AWS Developer Associate Exam Latest Higher Tier

SQS Limitations - ANSWER 1) Message Size: 256kb of text (any format) 2) Up to 120,000 "in-flight" messages S3 - Error 409 - ANSWER Error = Conflict 1) S3 Bucket already exist 2) Bucket is not empty (when trying to ...

SQS Limitations - ANSWER 1) Message Size: 256kb of text (any format) 2) Up to 120,000 "in-flight" messages S3 - Error 409 - ANSWER Error = Conflict 1) S3 Bucket already exist 2) Bucket is not empty (when trying to delete) 3) Bucket name already taken API Gatway Method Configuration Options - ANSWER e.g. How are the methods setup to respond to requests? - AWS Lambda - Exisiting HTTP endpoints - Integrated with other AWS Services S3 Encryption: Protecting Data In-Transit - ANSWER 1) Using an AWS-KMS managed customer (master) key -Client gets a unique key for each object 2) On Upload: -Send request to AWS KMS for key -AWS KMS returns an encryption key Step Functions - ANSWER Coordinate the components of distributed applications using visual workflows SWF: Workers - ANSWER 1) Process that performs an activity that is part of the workflow 2) Workers poll SWF for new tasks that they need to perform 3) After receiving a task, the worker will process the task however it is instructed to do so, then report back to SWF 4) Workers CAN consist of a server (code being executed), a human worker can also be used to process as task SNS: Subscribers - ANSWER 1) Subscribe to a topic to receive published messages 2) Subscribers are end-points and include: -Mobile apps -Web servers -Email addresses SNS Message Data: TopicARN - ANSWER ARN = Amazon Resource Name 1) ARN fro the topic that this message was published to CodeBuild - ANSWER - Compile and test your code and create deployment artifacts - Many pre-configured build environments - Also offers the ability to use custom container images SQS API: "DeleteMessage" - ANSWER 1) Deletes a message SQS: Advantages - ANSWER 1) Components are loosely coupled (decoupled) for high availability, reliability, and scalability 2) Protects against losing data on application failure Lambda - Context object - ANSWER Allows you to get context on the running function such as: - time remaining in the function execution - the request id of the function execution Paramater Store - ANSWER - AWS Service under AWS Systems Manager - Secure way to store sensitive values like DB passwords, API Keys, etc. - Can store data encrypted Identity Store (list) - ANSWER 1) Facebook 2) Active-directory 3) Google 4) Amazon IAM Policies - ANSWER - Used to determine if access to AWS resources should be permitted - Can be attached to IAM Roles, Users or Groups - IAM policy denys ALWAYS override allows AWS System Manager Paramater Store API Action examples - ANSWER - PutParameter (sets up a parameter in Parameter Store) - GetParameter (gets a parameter in Parameter Store) - DeleteParameter (deletes a parameter in Parameter Store) SNS Message Data: MessageID - ANSWER Part of the SNS service. 1) Universally Unique Identifiers (UUID) 2) Same ID must be used for retries DynamoDB: Scans (if you must use) - ANSWER 1) You can reduce the "page size" of an operation with the "limit" parameter, to limit how much data you try to retrieve at the same time 2) Avoid scan on mission critical tables 3) Program your application logic to retry any request that receives a response code saying you exceeded provisioned throughput (or increase your throughput) DynamoDB: Atomic Counters - ANSWER Database counter. 1) Allows you to increment or decrement the value of an attribute without interfering with other write request 2) Request are applied in the order that they were received 3) Updates are NOT Idempotent: It will update the value each time it is called SNS Message Data: SigningCertURL - ANSWER SNS 1) The URL to the certificate that was used to sign the message CodeDeploy - ANSWER - Deploy your code to EC2, Lambda, or on-premesis environments. - Offers multiple deployment strategies Cloud Formation: AWSTemplateFormatVersion - ANSWER Specifies the format version of the CloudFormation template you want to use. Currently, there is only one version: "2010-09-09" Three Caching Strategies - ANSWER Lazy Load Write Through TTL Snowball/Snowplow - ANSWER - Petabyte-Scale data transfers to AWS - AWS Provided device - Quickly move massive amounts of data in and out of the AWS cloud Write Through (caching strategy) - ANSWER Everytime the underlying database is written to or updated the cache is updated with the new information. SQS Long Polling - ANSWER Queues 1) This doesn't return a response until there is a message in the queue or the time limit expires 2) It checks every server to avoid false empty responses 3) Should always be considered for use as it can reduce cost and false empty responses Cloud Formation: Template Sections - ANSWER 1) AWSTemplateFormatVersion 2) Description 3) MetaData 4) Parameters 5) Mappings Cloud Formation: Resources - ANSWER 1) This is where you create different resources like S3, EC2, etc. 2) This section is REQUIRED Intrinsic Functions: FN::Join - ANSWER Intrinsic function 1) Concatenates elements, separated by a specific delmiter SQS FIFO Queues - ANSWER Queue - Allow for first-in-first-out ordering in the queue - Guarantee only-once delivery - Only supports 3000 messages/second (with batching) RDS-supported database Engines - ANSWER Amazon Aurora, MySQL, MariaDB, PostgreSQL, Oracle, and Microsoft SQL Server DynamoDB: Scans (negatives) - ANSWER Database 1) The larger the data set in the table, the slower the performance of a scan 2) The more filters on the scan, the slower the performance 3) Return only filtered results 4) Only eventually consistent reads available DynamoDB: Limits (size) - ANSWER Database 1) 265 tables per region (increase on request) 2) Partition key length: 1 byte - 2048 bytes 3) Sort key length: 1 byte - 1024 bytes 4) Item size: 400kb including attribute name & value AMI API: "RegisterImage" - ANSWER 1) Occurs during the FINAL process of creating an AMI Build Spec File - ANSWER CodeBuild uses this file to determine how to build your deployment artifacts from your application code. CodeCommit - ANSWER - Managed, private git repositories SNS Message Data: SignatureVersion - ANSWER 1) Version of the SNS signature used DynamoDB: Queries - ANSWER Database 1) Allows you to find items using ONLY primary key-values from a table OR secondary index 2) more efficient then SCAN Intrinsic Functions: FN::GetAZ - ANSWER 1) Gets the AZ for a specific region AppSpec file - ANSWER CodeDeploy uses this file to determine how to deploy your applications. DynamoDB Accelerator (DAX) - ANSWER Help improve DynamoDB performance by caching DynamoDB requests S3 Performance (limits) - ANSWER 1) Burst (#of request per second) IF > 300 put/list/delete IF > 800 get THEN contact AWS to prepare/avoid limit issues API Keys - ANSWER - Created in IAM for a specific user - NEVER store them on an EC2 instance or give EC2 access using these credentials (use Roles instead ) - Only visible in the console once (when created) IAM Users - ANSWER AWS User accounts for individuals to access AWS resources via the console or AWS CLI or SDKs S3: Bucket Policies - ANSWER 1) Resource-based policy 2) Created via JSON 3) Can grant other AWS accounts or IAM users permissions for the bucket/object 4) SHOULD be used to manage cross-account permissions for all S3 permissions 5) Limited to 20kb in size