SAP-C02 Exam Prep
SAP-C02 Exam Glossary - 231 Terms
Search the terminology pack for AWS Certified Solutions Architect - Professional. Use these definitions with the study guide and practice questions.
#
- 7Rs
- The seven common migration strategies used to evaluate application migration options.
A
- ACM
- An AWS service for certificate management; the text references it as ACM.
- all-at-once
- A deployment strategy that releases a new version to all targets at the same time.
- Amazon API Gateway
- An AWS service for creating and managing APIs, listed as in-scope for the exam.
- Amazon AppStream 2.0
- An AWS end-user computing service listed as in-scope for the exam.
- Amazon Aurora
- An AWS relational database service listed as in-scope for the exam.
- Amazon Aurora Serverless
- A serverless deployment option for Amazon Aurora that automatically adjusts capacity.
- Amazon CloudFront
- AWS content delivery network that delivers content through edge locations to improve performance and reduce latency.
- Amazon CloudWatch
- An AWS monitoring service listed as in-scope for the exam.
- Amazon CloudWatch Logs
- A CloudWatch logging service listed as in-scope for the exam.
- Amazon CodeGuru
- An AWS developer tool service listed as in-scope for the exam.
- Amazon Cognito
- An AWS service for user sign-up, sign-in, and access control, listed as in-scope for the exam.
- Amazon Comprehend
- An AWS machine learning service listed as in-scope for the exam.
- Amazon Detective
- An AWS service for investigating security findings, listed as in-scope for the exam.
- Amazon DocumentDB (with MongoDB compatibility)
- An AWS document database service that is compatible with MongoDB and is listed as in-scope for the exam.
- Amazon DynamoDB
- A fully managed NoSQL database service on AWS designed for low-latency, scalable workloads.
- Amazon EBS
- Amazon Elastic Block Store, persistent block storage for use with Amazon EC2 instances.
- Amazon EC2
- AWS virtual server service used to run compute workloads in the cloud.
- Amazon ECR
- Amazon Elastic Container Registry, a managed container image registry for storing and retrieving container images.
- Amazon ECS
- Amazon Elastic Container Service, an AWS container orchestration service for running containers.
- Amazon ECS Anywhere
- An AWS service variant of Amazon ECS listed as in-scope for the exam.
- Amazon EFS
- Amazon Elastic File System, a managed elastic file storage service for AWS workloads.
- Amazon EKS
- Amazon Elastic Kubernetes Service, a managed Kubernetes service on AWS.
- Amazon EKS Anywhere
- An AWS service variant of Amazon EKS listed as in-scope for the exam.
- Amazon EKS Distro
- An AWS Kubernetes distribution listed as in-scope for the exam.
- Amazon Elastic Block Store (Amazon EBS)
- An AWS block storage service for use with EC2, listed as in-scope for the exam.
- Amazon Elastic Container Service (Amazon ECS)
- An AWS container orchestration service listed as in-scope for the exam.
- Amazon Elastic File System (Amazon EFS)
- An AWS managed file storage service listed as in-scope for the exam.
- Amazon Elastic Kubernetes Service (Amazon EKS)
- An AWS managed Kubernetes service listed as in-scope for the exam.
- Amazon Elastic Transcoder
- An AWS media transcoding service listed as in-scope for the exam.
- Amazon ElastiCache
- An AWS managed caching service used in reliability and replication strategies.
- Amazon EventBridge
- An event bus service that routes events between applications and AWS services.
- Amazon Fraud Detector
- An AWS machine learning service listed as in-scope for the exam.
- Amazon FSx
- A family of AWS managed file storage services for specific workloads.
- Amazon GameLift
- An AWS game tech service listed as out of scope for the exam.
- Amazon GuardDuty
- An AWS managed security service used for threat detection and security monitoring.
- Amazon Inspector
- An AWS security service listed among tools used for security, identity, and compliance.
- Amazon Kendra
- An AWS machine learning service listed as in-scope for the exam.
- Amazon Keyspaces (for Apache Cassandra)
- An AWS managed database service compatible with Apache Cassandra and listed as in-scope for the exam.
- Amazon Kinesis Video Streams
- An AWS service for streaming and processing video, listed as in-scope for the exam.
- Amazon Lex
- An AWS machine learning service listed as in-scope for the exam.
- Amazon Macie
- An AWS data security and privacy service listed as in-scope for the exam.
- Amazon Managed Grafana
- An AWS managed observability service based on Grafana, listed as in-scope for the exam.
- Amazon Managed Service for Prometheus
- An AWS managed Prometheus monitoring service listed as in-scope for the exam.
- Amazon Neptune
- An AWS graph database service listed as in-scope for the exam.
- Amazon OpenSearch Service
- A managed service for search, log analytics, and open-source search engine workloads.
- Amazon Personalize
- An AWS machine learning service listed as in-scope for the exam.
- Amazon Pinpoint
- An AWS customer engagement service listed as in-scope for the exam.
- Amazon Polly
- An AWS machine learning service listed as in-scope for the exam.
- Amazon RDS
- An AWS managed relational database service referenced in the text as Amazon RDS.
- Amazon Redshift
- An AWS data warehousing service listed as in-scope for the exam.
- Amazon Rekognition
- An AWS machine learning service listed as in-scope for the exam.
- Amazon Relational Database Service
- An AWS managed relational database service referenced in the text as Amazon RDS.
- Amazon Relational Database Service (Amazon RDS)
- An AWS managed relational database service listed as in-scope for the exam.
- Amazon Route 53
- An AWS domain name system and traffic routing service listed as in-scope for the exam.
- Amazon Route 53 Resolver
- An AWS DNS component used in hybrid DNS concepts and on-premises DNS integration.
- Amazon S3
- An AWS object storage service referenced in the text as Amazon S3.
- Amazon S3 Glacier
- An AWS archival storage service listed as in-scope for the exam.
- Amazon SageMaker
- The former name of Amazon SageMaker AI, an AWS machine learning service listed as in-scope for the exam.
- Amazon SageMaker AI
- The current name for Amazon SageMaker, an AWS machine learning service listed as in-scope for the exam.
- Amazon Simple Notification Service
- An AWS application integration service referenced in the text as Amazon SNS.
- Amazon Simple Queue Service
- An AWS application integration service referenced in the text as Amazon SQS.
- Amazon Simple Storage Service
- An AWS object storage service referenced in the text as Amazon S3.
- Amazon Simple Storage Service (Amazon S3)
- An AWS object storage service listed as in-scope for the exam.
- Amazon SNS
- An AWS application integration service referenced in the text as Amazon SNS.
- Amazon SQS
- An AWS application integration service referenced in the text as Amazon SQS.
- Amazon Textract
- An AWS machine learning service listed as in-scope for the exam.
- Amazon Timestream
- An AWS time series database service listed as in-scope for the exam.
- Amazon Transcribe
- An AWS machine learning service listed as in-scope for the exam.
- Amazon Translate
- An AWS machine learning service listed as in-scope for the exam.
- Amazon Virtual Private Cloud
- An AWS networking service used to create isolated virtual networks in AWS; the text references it as Amazon VPC.
- Amazon Virtual Private Cloud (Amazon VPC)
- An AWS service for provisioning logically isolated virtual networks, listed as in-scope for the exam.
- Amazon VPC
- An AWS networking service used to create isolated virtual networks in AWS; the text references it as Amazon VPC.
- Amazon WorkSpaces
- An AWS end-user computing service listed as in-scope for the exam.
- auto scaling
- A scaling capability that automatically adjusts capacity based on demand or events.
- AWS Amplify
- An AWS frontend web and mobile service listed as in-scope for the exam.
- AWS Application Discovery Service
- An AWS service that helps discover on-premises applications and infrastructure for migration planning.
- AWS Application Migration Service
- An AWS service that helps migrate applications to AWS with minimal changes.
- AWS Artifact
- An AWS service for accessing compliance reports and agreements, listed as in-scope for the exam.
- AWS Audit Manager
- An AWS service for assessing compliance and auditing controls, listed as in-scope for the exam.
- AWS Backup
- An AWS service for centralizing and automating backups, listed as in-scope for the exam.
- AWS Budgets
- An AWS tool used to set and monitor cost budgets.
- AWS Certificate Manager
- An AWS service for certificate management; the text references it as ACM.
- AWS Certificate Manager (ACM)
- An AWS service for provisioning and managing SSL/TLS certificates, listed as in-scope for the exam.
- AWS Certified Solutions Architect - Professional (SAP-C02)
- An AWS certification exam for individuals in a solutions architect role that validates advanced technical skills and experience in designing optimized AWS solutions based on the AWS Well-Architected Framework.
- AWS CLI
- The acronym for AWS Command Line Interface, a command-line tool for interacting with AWS services.
- AWS CloudFormation
- An AWS infrastructure-as-code service used to define and provision resources.
- AWS CloudHSM
- An AWS service that provides hardware security modules for cryptographic key storage and operations, listed as in-scope for the exam.
- AWS CloudTrail
- An AWS security and auditing service used for centralized security event notifications and auditing.
- AWS CodeArtifact
- An AWS developer tool service listed as in-scope for the exam.
- AWS CodeBuild
- An AWS developer tool service listed as in-scope for the exam.
- AWS CodeDeploy
- An AWS developer tool service listed as in-scope for the exam.
- AWS CodePipeline
- An AWS developer tool service listed as in-scope for the exam.
- AWS Command Line Interface (AWS CLI)
- A command-line tool for interacting with AWS services, listed as in-scope for the exam.
- AWS Compute Optimizer
- An AWS rightsizing visibility tool used to help optimize resource selection.
- AWS Config
- An AWS service for tracking resource configurations and compliance, listed as in-scope for the exam.
- AWS Config rules
- Rules in AWS Config used to evaluate whether AWS resources comply with desired configuration settings.
- AWS Control Tower
- An AWS service used to set up and govern a multi-account AWS environment.
- AWS Cost and Usage Reports
- Detailed AWS billing reports that provide granular cost and usage data.
- AWS Cost Explorer
- An AWS tool used to monitor and analyze AWS costs and usage.
- AWS Database Migration Service
- An AWS service used to migrate databases to AWS with minimal downtime.
- AWS Database Migration Service (AWS DMS)
- An AWS service for migrating databases to AWS, listed as in-scope for the exam.
- AWS DataSync
- An AWS data transfer service used to move data between on-premises storage and AWS or between AWS storage services.
- AWS Device Farm
- An AWS service for testing mobile apps on real devices, listed as in-scope for the exam.
- AWS Direct Connect
- An AWS networking service used for connectivity options between AWS and on-premises or co-location environments.
- AWS Directory Service
- An AWS service that provides managed directory capabilities for identity and access integration.
- AWS DMS
- Abbreviation for AWS Database Migration Service, used to migrate databases to AWS with minimal downtime.
- AWS Elastic Beanstalk
- An AWS application deployment service that provisions and manages infrastructure for web applications.
- AWS Elastic Disaster Recovery
- An AWS disaster recovery service mentioned as an option for disaster recovery strategies.
- AWS Fargate
- A serverless compute engine for containers that lets you run containers without managing servers.
- AWS Firewall Manager
- An AWS service for centrally configuring and managing firewall rules and policies, listed as in-scope for the exam.
- AWS Global Accelerator
- An AWS global networking service that improves availability and performance by routing traffic through the AWS global network.
- AWS Global Infrastructure
- AWS’s global network of Regions and Availability Zones used as a foundation for designing network, reliability, and disaster recovery architectures.
- AWS Health Dashboard
- An AWS service that provides health information about AWS services and resources, listed as in-scope for the exam.
- AWS IAM Identity Center
- An AWS identity service mentioned alongside IAM for access management.
- AWS Identity and Access Management
- AWS’s service for managing identities and permissions.
- AWS Identity and Access Management (IAM)
- An AWS service for managing users, roles, and permissions, listed as in-scope for the exam.
- AWS Identity and Access Management Access Analyzer
- An AWS security tool used to analyze access and support cross-account access management.
- AWS IoT 1-Click
- An AWS IoT service listed as in-scope for the exam.
- AWS IoT Core
- An AWS Internet of Things service listed as in-scope for the exam.
- AWS IoT Device Defender
- An AWS IoT security service listed as in-scope for the exam.
- AWS IoT Device Management
- An AWS IoT service for managing connected devices, listed as in-scope for the exam.
- AWS IoT Events
- An AWS IoT service listed as in-scope for the exam.
- AWS IoT Greengrass
- An AWS IoT edge runtime/service listed as in-scope for the exam.
- AWS IoT SiteWise
- An AWS IoT service listed as in-scope for the exam.
- AWS IoT Things Graph
- An AWS IoT service listed as in-scope for the exam.
- AWS Key Management Service
- An AWS service for encryption key management; the text references it as AWS KMS.
- AWS Key Management Service (AWS KMS)
- An AWS service for creating and controlling encryption keys, listed as in-scope for the exam.
- AWS KMS
- An AWS service for encryption key management; the text references it as AWS KMS.
- AWS Lambda
- A serverless compute service that runs code in response to events without provisioning servers.
- AWS License Manager
- An AWS service for managing software licenses, listed as in-scope for the exam.
- AWS Management Console
- The web-based interface for managing AWS resources, listed as in-scope for the exam.
- AWS Migration Hub
- An AWS migration assessment and tracking service used to monitor and coordinate migration progress.
- AWS Network Firewall
- An AWS managed network firewall service listed as in-scope for the exam.
- AWS Organizations
- An AWS service for managing multiple accounts under a single organization.
- AWS Pricing Calculator
- An AWS tool used to estimate AWS costs.
- AWS PrivateLink
- An AWS service for private connectivity to AWS services and VPC endpoints, listed as in-scope for the exam.
- AWS Proton
- An AWS service for deploying and managing container and serverless applications, listed as in-scope for the exam.
- AWS RAM
- The acronym for AWS Resource Access Manager, an AWS service for sharing resources across AWS accounts and organizational units.
- AWS Resource Access Manager (AWS RAM)
- An AWS service for sharing resources across AWS accounts and organizational units, listed as in-scope for the exam.
- AWS Schema Conversion Tool
- An AWS tool used to convert database schemas between database engines during migration.
- AWS Schema Conversion Tool (AWS SCT)
- An AWS tool for converting database schemas for migration, listed as in-scope for the exam.
- AWS SCT
- Abbreviation for AWS Schema Conversion Tool, used for database schema conversion during migration.
- AWS Secrets Manager
- An AWS service for securely storing and managing secrets and credentials.
- AWS Security Hub
- An AWS security service used for centralized security findings and event visibility.
- AWS Security Token Service (AWS STS)
- An AWS service for issuing temporary security credentials, listed as in-scope for the exam.
- AWS Service Catalog
- An AWS service for cataloging approved IT services and products, listed as in-scope for the exam.
- AWS Shield
- An AWS managed security service used for attack mitigation.
- AWS Site-to-Site VPN
- An AWS service that creates an encrypted VPN connection between an on-premises network and AWS.
- AWS Snow Family
- A family of AWS physical devices used for large-scale data transfer and edge computing in migration scenarios.
- AWS Step Functions
- An AWS service used for application integration and workflow orchestration.
- AWS Storage Gateway
- An AWS hybrid storage service listed as in-scope for the exam.
- AWS STS
- The acronym for AWS Security Token Service, an AWS service for issuing temporary security credentials.
- AWS Systems Manager
- An AWS configuration management service mentioned as a tool for deployment and management.
- AWS Transfer Family
- An AWS managed service for transferring files into and out of AWS using common file transfer protocols.
- AWS Transit Gateway
- An AWS service for connecting VPCs and on-premises networks through a central hub, listed as in-scope for the exam.
- AWS Trusted Advisor
- An AWS tool used for cost and usage monitoring and optimization guidance.
- AWS VPN
- An AWS networking service used for connectivity options between AWS and on-premises or co-location environments.
- AWS WAF
- An AWS managed security service used for web application attack mitigation.
- AWS Well-Architected Framework
- The framework used by the exam as the basis for evaluating how AWS solutions are designed and improved.
- AWS Well-Architected Tool
- An AWS tool for reviewing workloads against AWS best practices, listed as in-scope for the exam.
- AWS X-Ray
- An AWS service for tracing and analyzing application behavior, listed as in-scope for the exam.
B
- blue/green
- A deployment strategy that maintains two environments and switches traffic from the old version to the new version after validation.
- buffering
- A performance pattern that temporarily holds data to smooth out differences in processing speed or traffic bursts.
C
- caching
- A performance pattern that stores frequently accessed data in a faster location so it can be retrieved more quickly.
- CI/CD
- Continuous integration and continuous delivery.
- CI/CD pipelines
- Automated continuous integration and continuous delivery/deployment workflows used to build, test, and release software changes.
- continuous delivery
- A software delivery practice in which changes are prepared for reliable release through automated pipelines.
- Continuous integration
- A software delivery practice in which code changes are integrated frequently.
- Cost Explorer
- An AWS cost and usage monitoring tool used to analyze spending and usage patterns.
D
- data replication
- The process of copying data between systems or locations to improve availability, durability, or performance.
- data transfer costs
- Charges incurred for moving data between AWS services, regions, or the internet.
- Direct Connect
- An AWS networking service that provides a dedicated network connection between on-premises environments and AWS.
- DNS integration
- The integration of DNS between AWS and on-premises environments.
E
- edge computing services
- Services that process data closer to end users or devices to reduce latency and improve responsiveness.
- Elastic Load Balancing (ELB)
- An AWS service that distributes incoming traffic across multiple targets, listed as in-scope for the exam.
- ElastiCache
- An AWS managed in-memory caching service used to improve application performance.
- ELB
- The acronym for Elastic Load Balancing, an AWS service that distributes incoming traffic across multiple targets.
G
- geolocation routing
- A Route 53 routing policy that routes traffic based on the geographic location of the requester.
H
- high availability
- A design goal in which a system remains accessible and operational despite component failures.
I
- IaC
- Infrastructure as code.
- IAM
- AWS’s service for managing identities and permissions.
- IAM Identity Center
- An AWS identity service used to manage workforce access to AWS accounts and applications.
- Infrastructure as code
- A deployment approach in which infrastructure is defined and managed as code; the text gives AWS CloudFormation as an example.
- instance families
- Groups of AWS compute instance types organized by hardware characteristics and intended use cases.
- instance fleets
- A collection of EC2 instance types used together to provide flexible capacity for a workload.
- IP addressing
- The assignment and management of IP addresses within a network design.
K
- KPIs
- Key performance indicators, measurable metrics used to evaluate how well a solution meets business objectives.
L
- latency-based routing
- A Route 53 routing policy that routes traffic based on the lowest latency.
- load balancing
- A scaling and reliability technique that distributes traffic across multiple targets or instances.
M
- managed services
- AWS services that reduce the need to manage infrastructure provisioning and patching directly.
- microservices
- An architectural style that structures an application as a set of small, independently deployable services.
- multi-AZ
- An architecture that spans multiple Availability Zones for higher availability.
- multi-Region
- An architecture that spans multiple AWS Regions for resilience and availability.
- multi-site
- A disaster recovery strategy that uses multiple sites to support recovery and continuity.
N
- network ACLs
- Network access control lists used to specify inbound and outbound network flows.
O
- Organizations
- AWS Organizations, a governance service for centrally managing multiple AWS accounts.
P
- performance monitoring technologies
- Tools and technologies used to observe, measure, and analyze system performance.
- pilot light
- A disaster recovery strategy in which a minimal core environment is kept running and expanded during recovery.
- placement groups
- A feature that influences how instances are placed within AWS infrastructure to support performance or availability goals.
- principle of least privilege
- A security principle requiring that users and services be granted only the minimum permissions needed to perform their tasks.
- purpose-built databases
- Databases designed for a specific workload or access pattern rather than as a general-purpose relational database.
R
- replicas
- Copies of data or systems used to improve performance, availability, or scalability.
- Reserved Instances
- An AWS purchasing option used for cost optimization.
- resiliency
- The ability of a system to withstand and recover from failures or disruptions.
- rightsizing
- The practice of selecting infrastructure resources that match workload requirements closely enough to avoid overprovisioning or underprovisioning.
- rollback mechanisms
- Methods used to revert a deployment or change to a previous stable state.
- rolling
- A deployment strategy that updates targets gradually in batches rather than all at once.
- Route 53
- AWS DNS web service used for routing traffic; the text specifically mentions latency-based routing, geolocation routing, and simple routing as routing policies supported by Route 53.
- RPO
- Recovery point objective; the maximum acceptable amount of data loss measured in time before a disruption.
- RTO
- Recovery time objective; the maximum acceptable time to restore service after a disruption.
S
- S3 Transfer Acceleration
- An Amazon S3 feature that speeds up transfers to and from S3 using AWS edge locations.
- Savings Plans
- An AWS purchasing option used for cost optimization.
- security groups
- Network security controls used to specify inbound and outbound traffic rules.
- serverless design principles
- Design principles for building applications that rely on managed services and event-driven execution rather than server management.
- service quotas
- Limits placed on AWS service usage.
- simple routing
- A Route 53 routing policy that routes traffic using a single record or endpoint selection.
- single points of failure
- A component whose failure can cause an entire system or service to fail.
- SLAs
- Service level agreements that define expected service performance or availability commitments.
- Spot Instances
- An AWS purchasing option used for cost optimization.
- Step Functions
- AWS Step Functions, a service for coordinating distributed application workflows using state machines.
- Storage Lens
- An Amazon S3 visibility tool used for storage analysis and rightsizing.
- storage tiering
- A storage cost optimization approach that places data in different storage classes or tiers based on access frequency or value.
- subnetting
- The practice of dividing a network into smaller subnetworks for segmentation and connectivity design.
- Systems Manager
- An AWS configuration management service used for automation and operational management tasks.
T
- tagging
- The practice of assigning metadata tags to AWS resources for organization, cost allocation, and reporting.
- total cost of ownership
- A financial measure of the full cost of acquiring, operating, and maintaining a solution over time.
- transitive routing
- A networking concept in which traffic can be routed through an intermediate network path to reach multiple connected networks.
- Trusted Advisor
- An AWS service that provides recommendations, including cost-related guidance, to help optimize an AWS environment.
V
- Volume Gateway
- An AWS Storage Gateway option that provides cloud-backed storage volumes for hybrid environments.
W
- warm standby
- A disaster recovery strategy in which a scaled-down but functional environment is kept ready to take over during a failure.
About These Definitions
These definitions are loaded from the shared release pack. Use them with the study guide and practice questions to connect vocabulary to exam scenarios.