TutorialDojo AWS Cloud Practitioner - Practice TEST 1

Pataasin ang iyong marka sa homework at exams ngayon gamit ang Quizwiz!

Which of the following can you use to connect your on-premises data center and your cloud architecture in AWS? (Select TWO) - Amazon Route 53 - Egress-Only Internet Gateway - VPC Peering - Virtual Private Gateway - NAT Gateway

- Amazon Route 53 - Virtual Private Gateway

In the VPC dashboard of your AWS Management Console, which of the following services or feature below can you manage? (Select TWO) - CloudFront - Network ACLs - Route 53 - Lambda - Security Groups

- Network ACLs - Security Groups

Which of the following IAM identities is associated with the access keys that are used in managing your cloud resources via the AWS Command Line Interface (AWS CLI)? ​ A. IAM User​ B. IAM Policy ​C. IAM Group ​D. IAM Role

A. IAM User​ (Access keys are long-term credentials for an IAM user or the AWS account root user. You can use access keys to sign programmatic requests to the AWS CLI or AWS API (directly or using the AWS SDK).)

Which Amazon EC2 instance purchasing option lets you take advantage of unused EC2 capacity in the AWS Cloud and provides up to a 90% discount compared to On-Demand prices? A. Spot instance B. Convertible Reserved Instance C. Standard Reserved Instance D. Dedicated host

A. Spot instance (Amazon EC2 Spot Instances lets you take advantage of unused EC2 capacity in the AWS cloud. Spot Instances are available at up to a 90% discount compared to On-Demand prices. You can use Spot Instances for various stateless, fault-tolerant, or flexible applications such as big data, containerized workloads, CI/CD, web servers, high-performance computing (HPC), and other test & development workloads. Because Spot Instances are tightly integrated with AWS services such as Auto Scaling, EMR, ECS, CloudFormation, Data Pipeline, and AWS Batch, you can choose how to launch and maintain your applications running on Spot Instances.)

Which of the following are regarded as regional services in AWS? (Select TWO)

Answer: 1. AWS Batch (AWS Batch is a regional service that simplifies running batch jobs across multiple Availability Zones within a region. You can create AWS Batch compute environments within a new or existing VPC. After a compute environment is up and associated with a job queue, you can define job definitions that specify which Docker container images to run your jobs.) 2. Amazon EFS (Amazon EFS is a regional service storing data within and across multiple Availability Zones (AZs) for high availability and durability. Amazon EC2 instances can access your file system across AZs, regions, and VPCs, while on-premises servers can access using AWS Direct Connect or AWS VPN.)

A company has hybrid cloud architecture where their on-premises data center interacts with their cloud resources in AWS. Which of the following services in AWS could you use to deploy a web application to servers running on-premises? (Select TWO)

Answer: 1. AWS CodeDeploy (AWS CodeDeploy automates code deployments to any instance, including Amazon EC2 instances and instances running on-premises. AWS CodeDeploy makes it easier to rapidly release new features, avoids downtime during application deployment, and handles the complexity of updating applications.) 2. AWS OpsWorks​ (AWS OpsWorks is a configuration management service that helps customers configure and operate applications, both on-premises and in the AWS Cloud, using Chef and Puppet)

Which among the options below can you use to launch a new Amazon RDS database cluster to your VPC? (Select TWO) ​

Answer: 1. AWS Management Console 2. AWS CloudFormation (You can launch a new RDS database cluster using the AWS Management Console, AWS CLI, AWS SDK and AWS CloudFormation. The AWS Management Console provides a web-based way to administer AWS services. You can sign in to the console and create, list, and perform other tasks with AWS services for your account. These tasks might include starting and stopping Amazon EC2 instances and Amazon RDS databases, creating Amazon DynamoDB tables, creating IAM users, and so on. The AWS Command Line Interface (CLI), on the other hand, is a unified tool to manage your AWS services. AWS CloudFormation provides a common language for you to describe and provision all the infrastructure resources in your cloud environment. CloudFormation allows you to use programming languages or a simple text file to model and provision, in an automated and secure manner, all the resources needed for your applications across all regions and accounts.)

Which of the following can a developer use to interact with your AWS services? (Select TWO)

Answer: 1. AWS SDKs (You can also use Software Development Kits (SDKs) to interact with your AWS services. SDKs take the complexity out of coding by providing language-specific APIs for AWS services to enable you to develop cloud applications much faster.) 2. AWS Command Line Interface (The AWS Command Line Interface (AWS CLI) is an open-source tool that enables you to interact with AWS services using commands in your command-line shell. With minimal configuration, you can start using functionality equivalent to that provided by the browser-based AWS Management Console from the command prompt in your favorite terminal programs such as Linux shell or the Windows command line.)

A company is planning to adopt a hybrid cloud architecture with AWS. Which of the following can they use to assist them in estimating their costs? (Select TWO)

Answer: 1. AWS Total Cost of Ownership (TCO) Calculator 2. AWS Simple Monthly Calculator (To estimate a bill, use the AWS Pricing Calculator. You can enter your planned resources by service, and the Pricing Calculator provides an estimated cost per month. The AWS Pricing Calculator is an easy-to-use online tool that enables you to estimate the monthly cost of AWS services for your use case based on your expected usage. It is continuously updated with the latest pricing for all AWS services in all regions.)

Which of the following are the things that Amazon CloudWatch Logs can accomplish? (Select TWO)

Answer: 1. Adjust the retention policy for each log group 2. Monitor application logs from Amazon EC2 Instances (You can use Amazon CloudWatch Logs to monitor, store, and access your log files from Amazon Elastic Compute Cloud (Amazon EC2) instances, AWS CloudTrail, Route 53, and other sources. CloudWatch Logs enables you to centralize the logs from all of your systems, applications, and AWS services that you use, in a single, highly scalable service. You can then easily view them, search them for specific error codes or patterns, filter them based on specific fields, or archive them securely for future analysis.)

Users from different parts of the globe are complaining about the slow performance of the newly launched photo-sharing website in loading their high-resolution images. Which combination of AWS services should you use to serve the files with lowest possible latency? (Select TWO) - Amazon CloudFront - Amazon Elastic File System - AWS Storage Gateway - Amazon Glacier - Amazon S3

Answer: 1. Amazon CloudFront 2. Amazon S3 (You can configure your application to deliver static content and decrease the end-user latency using Amazon S3 and Amazon CloudFront. High-resolution images, videos, and other static files can be stored in Amazon S3. CloudFront speeds up content delivery by leveraging its global network of data centers, known as edge locations, to reduce delivery time by caching your content close to your end-users. CloudFront fetches your content from an origin, such as an Amazon S3 bucket, an Amazon EC2 instance, an Amazon Elastic Load Balancing load balancer or your own web server, when it's not already in an edge location. CloudFront can be used to deliver your entire website or application, including dynamic, static, streaming, and interactive content. You can set your Amazon S3 bucket as the origin of your CloudFront web distribution.)

Which AWS services should you use to store rapidly changing data with low read and write latencies? (Select TWO)

Answer: 1. Amazon RDS 2. Amazon EBS (Rapidly changing data - Data that must be updated very frequently might be better served by a storage solution with lower read / write latencies, such as Amazon EBS volumes, Amazon RDS or other relational databases, or Amazon DynamoDB. These services are suitable to use in storing rapidly changing data with low read and write latencies.)

Which of the following characteristics correctly describes the Amazon Simple Storage Service? (Select TWO)

Answer: 1. An object storage service​ 2. A highly durable storage infrastructure (Amazon S3 provides easy-to-use management features so you can organize your data and configure finely-tuned access controls to meet your specific business, organizational, and compliance requirements. Amazon S3 is designed for 99.999999999% (11 9's) of durability and stores data for millions of applications for companies all around the world. Amazon S3 provides customers with a highly durable storage infrastructure.)

A company is in the process of choosing the most suitable AWS Region to migrate their applications. Which of the following factors should they consider? (Select TWO)

Answer: 1. Enhance customer experiences by reducing latency to users. ​ 2. Support country-specific data sovereignty compliance requirements.​

Which of the following is true regarding Amazon Relational Database Service (Amazon RDS)? (Select TWO) ​

Answer: 1. Makes it easy to set up, operate, and scale a relational database 2. Simplifies the management of time-consuming database administration tasks (Amazon Relational Database Service (Amazon RDS) makes it easy to set up, operate, and scale a relational database in the cloud. It provides cost-efficient and resizable capacity while automating time-consuming administration tasks such as hardware provisioning, database setup, patching, and backups. It frees you to focus on your applications so you can give them the fast performance, high availability, security, and compatibility they need. Amazon RDS is available on several database instance types such as optimized for memory, performance, or I/O and provides you with six familiar database engines to choose from, including Amazon Aurora, PostgreSQL, MySQL, MariaDB, Oracle Database, and SQL Server. You can use the AWS Database Migration Service to migrate easily or replicate your existing databases to Amazon RDS.)

Which two services are used for VPC security and can be found in the VPC dashboard in the AWS Console? (Select TWO.)

Answer: 1. Network ACLs 2. Security Groups (Amazon Virtual Private Cloud (Amazon VPC) lets you provision a logically isolated section of the AWS Cloud where you can launch AWS resources in a virtual network that you define. In your VPC dashboard, you can manage all of the components of your VPCs such as the Subnets, Internet Gateways, NAT Gateways, Elastic IPs and many more. You can also control the security of your VPC by configuring the Network ACLs and Security Groups.)

Which of the following is true regarding the Developer support plan in AWS? (Select TWO)

Answer: 1. No access to the AWS Support API 2. Limited access to the 7 Core Trusted Advisor checks

In AWS Trusted Advisor, which of the following options are included among the five categories being considered to analyze your AWS environment and provide the best practice recommendations? (Select TWO)

Answer: 1. Performance 2. Fault Tolerance (AWS Trusted Advisor is an online tool that provides you real-time guidance to help you provision your resources following AWS best practices. It inspects your AWS environment and makes recommendations for saving money, improving system performance and reliability, or closing security gaps. Whether establishing new workflows, developing applications, or as part of ongoing improvement, take advantage of the recommendations provided by Trusted Advisor on a regular basis to help keep your solutions provisioned optimally.) Cost Optimization - recommendations that can potentially save you money by highlighting unused resources and opportunities to reduce your bill. Security - identification of security settings that could make your AWS solution less secure. Fault Tolerance - recommendations that help increase the resiliency of your AWS solution by highlighting redundancy shortfalls, current service limits, and over-utilized resources. Performance - recommendations that can help to improve the speed and responsiveness of your applications. Service Limits - recommendations that will tell you when service usage is more than 80% of the service limit.

Which of the following below are the benefits of using Consolidated billing in AWS? (Select TWO) - Share the volume pricing and Reserved Instance discounts by combining the usage across all accounts in the organization - Allows one member account to pay the charges of all the master accounts - You get one bill for multiple accounts - Consolidate together the billing and payment of both AWS accounts and Amazon Internet Services Pvt. Ltd (AISPL) accounts - Consolidated all the bills from multiple AWS accounts for only $1 every month

Answer: 1. Share the volume pricing and Reserved Instance discounts by combining the usage across all accounts in the organization 2. You get one bill for multiple accounts (You can use the consolidated billing feature in AWS Organizations to consolidate billing and payment for multiple AWS accounts or multiple Amazon Internet Services Pvt. Ltd (AISPL) accounts. Every organization in AWS Organizations has a master account that pays the charges of all the member accounts. The master account is also called a payer account, and the member account is also known as a linked account.)

Which of the following can you use to resolve the connection between your on-premises VPN and your AWS virtual private cloud? (Select TWO.)

Answer: 1. Virtual Private Gateway (An Amazon VPC Site-to-Site VPN connection can link your data center (or network) to your Amazon Virtual Private Cloud (VPC). A customer gateway is an anchor on your side of that connection. It can be a physical or software appliance. The anchor on the AWS side of the VPN connection is called a virtual private gateway) 2. Amazon Route 53 (Amazon Route 53 is a highly available and scalable cloud Domain Name System (DNS) web service. It is designed to give developers and businesses an extremely reliable and cost-effective way to route end users to Internet applications by translating names like www.tutorialsdojo.com into the numeric IP addresses like 192.0.2.1 that computers use to connect to each other.)

What are the things that you can implement to improve the security of your Identity and Access Management (IAM) users? (Select TWO)

Answer: 1. Configure a strong password policy for your users 2. Enable Multi-Factor Authentication (MFA) (Configure a strong password policy for your users: If you allow users to change their own passwords, require that they create strong passwords and that they rotate their passwords periodically.) (Enable MFA: For extra security, we recommend that you require multi-factor authentication (MFA) for all users in your account. With MFA, users have a device that generates a response to an authentication challenge. Both the user's credentials and the device-generated response are required to complete the sign-in process. If a user's password or access keys are compromised, your account resources are still secure because of the additional authentication requirement.)

What is the minimum number of Availability Zones that you should set up for your Application Load Balancer in order to create a highly available architecture?

Answer: 2 (Both 3 and 4 Availability Zones are incorrect. Although these will certainly provide you with a higher level of availability, you simply just need a minimum of 2 AZs to make a highly available architecture.)

Which of the following best describes what CloudWatch is? ​ A. A rules repository B. A metric repository C. An audit service that records all API calls made to your AWS account D. An automated security assessment service

Answer: A metric repository (Amazon CloudWatch is basically a metrics and logs repository. An AWS service, such as Amazon EC2, puts metrics and monitoring logs into Cloudwatch, and you can view statistics based on those metrics. If you put your own custom metrics into the service, you can retrieve statistics on these metrics as well.)

For security audit, a company needs to download the compliance-related documents in AWS such as ISO certifications, Payment Card Industry (PCI), and Service Organization Control (SOC) reports. Which of the following should they use to retrieve these files? A. AWS Certificate Manager B. AWS Artifact C. AWS Trusted Advisor D. AWS CloudTrail

Answer: AWS Artifact (AWS Artifact is your go-to, central resource for compliance-related information that matters to you. It provides on-demand access to AWS' security and compliance reports and select online agreements. Reports available in AWS Artifact include our Service Organization Control (SOC) reports, Payment Card Industry (PCI) reports, and certifications from accreditation bodies across geographies and compliance verticals that validate the implementation and operating effectiveness of AWS security controls)

Which AWS service allows your EC2 compute capacity to automatically scale based on the incoming traffic?

Answer: AWS Auto Scaling (AWS Auto Scaling enables you to configure automatic scaling for the AWS resources that are part of your application in a matter of minutes. The AWS Auto Scaling console provides a single user interface to use the automatic scaling features of multiple AWS services. You can configure automatic scaling for individual resources or for whole applications.)

Which of the following allows you to set coverage targets and receive alerts when your utilization drops below the threshold you define?

Answer: AWS Budgets (AWS Budgets gives you the ability to set custom budgets that alert you when your costs or usage exceed (or are forecasted to exceed) your budgeted amount. You can also use AWS Budgets to set reservation utilization or coverage targets and receive alerts when your utilization drops below the threshold you define. Reservation alerts are supported for Amazon EC2, Amazon RDS, Amazon Redshift, Amazon ElastiCache, and Amazon OpenSearch reservations)

Which service provides event history of your AWS account activity, including actions taken through the AWS Management Console, AWS SDKs, command line tools, and other AWS services? A. Amazon CloudWatch B. AWS CloudTrail C. AWS Infrastructure Event Management D. AWS Config

Answer: AWS CloudTrail (AWS CloudTrail is a service that enables governance, compliance, operational auditing, and risk auditing of your AWS account. With CloudTrail, you can log, continuously monitor, and retain account activity related to actions across your AWS infrastructure. CloudTrail provides event history of your AWS account activity, including actions taken through the AWS Management Console, AWS SDKs, command-line tools, and other AWS services. This event history simplifies security analysis, resource change tracking, and troubleshooting.)

Which of the following provides you the most granular data about your AWS costs and usage and also load that information into Amazon Athena, Amazon Redshift, AWS QuickSight, or a tool of your choice?

Answer: AWS Cost and Usage Report (The Cost and Usage Report is your one-stop-shop for accessing the most granular data about your AWS costs and usage. You can also load your cost and usage information into Amazon Athena, Amazon Redshift, AWS QuickSight, or a tool of your choice.)

Which of the following Cost Management Tools allows you to track your Amazon EC2 Reserved Instance (RI) usage and view the discounted RI rate that was charged to your resources? ​ A. AWS Cost Explorer B. AWS Cost and Usage report C. AWS Systems Manager ​D. AWS Budgets

Answer: AWS Cost and Usage Reports (The Cost and Usage Report is your one-stop shop for accessing the most granular data about your AWS costs and usage. You can also load your cost and usage information into Amazon Athena, Amazon Redshift, AWS QuickSight, or a tool of your choice. It lists AWS usage for each service category used by an account and its IAM users in hourly or daily line items, as well as any tags that you have activated for cost allocation purposes. You can also customize the AWS Cost & Usage Report to aggregate your usage data to the daily or hourly level.)

Tutorials Dojo would like to test their new mobile app on multiple devices at once in a coordinated fashion using AWS. Which of the following services will help speed up the process?

Answer: AWS Device Farm (AWS Device Farm is an application testing service that lets you improve the quality of your web and mobile apps by testing them across an extensive range of desktop browsers and real mobile devices; without having to provision and manage any testing infrastructure. You can use AWS Device Farm to quickly test a native, hybrid, or web app and see the results. It also displays or pinpoints bugs and performance issues in your app. In AWS, you can test your app against a massive collection of physical devices in parallel.)

Which service should a company use to centrally manage policies and consolidate billing across multiple AWS accounts?

Answer: AWS Organizations​ (AWS Organizations helps you centrally govern your environment as you grow and scale your workloads on AWS. Whether you are a growing startup or a large enterprise, Organizations helps you to centrally manage billing; control access, compliance, and security; and share resources across your AWS accounts.)

A company is planning to launch a new system in AWS but they do not have an employee who has an AWS-related expertise. Which of the following can help the company to design, architect, build, migrate, and manage their workloads and applications on AWS?

Answer: AWS Partner Network Consulting Partners (The AWS Partner Network (APN) is focused on helping partners build successful AWS-based businesses to drive superb customer experiences. This is accomplished by developing a global ecosystem of Partners with specialties unique to each customer's needs. There are two types of APN Partners: 1. APN Consulting Partners 2. APN Technology Partners APN Consulting Partners are professional services firms that help customers of all sizes design, architect, migrate, or build new applications on AWS. Consulting Partners include System Integrators (SIs), Strategic Consultancies, Resellers, Digital Agencies, Managed Service Providers (MSPs), and Value-Added Resellers (VARs). APN Technology Partners provide software solutions that are either hosted on or integrated with the AWS platform. Technology Partners include Independent Software Vendors (ISVs), SaaS, PaaS, developer tools, management, and security vendors.)

Which of the following is capable of inspecting your AWS environment and makes recommendations for saving money, improving system performance and reliability, or closing security gaps?

Answer: AWS Trusted Advisor (AWS Trusted Advisor is an online tool that provides you real-time guidance to help you provision your resources following AWS best practices. It inspects your AWS environment and makes recommendations for saving money, improving system performance and reliability, or closing security gaps. Whether establishing new workflows, developing applications, or as part of ongoing improvement, take advantage of the recommendations provided by Trusted Advisor on a regular basis to help keep your solutions provisioned optimally.)

A company which has a basic support plan needs resources to deploy, test, and improve their AWS environment. Which of the following can they use for free?

Answer: AWS online documentation, whitepapers, blogs and support forums (AWS Support offers a range of plans that provide access to tools and expertise that support the success and operational health of your AWS solutions. All support plans provide 24×7 access to customer service, AWS documentation, whitepapers, and support forums. For technical support and more resources to plan, deploy, and improve your AWS environment, you can select a support plan that best aligns with your AWS use case.)

What should you provide to your developers to allow them to access your AWS services through the AWS CLI?

Answer: Access keys (The AWS Access Key ID and AWS Secret Access Key are your AWS credentials. They are associated with an AWS Identity and Access Management (IAM) user or role that determines what permissions you have. Access keys are long-term credentials for an IAM user or the AWS account root user. You can use access keys to sign programmatic requests to the AWS CLI or AWS API (directly or using the AWS SDK). If you don't have access keys, you can create them from the AWS Management Console. As a best practice, do not use the AWS account root user access keys for any task where it's not required. Instead, create a new administrator IAM user with access keys for yourself.)

A company is currently using an On-Demand EC2 instance for their application which they plan to migrate to a Reserved EC2 Instance to save on cost. Which of the following is the most cost-effective option if the application being hosted would be used for more than 3 years? ​ A. All Upfront Convertible Reserved Instance pricing for a 1-year term. B. No Upfront Standard Reserved Instance pricing for a 1-year term that is renewed every year. C. ​All Upfront, Standard Reserved Instance pricing for a 3-year term. D. No Upfront Convertible Reserved Instance pricing for a 3-year term.

Answer: All Upfront, Standard Reserved Instance pricing for a 3-year term. (All Upfront option: You pay for the entire Reserved Instance term with one upfront payment. This option provides you with the largest discount compared to On-Demand instance pricing. Partial Upfront option: You make a low upfront payment and are then charged a discounted hourly rate for the instance for the duration of the Reserved Instance term. No Upfront option: Does not require any upfront payment and provides a discounted hourly rate for the duration of the term.)

Which AWS service should you use if you need to launch a highly scalable MySQL database?

Answer: Amazon Aurora​ (Amazon Aurora is a MySQL and PostgreSQL-compatible relational database built for the cloud that combines the performance and availability of traditional enterprise databases with the simplicity and cost-effectiveness of open source databases.)

Which service should you use if you need a scalable, fast, and flexible nonrelational database service? ​ A. Amazon S3 B. Amazon Redshift C. Amazon DynamoDB​ D. Amazon RDS

Answer: Amazon DynamoDB​ (Amazon DynamoDB is a fully managed NoSQL database service that provides fast and predictable performance with seamless scalability. DynamoDB lets you offload the administrative burdens of operating and scaling a distributed database so that you don't have to worry about hardware provisioning, setup, and configuration, replication, software patching, or cluster scaling. DynamoDB also offers encryption at rest, which eliminates the operational burden and complexity involved in protecting sensitive data.)

There is a requirement to launch a new database in AWS where the customer assumes the responsibility and management of the guest operating system, including updates and security patches. Which of the following services should the customer use?

Answer: Amazon EC2 (Amazon Elastic Compute Cloud (Amazon EC2) is a web service that provides secure, resizable compute capacity in the cloud. It is designed to make web-scale cloud computing easier for developers. Since you have more control over your EC2 instance, you can install any database that you prefer and manage its guest operating system, including the required updates and security patches. You can also choose an AMI with a pre-installed database (such as PostgreSQL or MySQL) in the Amazon EC2 Dashboard to save your time.)

Which service should you use if there is a need to launch a customized self-hosted database which requires a scheduled shutdown every night to save on cost?

Answer: Amazon EC2 instance with an EBS volume (Amazon EBS provides durable, block-level storage volumes that you can attach to a running instance. You can use Amazon EBS as a primary storage device for data that requires frequent and granular updates. For example, Amazon EBS is the recommended storage option when you run a database on an instance.)

Among the following services, which is the most suitable one to use to store the results of I/O-intensive SQL database queries to improve application performance?

Answer: Amazon ElastiCache (Amazon ElastiCache offers fully managed Redis and Memcached. Seamlessly deploy, run, and scale popular open source compatible in-memory data stores. With this service, you can build data-intensive apps or improve the performance of your existing apps by retrieving data from high throughput and low latency in-memory data stores. In-memory caching improves application performance by storing critical pieces of data in memory for low-latency access. Cached information may include the results of I/O-intensive database queries or the results of computationally-intensive calculations. The in-memory caching provided by Amazon ElastiCache can be used to significantly improve latency and throughput for many read-heavy application workloads (such as social networking, gaming, media sharing and Q&A portals) or compute-intensive workloads (such as a recommendation engine). )

What service provides the lowest-cost storage option for retaining database backups which also allows occasional data retrieval in minutes?

Answer: Amazon S3 Glacier Flexible Retrieval (Amazon S3 Glacier storage classes are designed to be the lowest-cost Amazon S3 storage classes, allowing you to archive large amounts of data at a very low cost. This makes it feasible to retain all the data you want for use cases like data lakes, analytics, IoT, machine learning, compliance, and media asset archiving. You pay only for what you need, with no minimum commitments or up-front fees. S3 Glacier provides the following storage classes: - S3 Glacier Instant Retrieval for archiving data that might be needed once per quarter and needs to be restored quickly (milliseconds) - S3 Glacier Flexible Retrieval for archiving data that might infrequently need to be restored, once or twice per year, within a few hours - S3 Glacier Deep Archive for archiving long-term backup cycle data that might infrequently need to be restored within 12 hours)

Which statement below is correct regarding the components of the AWS Global Infrastructure?

Answer: An AWS Region contains multiple Availability Zones (The AWS Global Infrastructure delivers a cloud infrastructure companies can depend on—no matter their size, changing needs, or challenges. The AWS Global Infrastructure is designed and built to deliver the most flexible, reliable, scalable, and secure cloud computing environment with the highest quality global network performance available today. Every component of the AWS infrastructure is designed and built for redundancy and reliability, from regions to networking links to load balancers to routers and firmware.)

Which of the following is a key use case of AWS Control Tower?

Answer: An easy way to establish a landing zone that implements an AWS well-architected, multi-account environment and applies the AWS best practices. (AWS Control Tower is for customers who want to create or manage their multi-account AWS environment with best practices. It offers prescriptive guidance to govern your AWS environment at scale. It gives you control over your environment without sacrificing the speed and agility AWS provides for builders. AWS Control Tower offers the easiest way to set up and govern a secure, multi-account AWS environment. It establishes a landing zone that is based on best-practices blueprints and enables governance using guardrails you can choose from a pre-packaged list. The landing zone is a well-architected, multi-account baseline that follows AWS best practices. Guardrails implement governance rules for security, compliance, and operations.)

Which type of Elastic Load Balancer supports path-based routing, host-based routing, and bi-directional communication channels using WebSockets? A. Both Application Load Balancer and Network Load Balancer B. Network Load Balancer C. Application Load Balancer D. Classic Load Balancer

Answer: Application Load Balancer (Application Load Balancer - This is best suited for load balancing of HTTP and HTTPS traffic and provides advanced request routing targeted at the delivery of modern application architectures, including microservices and containers. Operating at the individual request level (Layer 7), Application Load Balancer routes traffic to targets within Amazon Virtual Private Cloud (Amazon VPC) based on the content of the request.)

How can you apply and easily manage the common access permissions to a large number of IAM users in AWS?

Answer: Attatch the necessary policies or permission required to a new IAM group then afterwards, add the IAM Users to the IAM group (An IAM group is a collection of IAM users. Groups let you specify permissions for multiple users, which can make it easier to manage the permissions for those users. For example, you could have a group called Admins and give that group the types of permissions that administrators typically need. Any user in that group automatically has the permissions that are assigned to the group.)

_________ is one of the components of AWS Global Infrastructure which consists of one or more discrete data centers each with redundant power, networking, and connectivity, and housed in separate facilities. ​ A. AWS Region B. Edge location ​C. VPC ​D. Availability Zone

Answer: Availability Zone (The AWS Cloud infrastructure is built around AWS Regions and Availability Zones. An AWS Region is a physical location in the world where we have multiple Availability Zones. Availability Zones consist of one or more discrete data centers, each with redundant power, networking, and connectivity, housed in separate facilities.)

In the Shared Responsibility Model, which of the following options below is a shared control between AWS and the customer?

Answer: Awareness and training (Shared Controls: Controls which apply to both the infrastructure layer and customer layers, but in completely separate contexts or perspectives. In a shared control, AWS provides the requirements for the infrastructure and the customer must provide their own control implementation within their use of AWS services. Examples include: - Patch Management: AWS is responsible for patching and fixing flaws within the infrastructure, but customers are responsible for patching their guest OS and applications. - Configuration Management: AWS maintains the configuration of its infrastructure devices, but a customer is responsible for configuring their own guest operating systems, databases, and applications. - Awareness & Training: AWS trains AWS employees, but a customer must train their own employees.)

A company is using Amazon S3 to store their static media contents such as photos and videos. Which of the following should you use to provide specific users access to the bucket?

Answer: Bucket policy (Bucket policy and user policy are two of the access policy options available for you to grant permission to your Amazon S3 resources. Both use JSON-based access policy language. For your bucket, you can add a bucket policy to grant other AWS accounts or IAM users permissions for the bucket and the objects in it. Any object permissions apply only to the objects that the bucket owner creates. Bucket policies supplement, and in many cases, replace ACL-based access policies.)

Which of the following is the most cost-effective AWS Support Plan to use if you need access to AWS Support API for programmatic case management?

Answer: Business (The AWS Support API provides access to some of the features of the AWS Support Center. This API allows programmatic access to AWS Support Center features to create, manage, and close your support cases, and operationally manage your Trusted Advisor check requests and status. AWS provides this access for AWS Support customers who have a Business or Enterprise support plan.)

A company has enlisted the help of TDojo Consulting Co. to assist them in designing an AWS disaster recovery solution for their on-premises bare metal servers and SQL databases. The implementation has to be robust, fast, and simple to use. It should also prevent any type of data loss from occurring. The company would like to keep track of the status of the migration. Which tool should the team adopt for the DR solution?

Answer: CloudEndure Disaster Recovery ( a tool that minimizes downtime and data loss by providing fast, reliable recovery of physical, virtual, and cloud-based servers into AWS Cloud. You can also use CloudEndure Disaster Recovery to protect your most critical SQL databases thanks to the continuous replication of your machines into a low-cost staging area in your target AWS account and preferred Region.)

You need to launch a new EC2 Instance for a beta program which is scheduled to change its instance family, operating system and tenancy exactly 3 months after its trial period. Which type of Reserved Instance (RI) should you use?

Answer: Convertible RI (Convertible Reserved Instances (RI) provide you with a significant discount (up to 54%) compared to On-Demand Instances and can be purchased for a 1-year or 3-year term. Purchase Convertible Reserved Instances if you need additional flexibility, such as the ability to use different instance families, operating systems, or tenancies over the Reserved Instance term.)

Which of the following allows you to categorize and track your AWS costs on a detailed level?

Answer: Cost allocation tags (A tag is a label that you or AWS assigns to an AWS resource. Each tag consists of a key and a value. A key can have more than one value. You can use tags to organize your resources, and cost allocation tags to track your AWS costs on a detailed level. After you activate cost allocation tags, AWS uses these tags to organize your resource costs on your cost allocation report, to make it easier for you to categorize and track your AWS costs.)

A company has web servers running on Amazon EC2 instances that access a RESTful API hosted on their on-premises data center. What kind of architecture is the company using?

Answer: Hybrid architecture (Enterprise environments are often a mix of cloud, on-premises data centers, and edge locations. Hybrid cloud architectures help organizations integrate their on-premises and cloud operations to support a broad spectrum of use cases using a common set of cloud services, tools, and APIs across on-premises and cloud environments. Customers can seamlessly integrate their on-premises and cloud storage, networking, identity management, and security policies to enable use cases such as data center extension to the cloud, backup, and disaster recovery to the cloud, and hybrid data processing. Since the company has web servers running on Amazon EC2 instances that access a RESTful API hosted on their on-premises data center, they are considered to be using a hybrid cloud computing deployment model)

Which of the following is true regarding Elastic Load Balancing?

Answer: It distributes incoming application traffic across multiple targets, such as Amazon EC2 instances, in multiple Availability Zones (AWS Elastic Load Balancing automatically distributes incoming application traffic across multiple targets, such as Amazon EC2 instances, containers, IP addresses, and Lambda functions. It can handle the varying load of your application traffic in a single Availability Zone or across multiple Availability Zones.)

Which of the following is true on how AWS lessens the time to provision your IT resources? ​

Answer: It provides various ways to programmatically provision IT resources. (AWS provides you various ways and tools to programmatically provision IT resources such as AWS CLI, AWS API and the web-based AWS Management Console.)

A customer is planning to migrate some of their web applications that are hosted on-premises to AWS. Which of the following is a benefit of using AWS over virtualized data centers?

Answer: Lower variable cost and lower upfront costs (AWS helps customers reduce large capital investments with lower variable costs. AWS also gives customers the opportunity to work on their own terms without long-term lock-in, reducing the risks from unplanned capacity and demand. AWS helps finance teams plan and forecast more effectively, while giving IT teams the capacity and resources they need, even during peak periods.)

Which of the following is a key financial benefit of migrating systems hosted on your on-premises data center to AWS?

Answer: Opportunity to replace upfront capital expenses (CAPEX) with low variable costs

Which among the options below is a highly available and scalable cloud Domain Name System (DNS) web service in AWS?

Answer: Route 53 (Amazon Route 53 is a highly available and scalable cloud Domain Name System (DNS) web service. It is designed to give developers and businesses an extremely reliable and cost-effective way to route end users to Internet applications by translating names like www.tutorialsdojo.com into the numeric IP addresses like 192.0.2.1 that computers use to connect to each other. Amazon Route 53 is fully compliant with IPv6 as well.)

Which of the following options below is solely the responsibility of the customer in accordance with the AWS shared responsibility model? A. Zone security B. Awareness and training C. Patching of the host operating system D. Configuration management

Answer: Service and Communications Protection or Zone Security (Service and Communications Protection or Zone Security which may require a customer to route or zone data within specific security environments.)

In AWS, _______ is one of the advantages of Consolidated Billing.

Answer: Volume pricing (For billing purposes, AWS treats all the accounts in the organization as if they were one account. Some services, such as Amazon EC2 and Amazon S3, have volume pricing tiers across certain usage dimensions that give you lower prices the more you use the service. With consolidated billing, AWS combines the usage from all accounts to determine which volume pricing tiers to apply, giving you a lower overall price whenever possible. AWS then allocates each linked account a portion of the overall volume discount based on the account's usage.)

Which of the following is a key design principle when running an application in AWS? A. Logical coupling B. Loose coupling C. Semantic coupling D. Tight coupling

B. Loose coupling

Which of the following is an advantage of using managed services like RDS, ElastiCache, and CloudSearch in AWS?

B. Simplifies all of your OS patching and backup activities to help keep your resources current and secure (Amazon Relational Database Service (Amazon RDS) makes it easy to set up, operate, and scale a relational database in the cloud. It provides cost-efficient and resizable capacity while automating time-consuming administration tasks such as hardware provisioning, database setup, patching and backups. It frees you to focus on your applications so you can give them the fast performance, high availability, security and compatibility they need.)

Which of the following cloud architecture principles below is followed if you distribute your workloads across multiple Availability Zones in AWS as well as using Amazon RDS Multi-AZ? A. Decouple your components B. Think parallel C. Design for failiure D. Implement elasticity

C. Design for failure

Which of the following shares a collection of offerings to help you achieve specific business outcomes related to enterprise cloud adoption through paid engagements in several specialty practice areas? ​ A. AWS Enterprise Support ​B. Concierge Support C. AWS Technical Account Manager D. AWS Professional Services

D. AWS Professional Services

"Increase speed and ______" is one of the six advantages of Cloud Computing which refers to the reduction of acquisition time for making new compute resources available to your developers from weeks to just minutes. ​ A. High Availability ​B. Elasticity ​C. Reliability ​D. Agility

D. Agility

You need to host a new Microsoft SQL Server database in AWS for an urgent project. Which AWS services should you use to meet this requirement? (Select TWO)

​Answer: 1. Amazon Relational Database Service (Amazon RDS) 2. Amazon EC2 (Amazon Web Services offers you the flexibility to run Microsoft SQL Server for as much or as little time as you need and select from a number of versions and editions. SQL Server on Amazon Elastic Compute Cloud (Amazon EC2) and Amazon Elastic Block Store (Amazon EBS) gives you complete control over every setting, just like when it's installed on-premises. Amazon Relational Database Service (Amazon RDS) is a managed service that takes care of all the maintenance, backups, and patching for you.)

What are the benefits of using Edge locations in AWS? (Select TWO)

​Answer: 1. Provides caching which reduces the load on your origin servers ​2. Improves application performance by delivering content closer to your users (Regional edge caches are CloudFront locations that are deployed globally, close to your viewers. They're located between your origin server and the points of presence (POPs) —global edge locations that serve content directly to viewers. As objects become less popular, individual POPs might remove those objects to make room for more popular content. Regional edge caches have a larger cache than an individual POP, so objects remain in the cache longer at the nearest regional edge cache location. This helps keep more of your content closer to your viewers, reducing the need for CloudFront to go back to your origin server, and improving overall performance for viewers.)

Which of the following Amazon EC2 instance purchasing options can help you address compliance requirements and reduce costs by allowing you to use your existing server-bound software licenses?

​Answer: Dedicated Host​ (An Amazon EC2 Dedicated Host is a physical server with EC2 instance capacity fully dedicated to your use. Dedicated Hosts can help you address compliance requirements and reduce costs by allowing you to use your existing server-bound software licenses. Dedicated Hosts allow you to use your existing per-socket, per-core, or per-VM software licenses, including Microsoft Windows Server, Microsoft SQL Server, SUSE Linux Enterprise Server, Red Hat Enterprise Linux, or other software licenses that are bound to VMs, sockets, or physical cores, subject to your license terms.)

A company is designing a new cloud architecture for its mission-critical application in AWS which must be highly-available. Which of the following is the recommended pattern to meet this requirement?

​Answer: Use multiple Availability Zones to ensure that the application can handle the failure of any single component. (Availability Zones are the core of the AWS infrastructure architecture and they form the foundation of AWS's and customers' reliability and operations. Availability Zones are designed for physical redundancy and they provide resilience, enabling uninterrupted performance, even in the event of power outages, Internet downtime, floods, and other natural disasters.)


Kaugnay na mga set ng pag-aaral

MGMT 405: Organizational Staffing Exam 1

View Set

NHA Module 16 Communication and Customer Service

View Set

Psychological Disorders Part II: Electric Boogaloo

View Set

Public Speaking - Chapter 19 Presenting Your Speech Online

View Set

Chapter 42: Ricci - Children with Alteration in Bowel Elimination/GI Disorders

View Set