ITN 257- AWS Cloud Computing: Infrastructure and Services
Which of the following are direct benefits of server virtualization? (Select TWO.)
-Efficient (high-density) use of resources -Fast resource provisioning and launching
Which of the following AWS services are not likely to benefit from Amazon edge locations? (Select TWO.)
-Elastic Block Store (EBS) -RDS
Which of the following most accurately describes a subnet within the AWS ecosystem?
The block of IP addresses assigned for use within a single Availability Zone
On which of the following sites are you most likely to find information about encrypting your AWS resources?
https://aws.amazon.com/security/security-resources
Which of the following AWS documentation URLs points to the page containing an up-to-date list of service limits?
https://docs.aws.amazon.com/general/latest/gr/aws_service_limits.html
Which of the following EC2 services can be used without charge under the Free Tier?
t2.micro EC2 instance type instances for a total of 750 hours per month
Which of the following designations would refer to the AWS US West (Oregon) region?
us-west-2
Which of the following is one of the first places you should look when troubleshooting a failing application?
Service Health Dashboard
Which of the following best describes Infrastructure as a Service products?
Services that give you direct control over underlying compute and storage resources
Which of the following best describes Platform as a Service products?
Services that hide infrastructure complexity behind a simple interface
Which of the following best describes Platform as a Service products?
Services that hide infrastructure complexity behind a simple interface (IaaS products provide full infrastructure access, SaaS products provide end-userservices, and serverless architectures (like AWS Lambda) let developers run code on cloudservers)
Which of the following best describes Software as a Service products?
Services that provide a service to end users through a public network
What is a hypervisor?
Software used to administrate virtualized resources run on physical infrastructure
What is the key difference between the roles of AWS Professional Services and a technical account manager (TAM)?
The Professional Services product helps AWS Partner Network cloud professionals work alongside your own team to help you administrate your cloud infrastructure. The TAM is a cloud professional employed by AWS to guide you through the planning and execution of your infrastructure.
Which of the following best describes scalability?
The ability of an application to automatically add preconfigured compute resources to meet increasing demand
Which of the following best describes elasticity?
The ability of an application to increase or decrease compute resources to match changing demand
Your company enrolled in the Developer Support plan and, through the course of one month, consumed $4,000 USD of AWS services. How much will the support plan cost the company for the month?
$120
Your company enrolled in the Business Support plan and, through the course of three months, consumed $33,000 of AWS services (the consumption was equally divided across the months). How much will the support plan cost the company for the full three months?
$2,310
Which of the following usage will always be cost-free even after your account's Free Tier has expired? (Select TWO.)
-10 GB of data retrievals from Amazon Glacier per month - 10 custom monitoring metrics and 10 alarms on Amazon CloudWatch
Which of the following scenarios would be a good use case for AWS Organizations? (Select TWO.)
-A company that's integrated some operations with an upstream vendor -A single company with multiple AWS accounts that wants a single place to administrate everything
Which of the following are signs of a highly available application? (Select TWO.)
-A failure in one geographic region will trigger an automatic failover to resources in a different region. -Spikes in user demand are met through automatically increasing resources.
You want to experiment with deploying a web server on an EC2 instance. Which two of the following resources can you include to make that work while remaining within the Free Tier? (Select TWO.)
-A t2.micro instance type EC2 instance -A 30 GB solid-state Elastic Block Store (EBS) drive
Which of the following tools are available to ensure you won't accidentally run past your Free Tier limit and incur unwanted costs? (Select TWO.) Correct!
-Automated email alerts when activity approaches the Free Tier limits -The Top Free Tier Services by Usage section on the Billing & Cost Management Dashboard
Which of the following Simple Monthly Calculator selections will likely have an impact on most other configuration choices on the page? (Select TWO.)
-Choose Region -Free Usage Tier
Which of the following should you do to secure your AWS root user? (Select TWO.)
-Create a strong password. -Enable MFA.
Which of the following are not globally based AWS services? (Select TWO.)
-EC2 -RDS
How does the metered payment model make many benefits of cloud computing possible? (Select TWO.)
-Full-stack applications are possible without the need to invest in capital expenses. -Experiments with multiple configuration options are now cost-effective.
Which of the following Trusted Advisor alerts is available only for accounts on the Business or Enterprise Support plan? (Select TWO.)
-IAM Access Key Rotation -Load Balancer Optimization
What are the most significant architectural benefits of the way AWS designed its regions?(Select TWO.)
-It can make applications available to end users with lower latency. -It can make applications more compliant with local regulations.
Which of the following characteristics most help AWS provide such scalable services? (Select TWO.)
-Its highly automated infrastructure administration systems -The enormous number of servers it operates
AWS documentation is available in a number of formats, including which of the following? (Select TWO.)
-Kindle -HTML
According to the AWS Shared Responsibility Model, which of the following are responsibilities of AWS? (Select TWO.)
-Patching underlying virtualization software running in AWS data centers -The security of the cloud
Which of the following are requirements you can include in an IAM password policy? (Select THREE.)
-Require at least one non-alphanumeric character. -Require at least one uppercase letter. -Require at least one number.
Which of the following are valid third-party federated identity standards? (Select TWO.)
-SAML 2.0 -Active Directory
What is a hypervisor?
-Software used to administrate virtualized resources run on physical infrastructure
Which of the following are signs of a highly available application? (Select TWO.)
-Spikes in user demand are met through automatically increasing resources. -A failure in one geographic region will trigger an automatic failover to resources in a different region.
What role can the documents provided by AWS Artifact play in your application planning? (Select TWO.)
-They can provide insight into various regulatory and industry standards that represent best practices. -They can help you confirm that your deployment infrastructure is compliant with regulatory standards.
What is the primary function of the content linked from the Knowledge Center?
-To present solutions to commonly encountered technical problems using AWS infrastructure -To introduce new users to the functionality of the core AWS services
How can federated identities be incorporated into AWS workflows? (Select TWO.)
-You can provide admins authenticated through AWS Microsoft AD with access to a Microsoft SharePoint farm running on AWS. -You can provide users authenticated through a third-party identity provider access to backend resources used by your mobile app.
Which of the following documentation sites are most likely to contain code snippets for you to cut and (after making sure you understand exactly what they'll do) paste into your AWS operations? (Select TWO.)
-https://docs.aws.amazon.com -https://aws.amazon.com/premiumsupport/knowledge-center
Which of the following will encrypt your data while in transit between your office and Amazon S3?
A client-side master key
Where will you find information on the limits AWS imposes on the ways you can use your account resources?
AWS Acceptable Use Policy
Which of the following is an AWS Region for which customer access is restricted?
AWS GovCloud
Which of the following AWS support services does not offer free documentation of some sort?
AWS Partner Network
Which of the following IAM policies is the best choice for the admin user you create in order to replace the root user for day-to-day administration tasks?
AdministratorAccess
What will you need to provide for a new IAM user you're creating who will use "programmatic access" to AWS resources?
An access key ID and secret access key
Within the context of Trusted Advisor, what is a false positive?
An alert for a service state that was actually intentional
What's the most efficient method for managing permissions for multiple IAM users?
Assign users requiring similar permissions to IAM groups.
Why is it that most AWS resources are tied to a single region?
Because those resources are run on a physical device, and that device must live somewhere
Which is the best place to get a quick summary of this month's spend for your account?
Billing & Cost Management Dashboard
Your company is planning a major deployment on AWS. While the design and testing stages are still in progress, which of the following plans will provide the best blend of support and cost savings?
Business
Your Linux-based EC2 instance requires a patch to a Linux kernel module. The problem is that patching the module will, for some reason, break the connection between your instance and data in an S3 bucket. Your team doesn't know if it's possible to work around this problem. Which is the most cost-effective AWS plan through which support professionals will try to help you?
Business.
Which of these tools lets you design graphs within the browser interface to track your account spending?
Cost Explorer
What is the main difference between the goals of Cost Explorer and of cost and usage reports?
Cost Explorer displays visualizations of high-level historical and current account costs, while cost and usage reports generate granular usage reports in CSV format.
Instances that are running (mostly) idle should be identified by which of these Trusted Advisor categories?
Cost Optimization
What does KMS use to encrypt objects stored on your AWS account?
Customer master key
Which of the following does not contribute significantly to the operational value of a large cloud provider like AWS?
Deep experience in the retail sphere
Your web development team is actively gearing up for a deployment of an ecommerce site. During these early stages of the process, individual developers are running into frustrating conflicts and configuration problems that are highly specific to your situation. Which of the following plans will provide the best blend of support and cost savings?
Developer
Your corporate website was offline last week for more than two hours—which caused serious consequences, including the early retirement of your CTO. Your engineers have been having a lot of trouble tracking down the source of the outage and admit that they need outside help. Which of the following will most likely meet that need?
Enterprise
Which of the following AWS resources cannot be encrypted using KMS?
Existing AWS Elastic Block Store volumes
"Data volumes that aren't properly backed up" is an example of which of these TrustedAdvisor categories?
Fault Tolerance
For which of the following will AWS provide direct 24/7 support to all users—even those on the Basic Support plan?
Help with making a bill payment to AWS
What is the primary function of the AWS IAM service?
Identity and access management
You want to improve the resilience of your EC2 web server. Which of the following is the most effective and efficient approach?
Launch parallel, load-balanced instances in multiple Availability Zones within a single AWS Region.
Which of the following best describes server virtualization?
Logically partitioning physical computers and storage devices into multiple smaller virtual devices
What is the main purpose of Amazon Route 53?
Managing domain name registration and traffic routing
Is it always possible to request service limit increases from AWS?
No. Some service limits are hard.
Which of the following is a limitation of the AWS Simple Monthly Calculator?
Not all AWS services are included.
Which of the following AWS Total Cost of Ownership Calculator parameters is likely to have the greatest impact on cost?
Number of servers
Which of the following is the most accurate description of an AWS Availability Zone?
One or more independently powered data centers running a wide range of hardware host types
Which of the following is not a setting you can configure in a Cost budget?
Owner (username of resource owner)
Which of the following standards governs AWS-based applications processing credit card transactions?
PCI DSS
What is an IAM role?
Permissions granted a trusted entity over specified AWS resources
The primary purpose of an AWS technical account manager is to:
Provide deployment guidance and advocacy for Enterprise Support customers
Which of the following is the primary benefit of using CloudFront distributions?
Reduced latency access to your content no matter where your end users live
When you request a new virtual machine instance in EC2, your instance will automatically launch into the currently selected value of which of the following?
Region
Which of the following is not a Trusted Advisor category?
Replication
Which of the following will probably not affect the pricing for an AWS service?
Requests for raising the available service limit
Which of the following design strategies is most effective for maintaining the reliability of a cloud application?
Resource redundancy
What information does the IAM credential report provide?
The current state of security of your IAM users' access credentials
When using AWS documentation pages, what is the best way to be sure the information you're reading is up-to-date?
The page URL will include the word latest
Which of the following is not an included parameter in the AWS Total Cost of Ownership Calculator?
The tax implications of a cloud deployment
What will IAM users with AWS Management Console access need to successfully log in?
Their username and password
What determines the order by which subnets/AZ options are displayed in EC2 configuration dialogs?
They (appear) to be displayed in random order.
What is the purpose of the Service Organization Controls (SOC) reports found on AWS Artifact?
They attest to AWS infrastructure compliance with data accountability standards like Sarbanes-Oxley.
What is the primary goal of autoscaling?
To ensure that a predefined service level is maintained regardless of external demand or instance failures
What is the purpose of cost allocation tags?
To help you identify resources for the purpose of tracking your account spending
Which of the following best describes one possible reason for AWS service limits?
To prevent individual customers from accidentally launching a crippling level of resource consumption
What is the main goal for creating a Usage budget type (in AWS Budgets)?
To track particular categories of resource consumption
How does multi-factor authentication work?
Users authenticate using a password and also either a physical or virtual MFA device.
According to the AWS Shared Responsibility Model, what's the best way to define the status of the software driving an AWS managed service?
Whatever the customer can control (application code and/or configuration settings) is the customer's responsibility.
Which of the following would be a valid endpoint your developers could use to access a particular Relational Database Service instance you're running in the Northern Virginia region?
rds.us-east-1.amazonaws.com
Which of the following SSH commands will successfully connect to an EC2 Amazon Linux instance with an IP address of 54.7.35.103 using a key named mykey.pem?
ssh -i mykey.pem [email protected]