AWS Services CLF-C02

Description

AWS services in scope for the CLF-C02 Certified Cloud Practitioner exam
Jo Mccormack
Flashcards by Jo Mccormack, updated more than 1 year ago
Jo Mccormack
Created by Jo Mccormack about 1 year ago
53
0

Resource summary

Question Answer
Amazon Athena Serverless SQL service for highly scalable analytics
Amazon Data Exchange Service that allows subscribing and loading third party data from providers
Amazon EMR Elastic MapReduce; Big data PaaS for data processing, facilitates the setup of and automates scaling, tuning clusters
AWS Glue Fully managed extract, transform, load (ETL) service Provides pipeline to load data into data lakes in a centralized data catalog
Amazon Kinesis Fully managed service for real-time streaming data processing 4 Available sub-services: Firehose (Hands-off pipeline to AWS services), Data Analytics (Processing), Data Streams & Video Streams (Storage)
Amazon MSK Amazon Managed Streaming for Apache Kafka; Fully managed service integrating with open-source Apache Kafka (which processes streaming data) by managing Kafka infrastructure
Amazon OpenSearch Service Open-source distributed search and analytics suite, derived from Elasticsearch, allowing for log analytics, real-time app processing, website search, etc.
Amazon Quicksight Business Intelligence service for creating/publishing interactive insight dashboards for your customers or organization members
Amazon Redshift Data warehouse service using SQL
Amazon EventBridge Serverless event bus taking in real-time data from event sources to send to AWS services and SaaS apps; Customizable routing rules allow you to decouple event producer and consumer
Amazon SNS Simple Notification Service; Publisher-Subscriber messaging allowing for microservice decoupling and parallel processing; Messages are NOT held if unable to be delivered
Amazon SQS Simple Queue Service; Allows for sending, storing, and receiving messages between software components WITHOUT losing messages if recipients unavailable; Standard queue and FIFO queue available
AWS Step Functions Serverless workflow orchestration; Use drag-and-drop visual workflows in Step Functions Studio to simplify application flow/components
Amazon Connect AI and ML powered Contact Center as a service
Amazon SES Simple Email Service; Mass email communication service
AWS Billing Conductor Supports billing and reporting workflows; Allows you to configure, generate, and display rates to certain customers or to subgroups of your organization, as well as analyzing actual vs applied rates
AWS Budgets Set custom budgets and be notified if your usage exceeds (or is forecasted to exceed) said budget, or is below required RI (reserved instance) utilization rates
AWS Cost and Usage Report Lists AWS usage for each service category in hourly or daily line items, or by tag CURs can also be aggregated on a daily or monthly level
AWS Cost Explorer Interface for visualizing, understanding, and managing AWS costs and usage over time
AWS Marketplace Digital catalog for third-party software, data, and services that run with AWS services
AWS Batch Service that dynamically provisions quantity and type of compute resource needed to complete large-scale batch computing jobs; Plans, schedules, and runs batch computing workloads
Amazon EC2 Elastic Compute Cloud; Provides secure, resizable compute resources in the cloud
Amazon EC2 Instance Types On Demand Instances, Reserved Instances, Convertible Reserved Instances, Spot Instances, 1 or 3 year Savings Plans, Dedicated Hosts
Amazon EC2 Auto Scaling Automatically adds or removes EC2 instances depending on current usage, as well as restarting unhealthy instances
Amazon EC2 Image Builder Simplifies the building, testing, and deployment of Virtual Machines and images; Automates image management processes
AWS Elastic Beanstalk From uploaded code, Elastic Beanstalk handles deployment of web applications, from capacity provisioning, load balancing, and auto scaling to application health monitoring; Still allows access/viewing of underlying resources
Amazon Lightsail No-code-required web application service; offers easy-to-use virtual private server (VPS) instances, containers, storage, databases
AWS Local Zones For single-digit millisecond latency or data residency, AWS local zones are located close to cities/business centers
AWS Outposts Run some AWS services on premises and stay connected to others via cloud; On premises infrastructure fully managed by AWS for a hybrid experience
AWS Wavelength Embeds AWS compute and storage services within 5G networks, providing mobile edge computing infrastructure for developing, deploying, and scaling ultra-low-latency applications
Amazon ECR Elastic Container Registry; Fully managed Docker container registry for easy storage, management, and deployment of Docker containers, integrated with ECS
Amazon ECS Elastic Container Service; Container orchestration service allowing running and scaling of Docker containers
Amazon EKS Elastic Kubernetes Service; Container orchestration service compatible with open source Kubernetes to better integrate with pre-existing Kubernetes-backed containers
AWS Activate for Startups Startup program providing guidance through ideation, building, networking, and investor access
AWS IQ Connect to Amazon-vetted Freelancers and Consultants by posting your project on AWS IQ
AMS Amazon Managed Services; Service for managing operations of your AWS infrastructure. Provides routine operations such as patch, continuity management, security management, and IT management processes
AWS Support Comes in tiered plans: Basic, Developer, Business, Enterprise On-Ramp, and Enterprise
AWS Basic Support Plan 24/7 Customer Service, Documentations, Whitepapers, Forums, Trusted Advisor, and Personal Health Dashboard
AWS Developer Support Plan Everything in AWS Basic plus: Customer Support email with 24hr response time, <12 if systems impaired
AWS Business Support Plan Everything in AWS Developer plus: Full set of AWS Trusted Advisor best practice checks Direct phone access to cloud support engineers, 4 hr response time if impaired, 1 hr if down Infrastructure event management
AWS Enterprise On-Ramp Support Everything in Business plus: 30 min response time for business critical workloads Access to Technical Account Managers (TAMS)
AWS Enterprise Support Everything in On-Ramp plus: 15 min response time for business critical workloads Designated Technical Account Manager (TAM) who proactively monitors environment and assists with optimization
Amazon Aurora Relational (SQL) database compatible with MySQL, PostgreSQL; has more AWS integration than its SQL competitor databases
Amazon DynamoDB Key-value NoSQL database with single-digit millisecond latency
Amazon MemoryDB for Redis NoSQL database running on Redis (open-source) engine
Amazon Neptune NoSQL graph database
Amazon RDS Relational Database Service; Automates/Simplifies the setup of a relational database, running on your choice of engine (Aurora, MySQL, PostgreSQL, etc)
AWS App Config A capability of AWS Systems Manager, to create, manage, and quickly deploy application configurations
AWS CLI AWS Command Line Interface; Allows control of AWS services through the command line and automated scripts
AWS Cloud9 Cloud-based IDE available in the browser with real-time pair programming and prepackaged tools for common languages
AWS CloudShell Cloud-based Shell available in the browser allowing for use of CLI and scripts
AWS CodeArtifact Artifact repository service automating updates to dependencies; Works with commonly used package managers such as Maven and Gradle
AWS CodeBuild Automatically compiles and tests your code, automating the provision and scaling of build servers
AWS CodeCommit Seamlessly integrates with Git tools to fully manage secure and highly scalable Git repositories
AWS CodeDeploy Automates code-deployment to any cloud or on-premises instance, and scales with your infrastructure
AWS CodePipeline Continuous delivery service, automates release pipelines (build, test, process) based on defined release model; integrates with third-party services such as GitHub or custom plugins
AWS CodeStar Cloud‑based development service with tools to develop, build, and deploy applications on AWS with role-based access; Unified project dashboard and integration with JIRA; Track SDLC, from a backlog work item to production code deployment.
AWS X-Ray End-to-end view of requests through application with a map of underlying components; Allows for improved analysis and debugging
Amazon AppStream 2.0 Highly scalable service to centrally manage desktop applications and securely deliver them to any computer; Applications run on optimized virtual machines (VMs) and streaming sessions automatically adjusts to network conditions
Amazon WorkSpaces Provision Windows or Linux desktops and scale to provide thousands of desktops globally; Helps eliminate the complexity in managing hardware and simplifies desktop delivery
Amazon WorkSpaces Web Linux-based service, facilitates secure browser access to internal websites and SaaS applications from existing web browsers
AWS Amplify Backend-as-a-Service, simplifies backend web development for mobile apps; Can connect pre-existing frontend UI or choose Figma/preexisting components to create frontend UI
AWS App-Sync Serverless backend for mobile, web, and enterprise apps; Handles data management, sync, and and manipulation using GraphQL
AWS Device-Farm App testing service for Android, iOS, and web, testing/interacting on many devices at once, or reproduce issues on a device in real time. View video, screenshots, logs, and performance data to pinpoint issues
AWS IoT Core Facilitates connection between billions of IoT devices and AWS service endpoints
AWS IoT Greengrass Extends AWS to IoT devices to allow for local data manipulation
Amazon Comprehend Natural Language Processing tool that finds insights and relationships in text
Amazon Kendra ML Intelligent search service, finds content in unstructured data across multiple locations in your repositories
Amazon Lex Underlying model that powers Amazon Alexa, available for use as base for building conversational text or speech interfaces (chatbots)
Amazon Polly Amazon text-to-speech ML model with variety of voices and languages
Amazon Rekognition ML image and video analysis, identify object, people, etc. in image/video content
Amazon Sagemaker Provides modules to build, train, and deploy machine learning models
Amazon Textract Extracts text and data from scanned documents
Amazon Transcribe Automatic speech recognition service from audio files or live audio stream
Amazon Translate Neural machine translation service
AWS Auto Scaling Available for a variety of AWS products; Provisions, deletes, or upgrades/downgrades resources based on current usage and monitors resource usage/health
AWS CloudFormation Create templates or use provided templates to simplify provision of new resources and manage infrastructure
AWS CloudTrail Records API calls and delivers log files, including information such as IP address, parameters, and response elements
Amazon CloudWatch Provides insights on performance changes, resource utilization, and operational health; Allows you to take automated action, troubleshoot issues, and discover insights
AWS Compute Optimizer Uses ML to analyze historical use trends and recommend optimal resources from Compute Optimizer Console
AWS Config AWS resource inventory (existing and deleted), configuration history, and configuration change notifications to enable security and governance; Create Config rules that automatically check the configuration of AWS resources
AWS Control Tower Set up and govern a secure, multi-account AWS environment based on best practices; Controls implemented governance rules for security, compliance, and operations.
AWS Health Dashboard Personalized view of performance and availability of used services, with alerts for upcoming or current events that impact AWS service health
AWS Launch Wizard Guided way to size, configure, deploy AWS resources for third party applications
AWS License Manager Prevents licensing breaches through customized licensing rules, which can physically stop instances from launching or notifying administrators of breach
AWS Management Console Intuitive user interface for accessing and managing AWS services
AWS Organizations Group accounts and allocate resources, policies to accounts or groups; Simplifies billing through single payment for all accounts
AWS Resource Groups and Tag Editor Resources that contain a common tag form a Resource Group. Tags can be edited in bulk, and Tag Editor lets you manage tags across services and regions
AWS Service Catalog Allows organizations to create a list of approved IT services and enable users only to deploy approved services
AWS Systems Manager Unified user interface to view operational data and automate operational tasks; Resource groups, insights, scripts, state manager, inventory, maintenance window, patch manager, automation, parameter store, distributor, session manager
AWS Trusted Advisor Reduce cost, increase performance, and improve security by optimizing AWS environment; Provides real-time guidance to provision your resources following AWS best practices
AWS Well-Architected Tool Compares state of your workloads to latest AWS architectural best practices, based on AWS Framework 6 Pillars: Operational Excellence, Security, Reliability, Performance Efficiency, Cost Optimization, Sustainability
AWS Application Discovery Service Helps customers plan migration projects by gathering info about their onprem data centers
AWS Application Migration Service Minimizes manual processes of migration by auto converting source servers from physical, virtual, or cloud infrastructure to run on AWS, minimizing error and time required
AWS DMS Database Migration Service; Migrates data from most commercial and open-source databases, keeping source database fully operational; Can also be used for continuous data replication with high availability
AWS Migration Hug Single location for tracking progress of app[ migrations, provides key metrics and migration tools
AWS SCT Schema Conversion Tool; Converts existing DB schema from one format to another to be compatible with target RDS instance
AWS Snow Family Snowcone (8TB), Snowball (Storage or Compute Optimized), Snowmobile (100PB) For large data transfers or for running in non-data center environments, hardware is provided, owned and managed by AWS
AWS Transfer Family Support for file transfers into/out of S3 or EFS; Supports Secure File Transfer Protocol (SFTP), File Transfer Protocol over SSL (FTPS), and File Transfer Protocol (FTP)
Amazon API Gateway Simplifies creation and maintenance of secure APIs to your AWS applications by accepting/processing API calls, managing versions, authorization, etc.
Amazon CloudFront Content delivery network (CDN) that reduces latency by caching content in nearest AWS edge location
AWS Direct Connect Provides a dedicated network connection from premises to AWS, for a more secure and consistent connection than via internet
AWS Global Accelerator Utilizes global AWS infrastructure to route user requests to nearest regional endpoint, speeding up applications
Amazon Route 53 Domain Name System (DNS) which routes users from readable domain names to IP addresses
Amazon VPC Virtual Private Cloud; Isolated section of AWS clouds with AWS resources, customizable to add security and configurations
AWS VPN Virtual Private Network; Establish secure connections between on-premises networks and remote offices, client devices, AWS global network; Site-to-Site VPN and AWS Client VPN available
AWS Artifact Central resource for AWS compliance information; Compliance reports, NDAs, etc.
AWS Audit Manager Audits AWS usage to assess risk and compliance; Translates cloud service information to auditor friendly reports by mapping to industry standards/regulations
ACM AWS Certificate Manager; Manages Secure Sockets Layer/Transport Layer Security (SSL/TLS) certificates for use with AWS
AWS CloudHSM Hardware Security Module that enables easy generation and use of encryption keys and integrate with applications using industry-standard API
Amazon Cognito Add user access control to web and mobile apps, through own user system or common SSO
Amazon Detective Investigates root cause of potential security issues or suspicious activities, using machine learning with log data from AWS resources
AWS Directory Service AKA AWS Managed Microsoft AD (Active Directory); Allows directory-aware workloads and AWS resources to use managed Active Directory in AWS cloud
AWS Firewall Manager Central service to control and manage AWS WAF rules across accounts and applications in AWS Organizations
AWS RAM Resource Access Manager; Securely share resources within organization or organizational units, and with IAM users/roles;
Amazon GuardDuty Threat detection service, monitoring for malicious/unauthorized behavior such as unusual API calls or dangerous deployments
AWS IAM Identity and Access Management; Create and manage AWS users, roles, and groups, and control their access/permissions;
AWS IAM Identity Center Formerly AWS Single Sign-On; Central point to manage access on all accounts in the Organization
Amazon Inspector Security assessment tool for exposure, vulnerabilities, and deviations from best practices; Inspector Console lists these findings by level of severity
AWS KMS Key Management Service; Create and manage keys, control use of encryption across AWS services; Integrated with CloudTrail to provide logs of key usage
Amazon Macie Uses ML to discover, classify, and protect sensitive data in AWS such as personally identifiable information (PII) or intellectual property
AWS Network Firewall Set up network protection for all your VPCs, and define firewall rules; Works with AWS Firewall Manager so you can apply Network Firewall rules across accounts and VPCs
AWS Secrets Manager Rotate, manage, and retrieve credentials, API keys, etc. throughout their lifecycle; Prevents hardcoding sensitive info into plain text
AWS Security Hub Comprehensive dashboard view of security alerts and compliance status across AWS accounts; Compiles from sources such as GuardDuty, Inspector, and Macie; Available in the Management Console
AWS Shield DDoS protection service, minimizing downtime and latency; Standard plan is available across services for free, and AWS Shield Advanced is available at a fee
AWS WAF Web Application Firewall; Allows control over which traffic to allow or block to web application; with a full-featured API to automate creation, deployment, maintenance of web security rules
AWS Fargate Serverless compute engine for running containers; Removes need to consider servers or clusters when running your containers
AWS Lambda Serverless code computing; Run code without provisioning or managing servers, charges by runtime
AWS Backup Centralize and automate data protection across AWS services; Deploy policies to configure, manage, and govern backup activity across Organization
Amazon EBS Elastic Block Store; Persistent block storage that attaches to EC2 instances; Replicated within AZ to protect from component failure
Amazon EFS Elastic File System; File system for Linux based workloads that can scale to petabytes, and grow/shrink automatically; Stored within and across AZs for high availability
AWS DRS Elastic Disaster Recovery Service; replicates data to minimize downtime and data loss in recovery
Amazon FSx Shared file storage like EFS but for windows
Amazon S3 Cloud object storage with 11 9s of data durability (99.999999999%), can host static website through public access, or private access for internal storage; Storage classes are Standard, Standard-IA, One Zone-IA, Outposts, and Intelligent Tiering, as well as the Glacier classes
Amazon S3 Glaciers Additional S3 Storage classes for archived data are Glacier Instant Retrieval, Glacier Flexible Retrieval, and Glacier Deep Archive
AWS Storage Gateway Hybrid Storage service that allows on-premises applications to use AWS cloud storage
Cloud Migration Strategies The Seven "R"s; Retire, Retain, Re-host, Relocate, Repurchase, Re-platform, Refactor (Re-architect)
CAF Perspectives Cloud Adoption Framework Perspectives: Business, Governance, Operations, Security, People, Platform;
CAF Benefits Reduce business risk, grow revenue, increase operational efficiency, improve environmental, social, and governance performance
CAF Path Envision -> Align -> Launch -> Scale -> Repeat
Root User Actions Change acct settings, Restore admin user perms, activate IAM access to Billing and Cost Management, view some tax invoices, close acct, register as seller in Reserved Instance market, configure S3 bucket to enable MFA, edit SQS resource/S3 bucket policy that denies all principals, sign up for AWS GovCloud, request GovCloud acct root user access keys from AWS Support, recover unmanageable KMS service through Support
Show full summary Hide full summary

Similar

AWS: Mock Quiz
Sarwesh Saurabh
Amazon Web Services
Stephen Gibbons
AWS Developer Associate Practice Quiz #2
Bill Rawlinson
AWS Notes
Stephen Gibbons
AWS Developer Associate Practice Quiz
Bill Rawlinson
AWS: ELB
Sarwesh Saurabh
Chapter 2. Understanding Your AWS Account
Julio Gutierrez
Chapter 1. The Cloud
Julio Gutierrez
NMPED Professional Development
Chris Dorantes
AWS Ch7 Exam
Tim Urista