Common Exam Scenarios for the CLF-C02 AWS Cloud Practitioner Exam

Formatted by GPT-4o from https://tutorialsdojo.com/aws-cloud-practitioner-clf-c02-exam-guide/

AWS Financial Benefit

A key financial benefit of migrating systems hosted on your on-premises data center to AWS: Replaces upfront capital expenses (CAPEX) with low variable operational expense (OPEX).

Reduce TCO

Reduce the Total Cost of Ownership (TCO).

4 Cloud Architectures Design Principle in AWS

Design for failure, decouple your components, implement elasticity, think parallel.

Availability Zones

A Global Infrastructure component that is made up of one or more discrete data centers with each redundant power, networking, and connectivity housed in separate facilities.

Decouple your components

A cloud best practice that reinforces the use of the Service-Oriented Architecture (SOA) design principle.

Internet Gateway

You need to enable your Amazon EC2 instances in the public subnet to connect to the public Internet.

VPN and VPC Connection Solutions

You can use it to resolve the connection between your on-premises VPN and your Amazon VPC: Virtual Private Gateway, Amazon Route 53.

AWS CloudTrail

It provides the event history of your AWS account activity including actions taken through the AWS Management Console, AWS SDKs, command-line tools, and other AWS services.

AWS Artifact

A company needs to download the compliance-related documents in AWS such as Service Organization Controls (SOC) reports.

Improving IAM User Security

Improve the security of IAM users: Enable Multi-Factor Authentication (MFA), Configure a strong password policy.

IAM User

An IAM identity that uses access keys to manage cloud resources via AWS CLI.

IAM Role

Grant temporary access to your AWS resources.

IAM Group

Apply and easily manage the common access permissions to a large number of IAM users in AWS.

Bucket Policy

Grant the required permissions to access your Amazon S3 resources.

User Policy

User policies for granting permissions.

Amazon Cognito

It scales up to millions of users and supports sign-in with social identity providers such as Facebook, Google, and Amazon and enterprise identity providers via SAML 2.0.

IAM Policy Simulator

A startup needs to evaluate the newly created IAM policies.

Amazon Macie

A service that discovers, classifies, and protects sensitive data such as personally identifiable information (PII) or intellectual property.

Amazon GuardDuty

A threat detection service that continuously monitors for malicious activity to protect your AWS account.

Enable Multi-Factor Authentication (MFA)

Prevent unauthorized deletion of Amazon S3 objects.

Network Access Control List (NACL)

A company needs to control the traffic going in and out of its VPC subnets.

Security Group

What acts as a virtual firewall in AWS that controls the traffic at the EC2 instance level?

AWS

Its responsibility is to patch the host operating system of an Amazon EC2 instance.

Amazon EC2

A customer can assume the responsibility and management of the guest operating system including updates and security patches.

AWS Snowmobile

You need to securely transfer hundreds of petabytes of data and exabyte-scale datasets into and out of the AWS Cloud.

Dedicated Host

A type of EC2 instance that allows you to use your existing server-bound software licenses.

Developer Tools for AWS

A Developer can use these to interact with their AWS services: AWS Command Line Interface, AWS SDKs.

Amazon Route 53

A highly available and scalable cloud DNS web service in AWS.

Amazon ElastiCache

Store the results of I/O-intensive SQL database queries to improve the application performance.

Static File Serving Combination

A combination of AWS services that allows you to serve the static files with the lowest possible latency: Amazon S3, Amazon CloudFront.

AWS Auto Scaling

Automatically scale the capacity of an AWS cloud resource based on the incoming traffic to improve availability and reduce failures.

AWS Database Migration Service (AWS DMS)

A company needs to migrate the on-premises MySQL database to Amazon RDS.

S3 Lifecycle Policy

Automatically transfer your infrequently accessed data in your S3 bucket to a more cost-effective storage class.

Use Multipart Upload API

You need to upload a single object as a set of parts to improve throughput and have a quicker recovery from any network issues.

AWS Direct Connect

A company needs to establish a dedicated connection between its on-premises network and its AWS VPC.

Amazon Rekognition

A Machine Learning service that allows you to add visual analysis features to your applications.

AWS CodeCommit

A source control service that allows you to host Git-based repositories.

AWS X-Ray

A service that can trace user requests in your application.

AWS Trusted Advisor

Inspects your AWS environment and makes recommendations for saving money, improving system performance, or closing security gaps.

Amazon CloudFront

You need to speed up the content delivery of static assets to your customers around the globe.

AWS CloudFormation

Create and deploy infrastructure-as-code templates.

AWS Key Management Service (AWS KMS)

You have to encrypt the log data that is stored and managed by AWS CloudTrail.

Amazon DynamoDB

A database service that can be used to store JSON documents.

Technical Account Manager (TAM)

A designated technical point of contact that will maintain an operationally healthy AWS environment.

AWS Billing Console

It allows the customer to view his Reserved Instance usage for the past month.

AWS Total Cost of Ownership (TCO) Calculator

A startup needs to estimate the costs of moving its application to AWS.

AWS Budgets

Allows you to set coverage targets and receive alerts when your utilization drops below the threshold you define.

Convertible RI

A type of Reserved Instance that allows you to change its instance family, instance type, platform, scope, or tenancy.

Spot Instance

Take advantage of unused EC2 capacity in the AWS Cloud and provides up to 90% discount.

AWS Organizations

You need to centrally manage policies and consolidate billing across multiple AWS accounts.

Amazon Glacier

The most cost-efficient storage option for retaining database backups that allows occasional data retrieval in minutes.

AWS Cost Explorer

Forecast future costs and usage of your AWS resources based on your past consumption.

Cost allocation tags

Categorize and track AWS costs on a detailed level.

Developer Support Plan

The lowest support plan that allows an unlimited number of technical support cases to be opened.

All Upfront

The most cost-effective option when you purchase a Reserved Instance for a 1-year term.

Consolidated Billing

You have to combine usage volume discounts of your multiple AWS accounts.

AWS Marketplace

Sell your catalog of custom AMIs in AWS.