AWS Certified Solutions Architect - Associate (SAA-C03) glossary
Terms selected for AWS Certified Solutions Architect - Associate (SAA-C03) based on common objective language and practice focus.
Network ACL
A Network Access Control List (ACL) is an optional layer of security for your VPC that acts as a firewall for controlling traffic in and out of one or more subnets.
Read full term ->Security Group
Stateful virtual firewall attached to AWS resources, controlling allowed inbound and outbound traffic.
Read full term ->Amazon DynamoDB
Amazon DynamoDB is a fully managed NoSQL database service that provides fast and predictable performance with seamless scalability.
Read full term ->AWS Cost Explorer
AWS Cost Explorer is a tool that enables you to view and analyze your costs and usage. You can view data up to the last 12 months and forecast future costs.
Read full term ->AWS Organizations
AWS Organizations allows you to centrally manage and govern your environment as you grow and scale your AWS resources. It helps in setting up and managing multiple AWS accounts.
Read full term ->Reserved Instances
Reserved Instances provide a significant discount compared to On-Demand pricing, in exchange for a commitment to use AWS services for a one- or three-year term.
Read full term ->Amazon S3 Storage Classes
Tiered storage options balancing cost, access frequency, and retrieval characteristics.
Read full term ->Application Load Balancer (ALB)
Layer 7 load balancer for HTTP/HTTPS traffic with host/path-based routing.
Read full term ->Auto Scaling Group (ASG)
Service that maintains desired instance count and scales compute capacity based on policies and health checks.
Read full term ->AWS Backup
AWS Backup is a fully managed backup service that makes it easy to centralize and automate the backup of data across AWS services.
Read full term ->AWS Global Accelerator
AWS Global Accelerator is a service that improves the availability and performance of your applications with global users by routing traffic through the AWS global network.
Read full term ->AWS Shield
AWS Shield is a managed Distributed Denial of Service (DDoS) protection service that safeguards applications running on AWS. It provides always-on detection and automatic inline mitigations.
Read full term ->Amazon CloudFront
Content delivery network that caches content at edge locations to reduce latency and offload origins.
Read full term ->AWS CloudTrail
Service that records API activity and account events for governance, compliance, and security analysis.
Read full term ->Amazon CloudWatch
Monitoring service for metrics, logs, alarms, and dashboards across AWS workloads.
Read full term ->Elastic Block Store (EBS)
Amazon Elastic Block Store (EBS) provides persistent block storage volumes for use with Amazon EC2 instances. EBS volumes offer consistent and low-latency performance.
Read full term ->Elastic File System (EFS)
Amazon Elastic File System (EFS) provides scalable file storage for use with AWS Cloud services and on-premises resources. It is designed to grow and shrink automatically as you add and remove files.
Read full term ->Elastic Load Balancer (ELB)
Elastic Load Balancing automatically distributes incoming application traffic across multiple targets, such as EC2 instances, containers, and IP addresses.
Read full term ->Amazon ElastiCache
Amazon ElastiCache is a web service that simplifies deploying, operating, and scaling an in-memory cache in the cloud. It supports Redis and Memcached.
Read full term ->Amazon EventBridge
Serverless event bus that routes events from AWS services and applications to targets.
Read full term ->Identity and Access Management (IAM)
AWS Identity and Access Management (IAM) is a web service that helps you securely control access to AWS resources. It allows you to manage users, groups, and permissions.
Read full term ->Internet Gateway (IGW)
VPC component that enables communication between public subnets and the internet.
Read full term ->AWS Key Management Service (KMS)
Managed service for creating and controlling cryptographic keys used for data encryption.
Read full term ->NAT Gateway
Managed service allowing instances in private subnets to initiate outbound internet access without accepting inbound internet traffic.
Read full term ->RDS Multi-AZ
High-availability deployment where RDS synchronously replicates to a standby in another AZ for failover.
Read full term ->Read Replica
Asynchronous copy of a database used to offload read traffic and improve scalability.
Read full term ->Route Table
Set of rules that determine where network traffic in a VPC is directed.
Read full term ->Route 53 Failover Routing
DNS routing policy that directs traffic to a healthy primary endpoint and fails over to secondary when needed.
Read full term ->RTO and RPO
Recovery objectives where RTO is acceptable downtime and RPO is acceptable data loss window after disruption.
Read full term ->Spot Instances
Spot Instances allow you to take advantage of unused EC2 capacity in the AWS cloud at a reduced cost compared to On-Demand pricing.
Read full term ->Amazon SQS vs Amazon SNS
SQS provides durable message queues for pull-based consumers, while SNS provides pub/sub fan-out notifications.
Read full term ->Subnet
A segmented IP range inside a VPC, typically scoped to a single Availability Zone.
Read full term ->Amazon VPC
Logically isolated virtual network in AWS where you define IP ranges, subnets, route tables, and security controls.
Read full term ->