Interview Questions

 IAm Interview Questions part-02: 1)what is IAM ? 2).what are policies in IAM? 3).Two types of access for IAM user? 4).How many IAm keys can a user have? 5).How will you revoke the access keys? 6).How a root AWS user is different from in IAM user? 7).what is access advisor? 8).what are method available for craete policy? import/visual/json/ policy generator 9).what is permission boundary? Inline policy? (How to set the permission boundary): go to user - then go to permission -then here only we can find the permission boundary inline policy : we can create the policy or roles for a particular user .. go to user -> go to permission -> from right only we can see the inline policy options  10).what is policy version?max version allowed? policy or user give / 5 version. 11).what will you do if a server in your environment gets  compromised and you have your aws keys on that? 12).what is roles vs what is policy? can i change the IAm role on a running ec2 instances? 13).what is min/max

 Linux inetrview questions: 1).How can I revoke file permission on a dirextory or a file for one user? so if you want to revoke the file permiison, so we can execute the command like as the, chmod o-x filename  so in this way we can revoke file permission or a directory permissions from a one user. which means the acl is set on this file . so that's why patrticular user doesn't access the file  if you are listing the file , we can see the +1 options which means , the acl is enable on this file  2). any files are ends with +1 which means we are enable on the acl on this particular file or directory all userss having the access for the files and directory but ram users are doesn't . because the acl or enable on this file 3).how to setfacl ,getfacl amd sticky bit in linux os ? we can execute the command like as the, setfacl -m u:ram:rwx filename  in this way we can set it to the acl on this particuat file  4)how to check if acl is etting on this pativulat file1 we can execute

 Aws Interview Questions: 1).How to troubleshoot  the aws ec2 kernel panic issue in cloud environment? How to troubleshoot the aws kernel panic issues in aws cloud? 1).Take the snapshot for panic instances 2).create new instances in same avilibity zone 3).detach the root volume from panic instance and attach  to the rescue instances  4).mount the panic instances and restore the kernel version 5).stop the recue instances and detach the root volume and  reattach the rescue instances  so, In this way we can troubleshoot the aws kernel  panic issue. run the following commands , to verify the root volume is attached to the rescue instances. lsblk = its list out the block devices craete the mount point and mount to the disk  next we need to mount the /dev, /run,/proc, /sys sudo mount -o bind /dev /mount/dev sudo mount -o bind /sys /mount/sys sudo mount -o bind /proc /mount/proc sudo mount -o bind /ys /mount/sys run the chroot command on the mounted/mnt file system chroot /mnt sudo grub2-mkco

 AWS Interview Questions: 1). What is EC2? 2).what is snowball in aws ? snowball is a service. using this snowball service we can tarnsfer the terrabyte of amount inside and outside into  the aws environment first we need to craete the job next we need to connect to the snowball copy the data to snowball your data moved into s3 bucket 3).what is cloudwatch? 4).what is elastic Transcoder? Elastic Transcoder is an AWS Service Tool that helps you in changing a video’s format and resolution to support various devices like tablets, smartphones, and laptops of different resolutions. 5).what is vpc? 6). DNS and Load Balancer Services come under which type of Cloud Service? This both services are comes under by IAAS service 7).What are the Storage Classes available in Amazon S3? 8).Explain what t2 instances are into AWS? T2 Instances are designed to provide moderate baseline performance and the capability to burst to higher performance as required by the workload 9).What are key-pairs in AWS?

 1).How to setup the vpc,public ,private subnet,nat ,internet gateway and route table into aws? 2).Avilibity zones in aws? 3).what is the subnets ? 4).What is the cidr into aws? Iam Access Analayzer in aws? ------------------------------------------------------------------- Go to Iam section  here we can finout the access analyzer  here we can findout the credtetial report  click on and download this report . using this reort  we can get what are useras are craeted and which cedentials they are assigned  to them . when users is created and when is paddwords are craeted and genearted ,modified date and time.. access adviosr: which is used to list out last accessed data . then we cna findout the lass accesed data and remove their unused permisisons here that's what we can called it as the access advisor  next we can see the option called unused access: which is used to nalayze the which iam account is not access for long term  go to unused access: create option called it as the craet

 Aws Interview quesions: aws organizations scp vs aws IAM? SCP: service control policies: using the scp policies we can specify the maxmium permissiond for accounts in organzations using the scp we can restirct the aws services , resoucres  Indiual api access for user and roles in each memeber account can access. so you can configure the scp in two ways : deny list: you can specify what services and actions can be denied  allow list: you can soecify what services and actions can be allowd by default scp's supports for the deny lists. This policy attaches to an orgnazational unit or a aws account This Iam policy is only applied into iam identities(user, group and roles).iam policy can't restirct the aws account root user. configure the scp in iam: service control policies: go to this otion here we can find the deny list or allow list now am goin gto deny the us region using the deny list scp's policy . after that us region access are cut it down here. 2).Aws Identity center?