AWS Cloud Practitioner Knowledge Check

Where can a customer find information about prohibited actions on AWS infrastructure? A) AWS Trusted Advisor B) AWS Identity and Access Management (IAM) C) AWS Billing Console D) AWS Acceptable Use Policy

AWS Acceptable Use Policy

What AWS tool utilizes edge locations to cache content and reduce latency? VPCs AWS CloudFront EC2 Instances EBS storage RDS

AWS CloudFront

Which service can identify the user that made the API call when an Amazon Elastic Compute Cloud (Amazon EC2) instance is terminated? A) Amazon CloudWatch B) AWS CloudTrail C) AWS X-Ray D) AWS Identity and Access Management (AWS IAM)

AWS CloudTrail

Which AWS service would simplify migration of a database to AWS? A) AWS Storage Gateway B) AWS Database Migration Service (AWS DMS) C) Amazon Elastic Compute Cloud (Amazon EC2) D) Amazon AppStream 2.0

AWS Database Migration Service (AWS DMS)

Which AWS offering enables customers to find, buy, and immediately start using software solutions in their AWS environment? A) AWS Config B) AWS OpsWorks C) AWS SDK D) AWS Marketplace

AWS SDK

Which of the following are resources that AWS provides to customers as guidance to secure their data in the cloud? (Choose 2) AWS Trusted Advisor AWS Security Learning Path Customer Testimonials Certified Partner Solutions AWS Enterprise Support

AWS Trusted Advisor AWS Enterprise Support

Which of the following is NOT included in the AWS Free Tier? Amazon Simple Storage Service (S3) AWS Identity and Access Management (IAM) Amazon Virtual Private Cloud (VPC) AWS CloudFormation AWS Web Application Firewall (WAF)

AWS Web Application Firewall (WAF)

Which component of AWS global infrastructure does Amazon CloudFront use to ensure low-latency delivery? A) AWS Regions B) AWS edge locations C) AWS Availability Zones D) Amazon Virtual Private Cloud (Amazon VPC)

AWS edge locations

Which of the following is NOT available in the Business Support Plan? Access to Personal Health Dashboard and Health API Access to Well-Architected Review delivered by AWS Solution Architects Access to Infrastructure Event Management Access to third-party software support Access to Cloud Support Engineers for technical issues

Access to Well-Architected Review delivered by AWS Solution Architects

What is the number one reason customers are switching to cloud computing? Overprovisioning Instant Configuration Agility Automation Finite Infrastructure

Agility

Which of the following is true about security groups? (Choose 2) All inbound traffic is denied and outbound traffic is allowed by default Acts as a virtual firewall to control inbound and outbound traffic All inbound traffic is allowed and outbound traffic is denied by default Acts as virtual firewall to control inbound traffic only Acts as virtual firewall to control outbound traffic only

All inbound traffic is denied and outbound traffic is allowed by default Acts as a virtual firewall to control inbound and outbound traffic

Why is AWS more economical than traditional data centers for applications with varying compute workloads? A)Amazon Elastic Compute Cloud (Amazon EC2) costs are billed on a monthly basis. B) Customers retain full administrative access to their Amazon EC2 instances. C) Amazon EC2 instances can be launched on-demand when needed. D) Customers can permanently run enough instances to handle peak workloads.

Amazon EC2 instances can be launched on-demand when needed.

Which service would you use to send alerts based on Amazon CloudWatch alarms? A) Amazon Simple Notification Service (Amazon SNS) B) AWS CloudTrail C) AWS Trusted Advisor D) Amazon Route 53

Amazon Simple Notification Service (Amazon SNS)

Which AWS networking service enables a company to create a virtual network within AWS? A) AWS Config B) Amazon Route 53 C) AWS Direct Connect D) Amazon Virtual Private Cloud (Amazon VPC)

Amazon Virtual Private Cloud (Amazon VPC)

What type of applications are recommended for Amazon EC2 reserved instances? Applications that have flexible start and end times Applications being developed or tested for the first time Applications that are only feasible at lower compute prices Applications with steady state or predictable usage

Applications with steady state or predictable usage

What tool helps avoid limitations of being able to create new resources on-demand or scheduled? Elastic Load Balancer Route 53 CloudWatch Auto Scaling

Auto Scaling

Which of the following AWS tools help your application scale up or down based on demand? (Choose 2) AWS CloudFormation Auto Scaling Elastic Load Balance Agile Load Balance Auto Availability Zone

Auto Scaling Elastic Load Balance

What are the characteristics of the Developer Support Plan? (Choose 2) Unlimited contacts may open a case 24/7 access to Cloud Support Engineers via email, chat, and phone Assigned to a Technical Account Manager Business hours access to Cloud Support Associates via email One primary contact may open a case

Business hours access to Cloud Support Associates via email One primary contact may open a case

When considering cost optimization, what model allows you to pay only for what computing resources you actually use? Expenditure model Economies of scope model Consumption model Economies of scale model

Consumption model

What does AWS recommend as the best practice for the AWS Account Root User after initial login? Delete root user account Revoke all permissions on root user account Restrict permissions on root user account Delete root user access keys

Delete root user access keys

Which design principles are recommended when considering performance efficiency? (Choose 2) Democratize advanced technologies Expenditure awareness Serverless architecture Matching supply with demand Enabling traceability

Democratize advanced technologies Serverless architecture

Which of the following describes Elastic Load Balances (ELB)? Distributes incoming traffic amongst your instances Translates domain names into IP addresses Creates new resource on-demand Launches or terminates instances based on specific conditions

Distributes incoming traffic amongst your instances

What is true about Regions? (Choose 2) Resources are replicated across all regions by default All regions are located in one specific geographic area Each region is located in a separate geographic area Physical location of your customers Physical location with multiple Availability Zones

Each region is located in a separate geographic area Physical location with multiple Availability Zones

As AWS grows, the general cost of doing business is reduced and savings are passed back to the customer in the form of lower pricing. What is this cost optimization called? Economies of cost Economies of scope Economies of optimization Economies of labor Economies of scale

Economies of scale

How would a system administrator add an additional layer of login security to a user's AWS Management Console? A) Use AWS Cloud Directory B) Audit AWS Identity and Access Management (IAM) roles C) Enable Multi-Factor Authentication D) Enable AWS CloudTrail

Enable Multi-Factor Authentication

Which of the following cloud security controls ensures that only authorized and authenticated users are able to access your resources? Incident response Identity and Access Management Detective controls Infrastructure protection

Identity and Access Management

In the Shared Responsibility Model, which of the following are an example of "Security in the cloud"? (Choose 2) In which country the content is stored Physical security of the facilities in which the services operate Compliance with computer security standards and regulations Protecting the global infrastructure Which AWS services are used with the content

In which country the content is stored Which AWS services are used with the content

What is NOT a consideration when estimating the cost of Amazon S3? Number and size of objects Input Output Operations per Second (IOPS) Storage class Data transfer Requests

Input Output Operations per Second (IOPS)

Which of the following are high availability characteristics of Amazon Route 53? (Choose 2) Terminate instances based on specified conditions Latency-based routing Geolocation routing Collect and track high latency metrics Mask failure of an instance/software

Latency-based routing Geolocation routing

Which of the following are included in AWS Assurance Programs? (Choose 2) Laws, Regulations, and Privacy Customer Testimonials Partner Validations Industry Best Practices Certification/Attestations

Laws, Regulations, and Privacy Certification/Attestations

Which of the following is AWS's responsibility under the AWS shared responsibility model? A) Configuring third-party applications B) Maintaining physical hardware C) Securing application access and data D) Managing custom Amazon Machine Images (AMIs)

Maintaining physical hardware

Which of the following is NOT a feature of AWS Identify and Access Management? Manage users and their access Manage roles and their permissions Manage services and their capacities Manage federated users and their permissions

Manage services and their capacities

Which of the following are some of the security benefits that AWS offers? (Choose 2) Meet compliance requirements Shared Collaboration Model Secure Global Infrastructure Inventory and Application Management Data Storage

Meet compliance requirements Secure Global Infrastructure

Which of the following is NOT an AWS region? Moscow Ireland Virginia Frankfurt Oregon

Moscow

Which of the following are NOT benefits of AWS cloud computing? (Choose 2) Multiple procurement cycles Temporary and disposable resources High Availability High Latency Fault tolerant databases

Multiple procurement cycles High Latency

Which of the following statements are true about Availability Zones? (Choose 2) Multiple zones are physically connected on the same grid A single zone equals a single data center Multiple zones will fail if one zone fails Multiple zones are connected by low latency network links A single zone can span multiple data centers

Multiple zones are connected by low latency network links A single zone can span multiple data centers

When calculating the cost of Amazon EC2, what factors will impact pricing? (Choose 2) Number of hours Elastic Load Balance Runs Number and size of objects stores in your Amazon S3 buckets Number of instances Number of items in your inbound data transfer

Number of hours Elastic Load Balance Runs Number of instances

What is AWS Trusted Advisor? Professional Services offering that helps you migrate to cloud AWS service that helps you manage access to your account Partner Program that helps you validate your application deployment Online tool that helps you configure resources to follow best practices

Online tool that helps you configure resources to follow best practices

In a physical data center, security is typically considered in what area? In the closet availability zones In the closet region In an edge location Only in the perimeter

Only in the perimeter

What is the pricing model that allows AWS customers to pay for resources on an as needed basis? Pay as you buy Pas as you use Pay as you own Pay as you reserve Pay as you go

Pay as you go

Which of the following is NOT an advantage of cloud computing over on-premise computing? Trade capital expense for variable expense Pay for racking, stacking, and powering servers Increase speed and agility Benefit from massive economies of scale Eliminate guessing on your infrastructure capacity needs

Pay for racking, stacking, and powering servers

When creating an IAM policy, what are the two types of access to be granted to a user? (Choose 2) Institutional Access Authorized Access Programmatic Access AWS Management Console Access Administrative Root Access

Programmatic Access AWS Management Console Access

How does an edge location help end users? Increases latency Reduces power consumption Increases storage Reduces latency Reduces scaling

Reduces latency

The AWS Risk and Compliance Program is made up of which of the following components? (Choose 3) Automation Environment Identity Management Physical Security Risk Management Security Principles Information Security Control Environment

Risk Management Information Security Control Environment

In the Shared Responsibility Model, for which aspect of securing the cloud is AWS responsible? Security in the cloud Security of the cloud Security to the cloud Security for the cloud

Security of the cloud

What AWS tool compares the cost of running your application in an on-premise data center to AWS? Total Cost of Application (TCA) calculator Total Cost of Products (TCP) calculator Total Cost of Operation (TCO) calculator Total Cost of Services (TCS) calculator Total Cost of Ownership (TCO) calculator

Total Cost of Operation (TCO) calculator

What AWS tool compares the cost of running your application in an on-premise data center to AWS? Total Cost of Application (TCA) calculator Total Cost of Products (TCP) calculator Total Cost of Operation (TCO) calculator Total Cost of Services (TCS) calculator Total Cost of Ownership (TCO) calculator

Total Cost of Ownership (TCO) calculator

Which of the following is NOT one of the four areas of the performance efficiency pillar? Selection Tradeoffs Monitoring Traceability

Traceability

Which of the following is NOT considered a fault tolerant tool? SQS WAF S3 RD

WAF

Which of the following are advantages of AWS cloud security? (Choose 2) You retain complete control and ownership of your data region AWS infrastructure security auditing is periodic and manual AWS retains complete control and ownership of your data region AWS uses multi-factor access control systems AWS uses single-factor access control systems

You retain complete control and ownership of your data region AWS uses multi-factor access control systems

What is defined as the ability for a system to remain in operation even if some of the components of the system fail? DNS failovers High availability High durability Fault tolerance

Fault tolerance