AWS Module 1-6
True or False? Cloud computing provides a simple way to access servers, storage, databases, and a broad set of application services over the Internet. You own the network connected hardware required for these services and Amazon Web Services provisions what you need.
False
True or False? Edge locations are only located in the same general area as regions.
False
True or false? To receive the discounted rate associated with Reserved Instances, you must make a full, up-front payment for the term of the agreement. (Select the best answer)
False
True or false? Unlimited services are available via the free tier to new AWS customers for 12 months following their AWS sign-up date. (Select the best answer)
False
_____ means the infrastructure has built-in component redundancy and _____ means that resources dynamically adjust to increases or decreases in capacity requirements. - No human intervention, fault-tolerant - Fault-tolerant, no human intervention - Elastic and scalable, fault-tolerant - Elastic and scalable, no human intervention - Fault-tolerant, elastic and scalable
Fault-tolerant, elastic and scalable
True or False? AWS owns and maintains the network-connected hardware required for application services, while you provision and use what you need.
True
True or False? Availability Zones within a region are connected through low-latency links.
True
What are the advantages of cloud computing over on-premises? (Select the best answer) - Avoid large capital purchases - On-demand capacity - Go global - Increase speed and agility - All of the above
All of the above
In the shared responsibility model, which of the following are examples of "security of the cloud"? (Choose 2) 1. Compliance with compute security standards and regulations 2. Physical infrastructure 3. Security group configurations 4. Encryption of data at rest and data in transit
1. Compliance with compute security standards and regulations 3. Security group configurations
Which of the following are NOT benefits of AWS Cloud computing? (Choose two) 1. Multiple procurement Cycles 2. High latency 3. High-availability 4. Temporary and disposable resources 5. Fault-tolerant databases
1. Multiple procurement Cycles 2. High latency
What are the three ways to access AWS core services? (Choose three) 1. Software Development Kits 2. Through AWS Marketplace 3. AWS Management Console 4. Calling Technical support 5. AWS Command-line Interface
1. Software Development Kits 3. AWS Management Console 5. AWS Command-line Interface
When creating an AWS Identity and Access Management (IAM) policy, what are the two types of access that can be granted to a user? (Choose 2) 1. Institute access 2. Programmatic Access 3. AWS Management Console Access 4. Administrative Access
2. Programmatic Access 3. AWS Management Console Access
What is true about Regions (Choose two) 1. They are the physical locations of your customers 2. All regions are located in one specific geographic area 3. A region is a physical location that has multiple availability zones 4. Physical location has multiple availability zones 5. Each region is located in a separate geographic area
3. A region is a physical location that has multiple availability zones 5. Each region is located in a separate geographic area
There is no charge for which of the following (Choose two answers) 1. Compute 2. Storage 3. Inbound data transfer 4. Outbound data transfer 5. Data transfer between services within the same region
3. Inbound data transfer 5. Data transfer between services within the same region
Which of the following are best practices to secure your account using the identity and Access Management (IAM)? (Choose 2) 1. Provide users with default administrative privileges 2. Leave it alone 3. Managing access to AWS resources 4. Avoid giving access rights to multiple users 5. Define fine-grained access rights
3. Managing access to AWS resources 5. Define fine-grained access rights
For certain services like Amazon Elastic Compute Cloud (Amazon EC2) and Amazon Relational Database Service (Amazon RDS), you can invest in reserved capacity. What options are available for Reserved Instances? (Choose three) 1. MURI 2. DURI 3. PURI 4. AURI 5. NURI
3. PURI 4. AURI 5. NURI
Which of these statements about Availability Zones is not true? (Select the best answer) - Availability Zones are designed for fault isolation - Availability Zones are made up of one or more data centers - Availability zones are connected to each other using high-speed private links - A data center can be used for more than one availability zone
A data center can be used for more than one availability zone
Which of the following is an optional security control that can be applied at the subnet layer of a VPC? (Select the best answer.)
A network ACL is an optional security control that can be applied at the subnet layer of a VPC.
Which of thee following can be used to protect Amazon Elastic Compute Cloud (Amazon EC2) instances hosted in AWS? (Select the best answer.)
A security group acts as a virtual firewall for your instance to control inbound and outbound traffic.
Where can a customer go to get more details about Amazon Elastic Compute Cloud (Amazon EC2) billing activity that took place 3 months ago? (Select the best answer) - Amazon billing - AWS Cost Explorer - AWS Trusted Advisor - AWS Cost Estimator
AWS Cost Explorer Give you more details about Amazon EC2 billing activity for the past 2 months
Which component of the AWS Global Infrastructure does Amazon CloudFront use to ensure low-latency delivery? (Select the best answer) - AWS Regions - AWS Edge locations - AWS Availability Zone - Amazon virtual private cloud (Amazon VPC)
AWS Edge locations
What is the service provided by AWS that enables developers to easily deploy and manage applications in the cloud? (Select the best answer) - Amazon Elastic Container Service - AWS Elastic Beanstalk - AWS OpsWorks - AWS Organizations
AWS Elastic Beanstalk Elastic Beanstalk is a Platform as a service (Paas) that facilitates quick deployment, scaling and managing of your web applications and services.
Which of the following services is a serverless compute service in AWS? (Select the best answer) - AWS Config - AWS Lambda - AWS Compute - Amazon EC2
AWS Lambda A compute service that lets you run code without provisioning / managing servers.
What AWS tool lets you explore AWS services and create and estimate for the cost of your use cases of AWS? (Select the best answer) - AWS Pricing Calculator - AWS Billing Calculator - AWS Cost Estimator - AWS Billing Estimator
AWS Pricing Calculator Allows modeling of solutions before building them, explore price points and calculations behind your estimate, and find the available instance types and contract terms that meet your needs.
Which of the following are geographic areas that host two or more Availability Zones? (Select the best answer) - AWS Origin - AWS Regions - Compute Zones - Edge Locations
AWS Regions
What is included in an Amazon Machine Image (AMI)? (Select the best answer) - A template for the root volume for the instance - Launch permissions that control which AWS accounts can use the AMI to launch instances - A block device mapping that specifies the volumes to attach to the instance when it's launched - All of the above
All of the above
Which of the following is a compute service? - Amazon VPC - Amazon AMI - Amazon EC2 - Amazon CloudTrail - Amazon Config
Amazon EC2
Why is AWS more economical than traditional data centers for applications with varying compute workloads? (Select the best answer) - Amazon Elastic Compute Cloud (Amazon EC2) costs are billed on a monthly basis. - Customers retain full administrative access to their Amazon EC2 instances. - Amazon EC2 instances can be launched on-demand when needed. - Customers can permanently run enough instances to handle peak workloads.
Amazon EC2 instances can be launched on-demand when needed.
Which AWS networking service enables a company to create a virtual network within AWS? (Select the best answer.)
Amazon Virtual Private Cloud enables a company to create a virtual network within AWS.
What are the four support plans offered by AWS Support? (Select the best answer) - Basic, Developer, Business, Enterprise - Basic, Support, Enterprise, Developer - Free, Business, Developer, Enterprise - All Support
Basic, Developer, Business, Enterprise
Which of the following should be done by the AWS account root user? (Select the best answer) - Secure access for applications - Integrate into cloud - Changing the AWS support plan
Changing the AWS support plan
You can run applications and workloads from a region closer to the end users to ______ latency. - Increase - Decrease
Decrease
Which Amazon Elastic Compute Cloud (Amazon EC2) feature ensures your instances will not share a physical host with instances from any other AWS customer? (Select the best answer) - Amazon Virtual Private Cloud (VPC) - Placement groups - Dedicated Instances - Reserved Instances
Dedicated Instances
After the login, what does AWS recommend as the best practice for the AWS account root user? (Select the best answer) - Delete the AWS account root user - Revoke roots user access - Restrict root user access - Delete the access keys
Delete the access keys
As AWS grows, the general cost of doing business is reduced and savings are passed back to the customer in the form of lower pricing. What is this optimization called? (Select the best answer) - Economies of Scope - Economies of optimization - Economies of labor - Economies of scale
Economies of scale
How would a system administrator add an additional layer of login security to a user's AWS Management Console? (Select the best answer) - User Amazon Cloud Directory - Audit Access - Enable multi-factor authentication - Enable restricted access
Enable multi-factor authentication
You need to allow resources in a private subnet to access the internet. Which of the following must be present to enable this access? (Select the best answer.)
If you need to allow resources in a private subnet to access the internet, a NAT gateway must be present to enable this access.
Which is the following is the responsibility of AWS under the AWS shared responsibility model? (Select the best answer) - Configuring third-party applications - Maintaining physical hardware - Security - Management of Cloud
Maintaining physical hardware
True / False? Networking, storage, compute and databases are examples of service categories that AWS offers.
True
AWS highly recommends provisioning your compute resources across _____ availability zones. - All - No - Multiple - Single
Multiple
What is the pricing model that enables AWS customers to pay for resources on an as-needed basis? (Select the best answer) - Pay as you buy - Pay as you reserve - Pay as you decommission - Pay as you go
Pay as you go
Which of these is NOT a benefit of cloud computing over on-premises computing? (Select the best answer) - Trade capital expense for variable expense - Eliminate guessing on your infrastructure capacity needs - Pay for racking, stacking and powering servers - Benefit from massive economies of scale - Increase speed and agility
Pay for racking, stacking and powering servers
True or False? Private subnets have direct access to the internet.
Private subnets do not have direct access to the internet.
If your project requires monthly reports that iterate through very large amounts of data, which Amazon Elastic Compute Cloud (Amazon EC2) purchasing option should you consider? (Select the best answer) - Spot Instance - Scheduled Reserved Instance - Dedicated Instance - On-Demand Instance
Scheduled Reserved Instance If your project requires you to run monthly reports that iterate through very large amounts of data, you should consider purchasing Scheduled Reserved Instances.
With the "pay as you go" pricing model, how often do you pay for compute resources from the time you launch a resource until you terminate it? (Select the best answer) - Yearly - Quarterly - Monthly - Daily - Secondly and hourly
Secondly and hourly
In the shared responsibility model, AWS is responsible for providing what? (Select the best answer) - Security of the Cloud - Security of the Platform - Security of the Infrastructure - Security of the computer
Security of the cloud
Which of these is NOT a cloud deployment model? (Select the best answer) - Platform as a service - Infrastructure as a service - System administration as a service - Software as a service
System administration as a service
With Amazon Virtual Private Cloud (Amazon VPC), what is the maximum size IP address range you can have in a VPC? (Select the best answer.)
The maximum size IP address range you can have in a VPC is /16.
With Amazon Virtual Private Cloud (Amazon VPC), what is the smallest size subnet you can have in a VPC? (Select the best answer.)
The smallest size you can have in a VPC is /28
You are a solutions architect who works at a large retail company that is migrating it's existing infrastructure to AWS. You recommend that they use a custom VPC. When you create a VPC, you assign it to an IPv4 Classless Inter-Domain Routing (CIDR) block of 10.0.1.0/24 which has 256 total IP addresses. How many IP addresses are available? (Select the best answer.)
The subnet has 256 IP addresses but 5 are reserved.
Which component of AWS Global Infrastructure does Amazon CloudFront use to ensure low-latency delivery? (Select the best answer.)
To ensure low-latency delivery, Amazon CloudFront uses AWS edge locations.
What AWS tool compares the cost of running your application in an on-premises data center to AWS?(Select the best answer) - Total cost of operation calculator - Total cost of ownership - Total cost of products - Total cost of application
Total cost of ownership
True / False? AWS Key Management Service (AWS KMS) enables you to assess, audit, and evaluate the configurations of your AWS resources.
True
True / False? AWS Organizations enables you to consolidate multiple AWS accounts so that you centrally manage them.
True When creating IAM policy, a user can be granted AWS Management Console access and programmatic access.
What happens when you use Amazon Virtual Private Cloud (Amazon VPC) to create a new VPC? (Select the best answer.)
When you create a VPC, a route table is created by default. You must manually create subnets and an internet gateway.
Economies of scale results from ______. (Select the best answer) - having hundreds of thousands of customers aggregated in the cloud - having hundreds of cloud services available over the internet - having to invest heavily in data centers and servers - having many different cloud providers
having hundreds of thousands of customers aggregated in the cloud