{"id":147,"date":"2022-01-27T08:49:47","date_gmt":"2022-01-27T08:49:47","guid":{"rendered":"https:\/\/192.168.1.3\/wordpress\/?p=147"},"modified":"2025-02-24T12:19:58","modified_gmt":"2025-02-24T12:19:58","slug":"aws-solution-architect-associate-saac02-review-material-rds","status":"publish","type":"post","link":"https:\/\/mylinuxsite.com\/wordpress\/?p=147","title":{"rendered":"AWS Solution Architect Associate (SAAC02) Review Material – RDS"},"content":{"rendered":"\n
\n
\n
\"\"<\/figure>\n\n\n\n

<\/p>\n<\/div>\n<\/div>\n\n\n\n\n\n\n\n

\"\"<\/figure>\n\n\n\n
\"\"<\/figure>\n\n\n\n
\"\"<\/figure>\n\n\n\n
\"\"<\/figure>\n\n\n\n

General<\/h4>\n\n\n\n
  • A managed Relational Data Service (RDS)<\/li>
  • Supports the following databases:
    • MySQL<\/li>
    • MariaDB<\/li>
    • PostgreSQL<\/li>
    • SQL Server<\/li>
    • Oracle<\/li>
    • Aurora<\/li>
    • Aurora Serverless<\/em><\/li><\/ul><\/li>
    • The following does NOT<\/strong> apply to Aurora Serverless:
      • All has to provision a host instance to run the database. However, user will have no access to the instance.<\/li>
      • The host will have a corresponding ENI so the database has to be placed in an subnet, AZ and VPC. <\/li>
      • When provisioning the database, users has to:
        • select the instance class\/size<\/li>
        • select the storage type\/size, except for Aurora<\/strong> because it does not require to provision a storage. <\/li><\/ul><\/li><\/ul>
          • Storage can now be autoscaled (except for Aurora)<\/li>
          • Backup is enabled by default. Backup retention can be from 0 – 35 days. Default to 7 days.<\/li>
          • Automated backups are limited to a single AWS Region while manual snapshots and Read Replicas are supported across multiple Regions<\/li>
          • Encryption is enabled by default.<\/li>
          • Can enable enhanced monitoring – metrics in real time for the operating system (OS) that the DB instance runs on<\/li>
          • Can enable deletion protection.<\/li><\/ul><\/li><\/ul>\n\n\n\n

            Read Replicas<\/h4>\n\n\n\n
            • Read Replicas are copies of the Master. Replication is asynchronous.<\/strong><\/li>
            • Support read connections. However, clients must be aware it is only eventually consistent<\/strong>. <\/li>
            • Aurora Serverless does not have Read Replicas.<\/li>
            • Aurora’s maximum number of replicas is 15; the rest is 5.<\/li>
            • Can be placed on the same AZ, across AZ or across regions<\/strong>.<\/li>
            • There’s a fee when replicating across regions.<\/li>
            • Can become a Master but promotion needs to be done manually.<\/strong> So if the Master fails, Replicas do not become a Master automatically.<\/li>
            • Used for scaling.<\/li><\/ul>\n\n\n\n

              Multi-AZ<\/h4>\n\n\n\n
              • Creates copies of the Master database synchronously<\/strong> to a Standby database.<\/li>
              • Non-Aurora:<\/em> Only one is master. The copies do not support read or write connections.<\/li>
              • Aurora<\/em>: Supports multi-master<\/li>
              • Automatically promoted to Master when the Master fails. <\/li>
              • Used for high availability.<\/li>
              • The number of copies will depend on the number of subnets in the Subnet Group<\/strong>.<\/li><\/ul>\n\n\n\n

                In an Amazon RDS Multi-AZ deployment, Amazon RDS automatically creates a primary database (DB) instance and synchronously replicates the data to an instance in a different AZ. When it detects a failure, Amazon RDS automatically fails over to a standby instance without manual intervention.<\/p>\n\n\n\n

                Multi-AZ DB instance<\/strong> – a primary DB instance with one standby (no read access) DB instance<\/strong><\/p>\n\n\n\n

                \"\"\/<\/figure>\n\n\n\n

                Multi-AZ DB cluster<\/strong> – three (3) DB instances in a different Availability Zone. It has one primary DB instance and two readable standby DB instances. <\/strong><\/p>\n\n\n\n

                \"\"\/<\/figure>\n\n\n\n

                Comparison Table<\/h3>\n\n\n\n

                Amazon RDS Single-AZ or Amazon RDS Multi-AZ with one standby or Amazon RDS Multi-AZ with two readable standbys<\/h4>\n\n\n\n
                Feature<\/strong><\/td>Single-AZ<\/strong><\/td>Multi-AZ with one standby<\/strong><\/td>Multi-AZ with two readable standbys<\/strong><\/td><\/tr>
                Available engines<\/strong><\/td>Amazon RDS for PostgreSQLAmazon RDS for MySQLAmazon RDS for MariaDBAmazon RDS for SQL ServerAmazon RDS for OracleAmazon RDS for Db2<\/td>Amazon RDS for PostgreSQLAmazon RDS for MySQLAmazon RDS for MariaDBAmazon RDS for SQL ServerAmazon RDS for OracleAmazon RDS for Db2<\/td>Amazon RDS for PostgreSQLAmazon RDS for MySQL<\/td><\/tr>
                Additional Read
                capacity<\/strong><\/td>                		None: the read capacity is limited to your primary<\/td>None: Your standby DB instance is only a passive failover target<\/strong> for high availability<\/td>Two standby DB instances act as failover targets and serve read traffic<\/strong>. Read capacity is determined by the overhead of write transactions from the primary\u00b7        <\/td><\/tr>
                Lower latency (higher throughput) for transaction commits<\/strong><\/td> <\/td> <\/td>Up to 2x faster transaction commits compared to Amazon RDS Multi-AZ with one standby<\/td><\/tr>
                Automatic failover duration<\/strong><\/td>Not available: a user, a user-initiated point-in-time-restore operation will be required.This operation can take several hours to completeAny data updates that occurred after the latest restorable time (typically within the last 5 minutes) will not be available<\/td>A new primary is available to serve your new workload in as quickly as 60 secondsFailover time is independent of write throughput<\/td>A new primary is available to serve your new workload in typically under 35 secondsFailover time depends on length of replica lag<\/td><\/tr>
                Minor version upgrades downtime<\/strong><\/td>When using Automatic Minor Version Upgrades, minor version upgrade downtime occurs during the Amazon RDS 30-minute maintenance window<\/td>When using Automatic Minor Version Upgrades, minor version upgrade downtime occurs during the Amazon RDS 30-minute maintenance window<\/td>Typically under 1 second when customers add an open source or Amazon RDS Proxy to their deploymentTypically under 35 seconds with Multi-AZ with two readable standbys alone<\/td><\/tr>
                Higher resiliency to AZ outage<\/strong><\/td>None: in the event of an AZ failure, your risk data loss and hours of failover time<\/td>In the event of an AZ failure, your workload will automatically failover to the up-to-date standby<\/strong><\/td>In the event of a failure, one of the two remaining standbys will takeover and serve the workload (writes) from the primary<\/span><\/strong><\/td><\/tr>
                Lower jitter for transaction commits<\/strong><\/td>No optimization for jitter<\/td>Access to Dedicated Log Volumes<\/td>Uses local storage for transactional logs to reduce jitter<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n

                Security<\/h4>\n\n\n\n
                • At Rest Encryption:
                  • Must be set upon database creation.<\/li>
                  • If the Master is not encrypted, the replicas and their snapshots are also not encrypted.<\/li>
                  • Can’t restore the unencrypted backup to an encrypted database. <\/li>
                  • But you can encrypt an unencrypted snapshot and use that to restore to an encrypted database.<\/li>
                  • Use KMS to store encryption keys.<\/li>
                  • If you copy a snapshot from one region to another you must use that region’s KMS key.<\/li><\/ul><\/li>
                  • In-Flight Encryption
                    • Use SSL\/TLS to encrypt connections to databases. However, each database has its own process of implementing an SSL\/TLS connection.<\/li>
                    • PostgreSQL and MySQL can enforce SSL\/TLS connection.<\/li><\/ul><\/li>
                    • IAM-based:
                      • Log in to the database using a token, not a username\/password. <\/li>
                      • Only available in PostgreSQL, MySQL and MariaDB<\/strong><\/li><\/ul>
                        • To use this feature, the resource with the given role must call an API to get a temporary token (which expires in 15 mins).<\/li>
                        • Then it will use that token to log in to the database.<\/li><\/ul><\/li><\/ul>\n\n\n\n

                          Aurora<\/h4>\n\n\n\n
                          • MySQL and PostgreSQL compatible. It means any clients using these databases’ APIs will work on Aurora.<\/li>
                          • 5x faster than MySQL and 3x faster than PostgreSQL<\/li>
                          • Storage does not have to be provisioned. It will scale automatically<\/strong> by 10GB increment up to 128TB.<\/li>
                          • Faster failover.<\/li>
                          • Can have 15 replicas. Can set up autoscaling on Read Replicas.<\/li>
                          • Read Replicas can be set up across regions<\/strong>.<\/li>
                          • Global Setup
                            • 1 Primary region<\/li>
                            • Up to 5 secondary regions. Each region can have 16 Read Replicas.<\/li>
                            • Any region can be promoted to Primary when disaster strikes in the Primary region.<\/li><\/ul><\/li>
                            • 6 copies of data across AZ.
                              • Only requires 4 copies to write.<\/li>
                              • Only requires 3 copies to read.<\/li><\/ul><\/li>
                              • Endpoints:
                                • Writer endpoints for writing.<\/li>
                                • Reader endpoints for reading. Distributes reads to all replicas.<\/li>
                                • Custom endpoints to point to selected Read Replicas.<\/li><\/ul><\/li>
                                • The standard setup is to have only one writer node. But can be set up for multi-master i.e. multiple writer nodes<\/li>
                                • Autoscaling<\/strong>:
                                  • Add more replicas<\/li><\/ul><\/li><\/ul>\n\n\n\n

                                    Aurora Serverless<\/h4>\n\n\n\n
                                    • Instances are automatically created and auto-scaled. No need to provision instances and storage.<\/li>
                                    • Pay per second<\/li>
                                    • Good for the unpredictable and intermittent workload.<\/li><\/ul>\n\n\n\n

                                      <\/p>\n","protected":false},"excerpt":{"rendered":"","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"site-sidebar-layout":"default","site-content-layout":"","ast-site-content-layout":"default","site-content-style":"default","site-sidebar-style":"default","ast-global-header-display":"","ast-banner-title-visibility":"","ast-main-header-display":"","ast-hfb-above-header-display":"","ast-hfb-below-header-display":"","ast-hfb-mobile-header-display":"","site-post-title":"","ast-breadcrumbs-content":"","ast-featured-img":"","footer-sml-layout":"","ast-disable-related-posts":"","theme-transparent-header-meta":"","adv-header-id-meta":"","stick-header-meta":"","header-above-stick-meta":"","header-main-stick-meta":"","header-below-stick-meta":"","astra-migrate-meta-layouts":"default","ast-page-background-enabled":"default","ast-page-background-meta":{"desktop":{"background-color":"var(--ast-global-color-4)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"ast-content-background-meta":{"desktop":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"footnotes":""},"categories":[11],"tags":[],"class_list":["post-147","post","type-post","status-publish","format-standard","hentry","category-aws-review-notes"],"_links":{"self":[{"href":"https:\/\/mylinuxsite.com\/wordpress\/index.php?rest_route=\/wp\/v2\/posts\/147","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/mylinuxsite.com\/wordpress\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/mylinuxsite.com\/wordpress\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/mylinuxsite.com\/wordpress\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/mylinuxsite.com\/wordpress\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=147"}],"version-history":[{"count":37,"href":"https:\/\/mylinuxsite.com\/wordpress\/index.php?rest_route=\/wp\/v2\/posts\/147\/revisions"}],"predecessor-version":[{"id":1500,"href":"https:\/\/mylinuxsite.com\/wordpress\/index.php?rest_route=\/wp\/v2\/posts\/147\/revisions\/1500"}],"wp:attachment":[{"href":"https:\/\/mylinuxsite.com\/wordpress\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=147"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/mylinuxsite.com\/wordpress\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=147"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/mylinuxsite.com\/wordpress\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=147"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}