AWS
#21 Which AWS service or feature allows a user to establish a dedicated network connection between a company's on-premises data center and the AWS Cloud? A. AWS Direct Connect B. VPC peering C. AWS VPN D. Amazon Route 53
A
#31 Which AWS service or feature is used to send both text and email messages from distributed applications? A. Amazon Simple Notification Service (Amazon SNS) B. Amazon Simple Email Service (Amazon SES) C. Amazon CloudWatch alerts D. Amazon Simple Queue Service (Amazon SQS)
A
#35 A company needs to block SQL injection attacks.Which AWS service or feature can meet this requirement? A. AWS WAF B. AWS Shield C. Network ACLs D. Security groups
A
#41 Which service enables customers to audit API calls in their AWS accounts? A. AWS CloudTrail B. AWS Trusted Advisor C. Amazon Inspector D. AWS X-Ray
A
Q101: Which of the following are pre-packaged SCP and AWS Config governance rules for security, operations, and compliance that customers can select and apply enterprise-wide or to specific groups of accounts? a) An organizational unit (OU) b) AWS Manager account c) AWS Control Tower.
A
Q109: Which of the following service is most useful when a Disaster Recovery method is triggered in AWS. a) Amazon Route 53 b) Amazon SNS c) Amazon SQS d) Amazon Inspector
A
Q114:A startup is developing a web application where users can find articles based on various criteria such as keywords, authors, or topics. They seek an AWS service that can handle this function efficiently. Which service should they use? a) Amazon OpenSearch Service b) Amazon SQS c) AWS Lambda d) Amazon EC2
A
#29 Which tasks are customer responsibilities, according to the AWS shared responsibility model? (Choose two.) A. Configure the AWS provided security group firewall. B. Classify company assets in the AWS Cloud. C. Determine which Availability Zones to use for Amazon S3 buckets. D. Patch or upgrade Amazon DynamoDB. E. Select Amazon EC2 instances to run AWS Lambda on.
AB
#34 What does the concept of agility mean in AWS Cloud computing? (Choose two.) A. The speed at which AWS resources are implemented B. The speed at which AWS creates new AWS Regions C. The ability to experiment quickly D. The elimination of wasted capacity E. The low cost of entry into cloud computing
AC
Q102: Choose design principles for operational excellence in the cloud. (Choose Two) a) Perform operations as code b) Enable traceability c) Make frequent, small and reversible changes d) Test recovery procedures e) Go global in minutes
AC
Q103: Which of the following are design principles according to Performance efficiency? (Choose two) a) Use serverless architectures b) Adopt a consumption model c) Exeriment more often d) Measure overall efficiency e) Stop spending money on undifferentiated heavy lifting
AC
Q43: Disaster recovery strategies available to you within AWS can be broadly categorized into which four approaches? a) Backup & Restore b) Backup & Standby c) Pilot Light d) Cold Standby e) Warm Standby f) Multi Active g) Multi site active/active
ACEG
Q47: According to AWS Shared responsibility model what comes under "Responsibility for security 'OF' the cloud"? a) Compute b) IAM c) Storage d) Customer Data e) Database f) Operating system g) Networing
ACEG
Q87: Which central governance and management capabilities does AWS Organizations enable? a) Maintain a secure environment with policies and management of AWS security service b) Locally manage policies across multiple AWS accounts c) Audit your EC2 for compliance d) Audit your environment for compliance e) View and manage costs with consolidated billing
ADE
#9 Which AWS services or tools can identify rightsizing opportunities for Amazon EC2 instances? (Choose two.) A. AWS Cost Explorer B. AWS Billing Conductor C. Amazon CodeGuru D. Amazon SageMaker E. AWS Compute Optimizer
AE
Q105: Which of the following are design principles according to Reliability? (Choose two) a) Automaticall recover from failure b) Adopt a consumption model c) Establish sustainability goals d) Measure overall efficiency e) Manage change in aptomation
AE https://docs.aws.amazon.com/wellarchitected/latest/reliability-pillar/design-principles.html
#17 A developer wants to deploy an application quickly on AWS without manually creating the required resources.Which AWS service will meet these requirements? A. Amazon EC2 B. AWS Elastic Beanstalk C. AWS CodeBuild D. Amazon Personalize Reveal Solution
B
#18 A company is storing sensitive customer data in an Amazon S3 bucket. The company wants to protect the data from accidental deletion or overwriting.Which S3 feature should the company use to meet these requirements? A. S3 Lifecycle rules B. S3 Versioning C. S3 bucket policies D. S3 server-side encryption
B
#3 A company has a centralized group of users with large file storage requirements that have exceeded the space available on premises. The company wants to extend its file storage capabilities for this group while retaining the performance benefit of sharing content locally.What is the MOST operationally efficient AWS solution for this scenario? A. Create an Amazon S3 bucket for each user. Mount each bucket by using an S3 file system mounting utility. B. Configure and deploy an AWS Storage Gateway file gateway. Connect each user's workstation to the file gateway. C. Move each user's working environment to Amazon WorkSpaces. Set up an Amazon WorkDocs account for each user. D. Deploy an Amazon EC2 instance and attach an Amazon Elastic Block Store (Amazon EBS) Provisioned IOPS volume. Share the EBS volume directly with the users.
B
#32 A user needs programmatic access to AWS resources through the AWS CLI or the AWS API.Which option will provide the user with the appropriate access? A. Amazon Inspector B. Access keys C. SSH public keys D. AWS Key Management Service (AWS KMS) keys
B
Q108: Who is responsible for configuration management under the AWS shared responsibility model? a) It is solel the responsibilit of the customer. b) It is solel the responsibilit of AWS. c) It is shared between AWS and the customer. d) It is not part of the AWS shared responsibility model.
B
Q25: Which AWS service would simplify the migration of a database to AWS? a) AWS Stora e Gateway b) AWS database migration service (AWS DMS) c) Amazon EC2 d) Amazon AppStream 2.0
B
Q37: Which component of the AWS global infrastructure is made up of one or more discrete data centers that have redundant power, networking, and connectivity? a) AWS Region b) Availability Zone c) Edge Location d) AWS Outposts
B
Q45: Which approach, you replicate your data from one Region to another and provision a copy of your core workload infrastructure. a) Backup & Restore b) Pilot Light c) Warm Standby d) Multi site active/active
B
Q52: According to the AWS shared responsibility model, who is responsible for managing IAM user access and secret keys? a) IAM access and secret keys are static so there is no need to rotate them. b) The customeris responsible for rotating key c) AWS will rotate the keys whenever required. d) The AWS Support team will rotate keys when requested by the customer.
B
Q62: Which AWS account can be used to create an Organization? a) Admin Account b) Management Account c) Member Account d) AWS Organization
B
Q76: Which duty is the AWS responsibility while administering AWS Lambda functions under the AWS shared responsibility model? a) Creatin versions of Lambda functions b) Maintainin server ando eratin systems c) Scaling Lambda resources according to demand d) Updating the Lambda runtime environment
B
#1 A company plans to use an Amazon Snowball Edge device to transfer files to the AWS Cloud.Which activities related to a Snowball Edge device are available to the company at no cost? A. Use of the Snowball Edge appliance for a 10-day period B. The transfer of data out of Amazon S3 and to the Snowball Edge appliance C. The transfer of data from the Snowball Edge appliance into Amazon S3 D. Daily use of the Snowball Edge appliance after 10 days
C
#12 A company wants to manage deployed IT services and govern its infrastructure as code (IaC) templates.Which AWS service will meet this requirement? A. AWS Resource Explorer B. AWS Service Catalog C. AWS Organizations D. AWS Systems Manager
C
#4 According to security best practices, how should an Amazon EC2 instance be given access to an Amazon S3 bucket? A. Hard code an IAM user's secret key and access key directly in the application, and upload the file. B. Store the IAM user's secret key and access key in a text file on the EC2 instance, read the keys, then upload the file. C. Have the EC2 instance assume a role to obtain the privileges to upload the file. D. Modify the S3 bucket policy so that any service can upload to it at any time.
C
#5 Which option is a customer responsibility when using Amazon DynamoDB under the AWS Shared Responsibility Model? A. Physical security of DynamoDB B. Patching of DynamoDB C. Access to DynamoDB tables D. Encryption of data at rest in DynamoDB Reveal Solution
C
#6 Which option is a perspective that includes foundational capabilities of the AWS Cloud Adoption Framework (AWS CAF)? A. Sustainability B. Performance efficiency C. Governance D. Reliability
C
#7 A company is running and managing its own Docker environment on Amazon EC2 instances. The company wants an alternative to help manage cluster size, scheduling, and environment maintenance.Which AWS service meets these requirements? A. AWS Lambda B. Amazon RDS C. AWS Fargate D. Amazon Athena
C
#8 A company wants to run a NoSQL database on Amazon EC2 instances.Which task is the responsibility of AWS in this scenario? A. Update the guest operating system of the EC2 instances. B. Maintain high availability at the database layer. C. Patch the physical infrastructure that hosts the EC2 instances. D. Configure the security group firewall.
C
Q106: A media company wants to find and subscribe to third-party data sources to enrich their existing datasets with new insights. Which AWS service would be the best fit for this requirement? a) AWS Glue b) AWS Data Pipeline c) AWS Data Exchange d) AWS Redshift
C
Q60: Which AWS service offers the easiest way to set up and govern a new, secure, multi-account AWS environment? a) AWS CloudFront b) AWS Guardrail c) AWS Control Tower d) AWS IAM
C
Q78: According to the AWS shared responsibility model, which of the following is the customer's obligation? a) Patching underlying infrastructure b) Physical security c) Patching Amazon EC2 instances d) Patching network infrastructure
C
Q89: Which Amazon S3 storage class has the lowest cost? a) S3 Inteligent-Tiering b) S3 Standard c) S3 Glacier Deep Archive
C
Q99: Which services have their control plane hosted in a single AWS Region, while their data plane is globally distributed? a) Zonal services b) Regional services c) Global services
C
Which are the 3 pricing fundamentals of the AWS Cloud? a) Compute, Storage, and Data transfer in the AWS Cloud b) Compute, Networking ,and Data transferout of the AWS Cloud c) Compute, Storage,and Data transferout of the AWS Cloud d) Storage, Functions, and Data transfer in the AWS Cloud
C
Q104: Which of the following are design principles according to Sustainability? (Choose two) a) Use serverless architectures b) Adopt a consumption model c) Establish sustaingbility goals d) Measure overall efficiency e) Use managed services
CE https://docs.aws.amazon.com/wellarchitected/latest/sustainability-pillar/sustainability-pillar.html?ref=wellarchitected-wp
#16 An e-learning platform needs to run an application for 2 months each year. The application will be deployed on Amazon EC2 instances. Any application downtime during those 2 months must be avoided.Which EC2 purchasing option will meet these requirements MOST cost-effectively? A. Reserved Instances B. Dedicated Hosts C. Spot Instances D. On-Demand Instances Reveal Solution
D
#25 A company is running a monolithic on-premises application that does not scale and is difficult to maintain. The company has a plan to migrate the application to AWS and divide the application into microservices.Which best practice of the AWS Well-Architected Framework is the company following with this plan? A. Integrate functional testing as part of AWS deployment. B. Use automation to deploy changes. C. Deploy the application to multiple locations. D. Implement loosely coupled dependencies.
D
#28 Which AWS service or resource provides answers to the most frequently asked security-related questions that AWS receives from its users? A. AWS Artifact B. Amazon Connect C. AWS Chatbot D. AWS Knowledge Cente
D
Q121:Which of the following is a critical design concept for architecting cloud applications? a) Use the largest instance possible b) Provision capacity for peak load c) Use the Scrum development process d) Implement elasticity
D
Q24: A company is planning to run a global marketing application in the AWS Cloud. The application will feature videos that can be viewed by users. The company must ensure that all users can view these videos with low latency. Which AWS service should the company use to meet this requirement? a) AWS Auto Scaling b) Amazon Kinesis Video Streams c) Elastic Load Balancing d) Amazon CloudFront
D Amazon CloudFront is a content delivery Network that speeds up the delivery of static and dynamic web content such as HTML CSS...