AWS questions

Réussis tes devoirs et examens dès maintenant avec Quizwiz!

Which of the following is not a benefit of Amazon S3? (Choose TWO)

-"Amazon S3 can run any type of application or backend system" is not a benefit of S3 and thus is a correct answer. Amazon S3 is a storage service not a compute service. -"Amazon S3 can be scaled manually to store and retrieve any amount of data from anywhere" is not a benefit of S3 and thus is a correct answer. Amazon S3 scales automatically to store and retrieve any amount of data from anywhere.

The principle "design for failure and nothing will fail" is very important when designing your AWS Cloud architecture. Which of the following would help adhere to this principle? (Choose two)

-AWS Elastic Load Balancer -Availability Zones You can achieve this by deploying your AWS resources in multiple Availability zones. Availability zones are isolated from each other, therefore if one availability zone goes down, the other AZ's will still be up and running and hence your application will be more fault tolerant.

Hundreds of thousands of DDoS attacks are recorded every month worldwide. What service does AWS provide to help protect AWS Customers from these attacks? (Choose TWO)

-AWS WAF -AWS shield AWS provides flexible infrastructure and services that help customers implement strong DDoS mitigations and create highly available application architectures that follow AWS Best Practices for DDoS Resiliency.

A company has moved to AWS recently. Which of the following AWS Services will help ensure that they have the proper security settings? (Choose TWO)

-Amazon Inspector -AWS trusted advisor

Which of the below options are related to the reliability of AWS? (Choose two)

-Automatically provisioning new resources to meet demand -ability to recover quickly from failures

In the AWS Shared responsibility Model, which of the following are the responsibility of the customer? (Choose TWO)

-Configuring network access rules -Setting password complexity rules

A company has developed an eCommerce web application in AWS. What should they do to ensure that the application has the highest level of availability?

-Deploy the application across multiple regions and availability zones

What should you do in order to keep the data on EBS volumes safe? (Choose two)

-Ensure that EBS data is encrypted at rest -Create EBS snapshots (Creating snapshots of EBS Volumes can help ensure that you have a backup of your EBS volumes just in case any issues arise.)

What are the benefits of having infrastructure hosted in AWS? (Choose two)

-Increased speed and agility -All of the physical security and most of the data/network security are taken care of for you

What does the AWS Personal Health Dashboard provide? (Choose two)

-Personalized view of AWS service health -Detailed troubleshooting guidance to address AWS events impacting your resources

What does AWS Snowball provide?

-Secure transfer of large amounts of data into and out of the AWS Cloud

Which of the following is NOT correct regarding Amazon EC2 On-demand instances?

-You have to pay a startup fee when launching a new instance for the first time (There are no startup or termination fees associated with Amazon EC2.)

A company is planning to host an educational website on AWS. Their video courses will be streamed all around the world. Which of the following AWS services will help achieve high transfer speeds?

AWS CloudFront - is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds, all within a developer-friendly environment.

Which of the following services allows customers to manage their agreements with AWS?

AWS Artifact - is a self-service audit artifact retrieval portal that provides customers with on-demand access to AWS' compliance documentation and AWS agreements.

What is the AWS service that enables AWS architects to manage infrastructure as code?

AWS CloudFormation - allows you to use programming languages or a simple text file to model and provision, in an automated and secure manner, all the resources needed for your applications across all regions and accounts.

You have noticed that several critical Amazon EC2 instances have been terminated. Which of the following AWS services would help you determine who took this action?

AWS CloudTrail - With CloudTrail, you can log, continuously monitor, and retain account activity related to actions across your AWS infrastructure. CloudTrail provides event history of your AWS account activity, including actions taken through the AWS Management Console, AWS SDKs, command line tools, and other AWS services.

Which of the following helps a customer view the Amazon EC2 billing activity for the past month?

AWS Cost & Usage Report - is your one-stop shop for accessing the most detailed information available about your AWS costs and usage.The AWS Cost & Usage Report lists AWS usage for each service category used by an account and its IAM users in hourly or daily line items, as well as any tags that you have activated for cost allocation purposes.

How can you view the distribution of AWS spending in one of your AWS accounts?

AWS Cost Explorer- is a free tool that you can use to view your costs and usage. You can view data up to the last 13 months, forecast how much you are likely to spend for the next three months, and get recommendations for what Reserved Instances to purchase

A company has decided to migrate its Oracle database to AWS. Which AWS service can help achieve this without negatively impacting the functionality of the source database?

AWS Database Migration Service (DMS) - The source database remains fully operational during the migration, minimizing downtime to applications that rely on the database. The AWS Database Migration Service can migrate your data to and from most widely used commercial and open-source databases.

What does Amazon CloudFront use to distribute content to global users with low latency?

AWS Edge Locations - To deliver content to global end users with lower latency, Amazon CloudFront uses a global network of Edge Locations and Regional Edge Caches in multiple cities around the world. Amazon CloudFront uses this network to cache copies of your content close to your end-users.

What is the AWS feature that provides an additional level of security above the default authentication mechanism of usernames and passwords? ​

AWS MFA - is a simple best practice that adds an extra layer of protection on top of using just your user name and password to authenticate.

AWS allows users to manage their resources using a web based user interface. What is the name of this interface?

AWS Management Console

What does AWS provide to deploy popular technologies - such as IBM MQ - on AWS with the least amount of effort and time?

AWS Quick Start Reference Deployments - outline the architectures for popular enterprise solutions on AWS and provide AWS CloudFormation templates to automate their deployment.

Your company is developing a critical web application in AWS, and the security of the application is a top priority. Which of the following AWS services will provide infrastructure security optimization recommendations?

AWS Trusted Advisor - improves the security of your application by closing gaps, enabling various AWS security features, and examining your permissions.

A company is concerned that they are spending money on underutilized compute resources in AWS. Which AWS feature will help ensure that their applications are automatically adding/removing EC2 compute capacity to closely match the required demand?

AWS auto-scaling - AWS Auto Scaling is the feature that automates the process of adding/removing server capacity (based on demand). Autoscaling allows you to reduce your costs by automatically turning off resources that aren't in use

A company has an AWS Enterprise Support plan. They want quick and efficient guidance with their billing and account inquiries. Which of the following should the company use?

AWS support concierge - The Concierge team will quickly and efficiently assist you with your billing and account inquiries, and work with you to help implement billing and account best practices so that you can focus on running your business.

Which of the following must an IAM user provide to interact with AWS services using the AWS Command Line Interface (AWS CLI)?

Access keys - consist of an access key ID and secret access key, which are used to sign programmatic requests to AWS using the CLI or the SDK.

Which of the following is an example of horizontal scaling in the AWS Cloud?

Adding more EC2 instances of the same size to handle an increase in traffic - Scaling horizontally takes place through an increase in the number of resources

You have set up consolidated billing for several AWS accounts. One of the accounts has purchased a number of reserved instances for 3 years. Which of the following is true regarding this scenario?

All accounts can receive the hourly cost benefit of the reserved instances. - the consolidated billing feature of AWS Organizations treats all the accounts in the organization as one account.

A developer is planning to build a two-tier web application that has a MySQL database layer. Which of the following AWS database services would provide automated backups for the application?

Amazon Aurora - is a MySQL and PostgreSQL-compatible relational database built for the cloud. Amazon Aurora combines the performance and availability of traditional enterprise databases with the simplicity and cost-effectiveness of open source databases.

Which of the following can be described as a global content delivery network (CDN) service?

Amazon CloudFront - is a global content delivery network (CDN) service that gives businesses and web application developers an easy and cost effective way to distribute content (such as videos, data, applications, and APIs) with low latency and high data transfer speeds.

You have deployed your application on multiple Amazon EC2 instances. Your customers complain that sometimes they can't reach your application. Which AWS service allows you to monitor the performance of your EC2 instances to assist in troubleshooting these issues?

Amazon CloudWatch - is a service that monitors AWS cloud resources and the applications you run on AWS. You can use Amazon CloudWatch to collect and track metrics, collect and monitor log files, set alarms, and automatically react to changes in your AWS resources.

What is the AWS database service that allows you to upload data structured in key-value format?

Amazon DynamoDB is a NoSQL database service. NoSQL databases are used for non-structured data that are typically stored in JSON-like, key-value documents.

Your company has a data store application that requires access to a NoSQL database. Which AWS database offering would meet this requirement?

Amazon DynamoDB-is a fast and flexible NoSQL database service for all applications that need consistent, single-digit millisecond latency at any scale. It is a fully managed cloud database and supports both document and key-value store models. Its flexible data model, reliable performance, and automatic scaling of throughput capacity, makes it a great fit for mobile, web, gaming, ad tech, IoT, and many other applications.

A company is deploying a new two-tier web application in AWS. Where should the most frequently accessed data be stored so that the application's response time is optimal?

Amazon ElastiCache - is a web service that makes it easy to deploy, operate, and scale an in-memory data store or cache in the cloud. The service improves the performance of web applications by allowing you to retrieve information from fast, managed, in-memory data stores, instead of relying entirely on slower disk-based databases.

The identification process of an online financial services company requires that new users must complete an online interview with their security team. The completed recorded interviews are only required in the event of a legal issue or a regulatory compliance breach. What is the most cost-effective service to store the recorded videos?

Amazon Glacier - is an extremely low-cost storage service that provides secure, durable, and flexible storage for long-term data backup and archival.

You work as an on-premises MySQL DBA. The work of database configuration, backups, patching, and DR can be time-consuming and repetitive. Your company has decided to migrate to the AWS Cloud. Which of the following can help save time on database maintenance so you can focus on data architecture and performance?

Amazon RDS - makes it easy to set up, operate, and scale a relational database in the cloud. It provides cost-efficient, resizable capacity while automating time-consuming administration tasks such as hardware provisioning, operating system maintenance, database setup, patching and backups.

Which service provides DNS in the AWS cloud?

Amazon Route 53 - is a global service that provides highly available and scalable Domain Name System (DNS) services, domain name registration, and health-checking web services.

Which service provides object-level storage in AWS?

Amazon S3 - Amazon S3 is an object level storage built to store and retrieve any amount of data from anywhere - web sites and mobile apps, corporate applications, and data from IoT sensors or devices. It is designed to deliver 99.999999999% durability, and stores data for millions of applications used by market leaders in every industry.

Which service is used to ensure that messages between software components are not lost if one or more components fail?

Amazon Simple Queue Service (SQS) is a fully managed message queuing service that enables you to send, store, and receive messages between software components at any volume, without losing messages or requiring other services to be available

What is the AWS service that provides a virtual network dedicated to your AWS account?

Amazon VPC - Amazon Virtual Private Cloud (Amazon VPC) allows you to carve out a portion of the AWS Cloud that is dedicated to your AWS account. Amazon VPC enables you to launch AWS resources into a virtual network that you've defined.

Which of the following are examples of AWS-Managed Services, where AWS is responsible for the operational and maintenance burdens of running the service? (Choose TWO)

Amazon elastic map reduce -Amazon EMR takes care of these tasks so you can focus on analysis. DynamoDB - is serverless with no servers to provision, patch, or manage and no software to install, maintain, or operate.

In order to implement best practices when dealing with a "Single Point of Failure," you should attempt to build as much automation as possible in both detecting and reacting to failure. Which of the following AWS services would help? (Choose TWO)

Auto scaling , ELB

Which of the below is a best-practice when designing solutions on AWS?

Automate wherever possible to make architectual experimentation easier

One of the most important AWS best-practices to follow is the cloud architecture principle of elasticity. How does this principle improve your architecture's design?

By automatically provisioning the required AWS resources based on changes in demand - The concept of Elasticity involves the ability of a service to automatically scale its resources up or down based on changes in demand.

Under the shared responsibility model, Which of the following is the AWS' responsibility?

Configuration infrastructure devices - AWS is responsible for the hardware and software that run AWS services. This includes patching the infrastructure software and configuring infrastructure devices.

Select TWO examples of the AWS shared controls.

Configuration management, Patch Management

You have AWS Basic support, and you have discovered that some AWS resources are being used maliciously, and those resources could potentially compromise your data. What should you do?

Contact the AWS abuse team - I. Spam: II. Port scanning: III. Denial of service attacks (DOS) IV. Intrusion attempts V. Hosting objectionable or copyrighted content VI. Distributing malware

An organization has decided to reserve EC2 compute capacity for three years in order to reduce costs. It is possible that the application workloads could change during the reservation time period. What is the EC2 Reserved Instance (RI) type that will allow the company to modify the reservation if they need to?

Convertible RIs - Convertible RIs provide a discount (up to 54% off On-Demand) and the capability to change the attributes of the RI as long as the exchange results in the creation of Reserved Instances of equal or greater value. These attributes include instance family, instance type, platform, scope, and tenancy.

A Japanese company hosts all of their applications on Amazon EC2 instances in the Tokyo Region. The company has opened new branches in the United States, and the US users are complaining of high latency. What can the company do to reduce latency for the users in the US while reducing costs?

Deploying new Amazon EC2 instances in a region located in the US - The only way to reduce latency for the US users is to provision new Amazon EC2 instances in a Region closer to or in the US, OR by using Amazon CloudFront to cache copies of the content in edge locations close to the US users.

What do you gain from setting up consolidated billing for five different AWS accounts under another master account?

Each AWS account gets volumed discounts - AWS treats all the accounts on the consolidated bill as one account

An organization has a large number of technical employees who operate their AWS Cloud infrastructure. What does AWS provide to help organize them into teams and then assign the appropriate permissions for each team?

IAM Groups - is a collection of IAM users that are managed as a unit. Groups let you specify permissions for multiple users, which can make it easier to manage the permissions for those users.

Adjusting compute capacity dynamically to reduce cost is an implementation of which AWS cloud best practice?

Implement Elasticity - In the cloud, resources are elastic, meaning they can instantly grow ( to maintain performance) or shrink ( to reduce costs).

A company is introducing a new product to their customers, and is expecting a surge in traffic to their web application. As part of their Enterprise Support plan, which of the following provides the company with architectural and scaling guidance?

Infrastructure event management - is a short-term engagement with AWS Support, included in the Enterprise-level Support product offering, and available for additional purchase for Business-level Support subscribers.

Availability Zones within a Region are connected over low-latency links. Which of the following is a benefit of these links?

Make synchronous replication of your data possible

Which of the following does NOT belong to the AWS Cloud Computing models?

Networking as a service (NaaS) -The three are Iaas, PaaS, SaaS

You want to run a questionnaire application for only one day (without interruption), which Amazon EC2 purchase option should you use?

On-Demand instances - you pay for compute capacity by the hour with no long-term commitments. You can increase or decrease your compute capacity depending on the demands of your application and only pay the specified hourly rate for the instances you use.

According to the AWS Acceptable Use Policy, which of the following statements is true regarding penetration testing of EC2 instances?

Penetration testing can be performed by the customer on their own instances without prior authorization from AWS

What is the advantage of the AWS-recommended practice of "decoupling" applications?

Reduces inter-dependencies so that failures do not impact other components of the application

Which statement is true regarding the AWS Shared Responsibility Model?

Responsibilities vary depending on the services used (Correct)

Which S3 storage class is best for data with unpredictable access patterns?

S3 Intelligent-Tiering - class is designed to optimize costs by automatically moving data to the most cost-effective access tier, without performance impact or operational overhead.

A startup company is operating on limited funds and is extremely concerned about cost overruns. Which of the below options can be used to notify the company when their monthly AWS bill exceeds $2000?

Set up a CloudWatch billing alarm that triggers an SNS notification to their email addresses -In CloudWatch, you can set up a billing alarm that triggers if your costs exceed a threshold that you set. This CloudWatch alarm can also be configured to trigger an SNS notification to your email address

As part of the Enterprise support plan, who is the primary point of contact for ongoing support needs?

TAM(technical account manager) - provides technical expertise for the full range of AWS services and obtains a detailed understanding of your use case and technology architecture.

You are working on a project that involves creating thumbnails of millions of images. Consistent uptime is not an issue, and continuous processing is not required. Which EC2 buying option would be the most cost-effective?

Spot instances - are a cost-effective choice if you can be flexible about when your applications run and if you don't mind if your applications get interrupted. For example, Spot Instances are well-suited for data analysis, batch jobs, background processing, and optional tasks.

What does the "Principle of Least Privilege" refer to?

You should grant your users only the permissions they need when they need them and nothing more


Ensembles d'études connexes

History 50 Multiple Choice Questions

View Set

Algebra 2: 7.05 Quiz: Coterminal Angles

View Set

College Math Unit 3 Lesson 1 Review

View Set