Udemy-AWS Cloud Practitioner (CLF-C01)-Practice Exam
What is the main difference between an Availability Zone and an edge location? a) An Availability Zone is an isolated location within an AWS region. An edge location delivers cached content to the closest location to reduce latency for users. b) An Availability Zone contains an AWS region. An edge location delivers cached content to the closest location to reduce latency for users. c) An Availability Zone delivers cached content to the closest location to reduce latency for users. An edge location is an isolated location within an AWS region. d) An Availability Zone is an isolated location within an AWS region. An edge location is an AWS-specific resource in the region.
a) An Availability Zone is an isolated location within an AWS region. An edge location delivers cached content to the closest location to reduce latency for users. In AWS, each region is a separate geographic area and has multiple locations (Availability Zones). An edge location delivers cached content quicker to your users.
Which disaster recovery option below has the highest downtime? a) Backup and Restore b) Warm standby c) Pilot light d) Multi-site
a) Backup and Restore Since most environments back up data to tape and then send the tapes off-site, it can take a longer time to restore your systems.
What AWS service provides you infrastructure as code? a) CloudFormation b) OpsWorks c) Elastic Beanstalk d) VPC
a) CloudFormation AWS CloudFormation is infrastructure as code and provides a common language for you to describe and provision all the infrastructure resources in your cloud environment.
One of the main requirements given by your director is to host an environment that reduces inter-dependencies so failures do not impact other components of the environment. Which concept is correct? a) Decoupling b) Separation c) Integration d) Tight coupling
a) Decoupling In microservice architectures, applications are built and deployed as highly decoupled, focussed services. A decoupled application architecture allows each component to perform its tasks independently - it allows components to remain completely autonomous and unaware of each other.
Which statement below best describes fault tolerance? a) Deploying resources across multiple Availability Zones b) Deploying resources across multiple edge locations c) Deploying resources across multiple AWS accounts d) Deploying resources across multiple VPCs
a) Deploying resources across multiple Availability Zones Deploying resources across multiple Availability Zones increases your fault tolerance because each Availability Zone is a set of one or more data centers, so if one Availability Zone goes down, there would be other Availability Zones still up and running — so your application would also be up and running.
What can be attached to an EC2 instance to store data? a) EBS Volume b) Storage Gateway c) Glacier d) EBS Snapshot
a) ESB Volume An Amazon EBS volume is a durable, block-level storage device you can attach to a single EC2 instance. You can use EBS volumes as primary storage for data that requires frequent updates, such as the system drive for an instance or storage for a database application.
What best describes the purpose of having many Availability Zones in each AWS region? a) Multiple Availability Zones allow for duplicate and redundant compute, and data backups. b) Multiple Availability Zones allow for cheaper prices due to competition between them. c) Multiple Availability Zones allow for fault tolerance but not high availability. d) None of these apply
a) Multiple Availability Zones allow for duplicate and redundant compute, and data backups. Availability Zones work together within a region to provide users with the ability to easily setup and configure redundant architecture and backup solutions https://linuxacademy.com/cp/courses/lesson/course/1499/lesson/6/module/154
What service would be most useful in a disaster recovery situation? a) Route53 b) AWS EC2 c) AWS GuardDuty d) AWS S3 transfer acceleration
a) Route53 When you have more than one resource performing the same function—for example, more than one HTTP server or mail server—you can configure Amazon Route 53 to check the health of your resources and respond to DNS queries using only the healthy resources. For example, suppose your website, example.com, is hosted on six servers, two each in three data centers around the world. You can configure Route 53 to check the health of those servers and to respond to DNS queries for example.com using only the servers that are currently healthy. You can also use Route 53 to switch DNS addresses.
If you want to use decoupled resources, which of the following AWS service can assist you? a) SQS b) S3 c) EC2 d) EBS Volume
a) SQS Amazon Simple Queue Service (SQS) is a fully managed message queuing service that enables you to decouple and scale microservices, distributed systems, and serverless applications.
Which of the following statements is most accurate regarding scalability? a) Scalable systems divert traffic to the instances with the least load. b) Scalable systems divert traffic to the instances with the most capacity. c) Scalable systems divert traffic based on priority. d) Scalable systems divert traffic to multiple regions.
a) Scalable systems divert traffic to the instances with the least load. When one of the instances has a smaller load, it will divert traffic to the least-loaded instance to give the other instances a chance to lessen their load.
What does S3 stand for? a) Simple Storage Service b) Service for Simple Storage c) Simplified Storage Service d) Simple Store Service
a) Simple Storage Service https://linuxacademy.com/cp/courses/lesson/course/1549/lesson/1/module/154
If you want to easily share a file with a friend, family or coworker, what AWS solution should you use? a) Upload the object to S3 and share it via its object's S3 public object URL. b) Create an EC2 instance and give provide login credentials so others can access the file. c) Mail them a flash drive with the file on it. d) None of these apply
a) Upload the object to S3 and share it via its object's S3 public object URL. You can easily share objects uploaded into S3 by provided others with the object's URL. https://linuxacademy.com/cp/courses/lesson/course/1549/lesson/2/module/154
Which service can be used to provision a logically isolated section in the AWS Cloud? a) AWS Elastic Beanstalk b) AWS VPC c) AWS CloudWatch d) AWS CloudFormation
b) AWS VPC VPCs lets you provision a logically isolated section of the AWS cloud where you can launch AWS resources.
Which of the following services can be used as a web application firewall in your AWS environment? a) AWS Firewall b) AWS WAF c) AWS VPC d) AWS GuardDuty
b) AWS WAF AWS WAF is a web application firewall that lets you monitor the HTTP and HTTPS requests that are forwarded to CloudFront and the Application Load Balancer. It also helps control access to your content.
What AWS managed database provides processing power that is up to five times faster than a traditional MySQL database? a) MariaDB b) Aurora c) DynamoDB d) RDS
b) Aurora Aurora is a fully managed MySQL and PostgreSQL relational database that delivers up to 5x the throughput of MySQL.
What helps you aggregate your logs from your EC2 instance? a) SNS b) CloudWatch Logs c) CloudTrail d) S3
b) CloudWatch Logs You can use Amazon CloudWatch Logs to monitor, store, and access your log files from Amazon Elastic Compute Cloud (Amazon EC2) instances, AWS CloudTrail, Route 53, and other sources.
What AWS service allows for distribution of incoming application traffic across multiple EC2 instances? a) EC2 b) ELB c) Inspector d) Autoscaling
b) ELB ELB distributes incoming traffic across multiple EC2 instances in multiple AZs.
What does AWS use to distribute content with low latency to users across the globe? a) Availability Zones b) Edge locations c) Regions d) VPC Peering
b) Edge locations An edge location is where end-users access services located at AWS. They are located in most of the major cities around the world and are specifically used by CloudFront (CDN) to distribute content to end-users to reduce latency. It'is like a front-end for the services we access, which are located in the AWS cloud.
You are moving your company's application to the AWS platform. Which principle below would be the best choice to maintain your application if some components fail? a) Disaster Recovery Design b) Fault-tolerant design c) Elastic design d) Scalable design
b) Fault-tolerant design Fault-tolerant designs ensure the entire system works as needed even in the event of failures or issues.
What option below allows AWS RDS to failover to a secondary database in case of the primary database's failure? a) Standby b) Multi-AZ c) Read Replica d) Failover
b) Multi-AZ Amazon RDS Multi-AZ deployments provide enhanced availability and durability for database (DB) instances, making them a natural fit for production database workloads.
Which security feature is associated with a subnet in your VPC to protect incoming traffic requests? a) GuardDuty b) NACL c) Internet Gateway d) Subnet Group
b) NACL A network access control list (NACL) is an optional layer of security for your VPC that acts as a firewall for controlling traffic in and out of one or more subnets.
If you take a snapshot of an EC2 instance and use the snapshot to create a new EC2 instance, what is that called? a) An EC2 Snapshot b) An EBS Volume c) An AMI d) An EBS Snapshot
c) An AMI A snapshot of an EC2 instance and used to create a new EC2 instance is called an AMI.
What service helps in governance, compliance, and risk auditing? a) Config b) CloudWatch c) CloudTrail d) CloudFront
c) CloudTrail AWS CloudTrail is a service that enables governance, compliance, operational auditing, and risk auditing of your AWS account.
You have a dedicated web servers and database that remains largely idle but sometimes has huge spikes in activity. What can you architect to improve your cost-efficiency? a) Configure RDS Multi-AZ for performance optimization. b) Migrate the web servers to EC2 spot instances. c) Configure serverless architecture leveraging Lambda. d) Use an Elastic Load Balancer between your server and database.
c) Configure serverless architecture leveraging Lambda. Using Lambda will remove the need to run dedicated web servers for the organization, and there will be no charge when services are not running.
What option below will increase the fault tolerance of your application in AWS? a) Deploy resources to multiple subnets b) Deploying resources across multiple edge locations c) Deploy resources across multiple availability zones d) Deploy resources to multiple AWS accounts
c) Deploy resources across multiple availability zones By deploying resources across multiple availability zones, you are designing with a failure in mind. So if one AZ goes down, the other AZ would still be up and running making your application more fault tolerant.
What is AWS's preferred NoSQL database? a) RDS b) MySQL c) DynamoDB d) Oracle
c) DynamoDB Amazon DynamoDB is a key-value and document database that delivers single-digit millisecond performance at any scale. It's a fully managed, multi-region, multi-master database with built-in security, backup and restore, and in-memory caching for internet-scale applications. DynamoDB can handle more than 10 trillion requests per day and can support peaks of more than 20 million requests per second. Many of the world's fastest-growing businesses such as Lyft, Airbnb, and Redfin as well as enterprises such as Samsung, Toyota, and Capital One depend on the scale and performance of DynamoDB to sup
Which option below allows failover to a second database in case the primary database fails? a) AWS Standby b) AWS pilot light c) Multi-AZ Deployment d) AWS warm standby
c) Multi-AZ Deployment AWS provides enhanced availability and durability for your database instances by using multi-AZ deployments. RDS automatically synchronously replicates the data to the standby instance in a different Availability Zone.
What services has built-in DDoS mitigation and/or protection? a) SNS b) EC2 c) None of these apply d) RDS
c) None of these apply AWS services with built-in DDoS mitigation/protection include: 1) Route 53 2) CloudFront 3) WAF (web application firewall) 4) Elastic Load Balancing 5) VPCs and Security Groups https://linuxacademy.com/cp/courses/lesson/course/1548/lesson/5/module/154
You need to send notifications based off events for your application hosted on an EC2 instance. What service sends notifications? a) CloudWatch b) SQS c) SNS d) SES
c) SNS SNS enables applications, end users, and devices to instantly send and receive notifications.
How much data can you store in S3? a) You can store up to 1 petabyte of data. b) Each account is given 50 gigabytes of storage capacity and no more can be used. c) Storage capacity is virtually unlimited. d) You can store up to 1 petabyte of data, then you are required to pay an additional fee.
c) Storage capacity is virtually unlimited. Although there is theoretically a capacity limit, as an S3 user, there is no limited on the amount of data you can store in S3. https://linuxacademy.com/cp/courses/lesson/course/1549/lesson/1/module/154
You are logged into a new AWS account your company has created for you, but keep getting an error when trying to access the EC2 Dashboard. What is the most likely reason for you not being able to access the EC2 Dashboard? a) There is not an IAM access policy attached to your IAM role. b) You do not have multi-factor authentication (MFA) enabled. c) There is not an IAM access policy attached to your IAM user. d) You are not part of an IAM group
c) There is not an IAM access policy attached to your IAM user. When an IAM user is created, that user has _no_ access to any AWS services. To gain access to an AWS service, an IAM user must have permission granted to them. This is done by attaching an IAM access policy to their IAM user (or through an attached group). However, just being in a group does not grant access. A proper policy would need to be attached to that group.
Which of the following statements correctly describes the concept of Auto Scaling? a) To distribute traffic to multiple regions b) To increase the size of the EC2 instance based on demand c) To scale out resources based on demand d) To distribute traffic to multiple EC2 instances
c) To scale out resources based on demand Auto Scaling monitors applications and automatically adjusts capacity to maintain steady, predictable performance with the lowest cost possible.
What service provides a complete audit trail of all AWS services within an account? a) VPC Flow Logs b) S2 access logs c) Elastic Load Balancer Logs d) CloudTrail Logs
d) CloudTrail Logs A trail enables CloudTrail to deliver log files to an Amazon S3 bucket. By default, when you create a trail in the console, the trail applies to all AWS Regions. The trail logs events from all Regions in the AWS partition and delivers the log files to the Amazon S3 bucket that you specify.
You manage and maintain a web server and a cluster of databases that host the results of scientific experiments for new requests for funding and proposals. Most of the time, these resources are idle but become extremely busy when funding is awarded. What is the best choice for cost-efficient architecture? a) Configure an Elastic Load Balancer between your web server and databases. b) Configure your web server to use an EC2 spot instance. c) Configure the database cluster to be an RDS cluster with multiple Availability Zones. d) Configure a serverless architecture using AWS Lambda functions.
d) Configure a serverless architecture using AWS Lambda functions. AWS Lambda automatically scales out to meet demand for the database cluster, provides a platform to run code without the need of a dedicated web server, and you only pay for the compute time you use.
You have a critical application that must be able to be optimized for high disaster recovery. Ideally, which deployment mechanism would you choose? a) Deployment to multiple data centers b) Deployment to multiple facilities c) Deployment to multiple AZs d) Deployment to multiple regions
d) Deployment to multiple regions Regions represent different geographic locations and are best for disaster recovery.
Your company needs to host a database in their AWS environment but needs to have control over patching. Which is the best choice? a) Oracle database b) AWS RDS Database c) AWS DynamoDB database d) EC2 Instance
d) EC2 Instance You can use an EC2 instance to host a self-managed database in AWS, and it allows you to control the patching and underlying infrastructure.
You are away from the office and need to run mission-critical tasks to your AWS environment. What secure option below is your best choice? a) Use a third-party remote desktop to access your AWS environment. b) Wait until you are back in the office to access your AWS Management Console. c) Share your AWS credentials with a coworker, so they can update the environment for you. d) Install and run the AWS CLI on your laptop, and use a shell environment to access your AWS environment.
d) Install and run the AWS CLI on your laptop, and use a shell environment to access your AWS environment. Using the command line to access and interact with your AWS environment is equivalent to using the AWS Management Console.
What is the main benefit of decoupling an application? a) Creating a tightly coupled integrated application b) Enabling data synchronization across all layers c) The ability to execute bootstrapping actions across all servers d) Reducing interdependencies and reducing the blast radius, so failures do not affect other components of your application
d) Reducing interdependencies and reducing the blast radius, so failures do not affect other components of your application Decoupling ensures the different components of your application can be managed/maintained separately.
Disaster recovery strategies should be ideally based on launching resources in a separate: a) VPC b) EC2 c) Security group d) Region
d) Region Regions are placed all around the world to provide cloud-based disaster recovery services that enable rapid recovery of your infrastructure and data.
In the AWS Shared Responsibility Model, what does AWS perform on your behalf for EBS volumes? a) Replication of the EBS volume across multiple regions b) Replication of the EBS volume across multiple EC2 instances c) Replication of the EBS volume across multiple Availability Zones d) Replication of the EBS volume across the same Availability Zone
d) Replication of the EBS volume across the same Availability Zone
Which of the following statements regarding Auto Scaling is most accurate? a) Distributes traffic to multiple EC2 or RDS instances b) Distributes traffic across multiple regions c) Increases the size of the EC2 instance based on demand d) Scales out resources based on demand
d) Scales out resources based on demand Auto Scaling automatically adjusts the capacity to maintain performance across multiple resources.
Which of the following is not a disaster recovery deployment technique? a) Pilot light b) Multisite c) Warm standby d) Single site
d) Single site this is not a real solution
What AWS service helps you estimate the cost of using AWS vs. an on-premises data center? a) AWS Billing and Cost Tool b) Consolidated Billing c) Cost Explorer d) TCO Calculator
d) TCO Calculator The TCO (total cost of ownership) calculator helps you estimate the cost of using AWS vs. an on-premises data center. AWS Billing and Cost Tools
When using on-demand instances, which statement is false? a) You are charged by the hour or second (minimum of 60 seconds) depending on the instance type. b) You pay for as much as you use. c) You pay no upfront costs. d) You must pay the termination fees if you terminate the instance.
d) You must pay the termination fees if you terminate the instance. You do _not_ pay termination fees.
