?

IAM allows you to create users and generate access keys for users needing to access AWS via the CLI.

Which service allows you to record software configuration changes within your Amazon EC2 instances over time?

Config helps with recording compliance and configuration changes over time for your AWS resources.

Which service assists with compliance and auditing by offering a downloadable report that provides the status of passwords and MFA devices in your account?

IAM provides a downloadable credential report that lists all users in your account and the status of their various credentials, including passwords, access keys, and MFA devices.

Which service allows you to locate credit card numbers stored in Amazon S3?

Macie is a data privacy service that helps you uncover and protect your sensitive data, such as personally identifiable information (PII) like credit card numbers, passport numbers, social security numbers, and more.

How do you manage permissions for multiple users at once using AWS Identity and Access Management (IAM)?

An IAM group is a collection of IAM users. When you assign an IAM policy to a group, all users in the group are granted permissions specified by the policy.

Which service protects your web application from cross-site scripting attacks?

WAF helps protect your web applications from common web attacks, like SQL injection or cross-site scripting.

 

Which AWS Trusted Advisor real-time guidance recommendations are available for AWS Basic Support and AWS Developer Support customers?

Basic and Developer Support customers get 50 service limit checks.

Basic and Developer Support customers get security checks for “Specific Ports Unrestricted” on Security Groups.

Basic and Developer Support customers get security checks on S3 Bucket Permissions.

Which service allows you to simplify billing by using a single payment method for all your accounts?

Organizations offers consolidated billing that provides 1 bill for all your AWS accounts. This also gives you access to volume discounts.

Which AWS service usage will always be free even after the 12-month free tier plan has expired?

One million Lambda requests are always free each month.

What is the easiest way for a customer on the AWS Basic Support plan to increase service limits?

The Basic Support plan allows 24/7 access to Customer Service via email and the ability to open service limit increase support cases.

Which types of issues are covered by AWS Support?

“How to” questions about AWS service and features

Problems detected by health checks

Which features of AWS reduce your total cost of ownership (TCO)?

Sharing servers with others allows you to save money.

Elastic computing allows you to trade capital expense for variable expense.

You pay only for the computing resources you use with no long-term commitments.

Which service allows you to select and deploy operating system and software patches automatically across large groups of Amazon EC2 instances?

Systems Manager allows you to automate operational tasks across your AWS resources.

Which service provides the easiest way to set up and govern a secure, multi-account AWS environment?

Control Tower allows you to centrally govern and enforce the best use of AWS services across your accounts.

Which cost management tool gives you the ability to be alerted when the actual or forecasted cost and usage exceed your desired threshold?

Budgets allow you to improve planning and cost control with flexible budgeting and forecasting. You can choose to be alerted when your budget threshold is exceeded.

Which tool allows you to compare your estimated service costs per Region?

The Pricing Calculator allows you to get an estimate for the cost of AWS services. Comparing service costs per Region is a common use case.

Who can assist with accelerating the migration of legacy contact center infrastructure to AWS?

Professional Services is a global team of experts that can help you realize your desired business outcomes with AWS.

The AWS Partner Network (APN) is a global community of partners that helps companies build successful solutions with AWS.

Which cost management tool allows you to view costs from the past 12 months, current detailed costs, and forecasts costs for up to 3 months?

Cost Explorer allows you to visualize, understand, and manage your AWS costs and usage over time.

Which service reduces the operational overhead of your IT organization?

Managed Services implements best practices to maintain your infrastructure and helps reduce your operational overhead and risk.

How do I set up Failover on Amazon AWS Route53?

In simple configurations, you create a group of records that all have the same name and type, such as a group of weighted records with a type of A for example.com. In more complex configurations, you create a tree of records that route traffic based on multiple criteria. Read more …

• How can a program running inside AWS EC2 determine which VPC and security group an incoming IP address or TCP connection belongs to, for application-layer firewalling?

  I assume it is your subscription where the VPCs are located, otherwise you can’t really discover the information you are looking for. On the EC2 server you could use AWS CLI or Powershell based scripts that query the IP information. Based on IP you can find out what instance uses the network interface, what security groups are tied to it and in which VPC the instance is hosted. Read more here…

   

• What are some tips, tricks and gotchas when using AWS Lambda to connect to a VPC?

  When using AWS Lambda inside your VPC, your Lambda function will be allocated private IP addresses, and only private IP addresses, from your specified subnets. This means that you must ensure that your specified subnets have enough free address space for your Lambda function to scale up to. Each simultaneous invocation needs its own IP. Read more here…

How do AWS step functions communicate with lambda functions which are in a VPC?

When a Lambda “is in a VPC”, it really means that its attached Elastic Network Interface is the customer’s VPC and not the hidden VPC that AWS manages for Lambda.

The ENI is not related to the AWS Lambda management system that does the invocation (the data plane mentioned here). The AWS Step Function system can go ahead and invoke the Lambda through the API, and the network request for that can pass through the underlying VPC and host infrastructure.

Those Lambdas in turn can invoke other Lambda directly through the API, or more commonly by decoupling them, such as through Amazon SQS used as a trigger. Read more ….

How do I invoke an AWS Lambda function programmatically?

public InvokeResult invoke(InvokeRequest request)

Invokes a Lambda function. You can invoke a function synchronously (and wait for the response), or asynchronously. To invoke a function asynchronously, set InvocationType to Event.

For synchronous invocation, details about the function response, including errors, are included in the response body and headers. For either invocation type, you can find more information in the execution log and trace.

When an error occurs, your function may be invoked multiple times. Retry behavior varies by error type, client, event source, and invocation type. For example, if you invoke a function asynchronously and it returns an error, Lambda executes the function up to two more times. For more information, see Retry Behavior.

For asynchronous invocation, Lambda adds events to a queue before sending them to your function. If your function does not have enough capacity to keep up with the queue, events may be lost. Occasionally, your function may receive the same event multiple times, even if no error occurs. To retain events that were not processed, configure your function with a dead-letter queue.

The status code in the API response doesn’t reflect function errors. Error codes are reserved for errors that prevent your function from executing, such as permissions errors, limit errors, or issues with your function’s code and configuration. For example, Lambda returns TooManyRequestsException if executing the function would cause you to exceed a concurrency limit at either the account level ( Concurrent Invocation Limit Exceeded) or function level ( Reserved Function Concurrent Invocation LimitExceeded).

For functions with a long timeout, your client might be disconnected during synchronous invocation while it waits for a response. Configure your HTTP client, SDK, firewall, proxy, or operating system to allow for long connections with timeout or keep-alive settings.

This operation requires permission for the lambda:InvokeFunction action. Read more…

How bad would it be to configure one AWS VPC for all my environments (dev, stg, prod) while creating 2 subnets (priv, pub) for each environment?  It depends highly on the budget. However, for my systems I always set different environments up in different VPCs. Why? Because they’re guaranteed to be isolated from one another, and VPCs are very easy to create and manage if you’ve automated. The flip side is you do pay a bit more for edge services like NAT Gateway and ALB, since you’ll have at least one per VPC.

 

What are the differences between default and non-default AWS VPCs?

Default VPC

1. 1 per region
2. a set VPC CIDR range … you can’t changed it
3. has everything configured by default .. 1 subnet per AZ, an internet gateway, routes and subnets set to allocate IPv4 by default.

Custom VPCs

1. As any as you want per region (within limits)
2. Customisable CIDR range
3. Customisable subnet structure
4. Nothing configured by default, you have to configure everything

Read more here…

 

 

What would be the effect if IPv4 stopped working suddenly, and only IPv6 was left standing?

if IPv4 stopped working, and IPv6 remained functional, through some magical means that prevented IPv4 from being fixed, there would be a few days of pandemonium while non-dual-stack networks and legacy IPv4-only networks flailed mightily, and then a whole bunch of IPv6-skilled network engineers would make a shit-ton of money in a short period of time going from ill-prepared network to ill-prepared network, one at a time, rolling out IPv6 across their infrastructure as quickly as possible. Read more here….

 

Why is the subnet mask important in determining the network address?

The subnet mask determines how many bits of the network address are relevant (and thus indirectly the size of the network block in terms of how many host addresses are available) –

192.0.2.0, subnet mask 255.255.255.0 means that 192.0.2 is the significant portion of the network number, and that there 8 bits left for host addresses (i.e. 192.0.2.0 thru 192.0.2.255)

192.0.2.0, subnet mask 255.255.255.128 means that 192.0.2.0 is the significant portion of the network number (first three octets and the most significant bit of the last octet), and that there 7 bits left for host addresses (i.e. 192.0.2.0 thru 192.0.2.127)

When in doubt, envision the network number and subnet mask in base 2 (i.e. binary) and it will become much clearer. Read more here…

 

What are some best practices securing my Amazon Virtual Private Cloud (VPC)?

IAM is the new perimeter.

Separate out the roles needed to do each job. (Assuming this is a corporate environment)

Have a role for EC2, another for Networking, another for IAM.

Everyone should not be admin. Everyone should not be able to add/remove IGW’s, NAT gateways, alter security groups and NACLS, or setup peering connections.

Also, another thing… lock down full internet access. Limit to what is needed and that’s it. Read more here….

How can we setup AWS public-private subnet in VPC without NAT server?

Within a single VPC, the subnets’ route tables need to point to each other. This will already work without additional routes because VPC sets up the local target to point to the VPC subnet.

Security groups are not used here since they are attached to instances, and not networks.

See: Amazon Virtual Private Cloud

The NAT EC2 instance (server), or AWS-provided NAT gateway is necessary only if the private subnet internal addresses need to make outbound connections. The NAT will translate the private subnet internal addresses to the public subnet internal addresses, and the AWS VPC Internet Gateway will translate these to external IP addresses, which can then go out to the Internet. Read more here ….

What are the applications (or workloads) that cannot be migrated on to cloud (AWS or Azure or GCP)?

A good example of workloads that currently are not in public clouds are mobile and fixed core telecom networks for tier 1 service providers. This is despite the fact that these core networks are increasingly software based and have largely been decoupled from the hardware. There are a number of reasons for this such as the public cloud providers such as Azure and AWS do not offer the guaranteed availability required by telecom networks. These networks require 99.999% availability and is typically referred to as telecom grade.

The regulatory environment frequently restricts hosting of subscriber data outside the of the operators data centers or in another country and key network functions such as lawful interception cannot contractually be hosted off-prem. Read more here….

How many CIDRs can we add to my own created VPC?

You can add up to 5 IPv4 CIDR blocks, or 1 IPv6 block per VPC. You can further segment the network by utilizing up to 200 subnets per VPC. Amazon VPC Limits. Read more …

Why can’t a subnet’s CIDR be changed once it has been assigned?

Sure it can, but you’ll need to coordinate with the neighbors. You can merge two /25’s into a single /24 quite effortlessly if you control the entire range it covers. In practice you’ll see many tiny allocations in public IPv4 space, like /29’s and even smaller. Those are all assigned to different people. If you want to do a big shuffle there, you have a lot of coordinating to do.. or accept the fallout from the breakage you cause. Read more…

Can one VPC talk to another VPC?

Yes, but a Virtual Private Cloud is usually built for the express purpose of being isolated from unwanted external traffic. I can think of several good reasons to encourage that sort of communication, so the idea is not without merit. Read more..

 

AWS CCP CLF-C01 on Android –  AWS CCP CLF-C01 on iOS –  AWS CCP CLF-C01 on Windows 10/11

What questions to expect in cloud support engineer deployment roles at AWS? 

Cloud Support Engineer (CSE) is a role which requires the following abilities:

• Wide range of technical skills
• Good communication and time management
• Good knowledge about the AWS services, and how to leverage them to solve simple to complex problems.

As your question is related to the deployment Pod, you will probably be asked about deployment methods (A/B testing like blue-green deployment) as well as pipelining strategies. You might be asked during this interview to reason about a simple task and to code it (like parsing a log file). Also review the TCP/IP stack in-depth as well as the tools to troubleshoot it for the networking round. You will eventually have some Linux questions, the range of questions can vary from common CLI tools to Linux internals like signals / syscalls / file descriptors and so on.

Last but not least the Leadership principles, I can only suggest you to prepare a story for each of them. You will quickly find what LP they are looking for and would be able to give the right signal to your interviewer.

Finally, remember that theres a debrief after the (usually 5) stages of your on site interview, and more senior and convincing interviewers tend to defend their vote so don’t screw up with them.

Be natural, focus on the question details and ask for confirmation, be cool but not too much. At the end of the day, remember that your job will be to understand customer issues and provide a solution, so treat your interviewers as if they were customers and they will see a successful CSE in you, be reassured and give you the job. 

Expect questions on cloudformations, Teraform, Aws ec2/rds and stack related questions.

Its a high tech call center. You are expected to take calls, chats of customers and give them technical advice. You will not be doing any of the cool stuff you did earlier (if you are coming from engineering job or DBA). You will surely gain a very good knowledge of multiple AWS services and the one that you will be hired in, however most of the knowledge will be theoretical and nothing practical in day-to-day life.

It also depends on the support team you are being hired for. Networking or compute teams (Ec2) have different interview patterns vs database or big data support.

In any case, basics of OS, networking are critical to the interview. If you have a phone screen, we will be looking for basic/semi advance skills of these and your speciality. For example if you mention Oracle in your resume and you are interviewing for the database team, expect a flurry of those questions.

Other important aspect is the Amazon leadership principles. Half of your interview is based on LPs. If you fail to have scenarios where you do not demonstrate our LPs, you cannot expect to work here even though your technical skills are above average (Having extraordinary skills is a different thing).

The overall interview itself will have 1 phone screen if you are interviewing in the US and 1–2 if outside US. The onsite loop will be 4 rounds , 2 of which are technical (again divided into OS and networking and the specific speciality of the team you are interviewing for ) and 2 of them are leadership principles where we test your soft skills and management skills as they are very important in this job. You need to have a strong view point, disagree if it seems valid to do so, empathy and be a team player while showing the ability to pull off things individually as well. These skills will be critical for cracking LP interviews.

You will NOT be asked to code or write queries as its not part of the job, so you can concentrate on the theoretical part of the subject and also your resume. We will grill you on topics mentioned on your resume to start with.

Traditional monolithic architectures are hard to scale: TRUE

Monolithic architecture is something that build from single piece of material, historically from rock. Monolith term normally use for object made from single large piece of material.” – Non-Technical Definition. “Monolithic application has single code base with multiple modules.

Large Monolithic code-base (often spaghetti code) puts immense cognitive complexity on the developer’s head. As a result, the development velocity is poor. Granular scaling (i.e., scaling part of the application) is not possible. Polyglot programming or polyglot database is challenging.

Drawbacks of Monolithic Architecture

This simple approach has a limitation in size and complexity. Application is too large and complex to fully understand and made changes fast and correctly. The size of the application can slow down the start-up time. You must redeploy the entire application on each update.

18. Sticky Sessions help increase your application’s scability: FALSE

Sticky sessions, also known as session affinity, allow you to route a site user to the particular web server that is managing that individual user’s session. The session’s validity can be determined by a number of methods, including a client-side cookies or via configurable duration parameters that can be set at the load balancer which routes requests to the web servers.

Some advantages with utilizing sticky sessions are that it’s cost effective due to the fact you are storing sessions on the same web servers running your applications and that retrieval of those sessions is generally fast because it eliminates network latency. A drawback for using storing sessions on an individual node is that in the event of a failure, you are likely to lose the sessions that were resident on the failed node. In addition, in the event the number of your web servers change, for example a scale-up scenario, it’s possible that the traffic may be unequally spread across the web servers as active sessions may exist on particular servers. If not mitigated properly, this can hinder the scalability of your applications. Read more here … 

AWS recommends replicating across Availability Zones for resiliency: TRUE

If you need to replicate your data or applications in an AWS Local Zone, AWS recommends that you use one of the following zones as the failover zone:

• Another Local Zone

• An Availability Zone in the Region that is not the parent zone. You can use the describe-availability-zones command to view the parent zone.

For more information about AWS Regions and Availability Zones, see AWS Global Infrastructure.

What are the benefits of AWS Cloud Computing?

• Trade Capital expenses for variable expenses
• Increase speed and agility
• Benefit from massive economies at scale
• Stop spending money on running and maintaining data centers
• Stop guessing capacity
• Go global in minutes

What is the default behavior for an EC2 instance when terminated?

After you terminate an instance, it remains visible in the console for a short while, and then the entry is automatically deleted. You cannot delete the terminated instance entry yourself. After an instance is terminated, resources such as tags and volumes are gradually disassociated from the instance, therefore may no longer be visible on the terminated instance after a short while.

When an instance terminates, the data on any instance store volumes associated with that instance is deleted.

By default, Amazon EBS root device volumes are automatically deleted when the instance terminates. However, by default, any additional EBS volumes that you attach at launch, or any EBS volumes that you attach to an existing instance persist even after the instance terminates. This behavior is controlled by the volume’s DeleteOnTermination attribute, which you can modify

For more information, please visit: Terminate Your Instance

How do Amazon EC2 EBS burst credits work?

The documentation on General Purpose SSD (gp2) EBS volumes can be found at this page: New SSD-Backed Elastic Block Storage 

When you first launch an instance with gp2 volumes attached, you get an initial burst credit allowing for up to 30 minutes of 3,000 iops/sec.

After the first 30 minutes, your volume will accrue credits as follows (taken directly from AWS documentation):

Within the General Purpose (SSD) implementation is a Token Bucket model that works as follows

• Each token represents an “I/O credit” that pays for one read or one write.
• A bucket is associated with each General Purpose (SSD) volume, and can hold up to 5.4 million tokens.
• Tokens accumulate at a rate of 3 per configured GB per second, up to the capacity of the bucket.
• Tokens can be spent at up to 3000 per second per volume.
• The baseline performance of the volume is equal to the rate at which tokens are accumulated — 3 IOPS per GB per second.

In addition to this, gp2 volumes provide baseline performance of 3 iops per Gb, up to 1Tb (3000 iops). Volumes larger than 1Tb no longer work on the credit system, as they already provide a baseline of 3000 iops. Gp2 volumes have a cap of 10,000 iops regardless of the volume size (so the iops max out for volumes larger than 3.3Tb)

Is elastic IP service free if we associate it with any VM (EC2 server)?

Elastic IP addresses are free when you have them assigned to an instance, feel free to use one! Elastic IPs get disassociated when you stop an instance, so you will get charged in the mean time. The benefit is that you get to keep that IP allocated to your account though, instead of losing it like any other. Once you start the instance you just re-associate it back and you have your old IP again.

Here are the changes associated with the use of Elastic IP addresses

No cost for Elastic IP addresses while in use

* $0.01 per non-attached Elastic IP address per complete hour

* $0.00 per Elastic IP address remap – first 100 remaps / month

* $0.10 per Elastic IP address remap – additional remap / month over 100

If you require any additional information about pricing please reference the link below

Amazon EC2 Pricing – Amazon Web Services

The other cost are as outlined in the paragraph you have quoted.

How do I reduce my AWS EC2 cost? My AWS EC2 expenditure comprises 80% of my AWS bill.

The short answer to reducing your AWS EC2 costs – turn off your instances when you don’t need them.

Your AWS bill is just like any other utility bill, you get charged for however much you used that month. Don’t make the mistake of leaving your instances on 24/7 if you’re only using them during certain days and times (ex. Monday – Friday, 9 to 5).

To automatically start and stop your instances, AWS offers an “EC2 scheduler” solution. A better option would be a cloud cost management tool that not only stops and starts your instances automatically, but also tracks your usage and makes sizing recommendations to optimize your cloud costs and maximize your time and savings.

You could potentially save money using Reserved Instances. But, in non-production environments such as dev, test, QA, and training, Reserved Instances are not your best bet. Why is this the case? These environments are less predictable; you may not know how many instances you need and when you will need them, so it’s better to not waste spend on these usage charges. Instead, schedule such instances (preferably using ParkMyCloud). Scheduling instances to be only up 12 hours per day on weekdays will save you 65% – better than all but the most restrictive 3-year RIs!

You can also save money with:

• Spot Instances
• AWS Dedicated Hosts & Dedicated Instances
• Auto Scaling Groups
• Rightsizing

What is the difference between an Instance, AMI and Snaphots in AWS? What are they used for?

Well AWS is a web service provider which offers a set of services related to compute, storage, database, network and more to help the business scale and grow

All your concerns are related to AWS EC2 instance, so let me start with an instance

Instance:

• An EC2 instance is similar to a server where you can host your websites or applications to make it available Globally
• It is highly scalable and works on the pay-as-you-go model
• You can increase or decrease the capacity of these instances as per the requirement

AMI:

• AMI provides the information required to launch the EC2 instance
• AMI includes the pre-configured templates of the operating system that runs on the AWS
• Users can launch multiple instances with the same configuration from a single AMI

Snapshot:

• Snapshots are the incremental backups for the Amazon EBS
• Data in the EBS are stored in S3 by taking point-to-time snapshots
• Unique data are only deleted when a snapshot is deleted
• Multiple EBS can be created using these snapshots

What are the main differences between a VPNs, VPS and VPC?

They are definitely all chalk and cheese to one another.

A VPN (Virtual Private Network) is essentially an encrypted “channel” connecting two networks, or a machine to a network, generally over the public internet.

A VPS (Virtual Private Server) is a rented virtual machine running on someone else’s hardware. AWS EC2 can be thought of as a VPS, but the term is usually used to describe low-cost products offered by lots of other hosting companies.

A VPC (Virtual Private Cloud) is a virtual network in AWS (Amazon Web Services). It can be divided into private and public subnets, have custom routing rules, have internal connections to other VPCs, etc. EC2 instances and other resources are placed in VPCs similarly to how physical data centers have operated for a very long time.

AWS CCP CLF-C01 on Android –  AWS CCP CLF-C01 on iOS –  AWS CCP CLF-C01 on Windows 10/11

What is the use of elastic IP in AWS?

Elastic IP address is basically the static IP (IPv4) address that you can allocate to your resources.

Now, in case that you allocate IP to the resource (and the resource is running), you are not charged anything. On the other hand, if you create Elastic IP, but you do not allocate it to the resource (or the resource is not running), then you are charged some amount (should be around $0.005 per hour if I remember correctly)

Additional info about these:

You are limited to 5 Elastic IP addresses per region. If you require more than that, you can contact AWS support with a request for additional addresses. You need to have a good reason in order to be approved because IPv4 addresses are becoming a scarce resource.

In general, you should be good without Elastic IPs for most of the use-cases (as every EC2 instance has its own public IP, and you can use load balancers, as well as map most of the resources via Route 53).

One of the use-cases that I’ve seen where my client is using Elastic IP is to make it easier for him to access specific EC2 instance via RDP, as well as do deployment through Visual Studio, as he targets the Elastic IP, and thus does not have to watch for any changes in public IP (in case of stopping or rebooting).

Why would you choose not to use AWS Transit Gateway instead of VPC peering?

At this time, AWS Transit Gateway does not support inter region attachments. The transit gateway and the attached VPCs must be in the same region. VPC peering supports inter region peering.

Difference between AWS Workspace and AWS Ec2 VM?

• The EC2 instance is server instance whilst a Workspace is windows desktop instance

• Both Windows Server and Windows workstation editions have desktops. Windows Server Core doesn’t not (and AWS doesn’t have an AMI for Windows Server Core that I could find).

• It is possible to SSH into a Windows instance – this is done on port 22. You would not see a desktop when using SSH if you had enabled it. It is not enabled by default.

• If you are seeing a desktop, I believe you’re “RDPing” to the Windows instance. This is done with the RDP protocol on port 3389.

• Two different protocols and two different ports.
• Workspaces doesn’t allow terminal or ssh services by default. You need to use Workspace client. You still can enable RDP or/and SSH but this is not recommended.
• Workspaces is a managed desktop service. AWS is taking care of pre-build AMIs, software licenses, joining to domain, scaling etc.
• What is Amazon EC2? Scalable, pay-as-you-go compute capacity in the cloud. Amazon Elastic Compute Cloud (Amazon EC2) is a web service that provides resizable compute capacity in the cloud. It is designed to make web-scale computing easier for developers.
• What is Amazon WorkSpaces? Easily provision cloud-based desktops that allow end-users to access applications and resources. With a few clicks in the AWS Management Console, customers can provision a high-quality desktop experience for any number of users at a cost that is highly competitive with traditional desktops and half the cost of most virtual desktop infrastructure (VDI) solutions. End-users can access the documents, applications and resources they need with the device of their choice, including laptops, iPad, Kindle Fire, or Android tablets.
• Amazon EC2 can be classified as a tool in the “Cloud Hosting” category, while Amazon WorkSpaces is grouped under “Virtual Desktop”.

• Some of the features offered by Amazon EC2 are:

  • Elastic – Amazon EC2 enables you to increase or decrease capacity within minutes, not hours or days. You can commission one, hundreds or even thousands of server instances simultaneously.
  • Completely Controlled – You have complete control of your instances. You have root access to each one, and you can interact with them as you would any machine.
  • Flexible – You have the choice of multiple instance types, operating systems, and software packages. Amazon EC2 allows you to select a configuration of memory, CPU, instance storage, and the boot partition size that is optimal for your choice of operating system and application.

  On the other hand, Amazon WorkSpaces provides the following key features:

  • Support Multiple Devices- Users can access their Amazon WorkSpaces using their choice of device, such as a laptop computer (Mac OS or Windows), iPad, Kindle Fire, or Android tablet.
  • Keep Your Data Secure and Available- Amazon WorkSpaces provides each user with access to persistent storage in the AWS cloud. When users access their desktops using Amazon WorkSpaces, you control whether your corporate data is stored on multiple client devices, helping you keep your data secure.
  • Choose the Hardware and Software you need- Amazon WorkSpaces offers a choice of bundles providing different amounts of CPU, memory, and storage so you can match your Amazon WorkSpaces to your requirements. Amazon WorkSpaces offers preinstalled applications (including Microsoft Office) or you can bring your own licensed software.

Amazon EBS vs Amazon EFS

An Amazon EBS volume stores data in a single Availability Zone.
To attach an Amazon EC2 instance to an EBS volume, both the Amazon EC2 instance and the EBS volume must reside within the same Availability Zone.

Amazon EFS is a regional service. It stores data in and across multiple Availability Zones.
The duplicate storage enables you to access data concurrently from all the Availability Zones in the Region where a file system is located. Additionally, on-premises servers can access Amazon EFS using AWS Direct Connect.

AWS CCP CLF-C01 on Android –  AWS CCP CLF-C01 on iOS –  AWS CCP CLF-C01 on Windows 10/11

AWS Services Cheat Sheet:

Comp­ute

Netw­orking and Content Delivery

AWS CCP CLF-C01 on Android –  AWS CCP CLF-C01 on iOS –  AWS CCP CLF-C01 on Windows 10/11

Storage

Clas­sif­ica­tion:
Object storage: S3
File storage servic­es: Elastic File System, FSx for Windows Servers & FSx for Lustre
Block storage: EBS
Back­up: AWS Backup
Data transf­er:
Storage gateway –> 3 types: Tape, File, Volume.
Transfer Family –> SFTP, FTPS, FTP.
Edge computing and storage and Snow Family –> Snowcone, Snowball, Snowmobile

Data­bases

Deve­loper Tools

Migration & Transfer services

AWS CCP CLF-C01 on Android –  AWS CCP CLF-C01 on iOS –  AWS CCP CLF-C01 on Windows 10/11

SDKs & Toolkits

Security, Identity, & Compliance

Data Lakes & Analytics

Containers

Serverless

AWS CCP CLF-C01 on Android –  AWS CCP CLF-C01 on iOS –  AWS CCP CLF-C01 on Windows 10/11

Applic­ation Integr­ation

AWS CCP CLF-C01 on Android –  AWS CCP CLF-C01 on iOS –  AWS CCP CLF-C01 on Windows 10/11

Management & Governance Services

AWS CCP CLF-C01 on Android –  AWS CCP CLF-C01 on iOS –  AWS CCP CLF-C01 on Windows 10/11

AWS Recommended security best practices

AWS RE:INVENT 2021 – LATEST PRODUCTS AND SERVICES ANNOUNCED:

1- Read For Me

Read For Me launched at the 2021 AWS re:Invent Builders’ Fair in Las Vegas. A web application which helps the visually impaired ‘hear documents. With the help of AI services such as Amazon Textract, Amazon Comprehend, Amazon Translate and Amazon Polly utilizing an event-driven architecture and serverless technology, users upload a picture of a document, or anything with text, and within a few seconds “hear” that document in their chosen language.

2- Delivering code and architectures through AWS Proton and Git

Infrastructure operators are looking for ways to centrally define and manage the architecture of their services, while developers need to find a way to quickly and safely deploy their code. In this session, learn how to use AWS Proton to define architectural templates and make them available to development teams in a collaborative manner. Also, learn how to enable development teams to customize their templates so that they fit the needs of their services.

3- Accelerate front-end web and mobile development with AWS Amplify

User-facing web and mobile applications are the primary touchpoint between organizations and their customers. To meet the ever-rising bar for customer experience, developers must deliver high-quality apps with both foundational and differentiating features. AWS Amplify helps front-end web and mobile developers build faster front to back. In this session, review Amplify’s core capabilities like authentication, data, and file storage and explore new capabilities, such as Amplify Geo and extensibility features for easier app customization with AWS services and better integration with existing deployment pipelines. Also learn how customers have been successful using Amplify to innovate in their businesses.

3- Train ML models at scale with Amazon SageMaker, featuring Aurora

Today, AWS customers use Amazon SageMaker to train and tune millions of machine learning (ML) models with billions of parameters. In this session, learn about advanced SageMaker capabilities that can help you manage large-scale model training and tuning, such as distributed training, automatic model tuning, optimizations for deep learning algorithms, debugging, profiling, and model checkpointing, so that even the largest ML models can be trained in record time for the lowest cost. Then, hear from Aurora, a self-driving vehicle technology company, on how they use SageMaker training capabilities to train large perception models for autonomous driving using massive amounts of images, video, and 3D point cloud data.

AWS RE:INVENT 2020 – LATEST PRODUCTS AND SERVICES ANNOUNCED:

1-Modernize log analytics with Amazon Elasticsearch Service

4- Amazon Location Service: Enable apps with location features

5- Automate, track, and manage tasks with Amazon Connect Tasks

6- Solve customer issues quickly with Amazon Connect Wisdom

7- Introducing Amazon Managed Service for Grafana:

12-AWS Fault Injection Simulator: Fully managed chaos engineering service

Top-paying Cloud certifications:

1. Google Certified Professional Cloud Architect — $175,761/year
2. AWS Certified Solutions Architect – Associate — $149,446/year
3. Azure/Microsoft Cloud Solution Architect – $141,748/yr
4. Google Cloud Associate Engineer – $145,769/yr
5. AWS Certified Cloud Practitioner — $131,465/year
6. Microsoft Certified: Azure Fundamentals — $126,653/year
7. Microsoft Certified: Azure Administrator Associate — $125,993/year

The Cloud is the future: The AWS Certified Solutions Architect – Associate Averge salary is $149,446/year. Get Certified Now with the apps below:

AWS CCP CLF-C01 on Android –  AWS CCP CLF-C01 on iOS –  AWS CCP CLF-C01 on Windows 10/11

2022 AWS CCP CLF-C01 Practice Exam Course  – Top 300 Questions and Detailed Answers – Success Guaranteed – Save 50% with this link

AWS Cloud Practitioner Breaking News –  AWS CCP CLF-C01 Testimonials – AWS Top Stories

I Passed AWS CCP Testimonials

I just passed my AWS CCP!!! 

(Source: r/AWSCertifications)

Study Materials and Timeline:

I watched (binged) the A Cloud Guru course in two days and did the 6 practice exams over a week. I originally was only getting 70%’s on the exams, but continued doing them on my free time (to the point where I’d have 15 minutes and knock one out on my phone lol) and started getting 90%’s. – A mix of knowledge vs memorization tbh. Just make sure you read why your answers are wrong.

I don’t really have a huge IT background, although will note I work in a DevOps (1 1/2 years) environment; so I do use AWS to host our infrastructure. However, the exam is very high level compared to what I do/services I use. I’m fairly certain with zero knowledge/experience, someone could pass this within two weeks. AWS is also currently promoting a “get certified” challenge and is offering 50% off.

Best!

Resources:

• A Cloud Guru Course:

  • https://acloudguru.com/course/aws-certified-cloud-practitioner

• AWS – Get AWS Certified: Cloud Practitioner Challenge:

  • https://pages.awscloud.com/GLOBAL-ln-GC-TrainCert-Cloud-Practitioner-Challenge-2022-reg.html

•  

AWS CCP CLF-C01 on Android –  AWS CCP CLF-C01 on iOS –  AWS CCP CLF-C01 on Windows 10/11

2022 AWS CCP CLF-C01 Practice Exam Course  – Top 300 Questions and Detailed Answers – Success Guaranteed – Save 50% with this link

Good Tool For AWS Certified Cloud Practitioner Exam Preparation

PASSED AWS CCP (2022)

Went through the entire CloudAcademy course. Most of the info went out the other ear. Got a 67% on their final exam. Took the ExamPro free exam, got 69%.

Was going to take it last Saturday, but I bought TutorialDojo’s exams on Udemy. Did one Friday night, got a 50% and rescheduled it a week later to today Sunday.

Took 4 total TD exams. Got a 50%, 54%, 67%, and 64%. Even up until last night I hated the TD exams with a passion, I thought they were covering way too much stuff that didn’t even pop up in study guides I read. Their wording for some problems were also atrocious. But looking back, the bulk of my “studying” was going through their pretty well written explanations, and their links to the white papers allowed me to know what and where to read.

Not sure what score I got yet on the exam. As someone who always hated testing, I’m pretty proud of myself. I also had to take a dump really bad starting at around question 25. Thanks to TutorialsDojo Jon Bonso for completely destroying my confidence before the exam, forcing me to up my game. It’s better to walk in way over prepared than underprepared.

Just Passed My CCP exam today (within 2 weeks)

I would like to thank this community for recommendations about exam preparation. It was wayyyy easier than I expected (also way easier than TD practice exams scenario-based questions-a lot less wordy on real exam). I felt so unready before the exam that I rescheduled the exam twice. Quick tip: if you have limited time to prepare for this exam, I would recommend scheduling the exam beforehand so that you don’t procrastinate fully.

Resources:

-Stephane’s course on Udemy (I have seen people saying to skip hands-on videos but I found them extremely helpful to understand most of the concepts-so try to not skip those hands-on)

-Tutorials Dojo practice exams (I did only 3.5 practice tests out of 5 and already got 8-10 EXACTLY worded questions on my real exam)

Previous Aws knowledge:

-Very little to no experience (deployed my group’s app to cloud via Elastic beanstalk in college-had 0 clue at the time about what I was doing-had clear guidelines)

Preparation duration: -2 weeks (honestly watched videos for 12 days and then went over summary and practice tests on the last two days)

Links to resources:

https://www.udemy.com/course/aws-certified-cloud-practitioner-new/

https://tutorialsdojo.com/courses/aws-certified-cloud-practitioner-practice-exams/

I passed the AWS Certified Cloud Practitioner

 

AWS Certified Cloud Practitioner

I used Stephane Maarek on Udemy. Purchased his course and the 6 Practice Exams. Also got Neal Davis’ 500 practice questions on Udemy. I took Stephane’s class over 2 days, then spent the next 2 weeks going over the tests (3~4 per day) till I was constantly getting over 80% – passed my exam with a 882.

Passed – CCP CLF-C01

 

 

AWS Certified Cloud Practitioner

What an adventure, I’ve never really gieven though to getting a cert until one day it just dawned on me that it’s one of the few resources that are globally accepted. So you can approach any company and basically prove you know what’s up on AWS 😀

Passed with two weeks of prep (after work and weekends)

Resources Used:

• https://www.exampro.co/

  • This was just a nice structured presentation that also gives you the powerpoint slides plus cheatsheets and a nice overview of what is said in each video lecture.

• Udemy – AWS Certified Cloud Practitioner Practice Exams, created by Jon Bonso**, Tutorials Dojo**

  • These are some good prep exams, they ask the questions in a way that actually make you think about the related AWS Service. With only a few “Bullshit! That was asked in a confusing way” questions that popped up.

Pass AWS CCP. The score is beyond expected

I took CCP 2 days ago and got the pass notification right after submitting the answers. In about the next 3 hours I got an email from Credly for the badge. This morning I got an official email from AWS congratulating me on passing, the score is much higher than I expected. I took Stephane Maarek’s CCP course and his 6 demo exams, then Neal Davis’ 500 questions also. On all the demo exams, I took 1 fail and all passes with about 700-800. But in the real exam, I got 860. The questions in the real exam are kind of less verbose IMO, but I don’t truly agree with some people I see on this sub saying that they are easier.
Just a little bit of sharing, now I’ll find something to continue ^^

Good luck with your own exams.

Passed the AWS Certified Cloud Practitioner (CLF-C01) Exam!

Passed the exam! Spent 25 minutes answering all the questions. Another 10 to review. I might come back and update this post with my actual score.

Background

– A year of experience working with AWS (e.g., EC2, Elastic Beanstalk, Route 53, and Amplify).

– Cloud development on AWS is not my strong suit. I just Google everything, so my knowledge is very spotty. Less so now since I studied for this exam.

Study stats

– Spent three weeks studying for the exam.

– Studied an hour to two every day.

– Solved 800-1000 practice questions.

– Took 450 screenshots of practice questions and technology/service descriptions as reference notes to quickly swift through on my phone and computer for review. Screenshots were of questions that I either didn’t know, knew but was iffy on, or those I believed I’d easily forget.

– Made 15-20 pages of notes. Chill. Nothing crazy. This is on A4 paper. Free-form note taking. With big diagrams. Around 60-80 words per page.

– I was getting low-to-mid 70%s on Neal Davis’s and Stephane Maarek’s practice exams. Highest score I got was an 80%.

– I got a 67(?)% on one of Stephane Maarek’s exams. The only sub-70% I ever got on any practice test. I got slightly anxious. But given how much harder Maarek’s exams are compared to the actual exam, the anxiety was undue.

– Finishing the practice exams on time was never a problem for me. I would finish all of them comfortably within 35 minutes.

Resources used

– AWS Cloud Practitioner Essentials on the AWS Training and Certification Portal

– AWS Certified Cloud Practitioner Practice Tests (Book) by Neal Davis

– 6 Practice Exams | AWS Certified Cloud Practitioner CLF-C01 by Stephane Maarek*

– Certified Cloud Practitioner Course by Exam Pro (Paid Version)**

– One or two free practice exams found by a quick Google search

*Regarding Exam Pro: I went through about 40% of the video lectures. I went through all the videos in the first few sections but felt that watching the lectures was too slow and laborious even at 1.5-2x speed. (The creator, for the most part, reads off of the slides, adding brief comments here and there.) So, I decided to only watch the video lectures for sections I didn’t have a good grasp on. (I believe the video lectures provided in the course are just split versions of the full length course available for free on YouTube under the freeCodeCamp channel, here.) The online course provides five practice exams. I did not take any of them.

**Regarding Stephane Maarek: I only took his practice exams. I did not take his study guide course.

Notes

– My study regimen (i.e., an hour to two every day for three weeks) was overkill.

– The questions on the practice exams created by Neal Davis and Stephane Maarek were significantly harder than those on the actual exam. I believe I could’ve passed without touching any of these resources.

– I retook one or two practice exams out of the 10+ I’ve taken. I don’t think there’s a need to retake the exams as long as you are diligent about studying the questions and underlying concepts you got wrong. I reviewed all the questions I missed on every practice exam the day before.

What would I do differently?

– Focus on practice tests only. No video lectures.

– Focus on the technologies domain. You can intuit your way through questions in the other domains.

– Chill

Passed CLF-CO1!!

I thank you all for helping me through this process! Couldn’t have done it without all of the recommendations and guidance on this page.

Background: I am a back-end developer that works 12 hours a day for corporate America, so no time to study (or do anything) but I made it work.

Could I have probably gone for SAA first? Yeah, but I wanted to prove to myself that I could do it. I studied for about a month. I used Maarek’s Udemy course at 1.5x speed and I couldn’t recommend it more. I also used his practice exams. I’ll be honest, I took 5 practice exams and got somehow managed to fail every single one in the mid 60’s lol. Cleared the exam with an 800. Practice exams WAY harder.

My 2 cents on must knows:

• AWS Shared Security Model (who owns what)

• Everything Billing (EC2 instance, S3, different support plans)

• I had a few ML questions that caught me off guard

• VPC concepts – i.e. subnets, NACL, Transit Gateway

I passed the AWS CCP today 

I studied solidly for two weeks, starting with Tutorials Dojo (which was recommended somewhere on here). I turned all of their vocabulary words and end of module questions into note cards. I did the same with their final assessment and one free exam.

During my second week, I studied the cards for anywhere from one to two hours a day, and I’d randomly watch videos on common exam questions.

The last thing I did was watch a 3 hr long video this morning that walks you through setting up AWS Instances. The visual of setting things up filled in a lot of holes.

I had some PSI software problems, and ended up getting started late. I was pretty dejected towards the end of the exam, and was honestly (and pleasantly) surprised to see that I passed.

Hopefully this helps someone. Keep studying and pushing through – if you know it, you know it. Even if you have a bad start. Cheers 🍻

• Passed DVA-C02
  by /u/alshubba (AWS Certifications) on March 30, 2023 at 10:31 am

  Just wanted to share that I just passed the DVA-C02 exam on my first attempt. The sources I used were Stephane Maarek's Udemy course. I went over it multiple times. When I finished it the first time it got updated to cover C02 materials and more topics were added. For practice exams I also used Stephane's extra practice exams on Udemy as well as Tutorial's Dojo practices exams. I made sure to go over the explanation of each answer whether right or wrong and then read the relevant aws documentation related to that particular topic. Good luck to anyone preparing for this one. On to SAA next. submitted by /u/alshubba [link] [comments]

• How to prep for Developer - Associate after passing Solutions Architect - Associate
  by /u/Isomorphist (AWS Certifications) on March 30, 2023 at 10:05 am

  I just passed the solutions architect associate yesterday. However, during my preparation for the exam, I noticed that developer in large part would probably be more directly useful for my current position as a software engineer (which is also a sentiment echoed by the senior engineers). I have seen some people say that there is so much overlap that it would be most practical to take the developer exam shortly after the solutions architect exam. So my question is: does anyone have experience with studying for both? How should I prepare. I saw a lot of people say that dynamoDB in-depth was the primary difference, but those are a few years old, and I imagine that lambdas/sqs/sns/RDS/etc. etc. would also be much more in depth with developer? At least I know they were discussed in a very superficial way in the solutions architect exam. submitted by /u/Isomorphist [link] [comments]

• AWS CCP 50% voucher code
  by /u/MoodLopsided (AWS Certifications) on March 30, 2023 at 4:51 am

  Here's your voucher! AWS Certified Cloud Practitioner 50% voucher code: AWP11691144A Voucher expiration date: 31 March, 2023 Prepare for AWS exam success: Visit the AWS Certification exam preparation resource page to prepare for your exam. Download the Cloud Practitioner exam guide and sample exam questions. Follow a suggested learning plan on AWS Skill Builder. Book your exam prior to 31 March, 2023. How to book your exam: Click the link here and sign into your aws.training account, or create a new account. Select Certification in the top navigation, then select the Go To Your Account button. Click on Register for an Exam and find the AWS Certified Cloud Practitioner exam. Select Schedule with Pearson VUE. You will be redirected to the scheduling page to complete your registration. Good luck with your exam! submitted by /u/MoodLopsided [link] [comments]

• cybersecurity for AWS
  by /u/tidykoala5678 (AWS Certifications) on March 30, 2023 at 3:50 am

  What sorts of paths, careers, and benefits/salary could i dive into for AWS with no IT/comp science related degrees and little experience?? submitted by /u/tidykoala5678 [link] [comments]

• Where are the entry level jobs?
  by /u/mikedpayne (AWS Certifications) on March 30, 2023 at 12:24 am

  I just got my CCP two days ago. I used to be a web developer (ASP.NET), but for personal and family reasons I've been out of the game a long time. The last time I held a job(more than a few contracts) Web Forms was still how it was done and Entity Framework didn't exist yet. My friend is a cloud solutions architect(certified in AWS and GCP) and he says the natural thing for me to do would be to keep going and get my AWS certified developer. The only problem is Amazon recommends that you have 6 months of AWS experience before you take the CCP, and I've never even seen or logged into AWS. Couldn't tell you what the administration console looked like if you offered me a million dollars. Where are the jobs that would allow me to get my feet wet and start to get some AWS experience? My searches for the average salary for an AWS CCP say the average is $85-115k, but I can't find the jobs, or I don't know what to look for. Where would I be looking? Is that salary a realistic expectation? Any help would be appreciated. Thanks! submitted by /u/mikedpayne [link] [comments]

• Four days to complete AWS CCP Cert
  by /u/computerpsyunce (AWS Certifications) on March 29, 2023 at 11:22 pm

  I’m a current SWE whose never used AWS. I need to be AWS CCP certified by the end of this weekend. Currently have the exam set for this Sunday. I’ve so far been following the freecodecamp material on YouTube, but it’s honestly a little underwhelming. I have also been going over the material in skillbuilder as it seems more focused on the four main categories. I’ve heard the name Stephane Maarek come up a lot here as well, is it worth buying his course on Udemy? Also where are the best places to get practice exams? I have roughly 20 hours of time I can allocate to just studying. I think I can do it, just want to know how I can best set myself up for success. submitted by /u/computerpsyunce [link] [comments]

• Has anyone tried the SAA C03 Course by Tom Carpenter (on LinkedinLearning)?
  by /u/Assblastersauce (AWS Certifications) on March 29, 2023 at 11:20 pm

  I'm studying for the SAA-C03 exam which I plan to take on May 20th. I keep hearing about Stephane's and Cantrill's courses but haven't heard much about Tom Carpenter's course. Since I'm a Grad student, my school provides linkedin learning for free which is why I have access to his course. I'm 85% done with it. Has anyone managed to pass with his course? While I feel I have a decent understanding of the AWS tools and services, many of the posts here suggest I should study more since the exam is *that* hard. submitted by /u/Assblastersauce [link] [comments]

• Aws cloud- Advice needed
  by /u/maharshi7 (AWS Certifications) on March 29, 2023 at 10:42 pm

  Hello All, I am currently into sales and marketing with no IT background. Just checking if I should do AWS master cloud certification and if i can combine my experience to make most if it. Any help is appreciated. submitted by /u/maharshi7 [link] [comments]

• Udemy Final test
  by /u/Aggressive_Ad3517 (AWS Certifications) on March 29, 2023 at 10:08 pm

  Hey guys the time has finally come, tomorrow morning I am taking the SAA -C03 exam! Curious on how close to the exam the practice tests of udemy and the final test of udemy are to the exam? I got an 87 on the final test and have been in the 70-88 range for the other practice tests. Asking as Stephanes practice test I got a 60 followed by a 65 the two times I attempted it. So my question is, is Udemy more close to the exam than Stephanes? I recall seeing that his are much harder. Thanks and wish me luck! Been a fun journey learning AWS these past few months. submitted by /u/Aggressive_Ad3517 [link] [comments]

• Amazon CloudFront announces support for HTTP status and response generation using CloudFront Functions
  by aws@amazon.com (Recent Announcements) on March 29, 2023 at 10:00 pm

  Starting today, you can use CloudFront Functions to further customize responses to viewers, including changing the HTTP status code and replacing the HTTP body of the response. CloudFront Functions is a serverless edge computing feature on CloudFront built for lightweight HTTP transformations that runs in the 450+ CloudFront edge locations globally. 

• AWS re:Post now includes AWS Knowledge Center articles
  by aws@amazon.com (Recent Announcements) on March 29, 2023 at 9:46 pm

  Today, AWS announces the migration of AWS Knowledge Center articles and videos to AWS re:Post (re:Post) and provides AWS builders a unified experience to access AWS knowledge. With this launch, builders can access trusted, authoritative Knowledge Center content on re:Post to get answers to technical questions. AWS re:Post is a cloud knowledge service that helps builders remove technical roadblocks, accelerate innovation, and operate efficiently.

• AWS Service Catalog is now available in four additional AWS Regions
  by aws@amazon.com (Recent Announcements) on March 29, 2023 at 9:24 pm

  AWS Service Catalog is now available to customers in four additional AWS Regions: Europe (Zurich), Europe (Spain), Asia Pacific (Hyderabad) and Asia Pacific (Melbourne). 

• AWS WAF is now available in the Zurich, Spain, Hyderabad, and Melbourne regions
  by aws@amazon.com (Recent Announcements) on March 29, 2023 at 9:18 pm

  Starting today, you can use AWS WAF in the Europe (Zurich), Europe (Spain), Asia Pacific (Hyderabad), and Australia (Melbourne) regions. AWS WAF is a web application firewall that helps you protect your web application resources against common web exploits and bots that can affect availability, compromise security, or consume excessive resources. You can protect the following resource types: Amazon CloudFront distributions, Amazon API Gateway REST APIs, Application Load Balancer, AWS AppSync GraphQL API, and Amazon Cognito user pools. 

• AWS DataSync now supports copying data from Azure Blob Storage (preview)
  by aws@amazon.com (Recent Announcements) on March 29, 2023 at 9:16 pm

  AWS DataSync supports copying data from Azure Blob Storage to AWS Storage in preview. Using DataSync, you can move your object data at scale from Azure Blob Storage to AWS Storage services such as Amazon S3. AWS DataSync supports all blob types within Azure Blob Storage and can also be used with Azure Data Lake Storage (ADLS) Gen 2.

• Should i abandon the SysOps Exam and do the SAA Exam instead? (3rd Attempt)
  by /u/New_Soup_3107 (AWS Certifications) on March 29, 2023 at 9:05 pm

  Hello all, I'm currently a Systems Admin moving into a DevOps roll at a small company. My boss requested i get the sysops exam coming from no knowledge on anything aws related besides booting an ec2 instance. Yesterday i took a second attempt on the SysOps cert and did worse than i did the first attempt. Is it better to just cut my losses temporarily and do the SAA then move back on to the sysops? I really felt like i knew everything i needed this time just to be smacked back into reality. Thank you submitted by /u/New_Soup_3107 [link] [comments]

• AWS Toolkits for JetBrains and VS Code now support AWS SAM Accelerate to speed up application iteration
  by aws@amazon.com (Recent Announcements) on March 29, 2023 at 8:54 pm

  The AWS Toolkits enables easier development faster by supporting AWS SAM Accelerate in the IDEs letting you edit, deploy, and test your code iteratively. This update is supported in Visual Studio Code or JetBrains IDEs like IntelliJ IDEA, Rider, WebStorm, PyCharm, CLion, RubyMine, GoLand and PhpStorm.

• Amazon SageMaker is now available in Europe (Spain) Region
  by aws@amazon.com (Recent Announcements) on March 29, 2023 at 8:52 pm

  Starting today, you can build, train, and deploy machine learning (ML) models in Europe (Spain) Region.

• Amazon SageMaker Python SDK now supports setting default values for parameters
  by aws@amazon.com (Recent Announcements) on March 29, 2023 at 7:40 pm

  Amazon SageMaker Python SDK is an open source library for training and deploying machine-learning models on Amazon SageMaker. Amazon SageMaker Python SDK users can now configure default values for parameters such as IAM roles, VPC, and KMS keys. For the full list of supported parameters and APIs, see the SageMaker SDK defaults documentation page.

• Is Stéphane's SAA Course Still Considered Cream of the Crop?
  by /u/briank (AWS Certifications) on March 29, 2023 at 6:10 pm

  Hi There, I purchased Stéphane's Ultimate AWS Certified Solutions Architect Associate SAA-C03 course way back in Nov 2020. Unfortunately, I did not get very far in it at that time. However, I am hoping to get back into studying. It appears he has been making updates to this course as recently as Sept. 2022. That said, I am wondering if there is a more up to date one that I should look at? I had great success using his Developer Associate course, and I imagine this one is just as good. Just wondering if anyone has feedback in this regard. submitted by /u/briank [link] [comments]

• FREE AWS CLOUD PRACTITIONER ESSENTIALS E-LEARNING
  by /u/ArmyDisastrous9698 (AWS Certified Experts) on March 29, 2023 at 5:16 pm

  submitted by /u/ArmyDisastrous9698 [link] [comments]

• AWS announces Amazon DataZone (Preview)
  by aws@amazon.com (Recent Announcements) on March 29, 2023 at 4:59 pm

  Amazon DataZone is a new data management service to catalog, discover, analyze, share, and govern data across organizational boundaries. Visibility of and access to data are key drivers of innovation and value for business. To provide visibility and access between organizations, Amazon DataZone creates a usage flywheel. The flywheel is driven by data producers, who securely share data and its context, and data consumers, who find answers to business questions in the data.

• Amazon Translate launches Batch Translation in eight additional regions
  by aws@amazon.com (Recent Announcements) on March 29, 2023 at 4:58 pm

  Amazon Translate is a neural machine translation service that delivers fast, high-quality, and affordable language translation. Today, we are announcing that Amazon Translate asynchronous Batch Translation is now available in eight additional regions - US West (Northern California), Asia Pacific (Mumbai), Asia Pacific (Singapore), Asia Pacific (Sydney), Asia Pacific (Tokyo), Canada (Central), Europe (Paris) and Europe (Stockholm). With this expansion, Amazon Translate asynchronous Batch Translation is supported in 15 regions. Now, AWS customers can reach a wider set of users in many geographies that are increasingly expecting to consume media and interact with organizations in the language of their choice.

• Amazon EC2 C6in instances are now available in additional regions
  by aws@amazon.com (Recent Announcements) on March 29, 2023 at 4:58 pm

  Starting today, Amazon Elastic Compute Cloud(Amazon EC2) C6in instances are available in Europe (Stockholm), Middle East (Bahrain), Asia Pacific (Jakarta, Mumbai, Sydney), Africa (Cape Town), South America (Sao Paulo), Canada (Central), and AWS GovCloud (US-East) Regions. These instances are powered by 3rd Generation Intel Xeon Scalable processors with all-core turbo frequency of up to 3.5 GHz, and are the first x86-based Amazon EC2 instances to offer up to 200 Gbps network bandwidth.

• Advice Needed (As an Uncle)
  by /u/daduttydootz (AWS Certifications) on March 29, 2023 at 4:10 pm

  My neice has failed the SSA exam 8 times now... everytime time she takes it she gets a score between 550-625... is it time to hang it up? She decided not to got o college and is wants to keep after it. I admire her ambition but I feel like we are just spinning wheels....! This would be her first techical cert and is learning cloud along the way. I also help her out here and there. Thanks. submitted by /u/daduttydootz [link] [comments]

• Certificate advice
  by /u/I_am_atree (AWS Certifications) on March 29, 2023 at 2:54 pm

  Hi everyone I'm a full stack dev on Java, angular and often my work takes me to lambda functions as we are rearchitecting to serverless application. I have completed ccp. Should I go for SAA or dev associates? I'm not very knowledgeable in cloud..have 1.5 years exp. submitted by /u/I_am_atree [link] [comments]

• Is it important to do Cloud Practitioner course before doing the solution architect one? I am a total beginner and have zero idea about AWS. Could you please guide me?
  by /u/Ash9944 (AWS Certifications) on March 29, 2023 at 1:53 pm

  submitted by /u/Ash9944 [link] [comments]

• AWS Application Migration Service is now available in the AWS Middle East (UAE) Region
  by aws@amazon.com (Recent Announcements) on March 29, 2023 at 1:27 pm

  Starting today, you can use AWS Application Migration Service (AWS MGN) to migrate and modernize your applications in the AWS Middle East (UAE) Region.

• AWS Practice Tests review
  by /u/JasonNC86 (AWS Certifications) on March 29, 2023 at 1:01 pm

  Hi All, I am taking Jon Bonso tests and what is your method of review for the wrong questions?Do you guys capture the wrong questions some where to go through or go through the cheat sheets of what you got wrong? submitted by /u/JasonNC86 [link] [comments]

• Free ways to practice aws SAA
  by /u/Nam-Man (AWS Certifications) on March 29, 2023 at 4:51 am

  Im learning aws SAA and wonder if there are any way to use aws resources to practice without incurring any fee. I have heard about sandbox evironments and and free credits from aws. Any tips and tricks would be hugely appreciated. Thank you in advance! submitted by /u/Nam-Man [link] [comments]

• Cloud practitioner exam scheduled.
  by /u/curiositykills087 (AWS Certifications) on March 29, 2023 at 3:57 am

  Scheduled the exam for tomorrow evening. Feel pretty confident about my understanding of the content but would like to hear peoples opinions on things I should focus a little more on leading up to the exam. As always, thank you submitted by /u/curiositykills087 [link] [comments]

• Just learned that there's a new version of Cantrill's Solutions Architect Associate course. I'm 75% of the way through the Legacy course. Is it worth starting the new one to pick up the new SAA-C03 things I missed?
  by /u/homerdough (AWS Certifications) on March 29, 2023 at 1:47 am

  I REALLY don't want to go through 70hrs of content again since this has taken me about a year to get through 75% anyway (not super motivated to get the cert but just gathering some AWS knowledge as I go) Are there major changes that I should tune into for the new course? The old one has 66hrs of content compared to 70hrs so I'm sure there's quite a bit of overlap submitted by /u/homerdough [link] [comments]

• Amazon GuardDuty simplifies enforcement of threat detection across all accounts in an Organization
  by aws@amazon.com (Recent Announcements) on March 28, 2023 at 9:33 pm

  Amazon GuardDuty has added new functionality to its integration with AWS Organizations to make it even simpler to enforce threat detection across all accounts in an organization. Since April 2020, GuardDuty customers can leverage its integrations with AWS Organizations to manage GuardDuty for up to 5,000 AWS accounts, as well as automatically apply threat detection coverage to new accounts added to the organization. In some case, this could still result in coverage gaps, for example, if GuardDuty was not applied to all existing accounts, or if it was unintentionally suspended in individual accounts. Now with a few steps in the GuardDuty console, or one API call, delegated administrators can enforce GuardDuty threat detection coverage for their organization by automatically applying the service to all existing and new accounts, as well as automatically identifying and remediating potential coverage drift. To learn more, see the Amazon GuardDuty account management User Guide.

• Subnetting
  by /u/whackamolasses (AWS Certifications) on March 28, 2023 at 9:07 pm

  Do I have to be able to subnet in my head for the SAA-C03? Many years ago, when I got my CCNA/CCNP I could, but I got lazy/smart and use tools for that now. Need I worry? submitted by /u/whackamolasses [link] [comments]

• Should I do Cloud Practitioner or Solutions Architect?
  by /u/hniles910 (AWS Certifications) on March 28, 2023 at 7:48 pm

  Thank you in advance for answering my question A little bit of my background, I have completed Azure certifications AZ-900 (Azure Fundamentals) and DP-900 (Azure Data Fundamentals) and I have made a couple projects using AWS and is comfortable deploying applications on AWS without wasting resources or spending extra money. So my question is should I still do cloud practitioner or should I jump straight to Solutions Architect?? My main concern is I have prior knowledge of the cloud, but should I still take the basic certification?? submitted by /u/hniles910 [link] [comments]

• Amazon SageMaker is now available in Europe (Zurich) Region
  by aws@amazon.com (Recent Announcements) on March 28, 2023 at 7:39 pm

  Starting today, you can build, train, and deploy machine learning (ML) models in Europe (Zurich) Region.

• AWS Inspector - Need Help
  by /u/glcogs01 (AWS Certified Experts) on March 28, 2023 at 7:39 pm

  Need some help use. Using the AWS CLI inspector to find vulnerabilities in an EC2 instance. Trying to fix the vulnerabilities using CLI. The recommendation says to, “Use your Operating System’s update feature to update package…” and then lists a package. What CLI commands would I use to fix this vulnerability? How do I update the package? submitted by /u/glcogs01 [link] [comments]

• Looking for a GCP equivalent
  by /u/OtherwiseAwkward (AWS Certifications) on March 28, 2023 at 7:14 pm

  Heyo! I know this may not be the right place to ask this, but wanted this groups opinions. I have CCP and SAA. I am a strong Adrian Cantrill believer and learned so much from his courses. I'm looking to diversify my certifications in light of the macroeconomic situation. I was wondering if there was a Google Cloud equivalent for GCP (and also Azure) anyone out there have certs for all 3 major providers? what instructors & courses do you prefer?? I am fairly technically proficient, but am in fact a sales schlub. Which is why I enjoy the level of detail Cantrill uses to break down complex topics. ​ TIA! submitted by /u/OtherwiseAwkward [link] [comments]

• AWS CodeBuild supports Arm-based workloads in five additional AWS Regions
  by aws@amazon.com (Recent Announcements) on March 28, 2023 at 7:07 pm

  AWS CodeBuild’s support for Arm using AWS Graviton2 is now available in: Europe (Milan), Middle East (Bahrain), Asia Pacific (Osaka), Asia Pacific (Hong Kong), and Asia Pacific (Jakarta).

• AWS Systems Manager Incident Manager announces the launch of on-call schedules
  by aws@amazon.com (Recent Announcements) on March 28, 2023 at 6:02 pm

  We are excited to announce that Incident Manager now provides on-call schedules, to help you have 24/7 coverage and responsiveness for critical issue. This extends Incident Manager’s capabilities for incident response, helping operations teams more quickly engage, respond, and resolve application availability and performance issues when they occur.

• NICE DCV releases version 2023.0 with support for Red Hat Enterprise Linux 9
  by aws@amazon.com (Recent Announcements) on March 28, 2023 at 5:10 pm

  NICE DCV version 2023.0 introduces multiple enhancements and features, such as support for Red Hat Enterprise Linux 9 and monitor selection for a full-screen remote session on Linux and macOS clients. NICE DCV is a high-performance remote display protocol that is designed to help customers securely access remote desktop or application sessions, including 3D graphics applications hosted on servers with high-performance GPUs.

• AWS Copilot adds support for full customization with AWS CDK or YAML overrides
  by aws@amazon.com (Recent Announcements) on March 28, 2023 at 5:07 pm

  Today, AWS released new version 1.27 of AWS Copilot that enables customers to fully customize AWS Cloud Formation templates, which AWS Copilot uses to provision the service, environment, pipeline, and job resources. Customers can now use AWS Cloud Development Kit (CDK) or YAML patches to change any property of those AWS resources. AWS Copilot is a command-line interface (CLI) that makes it easier for customers to build, deploy, and operate containerized applications on AWS by providing common application architecture and infrastructure patterns, user-friendly operational workflows, and configuring deployment pipelines.

• Bottlerocket adds support for FireLens
  by aws@amazon.com (Recent Announcements) on March 28, 2023 at 5:02 pm

  Bottlerocket, a Linux-based operating system that is purpose built to host container workloads, now supports FireLens. Customers using Bottlerocket with Amazon Elastic Container Services (Amazon ECS) can now benefit from a simpler way to collect logs from Bottlerocket nodes.

• Amazon Athena adds minimum encryption to enhance query result security
  by aws@amazon.com (Recent Announcements) on March 28, 2023 at 4:58 pm

  Amazon Athena has expanded its encryption settings to improve the security of your query results. With today’s launch, you can now ensure all query results are encrypted at or above a level of encryption that you specify.

• which is more difficult? SysOps or CCNA.
  by /u/newmodrecipe (AWS Certifications) on March 28, 2023 at 4:27 pm

  submitted by /u/newmodrecipe [link] [comments]

• Anyone passed professional certification at home?
  by /u/bluexross (AWS Certifications) on March 28, 2023 at 3:57 pm

  I understand how tough the professional certifications may be from previous posts, but I want to know if anyone has taken the exam at home and passed. That's my only option where I reside, so I want to get testimonials that's it is possible. submitted by /u/bluexross [link] [comments]

• Free AWS Certified Solutions Architect – Professional e-Learning
  by /u/ArmyDisastrous9698 (AWS Certified Experts) on March 28, 2023 at 2:44 pm

  https://www.netcomlearning.com/lp/enrollment.phtml?Type=C&Add=1231939&utm_source=reddit&utm_medium=social&utm_campaign=aws_elearning_digital submitted by /u/ArmyDisastrous9698 [link] [comments]

• How do TD exams work?
  by /u/wonderingwonderer26 (AWS Certifications) on March 28, 2023 at 2:05 pm

  Bought the associate architect exam set yesterday. The questions and explanations are great but I'm not sure what I've bought. I did a really difficult 11 question diagnostic quiz then did a 65 question exam on review mode. Surely there is not a brand new test for every single assessment type? Is it just a large question bank that generates a test based on the type of test? What are the general best practices for utilizing TD? I'm really looking to cover weak areas and to build my test taking stamina with as many fresh questions as possible. submitted by /u/wonderingwonderer26 [link] [comments]

• AWS IoT Core deepens integration with Amazon Sidewalk
  by aws@amazon.com (Recent Announcements) on March 28, 2023 at 1:24 pm

  AWS IoT Core, a cloud service that connects billions of Internet of Things (IoT) devices and routes trillions of messages to AWS services, announce a deeper integration with Amazon Sidewalk. With AWS IoT Core for Amazon Sidewalk, customers can now easily provision, onboard, and monitor their Amazon Sidewalk devices. 

• Passed Aws Cloud practitioner in a week!!!
  by /u/I_am_atree (AWS Certifications) on March 28, 2023 at 5:37 am

  Firstly thanks to the community for all resources. I have no experience in aws except for knowing ec2, rds, s3. I studied for a week, and got marks waay above 700. Hope I can help someone in similar position as me. Here's what I did: Downloaded Stephane's ppt and only went through the section summaries. Took Stephane's course on practice test, did first 5 got 71%-78% in all of them. Took acloudguru first 3 tests, got 71%-72% in all, it said I'll fail 🙁 so dont lose hope if you get low scores. What I did good was I reviewed each wrong question well and it helped. I went through a 12 hrs video on aws questions: https://youtu.be/QivKrKf3rQI And that's it you are ready to go. Stephane's test are tough, actual tests are waay waay easier. All the best. You've got it! submitted by /u/I_am_atree [link] [comments]

• AWS Cost Anomaly Detection now automatically configured for all new Cost Explorer users
  by aws@amazon.com (Recent Announcements) on March 27, 2023 at 9:51 pm

  We are pleased to announce that as of today, new Cost Explorer users will automatically receive the benefit of Cost Anomaly Detection. Cost Anomaly Detection uses machine learning to continuously monitor, detect, and alert customers of unexpected cost increases. The default configuration allows new Cost Explorer users to quickly improve cost controls with zero effort.

Top 60 AWS Solution Architect Associate Exam Tips

Top 100 AWS Solutions Architect Associate Certification Exam Questions and Answers Dump SAA-C03