AWS Cloud Practitioner- missed questions

Pataasin ang iyong marka sa homework at exams ngayon gamit ang Quizwiz!

Which of the following allows you to set coverage targets and receive alerts when your utilization drops below the threshold you define? A) AWS Budgets B) AWS Cost Explorer C) AWS Trusted Advisor D) Amazon CloudWatch Billing alarm

A) AWS Budgets

Which is a fully-managed source control service that allows you to host Git-based repositories and enable code collaboration for your team via pull requests, branching, and merging? ​ A) AWS CodeCommit B) AWS CodeDeploy C) AWS CodeBuild D) AWS CodeStar

A) AWS CodeCommit

A company is planning to launch a new system in AWS but they do not have an employee who has an AWS-related expertise. Which of the following can help the company to design, architect, build, migrate, and manage their workloads and applications on AWS? A) AWS Partner Network Consulting Partners B) AWS Partner Network Technology Partners C) Technical Account Management D) AWS Marketplace

A) AWS Partner Network Consulting Partners

Which of the following are the things that Amazon CloudWatch Logs can accomplish? (Select TWO) A) Adjust the retention policy for each log group B) Create alarms that automatically stop, terminate, reboot, or recover your EC2 instances C) Store your log data at absolutely no charge D) Monitor application logs from Amazon EC2 instances E) Record AWS Management Console actions and API calls

A) Adjust the retention policy for each log group D) Monitor application logs from Amazon EC2 instances

Which of the following services are part of the AWS serverless platform that does not require provisioning, maintaining, and administering servers for backend components? (Select TWO) ​ A) Amazon API Gateway B) Amazon ElastiCache C) Amazon EMR D) Amazon CloudSearch E) Lambda@Edge

A) Amazon API Gateway E) Lambda@Edge

Which among the options below can you use to launch a new Amazon RDS database cluster to your VPC? (Select TWO) ​ A) AWS Concierge ​B) AWS CodePipeline​ C) AWS Management Console D) AWS CloudFormation E) AWS Systems Manager

C- AWS Management Console D- AWS CloudFormation

Which AWS services should you use to store rapidly changing data with low read and write latencies? (Select TWO) ​ A) Amazon AppStream 2.0 B) Amazon S3 C) Amazon EBS D) AWS Snowball ​E) Amazon RDS

C- Amazon EBS E- Amazon RDS

Users from different parts of the globe are complaining about the slow performance of the newly launched photo-sharing website in loading their high-resolution images. Which combination of AWS services should you use to serve the files with lowest possible latency? (Select TWO) A) Amazon CloudFront B) Amazon Glacier C) Amazon EFS D) Amazon S3 E) AWS Storage Gateway

A) Amazon CloudFront D) Amazon S3

Which of the following are regarded as regional services in AWS? (Select TWO) A) Amazon EFS B) Amazon Route53 C) Amazon Security Token Service D) AWS Batch E) Amazon EC2

A) Amazon EFS D) AWS Batch

Which of the following is a threat detection service that continuously monitors for malicious activity and unauthorized behavior to protect your AWS accounts and workloads? ​ A) Amazon GuardDuty B) AWS WAF C) AWS Shield D) Amazon Macie

A) Amazon GuardDuty

________ is AWS's digital user engagement service that enables AWS customers to effectively communicate with their end users and measure user engagement across multiple channels including email, Text Messaging (SMS) and Mobile Push Notifications. ​ A) Amazon Pinpoint B) Amazon Simple Notification Service C) Amazon Simple Email Service ​D) Amazon SNS Mobile Push

A) Amazon Pinpoint Amazon Pinpoint is AWS's Digital User Engagement Service that enables AWS customers to effectively communicate with their end-users and measure user engagement across multiple channels including email, Text Messaging (SMS) and Mobile Push Notifications

Which of the following will allow you to create a data warehouse in AWS for your business intelligence needs? ​ A) Amazon Redshift B) Amazon DynamoDB ​C) Amazon RDS D) Amazon S3

A) Amazon Redshift

Which service would be used to send alerts based on Amazon CloudWatch alarms? A) Amazon Simple Notification Service (Amazon SNS) B) AWS CloudTrail C) AWS Trusted Advisor D) Amazon Route 53

A) Amazon Simple Notification Service (Amazon SNS)

What is the minimum support plan that will provide you access to all Trusted Advisor Checks? ​ A) Business B) Basic ​C) Developer D) Enterprise

A) Business Basic and Developer support plans are incorrect because these will only allow you access to the 7 core Trusted Advisor checks. Enterprise support plan is incorrect because although it provides the full set of trusted advisor checks, it costs a lot more than the Business support plan.

Which of the following security group rules are valid? (Select TWO) ​ A) Inbound RDP rule with an address range as source​ B) Inbound TCP rule with instance ID as source ​C) Inbound HTTP rule with security group ID as source D) Outbound HTTPS rule with hostname as destination E) Outbound MYSQL rule with IP address as source

A) Inbound RDP rule with an address range as source​ C) Inbound HTTP rule with security group ID as source Inbound TCP rule with instance ID as source and Outbound HTTPS rule with hostname as destination are both incorrect because Instance IDs or hostnames are not valid values.

Which of the following is used to enable instances in the public subnet to connect to the public Internet? ​ A) Internet Gateway ​B) NAT instance ​C) NAT Gateway D) API Gateway

A) Internet Gateway

Which of the following are the pillars of the AWS Well-Architected Framework? (Select TWO) ​ A) Performance Efficiency B) Agility C) Operational Excellence D) Scalability E) High Availability

A) Performance Efficiency C) Operational Excellence

Which of the following is true regarding Amazon Relational Database Service (Amazon RDS)? (Select TWO) ​ A) Simplifies the management of time-consuming database administration tasks B) Makes it easy to set up, operate, and scale a relational database C) It is fully managed relational database service. D) Automatically scales the relational database based on the incoming workload

A) Simplifies the management of time-consuming database administration tasks B) Makes it easy to set up, operate, and scale a relational database

Which of the following statements is true for AWS CloudTrail? ​ A) When you create a trail in the AWS Management Console, the trail applies to all AWS Regions by default B) CloudTrail charges you for every management event trail created ​C) CloudTrail is able to capture application error logs from your EC2 instances ​D) CloudTrail is disabled by default for newly created AWS accounts

A) When you create a trail in the AWS Management Console, the trail applies to all AWS Regions by default

A company is currently using an On-Demand EC2 instance for their application which they plan to migrate to a Reserved EC2 Instance to save on cost. Which of the following is the most cost-effective option if the application being hosted would be used for more than 3 years? A) all upfront, standard reserved instance pricing for a 3 year term B) no upfront, standard reserved instance pricing for a 1 year term that is renewed each year C) no upfront, convertible reserved instance pricing for a 3 year term D) all upfront, convertible reserved instance pricing for a 1 year term

A) all upfront, standard reserved instance pricing for a 3 year term

_________ is one of the components of AWS Global Infrastructure which consists of one or more discrete data centers each with redundant power, networking, and connectivity, and housed in separate facilities. A) availability zone B) edge location C) VPC D) AWS region

A) availability zone

Which of the following allows you to categorize and track your AWS costs on a detailed level? A) cost allocation tags B) AWS Budgets C) Amazon Aurorar Backtrack D) Consolidated billing

A) cost allocation tags

Which of the following Amazon EC2 instance purchasing options can help you address compliance requirements and reduce costs by allowing you to use your existing server-bound software licenses? A) dedicated host B) dedicated instance C) on-demand instance D) reserved instance

A) dedicated host

A company is in the process of choosing the most suitable AWS Region to migrate their applications. Which of the following factors should they consider? (Select TWO) A) support country-specific data sovereignty compliance requirements B) enhance customer experiences by reducing latency to users C) zone security D) proximity to your end users for on-site visits to your on prem data centers E) potential volume discounts for the specific AWS region

A) support country-specific data sovereignty compliance requirements B) enhance customer experiences by reducing latency to users

Which of the following below are the benefits of using Consolidated billing in AWS? (Select TWO) ​ A) Share the volume pricing and Reserved Instance discounts by combining the usage across all accounts in the organization​ B) Consolidate together the billing and payment of both AWS accounts and Amazon Internet Services Pvt. Ltd (AISPL) accounts C) Allows one member account to pay the charges of all the master accounts D) You get one bill for multiple accounts E) Consolidated all the bills from multiple AWS accounts for only $1 every month

A- Share the volume pricing and Reserved Instance discounts by combining the usage across all accounts in the organization​ D- You get one bill for multiple accounts

Which of the following is the most cost-effective service to use if you want to coordinate multiple AWS services into serverless workflows? ​ A) AWS Step Functions B) Amazon SWF ​C) AWS Batch ​D) AWS Lambda

AWS Step Functions provides serverless orchestration for modern applications. AWS Lambda is incorrect because although this service is used for serverless computing, it does not provide a direct way to coordinate multiple AWS services into serverless workflows.

In AWS Trusted Advisor, which of the following options are included among the five categories being considered to analyze your AWS environment and provide the best practice recommendations? (Select TWO) A) Storage Capacity B) Performance C) Infrastructure D) Fault Tolerance E) Instance Usage

B) Performance D) Fault Tolerance

Which service can identify the user that made the API call when an Amazon EC2 instance is terminated? A) AWS Trusted Advisor B) AWS CloudTrail C) AWS X-Ray D) AWS Identity and Access Management (AWS IAM)

B) AWS CloudTrail

Which service provides event history of your AWS account activity, including actions taken through the AWS Management Console, AWS SDKs, command line tools, and other AWS services? A) AWS Infrastructure Event Management B) AWS CloudTrail C) AWS Config D) Amazon CloudWatch

B) AWS CloudTrail

Which AWS service would simplify the migration of a database to AWS? A) AWS Storage Gateway B) AWS Database Migration Service (AWS DMS) C) Amazon EC2 D) Amazon AppStream 2.0

B) AWS Database Migration Service (AWS DMS)

Which service in AWS allows you to host your own Puppet Enterprise infrastructure? ​ A) AWS CloudFormation​ B) AWS Opsworks C) AWS Elastic Beanstalk ​D) AWS Service Catalog

B) AWS Opsworks

You are permitted to conduct security assessments and penetration testing without prior approval against which AWS resources? (Select TWO) ​ A) Amazon S3 ​B) Amazon Aurora C) AWS Identity and Access Management (IAM) D) Amazon RDS E) AWS Security Token Service (STS)

B) Amazon Aurora D) Amazon RDS

Which of the following should you use if you need to provide temporary AWS credentials for users who have been authenticated via their social media logins as well as for guest users who do not require any authentication? ​ A) AWS Single Sign-On ​B) Amazon Cognito Identity Pool C) Amazon Cognito Sync D) Amazon Cognito User Pool

B) Amazon Cognito Identity Pool

You need to host a new Microsoft SQL Server database in AWS for an urgent project. Which AWS services should you use to meet this requirement? (Select TWO) A) Amazon Aurora B) Amazon EC2 C) Amazon RDS D) Amazon Aurora Backtrack E) Amazon Redshift

B) Amazon EC2 C) Amazon RDS

Which service in AWS supports various business intelligence tools such as Apache Spark so that you may perform data transformation workloads (ETL) and analytics at a low cost? ​ A) AWS Elasticsearch ​B) Amazon EMR C) Amazon RDS ​D) Amazon Redshift

B) Amazon EMR Amazon EMR is a web service that enables businesses, researchers, data analysts, and developers to easily and cost-effectively process vast amounts of data

A company is planning to deploy their high-frequency trading (HFT) application which will store constantly changing financial data in AWS and require low latency access. Which AWS services below should you use? (Select TWO) ​ A) Amazon Glacier ​B) Amazon RDS C) AWS Snowball ​D) Amazon EFS E) Amazon S3

B) Amazon RDS D) Amazon EFS

You have a large number of log files that will be archived in AWS for a long time and should have a retrieval time of 12 hours or less. Which service is the most cost-effective storage class for this purpose? ​ A) Amazon S3 Glacier B) Amazon S3 Glacier Deep Archive C) Amazon S3 Standard-IA ​D) Amazon EBS Cold HDD

B) Amazon S3 Glacier Deep Archive

Which component of the AWS global infrastructure does Amazon CloudFront use to ensure low-latency delivery? A) AWS Regions B) Edge locations C) Availability Zones D) Virtual Private Cloud (VPC)

B) Edge locations

In which of the following occasions should you use the Amazon SQS application system? (Select TWO) ​ A) If you need to submit push notifications to your event subscribers ​B) If you need to decouple certain parts of your system for better fault tolerance C) When you have to automate certain tasks in your workflow ​D) When your application requires the use of industry-standard messaging protocols for message delivery E) If you require a durable storage for your application events or messages

B) If you need to decouple certain parts of your system for better fault tolerance E) If you require a durable storage for your application events or messages

Which of the following should you use to automatically transfer your infrequently accessed data in your S3 bucket to a more cost-effective storage class? ​ A) Cross-Region replication ​B) Lifecycle policy ​C) S3 access control list ​D) Cross-Origin Resource Sharing (CORS)

B) Lifecycle policy

Which of the following is an AWS responsibility under the AWS shared responsibility model? A) Configuring third-party applications B) Maintaining physical hardware C) Securing application access and data D) Managing guest operating systems

B) Maintaining physical hardware

Which of the following is true regarding the Business support plan in AWS? ​ A) Provides a 15-minute response time support if your business-critical system goes down B) Provides a 1-hour response time support if your production system goes down ​C) Provides a 15-minute response time support if your production system goes down ​D) Provides a 1-hour response time support if your production system got impaired

B) Provides a 1-hour response time support if your production system goes down

In the VPC dashboard of your AWS Management Console, which of the following services or feature below can you manage? (Select TWO) A) CloudFront B) Security Groups C) Network ACLs D) Lambda E) Route53

B) Security Groups C) Network ACLs

You are planning to deploy a video streaming application with frequently accessed, throughput-intensive workloads to your EC2 instance which requires fast, consistent throughput. What EBS volume type should you use to maximize performance as well as cost? ​ A) Provisioned IOPS SSD B) Throughput Optimized HDD C) Cold HDD ​D) General Purpose SSD

B) Throughput Optimized HDD This will allow you to easily eliminate specific EBS-types in the options which are not SSD or not HDD, depending on whether the question asks for a storage type that has small, random I/O operations or large, sequential I/O operations.

Which of the following policies grant the necessary permissions required to access your Amazon S3 resources? (Select TWO) ​ A) Routing policies ​B) User policies C) Object policies ​D) Bucket policies E) Network access control policies

B) User policies ​D) Bucket policies

How can you apply and easily manage the common access permissions to a large number of IAM users in AWS? A) apply permissions to multiple IAM Users by using a cross-account role B) attach the necessary policies required to a new IAM group then afterwards, add the IAM Users to that IAM group C) attach the exact same IAM policy to all of the IAM Users D) attach the IAM policy to an IAM role then afterwards, associate that role to all of the IAM users

B) attach the necessary policies required to a new IAM group then afterwards, add the IAM Users to that IAM group

Which of the following is the most cost-effective AWS Support Plan to use if you need access to AWS Support API for programmatic case management? A) enterprise B) business C) basic D) developer

B) business

A company is using Amazon S3 to store their static media contents such as photos and videos. Which of the following should you use to provide specific users access to the bucket? ​ A) SSH key ​B) Bucket Policy C) Network Access Control List D) Security Group

B- Bucket Policy

A company has web servers running on Amazon EC2 instances that access a RESTful API hosted on their on-premises data center. What kind of architecture is the company using? ​ A) Serverless architecture ​B) Hybrid architecture C) Platform as a service (PaaS) D) Software as a Service (SaaS)

B- Hybrid architecture

Which of the following IAM identities is associated with the access keys that are used in managing your cloud resources via the AWS Command Line Interface (AWS CLI)? ​ A) IAM Group ​B) IAM User C) IAM Policy D) IAM Role

B- IAM User

Which of the following Cost Management Tools allows you to track your Amazon EC2 Reserved Instance (RI) usage and view the discounted RI rate that was charged to your resources? A) AWS Budgets B) AWS Cost Explorer C) AWS Cost and Usage report D) AWS System Manager

C) AWS Cost and Usage report

What should you provide to your developers to allow them to access your AWS services through the AWS CLI? A) IAM username and passwords B) SSH Keys C) Access Keys D) API keys

C) Access Keys

Why is AWS more economical than traditional data centers for applications with varying compute workloads? A) Amazon EC2 costs are billed on a monthly basis B) Users retain full administrative access to their Amazon EC2 instances C) Amazon EC2 instances can be launched on demand when needed D) Users can permanently run enough instances to handle peak workloads

C) Amazon EC2 instances can be launched on demand when needed

Which of the following services will be able to reroute traffic to your secondary EC2 instances in another region during disaster recovery? ​ A) AWS ELB B) Amazon VPC ​C) Amazon Route 53 D) VPC Peering

C) Amazon Route 53

Which AWS service lets you provision a logically isolated section of the AWS Cloud where you can launch AWS resources? ​ A) AWS Elastic Beanstalk ​B) Internet gateway ​C) Amazon VPC D) Amazon EC2

C) Amazon VPC

Which of the following AWS Cost Management tools enable you to forecast future costs and usage of your AWS resources based on your past consumption? ​ A) AWS Cost and Usage report ​B) Amazon Forecast ​C) Cost Explorer ​D) AWS Pricing Calculator

C) Cost Explorer

What is a primary reason why you should be using an elastic load balancer? ​ A) ELBs help you scale easily without manual intervention B) ELBs help tighten security through the use of security groups ​C) ELBs provide elasticity by directing traffic to a minimum number of instances required to handle the traffic load D) ELBs boost your website's overall performance

C) ELBs provide elasticity by directing traffic to a minimum number of instances required to handle the traffic load

What is the best way to keep track of all activities in your account? ​ A) Set up MFA logging to know who is currently in your environment ​B) Use LDAP authentication on your AWS account C) Enable AWS CloudTrail on all regions D) Use Amazon CloudWatch Logs to log all activities

C) Enable AWS CloudTrail on all regions Using Amazon Cloudwatch Logs is incorrect since this service is not related to user actions in your account.

How would a system administrator add an additional layer of login security to a user's AWS Management Console? A) Use Amazon Cloud Directory B) Audit AWS Identity and Access Management (IAM) roles C) Enable multi-factor authentication D) Enable AWS CloudTrail

C) Enable multi-factor authentication

There is an incident with your team where an S3 object was deleted using an account without the owner's knowledge. What can be done to prevent unauthorized deletion of your S3 objects? ​ A) Create access control policies so that only you can perform S3-related actions B) Set up stricter IAM policies that will prevent users from deleting S3 objects C) Have each account enable multi-factor authentication D) Set your S3 buckets to private so that objects are not publicly readable/writable

C) Have each account enable multi-factor authentication

Which of the following AWS services are used to secure your VPC network? (Select TWO) ​ A) IAM B) CloudFront ​C) Network ACL D) Security group E) Application load balancer

C) Network ACL D) Security group

A customer currently has a Basic support plan and they are planning to use the Infrastructure Event Management, Well-Architected Reviews and Operations Reviews features in AWS. What should they do in order to access these features in the most cost-effective manner? ​ A) Upgrade to Developer support plan. ​B) Upgrade to Business support plan. C) Upgrade to Enterprise support plan.​ D) None since these features are already included in their Basic support plan.

C) Upgrade to Enterprise support plan.​

A space agency is using Amazon S3 to store their high-resolution satellite images and videos everyday. Which of the following should they do to minimize the upload time? ​ A) Upload the images and videos using the BatchWriteItem API ​B) Enable Cross-Origin Resource Sharing (CORS) ​C) Use the Multipart upload API ​D) Shift to S3 Intelligent-Tiering storage class

C) Use the Multipart upload API

Which of the following best describes what CloudWatch is? A) an audit service that records all API calls made to your AWS account B) a rules repository C) a metric repository D) an automated security assessment service

C) a metric repository

Which service does AWS use to notify you when AWS is experiencing events that may impact you? ​ A) Amazon SNS B) AWS Support Center C) ​AWS Personal Health Dashboard D) AWS Service Health Dashboard

C) ​AWS Personal Health Dashboard

Where can a user find information about prohibited actions on the AWS infrastructure? A) AWS Trusted Advisor B) AWS Identity and Access Management (IAM) C) AWS Billing Console D) AWS Acceptable Use Policy

D) AWS Acceptable Use Policy

A company has hybrid cloud architecture where their on-premises data center interacts with their cloud resources in AWS. Which of the following services in AWS could you use to deploy a web application to servers running on-premises? (Select TWO) A) AWS Batch B) AWS CloudFormation C) AWS Elastic Beanstalk D) AWS CodeDeploy E) AWS OpsWorks

D) AWS CodeDeploy E) AWS OpsWorks

Which of the following is a continuous delivery service that you should use to automate your release pipelines for fast and reliable application and infrastructure updates? ​ A) Amazon Data Pipeline ​B) AWS CodeDeploy C) AWS CodeCommit ​D) AWS CodePipeline

D) AWS CodePipeline

A company plans to migrate their on-premises MySQL database to Amazon RDS. Which AWS service should they use for this task? ​ A) AWS Server Migration Service ​B) AWS Direct Connect ​C) AWS Schema Conversion Tool (AWS SCT) D) AWS Database Migration Service (AWS DMS)

D) AWS Database Migration Service (AWS DMS)

Which of the following are the characteristics of Amazon EC2 Convertible Reserved Instances? (Select TWO) ​ A) Provides the most significant discount (up to 75% off On-Demand) and are best suited for steady-state usage B) Allows you to change the attributes of the RI as long as the exchange results in the creation of Reserved Instances of equal or lesser value ​C) Allows you to match your capacity reservation to a predictable recurring schedule that only requires a fraction of a day, a week, or a month D) Allows the change of instance family, operating system, tenancy, and payment option E) Has the capability to change the attributes of the RI as long as the exchange results in the creation of Reserved Instances of equal or greater value

D) Allows the change of instance family, operating system, tenancy, and payment option E) Has the capability to change the attributes of the RI as long as the exchange results in the creation of Reserved Instances of equal or greater value

Which service in AWS is best used for data analytics and data warehousing? ​ A) Amazon DynamoDB B) Amazon S3 ​C) Amazon Aurora ​D) Amazon Redshift

D) Amazon Redshift

Which AWS networking service enables a company to create a virtual network within AWS? A) AWS Config B) Amazon Route 53 C) AWS Direct Connect D) Amazon Virtual Private Cloud (Amazon VPC)

D) Amazon Virtual Private Cloud (Amazon VPC)

Which of the following allows you to create and deploy infrastructure-as-code templates in AWS? ​ A) Lightsail B) Elastic Beanstalk C) Systems Manager ​D) CloudFormation

D) CloudFormation

A new AWS customer needs to deploy up to 100 t3a.large EC2 instances on their recently launched VPC, which is way beyond the default service limit. What should they do before launching their instances? ​ A) Use AWS Trusted Advisor to increase the default service limits for EC2 instances. ​B) Do nothing. You can directly launch 100 t3a.large EC2 instances at the same time since AWS will automatically increase your service limit for you. C) Enable Enhanced Networking. ​D) Create a case in the AWS Support Center page and request a service limit increase.

D) Create a case in the AWS Support Center page and request a service limit increase.

Which of the following is not required when launching an EBS-backed EC2 instance? ​ A) Security group ​B) VPC and subnet specification C) EBS Root volume ​D) Elastic IP address

D) Elastic IP address

What is the best type of instance purchasing option to choose if you will run an EC2 instance for 3 months to perform a job that is uninterruptible? ​ A) Dedicated B) Spot C) Reserved D) On-Demand

D) On-Demand

Which among the options below is a highly available and scalable cloud Domain Name System (DNS) web service in AWS? ​ A) Active Directory Domain Service ​B) Lightsail ​C) Rekognition D) Route 53

D) Route 53

What service acts as a firewall for your EC2 instances? ​ A) VPC ​B) Elastic Network Interface ​C) Network ACL D) Security Group

D) Security Group A security group acts as a virtual firewall for your instance to control inbound and outbound traffic.

Which of the following options below is solely the responsibility of the customer in accordance with the AWS shared responsibility model? A) patching of the host operating system B) configuration management C) awareness and training D) zone security

D) zone security

For security audit, a company needs to download the compliance-related documents in AWS such as ISO certifications, Payment Card Industry (PCI), and Service Organization Control (SOC) reports. Which of the following should they use to retrieve these files? ​ A- AWS CloudTrail B- ​AWS Trusted Advisor ​C- AWS Certificate Manager D- AWS Artifact

D- AWS Artifact

Which of the following is true regarding the Developer support plan in AWS? (Select TWO) ​ A) Full access to the AWS Support API​ B) Has access to the full set of Trusted Advisor checks ​C) Recommended if you have business and/or mission critical workloads in AWS D) No access to the AWS Support API E) Limited access to the 7 Core Trusted Advisor checks

D- No access to the AWS Support API E- Limited access to the 7 Core Trusted Advisor checks

Which of the following is a data transport solution that accelerates moving terabytes to petabytes of data into and out of AWS using appliances with on-board storage and compute capabilities? ​ A) Lambda@Edge ​B) AWS Snowball Edge C) AWS Snowball D) AWS Snowmobile

​B) AWS Snowball Edge

You have a fleet of on-premises servers that require a centralized scalable and durable file storage. It should be able to support massive parallel access. Which of the following is the most appropriate service to use? ​ A) Amazon Storage Gateway - File Gateway ​B) Amazon EFS C) Amazon S3 D) Amazon Redshift

​B) Amazon EFS Amazon Elastic File System (Amazon EFS) provides a simple, scalable, fully managed elastic NFS file system for use with AWS Cloud services and on-premises resources. Amazon S3 is incorrect. First, it is meant specifically for object storage, and second, EFS can serve a fleet of EC2 instances better than S3 as file storage.

You wish to host a static website of your own in AWS at a low cost. Which service should be used for this purpose? ​ A) Amazon S3 Infrequent Access ​B) Amazon S3 Standard C) Amazon Elastic Load Balancer ​D) Amazon EC2

​B) Amazon S3 Standard "static" means only storage

You noticed that you cannot reach one of your EC2 web servers behind an ELB whenever you enter the DNS name of your load balancer. Which of the following should you first check to gain more insight on the issue? ​ A) AWS CloudTrail ​B) ELB Health Check C) Amazon CloudWatch D) AWS Config

​B) ELB Health Check Your Application Load Balancer periodically sends requests to its registered targets to test their status. These tests are called health checks.

Which of the following are the best practices that can help secure your AWS resources using the AWS Identity and Access Management (IAM) service? (Select TWO) ​ A) Grant most privilege. ​B) Lock away your AWS account root user access keys. ​C) Use Inline Policies instead of Customer Managed Policies. ​D) Use Bastion Hosts. ​E) Grant least privilege.

​B) Lock away your AWS account root user access keys. E) Grant least privilege.

A company needs to troubleshoot an issue on their serverless application which is composed of an API Gateway, Lambda function, and a DynamoDB database. Which service should they use to trace user requests as they travel through their entire application? ​ A) Amazon Inspector ​B) AWS CloudTrail ​C) AWS X-Ray D) Amazon CloudWatch

​C) AWS X-Ray

Which of the following is a fully managed database in AWS that can be used to store JSON documents? ​ A) Amazon Aurora B) Amazon ElastiCache ​C) Amazon DynamoDB D) Amazon Redshift

​C) Amazon DynamoDB

Which of the following services allows you to store Docker images and orchestrate Docker containers in a simple and cost-effective manner? (Select TWO) ​ A) AWS CodeCommit B) AWS Lambda ​C) Amazon ECR D) AWS Batch E) Amazon ECS

​C) Amazon ECR E) Amazon ECS

What is the most secure way to provide applications temporary access to your AWS resources? ​ A) Create an IAM policy that allows the application to access the resources, and attach the policy to the application B) Create an IAM group that has access to the resources, and add the application there ​C) Create an IAM role and have the application assume the role D) Create an IAM user with access keys and assign it to the application

​C) Create an IAM role and have the application assume the role

Which of the following actions will AWS charge you for? ​ A) Provisioning elastic IPs and attaching them to EC2 instances ​B) Setting up additional VPCs in your account ​C) Transfer of EC2 files between two AWS Regions D) Transfer of data from your data center to S3 through a VPN

​C) Transfer of EC2 files between two AWS Regions

In the Shared Responsibility Model, which of the following options below is a shared control between AWS and the customer? ​ A- Client-side data encryption ​B- Physical and environmental controls of the AWS data centers ​C- Awareness and training D- Server-side data encryption

​C- Awareness and training

Which of the following practices demonstrate operational excellence in AWS cloud? (Select TWO) ​ A) Monitor EC2 metric consumption and adjust the instance type accordingly B) Launching your infrastructure manually via the Console ​C) Use serverless applications such as AWS Lambda ​D) Deploy small, incremental changes to your production servers using AWS CodeDeploy E) Perform monthly game days on your AWS environment

​D) Deploy small, incremental changes to your production servers using AWS CodeDeploy E) Perform monthly game days on your AWS environment A) is incorrect because it aligns with performance pillar


Kaugnay na mga set ng pag-aaral

PA - Exam 2 - General Principles - 9-23-19

View Set

Religion and society, last SAC, Galileo

View Set

Unit 11 Earth's Oceans Test Review

View Set

Limits, Alternatives, and Choices

View Set

Oceanography Ch. 11 Marine Pollution, Ch. 12 Marine Life and the Marine Environment, Ch. 13 Biological Productivity and Energy Transfer, Ch. 14 Animals of the Pelagic Environment, Ch. 15 Animals of the Benthic Environment, Ch. 16 The Oceans and Climate Ch

View Set