AWS Certified Cloud Practitioner
What is a convertible reserved instance?
A convertible reserved instance enables you to exchange one or more Convertible Reserved Instances for another Convertible Reserved Instance with a different configuration, including instance family, operating system, and tenancy.
Which AWS service or feature can assist with protecting a website that is hosted outside of AWS?
AWS Web Application Firewall (WAF)
Which of the following AWS services are compute services? Select two.
AWS Batch, AWS Elastic Beanstalk
Which AWS service can a team use to deploy infrastructure on AWS using familiar programming languages?
AWS Cloud Development Kit (AWS CDK)
Which AWS services can a company use to gather information about activity in their AWS account? (Select TWO.)
AWS CloudTrail; Amazon CloudWatch
Which AWS service provides a managed software version control system?
AWS CodeCommit
A Cloud Practitioner needs a tool that can assist with viewing and managing AWS costs and usage over time. Which tool should the Cloud Practitioner use?
AWS Cost Explorer
What is AWS Global Accelerator?
AWS Global Accelerator enables access to your application by leveraging the same Edge Locations as CloudFront and routing connections across the AWS global network.
Which AWS services will assist with lowering latency and improving transfer speeds for the global users? (Select TWO.)
AWS Global Accelerator; AWS Transit Gateway
Which AWS service can a company use to discover and protect sensitive data that is stored in Amazon S3 buckets?
AWS Macie
Which of the following can an AWS customer use to launch a new ElastiCache cluster? (Select TWO.)
AWS Management Console, AWS CloudFormation
A company is deploying an application on Amazon EC2 that requires low-latency access to application components in an on-premises data center. Which AWS service or resource can the company use to extend their existing VPC to the on-premises data center?
AWS Outposts
Which resource should a new user on AWS use to get help with deploying popular technologies based on AWS best practices
AWS Quick Starts
A Cloud Practitioner is developing a new application and wishes to integrate features of AWS services directly into the application. Which of the following is the BEST tool for this purpose?
AWS Software Development Kit
A user needs to identify underutilized Amazon EC2 instances to reduce costs. Which AWS service or feature will meet this requirement?
AWS Trusted Advisor
Which AWS Cloud service provides recommendations on how to optimize performance for AWS services?
AWS Trusted Advisor
Which of the following will help a user determine if they need to request an Amazon EC2 service limit increase?
AWS Trusted Advisor
What is AWS Trusted Advisor?
AWS Trusted Advisor offers a rich set of best practice checks and recommendations across five categories: cost optimization, security, fault tolerance, performance, and service limits. The Trusted Advisor "low utilization Amazon EC2 instances" check, checks the Amazon Elastic Compute Cloud (Amazon EC2) instances that were running at any time during the last 14 days and alerts you if the daily CPU utilization was 10% or less and network I/O was 5 MB or less on 4 or more days.
Which of the following are valid benefits of using the AWS Cloud? (Select TWO.) Outsource all application development to AWS. Total control over data center infrastructure. (Incorrect) Fast provisioning of IT resources. (Correct) Outsource all operational risk.
Ability to go global quickly; Fast provisioning of IT resources
Which type of credential should a Cloud Practitioner use for programmatic access to AWS resources from the AWS CLI/API?
Access Keys
What is the responsibility of AWS?
According to the shared responsibility model, AWS is responsible to the management of all AWS global infrastructure components including Regions, Availability Zones, Edge locations, Regional Edge Caches, and Local Zones.
A company is deploying a MySQL database on AWS. The database must easily scale and have automatic backup enabled. Which AWS service should the company use?
Amazon Aurora
What is Amazon Aurora?
Amazon Aurora is a relational database that is compatible with MySQL and PostgreSQL database engines. Aurora is extremely fast and scales up to 128 TB. You can also deploy replicas for read scaling within and across Regions. Aurora also offers automated backups.
A website has a global customer base and users have reported poor performance when connecting to the site. Which AWS service will improve the customer experience by reducing latency?
Amazon CloudFront
What is Amazon CloudFront?
Amazon CloudFront is a content delivery network (CDN) that caches content around the world for lower latency access.
A Cloud Practitioner needs to monitor a new Amazon EC2 instances CPU and network utilization. Which AWS service should be used?
Amazon CloudWatch
What is Amazon GuardDuty?
Amazon GuardDuty is a threat detection service that continuously monitors for malicious activity and unauthorized behavior to protect your AWS accounts, workloads, and data stored in Amazon S3.
A company must provide access to AWS resources for their employees. Which security practices should they follow? (Select 2)
Create IAM policies based on least privilege principles. (Correct) Enable multi-factor authentication for users. (Correct)
What is Amazon Detective?
Amazon Detective automatically processes terabytes of event data records about IP traffic, AWS management operations, and malicious or unauthorized activity.
A company is planning to deploy an application with a relational database on AWS. The application layer requires access to the database instance's operating system in order to run scripts. The company prefer to keep management overhead to a minimum. Which deployment should be used for the database?
Amazon EC2
A company plans to deploy a relational database on AWS. The IT department will perform database administration. Which service should the company use?
Amazon EC2
Customers using AWS services must patch operating systems on which of the following services?
Amazon EC2
Which of the following AWS features or services can be used to provide root storage volumes for Amazon EC2 instances?
Amazon Elastic Block Store
Which AWS feature can be used to launch a pre-configured Amazon Elastic Compute Cloud (EC2) instance?
Amazon Machine Image (AMI)
Which of the following deployments involves the reliability pillar of the AWS Well-Architected Framework?
Amazon RDS Multi-AZ deployment
A company needs to publish messages to a thousands of subscribers simultaneously using a push mechanism. Which AWS service should the company use?
Amazon Simple Notification Service (Amazon SNS)
Which tasks can a user complete using the AWS Cost Management tools? (Select TWO.)
Automatically terminate AWS resources if budget thresholds are exceeded; create budgets and receive notifications if current or forecasted usage exceeds the budgets
Which of the following is a sole responsibility of AWS?
Availability Zone management; According to the shared responsibility model, AWS is responsible to the management of all AWS global infrastructure components including Regions, Availability Zones, Edge locations, Regional Edge Caches, and Local Zones.
An Amazon Virtual Private Cloud (VPC) can include multiple:
Availability Zones
What can a Cloud Practitioner use to categorize and track AWS costs by project?
Cost Allocation Tags
Which tasks require the use of the AWS account root user? (Select TWO.)
Changing the account name; Changing AWS Support plans
What is one method of protecting against distributed denial of service (DDoS) attacks in the AWS Cloud?
Configure a firewall in front of resources
A Cloud Practitioner anticipates an increase in application traffic at a future date and time when a sales event will take place. How can the Cloud Practitioner configure Amazon EC2 Auto Scaling to ensure the right number of Amazon EC2 instances are available ahead of the event?
Configure a scheduled scaling policy.
A company plans to use reserved instances to get discounted pricing for Amazon EC2 instances. The company may need to change the EC2 instance type during the one year period. Which instance purchasing option is the MOST cost-effective for this use case?
Convertible Reserved Instances
A company is launching a new website which is expected to have highly variable levels of traffic. The website will run on Amazon EC2 and must be highly available. What is the MOST cost-effective approach?
Create an Amazon EC2 Auto Scaling group and configure an Elastic Load Balancer
A company uses Amazon EC2 instances to run applications that are dedicated to different departments. The company needs to break out the costs of these applications and allocate them to the relevant department. The EC2 instances run in a single VPC. How can the company achieve these requirements?
Create tags by department on the instances and then run a cost allocation report.
What is the best practice for managing AWS IAM access keys?
Customers should rotate access keys regularly.
A company is deploying a new workload and software licensing requirements dictate that the workload must be run on a specific, physical server. Which Amazon EC2 instance deployment option should be used?
Dedicated Hosts
A customer needs to determine Total Cost of Ownership (TCO) for a workload that requires physical isolation. Which hosting model should be accounted for?
Dedicated Hosts
AWS are able to continually reduce their pricing due to:
Economies of scale
A company has many underutilized compute resources on-premises. Which AWS Cloud feature will help resolve this issue?
Elasticity
For what purpose would a Cloud Practitioner access AWS Artifact?
Gain access to AWS Security and compliance documents
Which of the following represents a value proposition for using the AWS Cloud?
It is not necessary to enter into long terms contracts.
A company is migrating a monolithic application that does not scale well into the cloud and refactoring it into a microservices architecture. Which best practice of the AWS Well-Architected Framework does this plan relate to?
Implement loosely coupled services
What is Amazon Inspector?
Inspector is an automated security assessment service that helps improve the security and compliance of applications deployed on AWS.
A user is planning to launch three EC2 instances behind a single Elastic Load Balancer. The deployment should be highly available. How should the user achieve this?
Launch the instances across multiple availability zones in a single AWS region
A company is deploying an application in the AWS Cloud. How can they secure the application? (Select TWO.)
Limit access privileges according to the principal of least privilege; Enable encryption for the application data at rest
What is loose coupling?
Loose coupling is when you break systems down into smaller components that are loosely coupled together. This reduces interdependencies between systems components. This is achieved in the cloud using messages buses, notification and messaging services.
Which design principles are enabled by the AWS Cloud to improve the operation of workloads? (Select TWO.)
Loose coupling, Remove single points of failure.
What are AWS Identity and Access Management (IAM) access keys used for?
Making programmatic calls to AWS from AWS APIs
An application uses a PostgreSQL database running on a single Amazon EC2 instance. A Cloud Practitioner has been asked to increase the availability of the database so there is automatic recovery in the case of a failure. Which tasks can the Cloud Practitioner take to meet this requirement?
Migrate the database to Amazon RDS and enable the Multi-AZ feature
A large company is interested in avoiding long-term contracts and moving from fixed costs to variable costs. What is the value proposition of AWS for this company?
Pay-as-you-go pricing
A company is designing a new a service that must align with the operational excellence pillar of the AWS Well-Architected Framework. Which design principles should the company follow? (Select TWO.)
Perform operations as code; Anticipate failure
An individual IAM user must be granted access to an Amazon S3 bucket using a bucket policy. Which element in the S3 bucket policy should be updated to define the user account for which access will be granted?
Principal
What advantages does a database administrator obtain by using the Amazon Relational Database Service (RDS)?
RDS simplifies relational database administration tasks.
A company is planning to move a number of legacy applications to the AWS Cloud. The solution must be cost-effective. Which approach should the company take?
Rehost the applications on Amazon EC2 instances that are right-sized
Why to remove single points of failure?
Removing single points of failure ensures fault tolerance and high availability. This is easily achieved in the cloud as the architecture and features of the cloud support the implementation of highly available and fault tolerant systems.
A company runs a batch job on an Amazon EC2 instance and it takes 6 hours to complete. The workload is expected to double in volume each month with a proportional increase in processing time. What is the most efficient cloud architecture to address the growing workload?
Run the batch workload in parallel across multiple Amazon EC2 instances.
How does the AWS cloud increase the speed and agility of execution for customers? (Select TWO.)
Scalable compute capacity; Fast provisioning of resources
Which benefits can a company gain by deploying a relational database on Amazon RDS instead of Amazon EC2? (Select TWO.)
Software patching; Automated Backups
When running applications in the AWS Cloud, which common tasks can AWS manage on behalf of their customers? (Select TWO.)
Taking a backup of a database; patching database software
What is AWS Policy Generator?
The AWS Policy Generator is a tool that enables you to create policies that control access to Amazon Web Services (AWS) products and resources.
A Cloud Practitioner requires point-in-time recovery (PITR) for an Amazon DynamoDB table. Who is responsible for configuring and performing backups?
The customer is responsible for configuring and AWS is responsible for performing backups.
Which of the following statements best describes the concept of agility in relation to cloud computing on AWS? (Select TWO.)
The speed at which AWS resources can be created. The ability to experiment quickly.
A company has multiple AWS accounts and is using AWS Organizations with consolidated billing. Which advantages will they benefit from? (Select TWO.)
They will recieve one bill for the accounts in the Organization, they may benefit from lower unit pricing for aggregated usage
According to the AWS shared responsibility model, which of the following is a responsibility of AWS?
Updating the firmware on the underlying EC2 hosts.
How much data can a company store in the Amazon S3 service?
Virtually unlimited