Top 45+ AWS Interview Questions and Answers for 2022
Tejasvee Sharma
Feb 05, 2022
If you are preparing for a technical interview for Amazon or AWS then this page is really helpful for you. Here on this page, we have brought a list of top AWS Interview Questions which was frequently asked by interviewers on this topic. You will not only get the list of questions but also get their answers to prepare for your upcoming interview.
About AWS: Amazon offered a cloud computing service called AWS. It allows you to create, deploy, test, and control applications and their services. All these things are done through the data centers and the hardware handled by Amazon. AWS provides you a mixture of Infrastructure-as-a-Service (IaaS), Software-as-a-Service (SaaS), Platform-as-a-Service (PaaS) offerings.
It is a cloud-based virtual machine on which you have OS-level control. You can operate this cloud server anytime you want and utilize it when you require deploying your servers in the cloud, alike to your on-premises servers. When you like to have complete control over the selection of hardware and machine updates.
2. Explain SnowBall?
SnowBall is a short application that allows you to share terabytes of information outside and inside of the AWS environment.
3. Explain CloudWatch?
It supports you to watch AWS environments like EC2, CPU utilization, and RDS Instances. It also activates alarms based on different metrics.
4. Explain Elastic Transcoder?
Basically, it is an AWS Service Tool that allows you to modify a video’s layout and resolution to keep different devices like laptops, smartphones, and tablets of various resolutions.
5. Explain VPC?
VPC full form is Virtual Private Cloud that permits you to customize your networking configuration. A virtual private cloud is a network that is logically isolated from different networks in the cloud. It permits you to have your security groups, personal IP Address range, subnets, and internet gateways.
6. DNS and Load Balancer Services come under which type of Cloud Service?
The given services come under IaaS-Storage Cloud Service.
7. Name the Storage Classes available in Amazon S3?
Amazon S3 Standard
Amazon S3 Reduced Redundancy Storage
Amazon Glacier
Amazon S3 Standard-Infrequent Access
8. Explain T2 instances?
T2 Instances are developed to deliver intermediate baseline performance and the ability to burst to increased performance as directed by the workload.
9. Explain Key-Pairs in AWS?
They provide safe login details for your Virtual Machines. To link the instances you can utilize Key-Pairs which include a Private Key and a Public Key.
10. In a VPC, how many Subnets can you have?
In a VPC, you can have 200 Subnets.
11. Name various types of Cloud Services.
Software as a Service (SaaS)
Infrastructure as a Service (IaaS)
Platform as a Service (PaaS)
Data as a Service (DaaS)
12. Define S3 in AWS?
S3 means Simple Storage Service (SSS or called S3). You can operate the S3 interface to hold and recover any amount of data, at any time and from anywhere on the web. For S3, the payment instance is “pay as you go”.
13. Explain DDoS attack?
It is a cyber-attack in which the attacker accesses a website and forms numerous sessions so that the other fair users are not able to access the service.
14. Tell me the way to send a request to Amazon S3?
It is a REST Service, and you can transmit a request by operating the REST API or the AWS SDK wrapper libraries that wrap the underlying Amazon S3 REST API.
15. Tell me the things which AMI includes?
Launch authorizations to determine which AWS accounts can use the AMI to project instances.
A template for the root volume for the instance.
A block device mapping that specifies the volumes to connect to the instance when it is launched.
16. Name different types of Instances?
General Purpose
Memory-Optimized
Compute Optimized
Accelerated Computing
Storage Optimized
17. Name the AWS services that can minimize DDoS attacks?
AWS Shield
AWS WAF
Amazon Route53
Amazon CloudFront
ELB
VPC
18. Tell me what you'll use?
You can use these to monitor Amazon VPC:
CloudWatch
VPC Flow Logs
19. Explain various types of EC2 instances on the basis of their costs?
On-Demand Instance - These instances are designed as per the demand. Whenever you feel the requirement for a fresh EC2 instance, you can go forward and build an on-demand instance. It is affordable for the short time but not when used for the long term.
Spot Instance - These instances can be bought and used for the bidding model. These are more affordable than On-Demand Instances.
Reserved Instance - On AWS, you can form instances that you can store for a year or more. Reserved instances are useful when you know in advance that you will be requiring them for the long term. In such matters, you can build a reserved instance and save heavily on costs.
20. Explain terminating and stopping an EC2 Instance?
Stopping an EC2 instance tells you to close it down as you generally do on your Computer. This won’t remove any volumes linked to the instance and the instance can be triggered again when required.
On the other hand, quitting an instance is equal to eliminating an instance. All the volumes connected to the instance get removed and it is not viable to restart the instance if required at a later point in time.
21. Explain consistency models for modern DBs proposed by AWS?
Eventual Consistency - It tells that the data may not be immediate, but will be constant eventually. This will aid the client requests quickly, but the probabilities are that some of the initial read requests may read the old unwanted data. This kind of consistency is chosen in systems where data is not required to be in real-time.
Strong Consistency - It supplies immediate consistency where the data will be constant throughout all the DB Servers instantly. This model may take some time to create the data consistently and henceforth begin doing the requests again. Nevertheless, in this model, it is assured that all the reactions will always have consistent data.
22. Explain Geo-Targeting in CloudFront?
It allows the design of customized content on the basis of the geographic location of the user. This authorizes you to aid the content which is more suitable to a user.
23. Tell me the benefits of AWS IAM?
AWS IAM allows an administrator to give granular level access to various groups and users. Various users and user groups may require other levels of access to various resources designed. With IAM, you can make roles with detailed access levels and allocate the roles to the users.
It also permits you to deliver access to the resources to users and applications without making the IAM Roles, which is called Federated Access.
24. Explain Security Group?
Security Groups are a kind of rule-based Virtual Firewall using which you can manage access to your instances. You can make rules specifying the Port Numbers, protocols, or
Networks from which you like to permit access or deny access.
25. Explain On-Demand Instances and Spot Instances?
When AWS builds EC2 instances, some of the computing capacity and processing power blocks are left unused. AWS frees these blocks as Spot Instances. They will execute whenever power is available. These are a useful alternative if you are adjustable about the execution of your application and also can be interrupted.
Whereas On-Demand Instances can be made when required. The costs of these instances are fixed. These instances are always available unless you remove them.
26. What do you understand about Connection Draining?
It is a feature that allows your servers to do the present requests which are going to be updated or removed.
If Connection Draining is allowed, the Load Balancer will enable an outgoing instance to meet the present requests for a particular period but will not transmit any new request to it. Without the use of connection draining, an outgoing instance will instantly go off and the requests pending on that instance will error out.
27. Explain Stateful and a Stateless Firewall?
A Stateful Firewall maintains the state of the defined rules. It needs you to specify only inbound rules. On the basis of inbound rules specified, it automatically permits the outbound traffic to stream. Whereas, a Stateless Firewall needs you to specify rules for outbound and inbound traffic.
28. Explain Power User Access in AWS?
An Administrator User will be the same as the owner of the AWS Resources. He can build, delete, change or view the resources and also give authorizations to different users for the AWS Resources.
A Power User Access gives Administrator Access without the ability to control the permissions and users. In other words, a user with Power User Access can build, delete, change or see the resources, but he cannot give authorizations to different users.
29. Explain EBS Volume and Instance Store Volume?
An Instance Store Volume is momentary storage that is utilized to keep the temporary data needed by an instance to function. As the instance is turned off, the Instance Store Volume is removed and the data gets eliminated. Whereas EBS Volume describes a constant storage disk. The data kept in an EBS Volume will be present even if the instance is turned off.
30. Explain Recovery Point Objective and Recovery Time Objective in AWS?
Recovery Point Objective: It is an adequate amount of time since the previous data restore point. It decrypts to the permissible amount of data loss which is kept in between the interruption of service and the last recovery point
Recovery Time Objective: It is the highest sufficient delay between the restoration of service and interruption of service. This decrypts to an adequate time window when the service can be unavailable.
31. How to upload a file of more than 100 Megabytes in Amazon S3?
You can use the Multipart Upload Utility from AWS which uploads the larger files in numerous parts that can be uploaded independently. It also allows you to reduce upload time by using parallel uploading. After the uploading is completed, these different parts are combined into one object or file to make the original file which was divided into different parts.
32. Are you able to modify the Private IP Address of an EC2 instance?
No, we are not able to modify a Private IP Address of an EC2 instance. When an EC2 instance is projected, a private IP Address is allocated to that instance during boot time. This private IP Address is connected to the instance for its complete lifetime and can’t be changed.
33. Tell me the use of lifecycle hooks is Autoscaling?
They are utilized for Auto-scaling to put an extra wait time to a scale-out or a scale-in event.
34. Explain the policies that need to be set for your user’s passwords?
Set a minimum length.
Ask the users to add lowercase letters, uppercase letters, numbers, and non-alphanumeric characters.
Enforce automated password expiration, refuse the reuse of old passwords
35. Explain auto-scaling?
It is a function that permits you to condition and launches new instances whenever there is a need. It enables you to automatically decrease or increase resource power concerning the demand.
36. Explain geo-targeting in CloudFront?
It is a concept where firms can display personalized content to their users on the basis of their geographic location without modifying the URL. This enables you to build customized content for the users or audience of a precise geographical area, keeping their requirements at the forefront.
37. Make the list of some of the AWS services that are not region-specific?
AWS services that are not region-specific are:
Route 53
IAM
CloudFront
Web Application Firewall
38. Name some of the tools other than the console to log into the cloud environment?
These tools that help you to log into the AWS resources are:
Putty
AWS CLI for Windows
AWS CLI for Linux
AWS SDK
AWS CLI for Windows CMD
Eclipse
39. Name some types of AMI designs?
Some common types of AMI Designs are:
Just Enough Baked AMI (JeOS AMI)
Fully Baked AMI
Hybrid AMI
40. Tell me the steps to recover/login to an EC2 instance for whose key is lost?
Follow the steps given below:
Affirm that the EC2Config service is operating
Separate the root volume for the instance
Connect the volume to a momentary instance
Change the configuration file
Restart the original instance
41. How do you survey Amazon VPC?
CloudWatch and CloudWatch logs
VPC Flow Logs
42. Tell me the elements of an AWS CloudFormation template?
YAML or JSON formatted text files are AWS CloudFormation templates that are constituted of five essential elements:
Output values
Template parameters
Resources
File format version
Data tables
43. Name various types of load balancers in AWS?
Application Load Balancer
Network Load Balancer
Classic Load Balancer
44. Name different AWS IAM categories that you can handle?
Control the security credentials of the users
Develop and manage IAM users
Develop and manage policies to give access to AWS services and resources
Develop and control IAM groups
45. Can AWS Config calculate data across different AWS accounts?
Yes, you just need to set AWS Config to provide configuration updates from various accounts to one S3 bucket, once the suitable IAM policies are implied to the S3 bucket.
