CMIT 326 Cloud Tech final exam 2
What is the maximum size IP address range you can have in an Amazon VPC? (Select the best answer).
/16
What is the maximum size IP address range you can have in an Amazon VPC? (Select the best answer).
/16
What is the minimum size subnet you can have in an Amazon VPC? (Select the best answer).
/28
What is the minimum size subnet you can have in an Amazon VPC? (Select the best answer).
/28
How many IGWs can you attach to an Amazon VPC at any one time? (Select the best answer)
1
How many IGWs can you attach to an Amazon VPC at any one time? (Select the best answer)
1
How many Internet Gateways can you have per VPC?
1
Which of the following is NOT a pillar of the AWS Well Architected Framework? Persistence Cost Optimization Security Operational Excellence
1
You are planning on purchasing a reserved instance. Which options do you have with regards to the contact length for the reserved instance? (Choose 2 answers)
1 Year and 3 Year
What are the benefits of using EC2 instances compared to physical servers in your infrastructure? Select 2 Pay only for the capacity you use The ability to have different storage requirements Automatic automated backups The ability to hot add additional RAM Resizable
1 and 2
What is the response time of urgent issues for Enterprise Support Plan customers? (Select the best answer)
1 hour or less
Which of the following use cases is appropriate for Amazon CloudFront? (Select 3)
1) Security and encryption 2) Live on-demand video streaming 3) Static asset caching
You have an Enterprise Support Plan and are experiencing a critical business system failure. What is the response time offered under this plan?
15 minutes
How long does Amazon CloudWatch keep metric data? (Select the best answer)
15 months
In most cases what is the minimum number of Availability Zones per region?
2
Which of the following statements best describes AWS Trusted Advisor? A tool that estimates the cost savings when using AWS and provides a detailed set of reports A tool that provides you real time guidance to help you provision your resources following AWS best practices A tool that enables you to view and analyze your costs and usage A tool that helps customers estimate their monthly AWS bill more efficiently
2
Which of the following statements best describes CloudFront? Provides you with data and actionable insights to monitor your applications Provides a common lang for you to describe and provision all the infrastructure resources in your cloud environment Speeds up the delivery of your content to viewers across the globe Provides topics for high throughput, push-based, many-to-many messaging
3
Which of the following statements is true of Amazon Virtual Private Clouds? Each AWS acct can have only 1 VPC associated with it Each VPC is a private, dedicated network connection from your premises to AWS You can create many subnets in a VPC, though fewer is recommended to limit complexity A VPC acts as a physical firewall for your cloud infrastructure
3
When retrieving data from Amazon Glacier, what is the typical time taken to make a Standard Archive available?
3 to 5 hours
You are a solutions architect working for a large retail company that is migrating its existing infrastructure to AWS. You recommend they use a custom Amazon VPC. They'll need a public subnet for their web servers and a private subnet for their databases. They require web servers and database servers be highly available, with a minimum of two web servers and two database servers each. How many subnets should you have to maintain high availability? (Select the best answer).
4
What is the maximum size of a single Amazon Glacier Archive?
40TB
How many Elastic IP Addresses can you have per region by default?
5
What is the level of durability offered on Amazon S3 (Standard Class)?
99.999999999 eleven nines
How can the AWS Management Console be secured against unauthorized access? A. Apply Multi-Factor Authentication (MFA) B. Set up a secondary password C. Request root access privileges D. Disable AWS console access
A
The AWS Web Application Firewall can go down to which of the following OSI layers? A. 7 B. 6 C. 4 D. 5
A
True or False: A CloudFront Origin can be an S3 bucket, an EC2 instance, an Elastic Load Balancer, or Route 53. A. True B. False
A
True or False: A Distribution is what we call a series of Edge Locations that make up CDN. A. True B. False
A
True or False: Access Control Lists are used to make entire buckets (like one hosting an S3 website) public. A. False B. True
A
True or False: It's safer to use Access Keys than it is to use IAM roles. A. False B. True
A
True or False: S3 Transfer Acceleration uses AWS' network of Availability Zones to more quickly get your data into AWS. A. False B. True
A
True or False: S3 is object storage suitable for the storage of 'flat' files like Word documents, photos, etc. A. True B. False
A
True or False: To restrict access to an entire bucket, you use bucket control lists; and to restrict access to an individual object, you use object policies. A. False B. True
A
True or False: With AWS Organizations, you can use either just the Consolidated Billing feature, or all the offered features. A. True B. False
A
True or False: With Consolidated Billing, the Paying Account can make changes to any of the resources owned by a Linked Account. A. False B. True
A
What AWS feature enables a user to manage services through a web-based user interface? A. AWS Management Console B. AWS Application Programming interface (API) C. AWS Software Development Kit (SDK) D. Amazon CloudWatch
A
What is the pricing model that allows AWS customers to pay for resources on an as needed basis? A. Pay as you go B. Pay as you reserve C. Pay as you use D. Pay as you buy E. Pay as you own
A
What is the value of having AWS Cloud services accessible through an Application Programming interface (API)? A. Cloud resources can be managed programmatically B. AWS infrastructure use will always be cost-optimized. C. Al application testing is managed by AWS D. Customer-owned, on-premises infrastructure becomes programmable
A
Which AWS Cloud service is used to turn on Multi-Factor Authentication (MFA)? A. AWS Identity and Access Management (IAM) B. Amazon Elastic Compute Cloud (Amazon EC2) C. AWS Config D. Amazon Inspector
A
Which AWS service automates infrastructure provisioning and administrative tasks for an analytical data warehouse? A. Amazon Redshift B. Amazon DynamoDB C. Amazon ElasticCache D. Amazon Aurora
A
Which of the following AWS services can help you assess the fault-tolerance of your AWS environment? A. AWS Trusted Advisor B. AWS Inspector C. AWS WAF D. AWS Shield
A
Which of the following EC2 options is best for long-term workloads with predictable usage patterns? A. Reserved instances B. On-Demand instances C. Spot instances D. Dedicated Host
A
Which of the following Route 53 policies allow you to a) route data to a second resource if the first is unhealthy, and b) route data to resources that have better performance? A. Failover Routing and Latency-based Routing B. Failover Routing and Simple Routing C. Geoproximity Routing and Geolocation Routing D. Geolocation Routing and Latency-based Routing
A
Which of the following is NOT an advantage of cloud computing over on-premise computing? A. Pay for racking, stacking and powering servers B. Trade capital expense for variable expense C. Eliminate guessing on your infrastructure capacity needs D. Benefit from massive economies of scale increase speed and agility
A
Which of the following is a factor when calculating Total Cost of Ownership (TCO) A. The number of servers migrated to AWS B. The number of users migrated to AWS C. The number of passwords migrated to AWS D. The number of keys migrated to AWS
A
Which of the following is not a fundamental AWS charge? A. Data-in B. Storage C. Compute D. Data-out
A
Which of the following is the responsibility of the AWS customer according to the Shared Security Model? A. Managing AWS Identity and Access Management (IAM) B. Securing edge locations C. Monitoring physical device security D. Implementing Service Organization Control (SOC) standards
A
Which of the following services will help you optimize your entire AWS environment in real time following AWS best practices? A. AWS Trusted Advisor B. AWS Shield C. AWS WAF D. AWS Inspector
A
Which service should an administrator use to register a new domain name with AWS? A. Amazon Route 53 B. Amazon CloudFront C. Elastic load Balancing D. Amazon Virtual Private Cloud (Amazon VPC)
A
Which service would you use to send alerts based on Amazon CloudWatch alarms? A. Amazon Simple Notification Service (Amazon SNS) B. AWS CloudTrail C. AWS Trusted Advisor D. Amazon Route 53
A
You need to host a file in a location that's publicly accessible from anywhere in the world. Which AWS service would best meet that need? A. S3 B. EC2 C. EBS D. RDS
A
What is Amazon route 53
A DNS service
What is an Amazon Region?
A Geographical region comprising Amazon Availability Zones
Regarding Amazon Glacier, what is a Vault?(Select the best answer)
A container for storing archives
Which of these statements about Availability Zones is not true?
A data center can be used for more than one Availability zone.
Which of these statements about Availability Zones is not true? (Select the best answer) Availability Zones are made up of one or more data centers Availability zones are connected to each other using high-speed private links a data center can be used for more than one availability zone Availability zones are designed for fault isolation
A data center can be used for more than one availability zone
What is Amazon Route 53?
A highly available and scalable Domain Name System (DNS) web service.
Which of the following must be configured on an Elastic Load Balancing load balancer to except incoming traffic? (Select the best answer)
A listener
Which of the following must be configured on an Elastic Load Balancing load balancer to except incoming traffic? (Select the best answer)
A listener
What happens when you create a new Amazon VPC? (Select the best answer)
A main route table is created by default.
What happens when you create a new Amazon VPC? (Select the best answer)
A main route table is created by default.
What is true about regions?
A region is a physical location that has multiple Availability Zones, Each region is located in a separate geographic area
What is true about regions? (choose two) They are the physical locations of your customers all regions are located in one specific geographic area a region is a physical location that has multiple availability zones Physical location has multiple availability zones each region is located in a separate geographic area
A region is a physical location that has multiple Availability Zones., Each region is located in a separate geographic area
Which of the following defines the AWS Command Line Interface (CLI)?
A suite of utilities that are launched from a command line program in Linux, WIndows or MacOS
Which of the following defines the AWS Command Line Interface (AWS CLI)?
A suite of utilities that can be launched from a command program in Linux, macOS or Windows
Which of the following defines the AWS CLI?
A suite of utilities that can be launched from a command program in Linux, macOS, or Windows.
What is included in an Amazon Machine Image (AMI)? (Select the best answer)
A template for the root volume for the instance, Launch permissions that control which AWS accounts can use the AMI to launch instances, A block device mapping that specifies the volumes to attach to the instance when it's launched, (All of the above)
What is the AWS Personal Health Dashboard?
A tool which provides performance and availability of AWS services used to run your deployed resources
Which of the following best describes EBS?
A virtual hard disk in the cloud
Which of the following security requirements are managed by AWS customer? (Select 2) A. Password policies B. User permissions C. Physical Security D. Disk disposal E. Hardware patching
A, B
Which of the following are steps you should take in securing your AWS account? (Choose 3) A. Use Groups to assign permissions to IAM users. B. Activate Multifactor Authentication (MFA) on your root account. C. Create individual IAM users. D. Create a Root IAM role.
A, B, C
Which of the following are principles of sound cloud design? (Choose 4) A. Disposable resources B. Infrastructure as code C. Assume *everything* will fail. D. Treat your servers like pets, not cattle. E. Limit the number of 3rd-party services. F. Tightly-coupled components G. Scalability
A, B, C, G
Choose the features of Consolidated Billing. (Choose 3) A. Account charges can be tracked individually B. Multiple standalone accounts are combined and may reduce your overall bill C. Charging is based per VPC D. A single bill is issued containing the charges for all AWS Accounts
A, B, D
Which of the following AWS services should you use if you'd like to be notified when you have crossed a billing threshold? (Choose 2) A. AWS Bugdet B. Trusted Advisor C. CloudWatch D. AWS Cost Allocation
A, C
Which of the following are characteristics of cloud computing? (Choose 3) A. On-demand delivery B. Cloud charges are capital expenditures. C. Services are delivered via the Internet. D. Pay-as-you-go pricing
A, C, D
Which of the following are types of cloud computing deployments? (Choose 3) A. Hybrid cloud B. Mixed cloud C. Public cloud D. Private cloud
A, C, D
Which of the following are advantages of cloud computing? (Choose 4) A. Elasticity - you need not worry about capacity. B. Requires large amounts of capital C. Variable expense D. Increased speed and agility E. The ability to 'go global' in minutes
A, C, D, E
Which of the following is true about security groups? (Choose 2) A. Acts as a virtual firewall to control inbound and outbound traffic B. Acts as a virtual firewall to control outbound traffic only C. Acts as a virtual firewall to control inbound traffic only D. All inbound traffic is allowed and outbound traffic is denied by default E. All inbound traffic is denied and outbound traffic is allowed by default
A, D
Which of the following are NOT a benefit of AWS cloud computing? (Choose 2) A. Multiple procurement cycles B. Fault tolerant databases C. High latency D. Temporary and disposable resources E. High availability
A, E
For certain services like Amazon EC2 and Amazon RDS, you can invest in reserved capacity. Reserved instances are available in what 3 options?
AURI, PURI, NURI
Who is responsible for security of the cloud according to the shared accountability model?
AWS
Who is responsible for security of the cloud according to the shared responsibility model?
AWS
Which service provides you with data and insights to manage your applications and respond to changes
AWS - Cloud watch
Where can a customer find information about prohibited actions on AWS infrastructure? (Select the best answer)
AWS Acceptable Use Policy
Which AWS Services enables you to run interactive SQL queries against unstructured data held in an Amazon S3 Bucket?
AWS Athena
Which AWS service enables you to repeatedly and predictably provision resources to power your applications?
AWS Cloud Formation
Which AWS service enables you to repeatedly and predictable provision resources to power your applications?
AWS CloudFormation
Which service can identify the user that made the API call when an Amazon Elastic Compute Cloud (Amazon EC2) instance is terminated?
AWS CloudTrail
What are the three ways to access AWS core services?
AWS Command Line Interface (CLI), AWS Management Console, Software Development Kits, (SDKs)
For AWS Enterprise customers, any questions about billing and overall AWS account can be directed to which AWS support personnel?
AWS Concierge
Which AWS service can be used to generate historical configuration change records for your AWS resources which can then be used for auditing your workloads on the AWS platform?
AWS Config
Which AWS Report gives enables you to view line items for each unique combination of AWS product, usage type, and operation that your AWS account uses?
AWS Cost and Usage Report
Which components of AWS global infrastructure does Amazon CloudFront use to ensure low latency delivery?
AWS Edge Locations
Which of the following AWS services has no additional charge associated with its use? (The resources provisioned within the service may incur costs.)
AWS Identity and Access Management (IAM)
Which of the following is a responsibility of the customer according to the shared responsibility model?
AWS Identity and Access Management (IAM)
Which of the following is the responsibility of the customer according to the shared responsibility model?
AWS Identity and Access Management (IAM)
Which AWS service can be installed on your EC2 Instances and run security checks on your servers to identify vulnerability?
AWS Inspector
As an enterprise organization, which AWS Service can you use that can provision a simple and efficient means to make controlled changes to your infrastructure?
AWS Managed Service
Which method would you use to access AWS services through an easy to use graphical interface?
AWS Management Console
Which method would you use to access AWS services through an easy-to-use graphical interface?
AWS Management Console
What method would you use to access AWS through a GUI
AWS Management console
Which AWS offering enables customers to find, buy, and immediately start using software solutions in their AWS environment? (Select the best answer)
AWS Marketplace
Which tools can you use to consolidate multiple AWS Accounts so that you can centrally manage them?
AWS Organizations
Which of the following are geographic areas that host two or more Availability Zones?
AWS Regions
Which of the following services provides trusted users with temporary security credentials that can control access to your AWS resources? (Select the best answer)
AWS Security Token Service (STS)
Which AWS service can you use to create a portfolio of products that will allow you to specify how and who can deploy them on AWS?
AWS Service Catalog
Which AWS service is a managed DDoS protection service that safeguards applications running on AWS?
AWS Shield
Which AWS Calculator can be used to work out your monthly AWS costs for services deployed in your AWS Account?
AWS Simple Monthly Calculator
Your company is developing a critical application, and the security of the application is one of the top priorities. Which of the following AWS services will provide recommendations for security optimization for your infrastructure?
AWS Trusted Advisor
Your company is developing a critical application, and the security of the application is one of the top priorities. Which of the following AWS services will provide recommendations for security optimization for your infrastructure?
AWS Trusted Advisor
Your company's IT management team is looking for an online tool to provide recommendations to save money, improve system availability and performance, and to help close security gaps. What can help the management team?
AWS Trusted Advisor
Which AWS Security feature can be used to examine connections to your web application at layer 7 and identify and prevent any potential exploits like an SQL Injections?
AWS WAF
Which component of AWS global infrastructure does Amazon CloudFront use to ensure low latency delivery? (Select the best answer) AWS regions AWS edge location AWS availability zone Amazon virtual private cloud (amazon vpc)
AWS edge locations
Which component of AWS global infrastructure does Amazon CloudFront use to ensure low-latency delivery? (Select the best answer)
AWS edge locations
Which component of AWS global infrastructure does Amazon CloudFront use to ensure low-latency delivery? (Select the best answer)
AWS edge locations
When creating an IAM policy, what are the two types of access that can be granted to a user? (Choose two)
AWS management Console Access, Programmatic Access
Which of the following are geographic areas that host two or more Availability Zones? (Select the best answer) AWS regions aws origins edge locations compute zones
AWS regions
Which of the following are advantages of AWS Cloud security? (Choose two)
AWS uses multi-factor access control systems., You retain complete control and ownership of your data region.
Which of the following are advantages of AWS Cloud security? (Choose two)
AWS uses multi-factor access control systems., You retain complete control and ownership of your data region.
You wish to identify unnecessary permissions so that you can refine your IAM policies to better adhere to the principle of least privileges for your list of IAM users. Which IAM feature can you use to help you with this task?
Access Advisor
Which of the following is not available in the Business Support Plan? (Select the best answer)
Access to Well-Architected review delivered by AWS Solution Architects
Which of the following tasks is the customer's responsibility when creating Amazon VPC security groups?
Adding rules regarding inbound traffic to the security group
Which of the following tasks is the customer's responsibility when creating Amazon VPC security groups?
Adding rules regarding inbound traffic to the security group.
Which of the following are components that determine the cost of your RDS Database Instance? (Choose 3 answers)
Additional Storage, Hours of use and Number of Requests
What are the advantages of cloud computing over on-premises? (Select the best answer) Avoid large capital purchases On-demand capacity Go global Increase speed and agility All of the above
All of the above
What is included in an Amazon Machine Image (AMI)? (Select the best answer)
All of the above
What should you consider when choosing a database type? (Select the best answer)
All of the above
In Amazon DynamoDB, what does the query operation allow you to do? (Select the best answer)
All of the above.
Which support plan gives you the ability to raise a support request to query your Amazon bill?
All of them
What is the recommended best practice when assigning IAM permissions to a user?
Always use the principal of least privileges
_______ is up to five times faster than standard MySQL databases and three times faster than standard PostgreSQL databases. (Select the best answer)
Amazon Aurora
Which AWS service enables you to repeatedly and predictably provision resources to power your applications?
Amazon CloudFormation
Which of the following services provides you with data and actionable insights to monitor your applications, understand and respond to system-wide performance changes, optimize utilization, and get a unified view of operational health?
Amazon CloudWatch
Which service sends notifications or automatically makes changes to the resources being monitored based on rules you established?
Amazon CloudWatch
If you are developing an application that requires a database with extremely fast performance, fast scalability, and flexibility in the database schema, what should you consider? (Select the best answer)
Amazon DynamoDB
If you are developing an application that requires a database with extremely fast performance, fast scalability, and flexibility in the database schema, what should you consider? (Select the best answer)
Amazon DynamoDB
What service provides block storage to be used with EC2
Amazon EBS
Which service provides persistent block storage volumes for use with Amazon EC2 instances?
Amazon EBS
Which service provides persistent block volumes for use with Amazon EC2 instances?
Amazon EBS
Which of the following are features of Amazon Elastic Block Store (Amazon EBS)? (Choose two)
Amazon EBS volumes can be encrypted transparently to workloads on the attached instance., Data stored on Amazon EBS is automatically replicated within an Availability Zone.
Which of the following are features of Amazon Elastic Block Store (Amazon EBS)? (Choose two)
Amazon EBS volumes can be encrypted transparently to workloads on the attached instance., Data stored on Amazon EBS is automatically replicated within an Availability Zone.
Which of the following instance types provides you with a significant discount compared to On-Demand Instance pricing?
Amazon EC2 Reserved Instances
Which of the following instance types provides you with a significant discount compared to On-demand Instance pricing?
Amazon EC2 Reserved Instances
Which of the following must be specified when launching a new Amazon Elastic Compute Cloud (Amazon EC2) Windows instance? (Choose two)
Amazon EC2 instance type, Amazon Machine Image (AMI)
Why is AWS more economical than traditional data centers for applications with varying compute workloads? (Select the best answer)
Amazon EC2 instances can be launched on-demand when needed.
Why is AWS more economical than traditional data centers for applications with varying compute workloads? (Select the best answer)
Amazon EC2 instances can be launched on-demand when needed.
What core services are considered "Compute"
Amazon EC2, AWS Lambda, Auto Scaling, AWS Elastic Beanstalk, Amazon Elastic Container Registry, Amazon Elastic Container Service, Amazon Lightsail, AWS Batch
Which AWS Storage service enables you to grant the ability for EC2 instances and on-premise servers to access a shared file system and share a common data source, similar to a NAS storage system?
Amazon EFS
Which AWS Service stores objects as a collection in an archive file format like a tar or zip file?
Amazon Glacier
Which of the following can be used as a storage class for an S3 object lifecycle policy? (Choose three)
Amazon Glacier, S3 - Infrequent Access, S3 - Standard Access
Which of the following AWS services has no additional charge associated with its use? (The resources provisioned within the service may incur costs.)
Amazon Identity and Access Management (IAM)
What core services are considered "Database"
Amazon RDS, Amazon DynamoDB, Amazon Redshift, AWS Database Migration Service, Amazon ElastiCache
Which AWS Cloud service is best suited for Online Analytics Processing (OLAP)? (Select the best answer)
Amazon Redshift
You are building a data loss prevention (DLP) application that needs to read text content in images and can detect and prevent the leak of Social Security Numbers as part of your compliance requirements? Which AWS Service can help you with this?
Amazon Rekognition
What core services are considered "Storage"
Amazon S3, Amazon EBS, Amazon CloudFront, Amazon Glacier, Amazon Elastic File System, AWS Snowball, Storage Gateway, AWS Snowmobile
Which service would you use to send alerts based on Amazon CloudWatch alarms? (Select the best answer)
Amazon Simple Notification Service (Amazon SNS).
Which AWS services enables you to launch a virtual network that closely resembles a traditional network that you'd operate in your own data center?
Amazon VPC
What core services are considered "Networking"
Amazon VPC, Amazon Route S3, AWS Direct Connect, Elastic Load Balancing
Which AWS networking service enables a company to create a virtual network within AWS? (Select the best answer).
Amazon Virtual Private Cloud (Amazon VPC)
Elastic Load Balancing health checks may be what? (Choose three)
An Amazon Elastic Compute Cloud (Amazon EC2) instance status check, A connection attempt, A ping
Elastic Load Balancing health checks may be what? (Choose three)
An Amazon Elastic Compute Cloud (Amazon EC2) instance status check, A connection attempt, A ping
You have an application composed of individual services and you need to route a request to a service based on the content of the request. What type of load balancer should you use?
Application Load Balancer
You have an application made up of individual services and you need to route a request to a service based on the content of the request. What type of balancer should you use?
Application Load Balancer
You have an application composed of individual services and you need to route a request to a service based on the content of the request. What type of load balancer should you use?
Application Load balancer
How does Auto Scaling balance capacity?
Auto Scaling automatically balances EC2 instances across zones when you configure multiple zones in your Auto Scaling group settings
Which AWS feature can enable you to provision a required number of EC2 Instances and automatically launch new instances based on traffic and CPU utilization triggers?
Auto-scaling
What is Elastic Load Balancing?
Automatically distributing traffic across multiple targets
What is Elastic Load Balancing?
Automatically distributing traffic across multiple targets.
Which components of the AWS infrastructure can be described as multiple, isolated locations within one geographic area
Availability zones
What are the advantages of cloud computing over on-premises?
Avoid large capital purchases, on-demand capacity, go global in minutes, increase speed and agility
A disaster recovery strategy on AWS should be based on launching infrastructure in a separate A. Subnet B. AWS Region C. AWS edge location D. Amazon Virtual Private Cloud (Amazon VPC)
B
Amazon Elastic Compute Cloud (Amazon EC2) Spot instances are appropriate for which of the following workloads? A. Workloads that are only run in the morning and stopped at night B. Workloads where the availability of the Amazon EC2 instances can be flexible C. Workloads that need to run for long periods of time without interruption D. Workloads that are critical and need Amazon EC2 instances with termination protection
B
Amazon Lightsail is an example of which of the following? A. Infrastructure as a Service B. Platform as a Service C. Software as a Service D. Functions as a Service
B
Systems applying the cloud architecture principle of elasticity will A. Minimize storage requirements by reducing logging and auditing activities B. Create systems that scale to the required capacity based on changes in demand C. Enable AWS to automatically select the most cost-effective services D. Accelerate the design process because recovery from failure is automated, reducing the need for testing
B
The main benefit of decoupling an application is to A. Create a tightly integrated application B. Reduce inter-dependencies so failures do not impact other components C. Enable data synchronization across the web application layer D. Have the ability to execute automated bootstrapping actions
B
True or False: Both you and a friend can have an S3 bucket called 'mytestbucket'. A. True B. False
B
True or False: Identity Access Management (IAM) is a Regional service. A. True B. False
B
True or False: Objects stored in S3 are stored in a single, central location within AWS. A. True B. False
B
True or False: S3 can be used to host a dynamic website, like one that runs on a LAMP stack. A. True B. False
B
True or False: Security in the cloud is the responsibility of AWS. A. True B. False
B
True or False: The Standard version of AWS Shield offers automated application (layer 7) traffic monitoring. A. True B. False
B
True or False: There are more Regions than there are Availability Zones. A. True B. False
B
What AWS tool utilizes edge location to cache content and reduce latency> A. EC2 Instances B. AWS CloudFront C. EBS storage D. RDS E. VPCs
B
Which AWS service allows you to run code without having to worry about provisioning any underlying resources (such as virtual machines, databases etc.) A. EC2 B. Lambda C. DynamoDB D. EC2 Container Service
B
Which AWS service would simplify migration of a database to AWS? A. AWS Storage Gateway B. AWS Database Migration Service (AWS DMS) C. Amazon Elastic Compute Cloud (Amazon EC2) D. Amazon AppStream 2.0
B
Which component of AWS global infrastructure does Amazon CloudFront use to ensure low-latency delivery? A. AWS Regions B. AWS edge locations C. AWS Availability Zones D. Amazon Virtual Private Cloud (Amazon VPC)
B
Which native AWS service will act as a file system mounted on an S3 bucket? A. Amazon Elastic File System B. AWS Storage Gateway C. Amazon S3 D. Amazon Elastic Block Store
B
Which of the following AWS Support levels offers the assistance of a Technical Account Manager? A. Elite B. Enterprise C. Business D. Developer
B
Which of the following Compliance guarantees attests to the fact that the AWS Platform has met the standard required for the secure storage of medical records in the US? A. HITECH B. HIPPA C. GLBA D. FERPA
B
Which of the following EC2 instance types will realize a savings over time in exchange for a contracted term-of-service? A. On-demand instances B. Reserved instances C. Spot instances D. Discount instances
B
Which of the following are not valid CloudFormation template sections? A. Outputs B. Options C. Parameters D. Resources
B
Which of the following best describes a Resource Group? A. A resource group is a collection of resources that are deployed in the same AWS Region. B. A resource group is a collection of resources that share one or more tags (or portions of tags.) C. A resource group is a collection of resources of the same type (EC2, S3, etc.) that are deployed in the same Availability Zone. D. A resource group is a collection of resources of the same type (EC2, S3, etc.) that share one or more tags or portions of tags.
B
Which of the following is AWS's responsibility under the AWS shared responsibility model? A. Configuring third-party applications B. Maintaining physical hardware C. Securing application access and data D. Managing custom Amazon Machine Images (AMIs)
B
Which of the following is a benefit of Amazon Elastic Compute Cloud (Amazon EC2) over physical servers? A. Automated backup B. Paying only for what you use C. The ability to choose hardware vendors D. Root/administrator access
B
Which of the following services uses AWS edge locations? A. Amazon Virtual Private Cloud (Amazon VPC) B. Amazon CloudFront C. Amazon Elastic Compute Cloud (Amazon EC2) D. AWS Storage Gateway
B
Which service can identify the user that made the API call when an Amazon Elastic Compute Cloud (Amazon EC2) instance is terminated? A. Amazon CloudWatch B. AWS CloudTrail C. AWS X-Ray D. AWS Identity and Access Management (AWS IAM)
B
Who has control of the data in an AWS account? A. AWS Support Team B. AWS Account Owner C. AWS Security Team D. AWS Technical Account Manager (TAM)
B
You need to implement an automated service that will scan your AWS environment with the goal of both improving security and reducing costs. Which service should you use? A. Config Rules B. Trusted Advisor C. Service Catalog D. CloudTrail
B
You need to use an AWS service to assess the security and compliance of your EC2 instances. Which of the following services should you use? A. AWS Trusted Advisor B. AWS Inspector C. AWS Shield D. AWS WAF
B
Which AWS services can be used to store files? (Select Two) A. Amazon CloudWatch B. Amazon Simple Storage Service (Amazon S3) C. Amazon Elastic Block Store (Amazon EBS) D. AWS config E. Amazon Athena
B, C
Which of the following are Support Levels offered by AWS? (Choose 3) A. Individual B. Business C. Developer D. Start-up E. Basic
B, C, E
Which of the following are AWS compute services? (Choose 2) A. SNS B. Lambda C. EBS D. EC2
B, D
Which of the following are advantages of AWS cloud security? (Choose 2) A. AWS retains complete control and ownership of your data region B. You retain complete control and ownership of your data region C. AWS infrastructure security auditing is periodic and manual D. AWS uses multi-factor access control systems E. AWS uses single-factor access control systems
B, D
Which of the following are valid EC2 pricing options? (Choose 2) A. Enterprise B. On-Demand C. Stop D. Reserved
B, D
Which of the following support plans features unlimited (customer-side) contacts and unlimited support cases? (Choose 2) A. Basic B. Enterprise C. Developer D. Business
B, D
Which of the following are valid access types for an IAM user? (Choose 3) A. Emergency access via Identity Access Management (IAM) B. Using the AWS Software Developers Kit C. Security Group access via the AWS command line D. Programmatic access via the command line E. AWS Management Console access
B, D, E
Which of the following AWS tools help your application scale up or down based on demand? (Choose 2) A. AWS CloudFormation B. Auto Scaling C. Auto Availability Zones D. Agile Load Balancing E. Elastic Load Balancing
B, E
Amazon CloudWatch supports which types of monitoring plans? (Choose two)
Basic monitoring, which is free, Detailed monitoring, which has an additional cost
If NACLs offer the ability to block and deny traffic, why do we need security groups?
Because Security Groups protect instances within a Subnet
Which of the following are the primary reasons for choosing a specific region when deciding where to deploy your application? (Choose 2 answers)
Being able to deploy your application that enables you to achieve data sovereignty and being able to deploy your application that offers the lowest network latency
Which two options are available to grant permissions in Amazon S3, both at the bucket level and individual file level? (Choose 2 answers)
Bucket policies and Access Control Lists
What are the characteristics of the Developer Support Plan? (Choose two)
Business hours access to Cloud Support Associates via email, One primary contact may open a case
What are the four support plans offered by AWS? (Choose four)
Business, Enterprise, Basic, Developer
What are the four support plans offered by AWS? (Choose four)
Business, Enterprise, Basic, Developer
By default, what is the maximum number of Linked Accounts per Paying Account under Consolidated Billing? A. 10 B. 50 C. 20 D. 100
C
How would a system administrator add an additional layer of login security to a user's AWS Management Console? A. Use AWS Cloud Directory B. Audit AWS Identity and Access Management (IAM) roles C. Enable Multi-Factor Authentication D. Enable AWS CloudTrail
C
In which of the following is CloudFront content cached? A. Availability Zone B. Region C. Edge Location D. Data Center
C
There are at least _______ Availability Zones per AWS Region. A. 3 B. 4 C. 2 D. 1
C
Under the Shared Responsibility model, for which of the following does AWS not assume responsibility? A. Hypervisors B. Networking C. Customer data D. Physical security of AWS facilities
C
Which AWS service is specifically designed to assist you in processing large data sets? A. AWS Big Data Processing B. EC2 C. EMR D. ElastiCache
C
Which AWS service provides infrastructure security optimization recommendations? A. AWS Price List Application Programming interface (API) B. Reserved instances C. AWS Trusted Advisor D. Amazon Elastic Compute Cloud (Amazon EC2) Spot Fleet
C
Which of the following AWS Support levels offers 24x7 support via phone or chat? A. Developer B. Basic C. Business D. Individual
C
Which of the following AWS services can assist you with cost optimization? A. AWS WAF B. AWS Inspector C. AWS Trusted Advisor D. AWS Shield
C
Which of the following best describes Availability Zones? A. Two zones containing compute resources that are designed to automatically maintain synchronized copies of each other's data. B. A Content Distribution Network used to deliver content to users. C. Distinct locations from within an AWS region that are engineered to be isolated from failures. D. Restricted areas designed specifically for the creation of Virtual Private Clouds.
C
Which of the following data archival services is extremely inexpensive, but has a several hour data-retrieval window? A. S3-1Zone-IA B. S3-IA C. Glacier D. S3 E. S3-RRS
C
Which of the following examples supports the cloud design principle "design for failure and nothing will fail?" A. Adding an elastic load balancer in front of a single B. Amazon Elastic Compute Cloud (Amazon EC2) instance B. Creating and deploying the most cost-effective solution C. Deploying an application in multiple Availability Zones D. Using Amazon CloudWatch alerts to monitor performance
C
Which of the following is AWS' managed DDoS protection service? A. AWS WAF B. Security Groups C. AWS Shield D. Access Control Lists
C
Which of the following is AWS' managed database service that is up to 5X faster than a traditional MySQL database. A. MariaDB B. PostgreSQL C. Aurora D. DynamoDB
C
Which of the following is NOT an AWS region? A. Oregon B. Ireland C. Moscow D. Frankfurt E. Virginia
C
Which of the following is correct? A. # of Availability Zones > # of Regions > # of Edge Locations B.# of Availability Zones > # of Edge Locations > # of Regions C. # of Edge Locations > # of Availability Zones > # of Regions D. # of Regions > # of Availability Zones > # of Edge Locations
C
Which of the following is the document used to grant permissions to users, groups, and roles? A. Paradigm B. Passbook C. Policy D. Protocol
C
Which of the following support plans features a < 4-hour response time in the event of an impaired production system? A. Developer B. Basic C. Business D. Individual
C
Which of the following support plans features access to AWS Support during business hours via email? A. Enterprise B. Business C. Developer D. Basic
C
Which of the following support services do all accounts receive as standard? A. 24/7 support via phone and chat B. Technical support C. Billing support D. Technical Account Manager
C
Which service allows for the collection and tracking of metrics for AWS services? A. Amazon CloudFront B. Amazon CloudSearch C. Amazon CloudWatch D. Amazon Machine Learning (Amazon ML)
C
Why is AWS more economical than traditional data centers for applications with varying compute workloads? A. Amazon Elastic Compute Cloud (Amazon EC2) costs are billed on a monthly basis. B. Customers retain full administrative access to their Amazon EC2 instances. C. Amazon EC2 instances can be launched on-demand when needed. D).Customers can permanently run enough instances to handle peak workloads.
C
Which of the following are criteria affecting your billing for RDS? (Choose 3) A. Standby time B. Data transfer in C. Additional storage D. Number of requests E. Clock hours of server time
C, D, E
Which of the following statements are true about Availability Zones? (Choose 2) A. A single zone equals a single data center B. Multiple zones are physically connected on the same grid C. Multiple zones are connected by low latency network links D. Multiple zones will fail if one zone fails E. A single zone can span multiple data centers
C, E
Which of the following are included in AWS Assurance Programs? (Choose two)
Certification/Attestations, Laws, regulations, and privacy
Which of the following are included in AWS Assurance Programs? (Choose two)
Certification/Attestations, Laws, regulations, and privacy
How is storage typically priced on AWS Cloud?
Charged per GB
What are the three types of load balancers that ELB offers? (Choose three)
Classic Load Balancer, Network Load Balancer, Application Load Balancer
What are the three types of load balancers that ELB offers? (Choose three)
Classic Load Balancer, Network Load Balancer, Application Load Balancer
Cloud Deployment Model "All-In"
Cloud based application that is fully deployed in the cloud and all parts of the application run in the cloud.
In order to meet ITSM and Compliance you decide to use the AWS Service Catalog service to ensure your IT teams can only launch preapproved products. What AWS service can you use to build a new product comprising of a Linux EC2 Instance and ensure that your users can only choose specific instance type during the launch?
CloudFormation
Which AWS service enables you to create standard hardened server configuration as a template which you can deploy for production workloads?
CloudFormation
You work for a high profile organization that runs applications and stores sensitive data in a VPC in the AWS Cloud. You need an encryption service that will enable you to generate, store and manage your encryption keys, and one which is FIPS 140-2 Level 3 complaint Which AWS service can you use for this?
CloudHSM
You would like to know who terminated one of your EC2 Instances using API calls. Which AWS Service can you use to determine this?
CloudTrail
Your EC2 Instances come with a monitoring feature that only offers basic metrics. Which service should you enable to get access to more metrics?
CloudWatch with detailed monitoring
Auto Scaling automatically balances EC2 instances across zones when you configure multiple zones in your Auto Scaling group settings
Configure Multi-AZ
You want to reduce the dependency on the single database and improve I/O performance which includes reducing the read traffic. Which AWS database configuration can you implement to help you achieve this objective?
Configure Read Replicas
You are planning on purchasing a Reserved EC2 Instance. Which of the following classes of Reserved Instances are available? (Choose 2 answers)
Convertible and Standard
Your company has multiple branch offices and you have just created a new AMI for an EC2 Instance that your IT colleagues in branch offices need to use. What is the quickest way to make the AMI available to them?
Copy the AMI to the other regions
Which AWS Service provides historical cost associated with an EC2 Instance usage?
Cost Explorer
You are configuring AWS Organizations with multiple OUs for departments such as Operations and Development. There is a Test/Dev Account attached to the Developers OU, and you want to ensure that they are only able to configure certain AWS Services like RDS and Lambda. Which method can you use to restrict the Development Team to only performing certain actions?
Create Policies
You've been tasked with distributing a newsletter that will be pushed out to administrators by email. Which of the following is the best solution?
Create a topic in Amazon Simple Notification Service (Amazon SNS that Administrators can subscribe to
You have been tasked with distributing a newsletter that will be pushed out to administrators by email. Which of the following is the best solution?
Create a topic in Amazon Simple Notification Service (Amazon SNS) that administrators can subscribe to.
You have been tasked with distributing a newsletter that will be pushed out to administrators by email. Which of the following is the best solution?
Create a topic in SNS for people to subscribe to.
IT has 70 employees over 10 departments what is the best way to customize each departments access?
Create an IAM group for each department, and assign IAM users to the groups
A company has 70 employees divided into 10 departments. The IT Administrator wants to customize each department's access to AWS. Which of the following options is the most appropriate?
Create an IAM group for each department, and assign IAM users to the groups.
A company has 70 employees divided into 10 departments. The IT administrator wants to customize each department's access to AWS. Which of the following options is most appropriate?
Create an IAM group for each department, and assign IAM users to the groups.
A company needs to know which user was responsible for terminating several critical Amazon Elastic Compute Cloud (Amazon EC2) instances. A. AWS Trusted Advisor B. Amazon EC2 instance usage report C. Amazon CloudWatch D. AWS CloudTrail logs
D
How does an edge location help end users? A. Increases latency B. Reduces power consumption C. Increases storage D. Reduces latency E. Reduces scaling
D
IAM policies are written using ________. A. SGML B. XML C. SAML D. JSON
D
What is the number one reason customers are switching to cloud computing? A. Automation B. Overprovisioning C. Finite infrastructure D. Agility E. Instant Configuration
D
Where can a customer find information about prohibited actions on AWS infrastructure? A. AWS Trusted Advisor B. AWS Identity and Access Management (IAM) C. AWS Billing Console D. AWS Acceptable Use Policy
D
Where can a customer go to get more detail about Amazon Elastic Cloud (Amazon EC2) billing activity that took place 3 months ago? A. Amazon EC2 dashboard B. AWS Cost and Usage reports C. AWS Trusted Advisor dashboard D. AWs CloudTrail logs stored in Amazon Simple Storage Service (Amazon S3)
D
Which AWS networking service enables a company to create a virtual network within AWS? A. AWS Config B. Amazon Route 53 C. AWS Direct Connect D. Amazon Virtual Private Cloud (Amazon VPC)
D
Which AWS offering enables customers to find, buy, and immediately start using software solutions in their AWS environment? A. AWS Config B. AWS OpsWorks C. AWS SDK D. AWS Marketplace
D
Which of the following AWS services should you use to migrate an existing database to AWS? A. Route 53 B. Storage Gateway C. SNS D. DMS
D
Which of the following Compliance certifications attests to the security of the AWS platform regarding credit card transactions? A. SOC 1 B. ISO 27001 C. SOC 2 D. PCI DSS Level 1
D
Which of the following best describes EBS? A. A managed database service B. A NoSQL database service C. A bitcoin-mining service D. A virtual hard-disk in the cloud
D
Which of the following best describes an AWS Region? A. A collection of data centers that is spread evenly around a specific continent. B. A console that gives you a quick, global picture of your cloud computing environment. C. A collection of databases that can only be accessed from a specific geographic region. D. A distinct location within a geographic area designed to provide high availability to a specific geography.
D
Which of the following is AWS' Data Warehousing service? A. Elastic Map Reduce B. Snowball C. S3 Big Data D. Redshift
D
Which of the following is a benefit of running an application across two Availability Zones? A. Performance is improved over running in a single Availability Zone B. It is more secure than running in a single Availability Zone C. It significantly reduces the total cost of ownership versus running in a single Availability Zone D. It increases the availability of an application compared to running in a single Availability Zone
D
Which of the following is not a feature of AWS Organizations? A. Grouping all of your AWS accounts into Organisational Units (OUs) as part of a hierarchy B. Hierarchical based control over groups of IAM users and roles, within multiple Accounts C. AWS accounts which are members of an Organization can have the benefit of Consolidated Billing D. Granular configuration of Security Groups within a VPC
D
Which service allows an administrator to create and modify AWS user Permissions? A. AWS Config B. AWS CloudTrail C. AWS Key Management Service (AWS KMS) D. AWS Identity and Access Management (IAM)
D
Which tool can display the distribution of AWS spending? A. AWS Organizations B. Amazon DevPay C. AWS Trusted Advisor D. AWS Cost Explorer
D
You have a mission-critical application which must be globally available at all times. Which deployment strategy should you follow? A. Multi-VPC in two AWS Regions B. Deploy to all Availability Zones in your home region. C. Multi-Availability Zone D. Multi-Region
D
You have a project that will require 90 hours of computing time. There is no deadline, and the work can be stopped and restarted without adverse effect. Which of the following computing options offers the most cost-effective solution? A. Reserved instances B. On-demand instances C. ECS instances D. Spot instances
D
Your Development team uses four on-demand EC2 instances and your QA team has 5 reserved instances, only three of which are being used. Assuming all AWS accounts are under a single AWS Organization, how will the Development team's instances be billed? A. The pricing for the reserved instances will shift from QA to Dev. B. All the Dev team's instances will be billed at the on-demand rate. C. All the Dev instances will be billed at the reserved instance rate. D. The Dev team will be billed for two instances at on-demand prices and two instances at the reserved instance price.
D
What is true about Regions? (Choose 2) A. All regions are located in one specific geographic area B. Resources are replicated across all regions by default C. Physical location of your customers D. Physical location with multiple availability zones E. Each region is located in separate geographic area
D, E
Which of the following AWS services are free to use? (Choose 5) A. EC2 B. RDS C. S3 D. CloudFormation E. Elastic Beanstalk F. Route53 G. Auto-Scaling H. VPC I. EBS J. IAM
D, E, G, H, J
You are setting an AWS CloudFront distribution for a new video sharing web application. Your CFO would like to know the costs associated with using CloudFront. Which of the following is NOT required to estimate the cost of CloudFront?
Data Transfer In
Which of the following characteristics are you charged for when using the AWS Cloud? (Choose 3 answers)
Data Transfer Out, Compute and Storage
Which of the following characteristics are you charged for when using the AWS Cloud? (Choose 3 answers)
Data Transfer Out, Storage and Compute
What should you consider when choosing a database type? (Select the best answer)
Data size, Data access period, Query frequency, Highly available (All of the above)
There is no charge for which of the following? (Choose two) Compute Storage Inbound data transfer Outbound data transfer Data transfer between services within the same region
Data transfer between services within the same region, Inbound data transfer
What type of AWS data transfer is free for Amazon S3? (Choose two) Inbound data transfer from internet to S3 Outbound data transfer from S3 to CloudFront Outbound data transfer from S3 to all regions Outbound data transfer from S3 to internet
Data transfer between services within the same region, Inbound data transfer
Which AWS services can you use to migrate an existing database to AWS?
Database Migration Service (DMS)
You wish to deploy EC2 Instances in the Amazon AWS Cloud and utilize your own Microsoft Volume Licenses. Which EC2 pricing option allows you to use your existing server licenses?
Dedicated Hosts
Which Amazon Elastic Compute Cloud (Amazon EC2) feature ensures your instances will not share a physical host with instances from any other AWS customer? (Select the best answer)
Dedicated Instances
Which Amazon Elastic Compute Cloud (Amazon EC2) feature ensures your instances will not share a physical host with instances from any other AWS customer? (Select the best answer)
Dedicated Instances
After initial login, what does AWS recommend as the best practice for the AWS Account Root User? (Select the best answer)
Delete root user access keys
Which design principles are recommended when considering performance efficiency? (Choose two)
Democratize advanced technologies, Serverless architecture
Which of the following services further increases your EC2 Instances costs? (Choose 2 answers)
Detailed Monitoring and Use of Elastic Load Balancers
When configuring new IAM Users, which two Access Types are available on the AWS Management Console? (Choose 2 answers)
Direct Access and Remote Access
Which of the following core services are offered by Amazon Route53? (Choose 4 answers)
Domain Registration, Availability Monitoring, DNS Management and Traffic Management
Which Amazon Database solution offers high levels of scalability and high availability, and does not need complex joins or transactions?
DynamoDB
As AWS grows, the general cost of doing business is reduced and savings are passed back to the customer in the form of lower pricing. What is this optimization called?
Economies of scale
As AWS grows, the general cost of doing business is reduced and savings are passed back to the customer in the form of lower pricing. What is this optimization called? (Select the best answer) Economies of Scope Economies of optimization economies of labor economies of scale
Economies of scale
Which component of the AWS global infrastructure supports the caching of content for faster access?
Edge Locations
Which component of the AWS global infrastructure supports the caching of content for faster access?
Edge locations
Which AWS Services enables you to quickly deploy and manage applications in the AWS Cloud without worrying about the infrastructure that runs those applications?
Elastic Beanstalk
Which AWS service enables you to assign a static public IP Address that will not change if the EC2 Instance reboots?
Elastic IP
Automatically distributing traffic across multiple targets
Elastic Load Balancing
You have an application composed of individual services. You need to route a request to a service based on the content of the request. What service should you use?
Elastic Load Balancing
Which of the following AWS tools help your application scale up or down based on demand? (Choose two)
Elastic Load Balancing, Auto Scaling
Which AWS service enables you to transcode media files into multiple different formats?
Elastic Transcoder
What refers to the power to scale computing resources up or down easily?
Elasticity
Which of the following is a recommended best practice to add an additional layer of security for your Amazon AWS Root Account?
Enable Mult-Factor Authentication
How would a system administrator add an additional layer of login security to a user's AWS Management Console? (Select the best answer)
Enable Multi-Factor Authentication
Which of the following is best practice for adding an additional layer of security when logging into the AWS management console?
Enable Multi-Factor Authentication
Users of your services are reporting latency. With on-premises architecture you would notify your Administrator to launch another server to balance the load. How can this be automated in AWS?
Enable an Amazon CloudWatch alarm to trigger a scaling policy
Users of your services are reporting latency. With on-premises architecture you would notify your Administrator to launch another server to balance the load. How can this be automated using AWS?
Enable an Amazon CloudWatch alarm to trigger a scaling policy
Users of your services are reporting latency. With on-premises architecture you would notify your Administrator to launch another server to balance the load. How can this be automated using AWS?
Enable an Amazon CloudWatch alarm to trigger a scaling policy.
Which of the following are characteristics of the Auto Scaling service on AWS? (Choose three)
Enforces a minimum number of running Amazon EC2 instances, Launches instances from a specified Amazon Machine Image (AMI), Responds to changing conditions by adding or terminating Amazon Elastic Compute (Amazon EC2) instances
Which of the following are characteristics of the Auto Scaling service on AWS? (Choose three)
Enforces a minimum number of running Amazon EC2 instances, Launches instances from a specified Amazon Machine Image (AMI), Responds to changing conditions by adding or terminating Amazon Elastic Compute (Amazon EC2) instances
Which of the following AWS Support levels includes the assistance of a Technical Account Manager (TAM)? (Select the best answer)
Enterprise Support
Which of the following AWS Support levels includes the assistance of a Technical Account Manager (TAM)? (Select the best answer)
Enterprise Support
Which of the AWS Support levels offers 24 x 7 support via phone or chat? (Choose two)
Enterprise Support, Business Support
What does the IAM policy simulator do? (Select the best answer)
Evaluates the policies you choose and determines the effective permissions for each of the actions you specify.
What does the IAM policy simulator do? (Select the best answer)
Evaluates the policies you choose and determines the effective permissions for each of the actions you specify.
Your company has a primary production website in US and a DR Site in Sydney. You need to configure DNS such that if your primary site becomes unavailable, you can fail DNS over to the secondary site. Which DNS routing policy can you configure to achieve this?
Failover Routing
Access Control Lists are used to make entire buckets (like one hosting an S3 website) public. (Select the best answer)
False
Access Control Lists are used to make entire buckets (like one hosting an S3 website) public. (Select the best answer)
False
True or False? AWS IAM is appropriate for OS and application authentication.
False
True or False? AWS is responsible for the security of everything above the hypervisor layer.
False
True or False? Private subnets have direct access to the Internet.
False
True or False? The Access Key and Secret Access Key are used to log into the AWS Management Console.
False
True or False? AWS IAM is appropriate for OS and application authentication.
False
True or False? AWS is responsible for the security of everything above the hypervisor layer.
False
True or False? By default, all data stored in S3 is viewable by the public.
False
True or False? Cloud computing provides a simple way to access servers, storage, databases, and a broad set of application services over the Internet. You own the network connected hardware required for these services and Amazon Web Services provisions what you need.
False
True or False? Cloud computing provides a simple way to access servers, storage, databases, and a broad set of application services over the internet. You own the network connected hardware required for theses services ans Amazon Web Services provisions what you need.
False
True or False? Edge locations are only located in the same general area as regions.
False
True or False? Private subnets have direct access to the Internet.
False
True or False? The Access Key and Secret Access Key are used to log into the AWS Management Console.
False
True or False? To receive the discounted rate associated with Reserved Instances, you must make a full, up-front payment for the term of the agreement.
False
True or False? Unlimited services are available via the free tier to new AWS customers for 12 months following their AWS sign-up date?
False
True or false? To receive the discounted rate associated with Reserved Instances, you must make a full, up-front payment for the term of the agreement. (Select the best answer)
False
True or false? Unlimited services are available via the free tier to new AWS customers for 12 months following their AWS sign-up date. (Select the best answer)
False
When running your database instance as a Multi-AZ deployment, you can use the standby for read or write operations. (True or false)
False
You can attach a single EBS volume to multiple EC2 Instances (True or false)
False, you can only attach an EBS volume to one instance at a time
Which five categories does Amazon Trusted Advisor report on to showcase if your workloads have been designed, deployed and are running in accordance with best practices? (Choose 5 answers)
Fault Tolerance, Security, Service Limits, Cost Optimization and Performance
....... means the infrastructure has built in component redundancy and ......... means that resources dynamically adjust to increase or decrease in capacity requirements.
Fault Tolerant, Elastic/Scalable
What is defined as the ability for a system to remain operational even if some of the components of that system fail? (Select the best answer)
Fault tolerance
What is defined as the ability for a system to remain operational even if some of the components of that system fail? (Select the best answer)
Fault tolerance
_____ means the infrastructure has built in component redundancy and ______ means that resources dynamically adjust to increases or decreases in capacity requirements. No human intervention, fault tolerant Fault tolerant, no human intervention Elastic and scalable, fault tolerant elastic and scalable, no human intervention fault tolerant, elastic and scalable
Fault tolerant, elastic and scalable
When are free data transfers applicable across AWS? (Choose two) Free inbound data transfer across all amazon web services in all regions free outbound data transfer across all amazon web services in all regions free inbound data transfer for EC2 instances free outbound data transfer between amazon web services within the same region
Free outbound data transfer between Amazon Web Services within the same region, Free inbound data transfer for EC2 instances
You run an IT blog website that has millions of visitors throughout the month. You wish to improve the performance of the website which has been distributed across several regions with multiple EC2 instances running behind Elastic Load Balancers. You wish to configure your Route53 routing policies such that users' requests from Europe are redirected to the European EC2 instances and users' requests from the US are redirected to the US EC2 instances. What type of routing policy can help you achieve this objective?
Geo-location Routing
You want to store archive data that goes back 7 years. You will rarely access this data except in special circumstances. Which storage service is ideal for this requirement?
Glacier
Which of the following are considered primary advantages of cloud computing? (Choose 2 answers)
Go Global in minutes and Trade capital expense for variable expense
In architecting for the cloud, it is recommended that you design disposable resources instead of trying to build fixed servers. Which two components enable you to achieve the former?
Golden Images and Bootstrapping
You have just created a bucket and uploaded a file. When you view the properties of the file, you notice there is a web URL associated with the file. However, clicking the link gives you an "Access Denied" message. What could be wrong?
Grant Public read access to the file for Everyone
Which of the following are not benefits of AWS Cloud computing? (Choose two) High-availability High-latency Multiple procurement cycles Temporary and disposable resources Fault-tolerant databases
High-latency, Multiple procurement cycles
Which of the following best describes a system that is always available, without the need for human intervention? (Select the best answer)
Highly-available
Which of the following best describes a system that is always available, without the need for human intervention? (Select the best answer)
Highly-available
Your business has a requirement to expand their IT Infrastructure in a very short space of time, and you have decided to migrate some of their web servers to the Amazon AWS Cloud. You will continue to host your sensitive file servers on your datacentre. Which type of cloud computing deployment will suit your business needs?
Hybrid
Which IAM service can you use to grant temporary credentials to an AWS service with the necessary permissions?
IAM Roles
You need to grant your EC2 Instances the ability to upload and download images from an S3 bucket. Which IAM feature enables you to grant your EC2 instances the ability to access Amazon S3?
IAM Roles
Your colleague informs you that he wishes to set up Amazon IAM users based on the geographical regions of your company's branch offices. He logs onto the AWS IAM Console and tries to select the London Region but finds that all regions have been greyed out. What is preventing him from setting up IAM on a region by region basis?
IAM is globally based hence you cannot select a specific region. Its effects are global across your AWS Account
Which of the following services in a VPC grants you Internet Access for the VPC?
IGW
You wish to migrate your on-premise tape backup solution to the AWS Storage Gateway Platform. Which protocol can help you mount these virtual tapes for your backup application?
ISCI
Which industry standards & best practice does the AWS Managed Service offering comply with?
ITIL
You wish to design a web solution platform such that you can offer high availability and fault tolerance. To that effect, you have decided to host multiple webservers running your website. How can you distribute traffic to your web servers so that the load is evenly spread across the web servers and ensure high availability in case a particular server fails?
Implement an Elastic Load Balancer
Which of the following security actions are performed by customers of AWS? (Choose 2 Answers)
Implementing password Policies and Patching Windows OS
Which tools enable you to create IAM policies? (Choose 3 answers)
Import a Managed Policy, Visual Editor and JSON Scripting
There is no charge for which of the following?
Inbound data transfers, Data transfer between services within the same region.
What is the number one reason businesses are switching to cloud computing?
Increased speed and agility
What is the number one reason businesses are switching to cloud computing? Finite infrastructure Instant configuration Increased speed and agility Over-provisioning Automation
Increased speed and agility
The AWS Risk and Compliance Programs is made up of which of the following components? (Choose three)
Information Security, Risk Management, Control Environment
What is an AWS IAM instance profile? (Select the best answer)
Is a container for an IAM role that you can use to pass role information to an EC2 instance when the instance starts
What is an AWS IAM instance profile? (Select the best answer)
Is a container for an IAM role that you can use to pass role information to an EC2 instance when the instance starts
IAM policies are written in?
JSON
Which two file formats are used when creating CloudFormation templates? (Choose 2 answers).
JSON and YAML
What are the minimum elements required to create an Auto Scaling launch configuration? (Choose three)
Launch Configuration Name, Instance type, Amazon Machine Image (AMI)
Which of the following are required elements of an Auto Scaling group? (Choose two)
Launch configuration, Minimum size
Which of the following options will help increase the availability of a web server farm? (Choose two)
Leverage Auto Scaling to recover from failed instances., Launch the web server instance across multiple Availability Zones.
Which of the following options will help increase the availability of a web server farm? (Choose two)
Leverage Auto Scaling to recover from failed instances., Launch the web server instance across multiple Availability Zones.
Which Amazon S3 service can you use to automatically migrate data from one storage class to another after a set number of days as a means of reducing your costs, especially where frequent instant access may not be required to that subset of data?
Lifestyle Management
Which AWS Service enables you to launch a virtual private server with preconfigured components including a virtual machine, SSD-based storage, data transfer, DNS management, and a static IP for a fixed monthly price, without the complexity of designing these components individually?
Lightsail
Which of the following use cases is appropriate for Amazon CloudFront? [3] LIne on-demand video streaming. Security and encryption. Static asset caching. Schema generation. Security and encryption. Database backups
Live on-demand video streaming Security and encryption Static asset caching
Which of the following is a best practice for adding an additional layer of security when logging into the AWS Management Console?
MFA - multifactor authentication
Which of the following is AWS's responsibility under the AWS shared responsibility model?
Maintaining physical hardware
Which of the following is AWS's responsibility under the AWS shared responsibility model? (Select the best answer)
Maintaining physical hardware
Which of the following is AWS's responsibility under the AWS shared responsibility model? (Select the best answer)
Maintaining physical hardware
Which of the following components is included in the value proposition of the AWS Cloud?
Massive economies of scale
Which of the following components is included with the value proposition of the AWS Cloud?
Massive economies of scale
Which is apart of the AWS cloud value proposition? Informal security restrictions. Physical relocation of your servers. Fully independent development without parameters. Massive economies of scale.
Massive economies of scale.
Which of the following are some of the security benefits that AWS offers? (Choose two)
Meet compliance requirements, Secure global infrastructure
Which of the following are some of the security benefits that AWS offers? (Choose two)
Meet compliance requirements, Secure global infrastructure
Which of the following requires a custom CloudWatch metrics to monitor?
Memory
With the "Pay as you go" pricing model, what is the billing interval for compute resources from the time you launch a resource until you terminate it? (Select the best answer)
Monthly
With the "Pay as you go" pricing model, what is the billing interval for compute resources from the time you launch a resource until you terminate it? (Select the best answer)
Monthly
Which of the following is a best practice for adding an additional layer of security when logging into the AWS Management Console?
Multi-factor authentication (MFA)
Which parts of the AWS infrastructure support increased resilience?
Multiple Availability Zones within a Region
Which parts of the AWS infrastructure support increase resilience?
Multiple Availability Zones within a region
Which parts of the AWS infrastucture support increased resilience?
Multiple Availability Zones within a region
Which of the following are not benefits of cloud computing?
Multiple procurement cycles, High Latency
Which of the following database read replicas are compatible with Amazon Aurora? (Choose 2 answers)
MySQL and PostgreSQL
Which of the following Database engines are available on Amazon RDS? (Choose 4 answers)
MySQL, Microsoft SQL, Oracle, Aurora, PostgreSQL and MariaDB
You need to allow resources in a private subnet to access the internet. Which of the following must be present to enable this access? (Select the best answer).
NAT Gateway
Which of the following is an optional security control that can be applied at the subnet layer of a VPC? (Select the best answer)
Network ACL
Which of the following is an optional security control that can be applied at the subnet layer of a VPC? (Select the best answer)
Network ACL
You are designing an e-commerce web application that will scale to hundreds of thousands of concurrent users. Which database technology is best suited to hold the session state in this example?
NoSQL database table using Amazon DynamoDB
A Basic Support Plan allows how many support cases per month? (Select the best answer)
None
A Basic Support Plan allows how many support cases per month? (Select the best answer)
None
It's Sunday morning and you have been called into an urgent meeting at the office. Management is upset because a few hours ago, all instances running on the company's AWS environment went offline. One of your colleagues got an email stating that the Xen Hypervisor running in the Availability zone where you host various applications had failed. Management would like to know how you could have prevented the failure of the Xen Hypervisors?
Nothing AWS is responsible for the Xen Hypervisors as part of the shared responsibility model
Which of the following represents Alarm States for CloudWatch? (Choose 3 answers)
OK, Alarm and Insufficient Data
What type of storage is offered by Amazon S3?
Object
What is AWS Trusted Advisor?
Online tool that helps you configure resources to follow best practices
In a physical data center, security is typically considered in what area? (Select the best answer)
Only in the perimeter
Which of the pillars of the Well-Architected Framework is defined as the ability to run and monitor systems to deliver business value and to continually improve supporting processes and procedures?
Operational Excellence
Which of the pillars of the Well-Architected Framework is defined as the ability to run and monitor systems to deliver business value and to continually improve supporting processes and procedures?
Operational excellence
Which part of the well architected framework is "the ability to run and monitor systems to deliver business value and continually improving process and procedure".
Operational excellence
With AWS Relational Database Service (RDS), you are responsible for which of the following?
Optimization of applications using RDS
What type of AWS data transfer is free for Amazon S3?
Outbound data transfer from S3 to CloudFront, Inbound data transfer from internet to S3
For certain services like Amazon EC2 and Amazon RDS, you can invest in reserved capacity. Reserved Instances are available in what 3 options? (Choose three) MURI DURI PURI AURI NURI
PURI, NURI, AURI
What is the pricing model that allows AWS customers to pay for resources on an as-needed basis? (Select the best answer) Pay as you buy Pay as you reserve Pay as you decommission Pay as you go
Pay as you go
Which of the following describes the most common AWS billing model?
Pay as you go
Which of the following options describes the most common AWS billing model?
Pay as you go
Which of the following options describes the most common AWS billing model?
Pay as you go.
Which of these is not a primary benefit of cloud computing over on-premises computing? (Select the best answer) Trade capital expense for variable expense eliminate guessing on your infrastructure capacity needs pay for racking, stacking and powering servers Benefit from massive economies of scale increase speed and agility
Pay for racking, stacking and powering servers
Which of these is not a primary benefit of cloud computing over on-premises computing?
Pay for racking, stacking and powering servers
Which of the following is not part of the AWS pricing philosophy?
Pay less when you consume less
Which of the following is a core benefit of using AWS Cloud Computing instead of building, configuring and deploying your own physical infrastructure?
Paying only for services you use
Which of the following is an example of Amazon Lightsail? (Select the best answer)
Platform as a service
Which of the following is an example of Amazon Lightsail? (Select the best answer)
Platform as a service
What is a policy in Amazon IAM?
Policies enable you to assign permissions to users, groups and roles
Your company provides media content via the Internet to customers through a paid subscription model. You leverage Amazon CloudFront to distribute content to your customers with low latency. What approach can you use to serve this private content securely to your paid subscribers?
Provide signed Amazon CloudFront URLs to authenticated users to access the paid content.
Which EBS Volume is suitable for applications requiring high I/O such as a NoSQL Database?
Provisioned IOPS SSD (IO1)
How can you obtain a discount on your RDS database instances?
Purchase a Reserved Database instance
In Amazon DynamoDB, what does the query operation allow you to do? (Select the best answer)
Query a table using the partition key and an optional sort key filter, Query any secondary indexes that exist for a table, Efficiently retrieve items from a table or secondary table (All of the above)
Your company runs a website which streams Adobe Flash media content to its visitors. These are educational how-to-guides for DIY enthusiasts and you have a global audience accessing your website daily. You wish to utilize Amazon CloudFront to deliver content that caches media at different edge locations to help reduce latency. Which distribution mechanism should you use?
Real Time Messaging Protocol (RTP)
Which Amazon Database platform is most suited for Data Warehousing solutions
Redshift
What is the main benefit of designing application components that are decoupled?
Reduce dependencies between components of an application
Which EC2 option is best for long-term workloads with predictable usage patterns? (Select the best answer)
Reserved instances
Which EC2 option is best for long-term workloads with predictable usage patterns? (Select the best answer)
Reserved instances
You have utilized tagging as a way of identifying resources deployed on your AWS account. You wish to consolidate all resources so that you can identify resources that belong to a specific tag. Which service can you use to do this task?
Resource Groups
Your web app requires temp authorization to use AWS services
Role
Which of the following are AWS IAM best practices? (Choose two)
Rotate credentials regularly., Monitor activity in your AWS account.
Which of the following are AWS IAM best practices? (Choose two)
Rotate credentials regularly., Monitor activity in your AWS account.
Which of the following are the two key problems associated with using Access Key ID and Secret Access Keys when trying to grant access to AWS services? (Choose 2 answers)
Rotation of keys and Keys might get leaked and fall into the wrong hands
Your web application needs four instances to support steady traffic all of the time. On the last day of the month, the traffic triples. What is the most cost-effective way to handle this pattern?
Run four Reserved Instances constantly, then add eight On-Demand Instances on the last day of each month.
Where are Amazon RDS Automated Backups Stored?
S3
You need to find an item in a DynamoDB table using an attribute other than the item's primary key. Which of the following operations should you use? (Select the best answer)
Scan
You need to find an item in a DynamoDB table using an attribute other than the item's primary key. Which of the following operations should you use? (Select the best answer)
Scan
If your project requires you to run monthly reports that iterate through very large amounts of data, which Amazon EC2 purchasing option should you consider?
Scheduled Reserved Instances
With the "pay as you go" pricing model, how often do you pay for compute resources from the time you launch a resource until you terminate it? (Select the best answer) Yearly quarterly monthly daily secondly and hourly
Secondly and Hourly
With the "pay as you go" pricing model, how often do you pay for compute resources from the time you launch a resource until you terminate it?
Secondly and Hourly.
In the Shared Responsibility Model, AWS has responsibility of providing what? (Select the best answer)
Security of the cloud
In the Shared Responsibility Model, AWS has responsibility of providing what? (Select the best answer)
Security of the cloud
Which of the following is not a characteristic of the Auto Scaling service on AWS? (Select the best answer)
Sends traffic to healthy instances
Which of the following is not a characteristic of the Auto Scaling service on AWS? (Select the best answer)
Sends traffic to healthy instances
Which Server-Side Encryption Technology offers additional auditing features?
Server-Side Encryption using AWS Key Management Service, Managed Keys - SSE-KMS
Which of the following represent appropriate use cases for Amazon CloudFront? (Choose 3 answers)
Serving all websites containing both static and dynamic content to users from different geographical locations A website that delivers static content such as images and videos across the globe and you wish to improve latency and speed of download Delivering premium training videos and courses to customers around the world and making them available to only paid customers
When setting up EC2 Instances, which configuration option enables you to identify the purpose of the EC2 server and better manage cost allocation?
Setting up Tags
Which of the following is a managed Distributed Denial of Service (DDoS) protection service Trusted Advisor Amazon Inspector AWS Shield AWS Identity and Access Management (IAM)
Shield
What are the three ways to access AWS core services? (choose three) Software Development Kits AWS Command line Interface AWS Management Console Calling Technical support Through AWS Marketplace
Software Development Kits (SDKs), AWS Command Line Interface (AWS CLI), AWS Management Console
Which of the following examples best demonstrates the agility that cloud computing offers?
Spin up servers in minutes, and shut down servers when you don't need them
Which of the following examples best demonstrates the agility that cloud computing offers?
Spin up servers in minutes, and shut down servers when you don't need them.
Which of the following use cases is appropriate for Amazon CloudFront? (select three).
Static asset caching, Live On-demand video streaming, Security and Encryption
Which of the following are some of the six advantages of cloud computing? (Choose 3 answers)
Stop guessing about capacity, Increase speed and agility and Trade capital expense for variable expense
Which category of services include Amazon S3?
Storage
Which category of services includes Amazon S3?
Storage
Witch category of services includes Amazon S3?
Storage
What is the standard pricing model for Amazon S3? (Choose 3 answers)
Storage per GB, Number of Requests and Data transfer out
What can you use S3 for with your web application? (Select the best answer)
Store static content such as images, video, CSS, JavaScript, etc.
What can you use S3 for with your web application? (Select the best answer)
Store static content such as images, video, CSS, JavaScript, etc.
NACLs traffic rules and restrictions are applied to:
Subnets
Which of these is not a cloud deployment model?
System administration as a service
What are Convertible Reserved Instances (RI)?
The ability to change a Reserved Instance with different configuration, operating system and tenancy as long as the target instance is of equal or higher value
Which of the following attributes of Amazon AWS are examples of the cloud computing difference? (Choose 2 answers)
The ability to create templates of your infrastructure by converting into code for repeat deployment and Global availability and unlimited capacity
You are planning on launching a DynamoDB NoSQL database solution designed for your organization across all branch offices located in 6 different regions. You plan to use Global Tables to setup a fully managed, multiregion, and multimaster database that provides fast local read and write performance for massively scaled, global applications. How are you charged for writing to the database?
The number of replicated write capacity units (rWCUs)
When are free data transfers applicable across AWS?
There is free inbound data transfer for EC2 instances, free outbound data trafer between Amazon Web Services within the same region.
Cloud Deployment Model "Hybrid"
This connects cloud resources and current infrastructure to work as one. Most commonly used to connect on-premise infrastructure to the cloud.
Cloud Deployment Model "Private Cloud" (On Premise)
This is private infrastructure owned by the company and has no ties to any cloud services. This would be a private data center.
You need to compare the cost of purchasing a new on-premises NAS server with that of deploying an EFS volume in the cloud and hosting your servers in AWS. Which tool can you use to perform this comparison?
Total Cost of Ownership
What AWS tool compares the cost of running your application in an on-premises data center to AWS?
Total Cost of Ownership (TCO) Calculator
What AWS tool compares the cost of running your application in an on-premises data center to AWS? (Select the best answer) Total Cost of Operation calculator Total cost of ownership total cost of products total cost of application
Total cost of ownership
Which of the following is not one of the four areas of the performance efficiency pillar? (Select the best answer)
Traceability
True or False? S3 is an object storage suitable for the storage of 'flat' files like Word documents, photos, etc.
True
True or False? Using IAM Groups is the recommended way to manage IAM users' permissions by job function.
True
True or False? AWS offers a variety of services at no charge. For example, Amazon Virtual Private Cloud, AWS Identity and Access Management, Consolidated Billing, AWS Elastic Beanstalk, AWS Auto Scaling, AWS OpsWorks and AWS Cloud Formation. Although there is no charge for these services, there may be charges associated with other AWS services used in conjunction with these services.
True
True or False? AWS owns and maintains the network-connected hardware required for application services, while you provision and use what you need.
True
True or False? AWS owns and maintains the network-connected hardware required for application services, while you provision and use what you need. True False
True
True or False? Amazon RDS automatically patches the database software and backs up your database, storing the backups for a user-defined retention period and enabling point-in-time recovery.
True
True or False? Availability Zones within a region are connected through low-latency links.
True
True or False? Each Availability Zone is designed to be isolated from failures in other Availability Zones. True False
True
True or False? Each Availability zone is designed to be isolated from failures in other Availability zones.
True
True or False? Using IAM Groups is the recommended way to manage IAM users' permissions by job function.
True
True or False? You can launch multiple instances of different types from a single AMI when launching an EC2 instance.
True
True or false? AWS offers a variety of services at no charge. For example, Amazon Virtual Private Cloud, AWS Identity and Access Management, Consolidated Billing, AWS Elastic Beanstalk, AWS Auto Scaling, AWS OpsWorks and AWS Cloud Formation. Although there is no charge for these services, there may be charges associated with other AWS services used in conjunction with these services.
True
You can configure a Network Elastic Load Balancers with a Static Elastic IP Address. (True or false)
True
Where can you set up Billing Alarms?
Trusted Advisor
Which AWS Service offers guidance on how you can further optimize your costs and identify areas to save money?
Trusted Advisor
What is the first step in getting started with Lambda?
Upload your code
AWS Support has five different severity levels for support cases. What are they? (Choose five)
Urgent, High, Normal, Low, Critical
You are planning on migrating 80TB of data to Amazon S3. The migration plan is scheduled to happen over the next week and you have limited Internet bandwidth of 5mbps DSL connection. How can you migrate this data into the cloud within the specified timeframe?
Use Amazon Snowball
You have set up a load balancer in front of multiple web servers in the London Region. You have been provided with the DNS names of the load balancer, but you have not been given the IP Address to create the necessary 'A' record for you to point your zone apex name, e.g. company.com to resolve to your website. As best practice, which record should you create to enable your zone apex name to resolve to your load balancer DNS name?
Use an Alias Record
Which of the following VPC Configuration options will enable you to host web servers being placed in a public facing subnet and back-end databases hosted in a more secure private subnet with access to your corporate datacenter over a site-to-site VPN tunnel?
VPC with Public and Private Subnets and AWS Managed VPN Access
Which of the following services are completely free on the AWS platform? (Choose 4 answers).
VPC, Elastic Beanstalk Service, CloudFormation and IAM
Which AWS S3 service can be used to help prevent accidental deletion of objects?
Versioning
Which of the following AWS concepts refers to "Established best practices developed through lessons learned by working with customers"?
Well architected framework
Which of the following AWS concepts refers to "Established best practices developed through lessons learned by working with customers"?
Well-Architected Framework
Which of the following AWS concepts refers to "Established best practices developed through lessons learned by working with customers?
Well-architected framework
What will AWS Trusted Advisor tell you? (Choose three)
Whether or not you are using fault tolerance, Deployed resources not being used but incurring charges, How well the infrastructure is performing
What will AWS Trusted Advisor tell you? (Choose three)
Whether or not you are using fault tolerance, Deployed resources not being used but incurring charges, How well the infrastructure is performing
In the Shared Responsibility Model, which of the following are examples of "security in the cloud?" (Choose two)
Which AWS services are used with the content, In which country content is stored
In the Shared Responsibility Model, which of the following are examples of "security in the cloud?" (Choose two)
Which AWS services are used with the content, In which country content is stored
Are Key Pairs unique to the region in which you have created them?
Yes
Are you allowed to run vulnerability testing against your AWS workloads?
Yes
What does the phrase 'S3 uses a unique namespace' mean?
Your bucket names must be unique on the Amazon platform and Internet
In Amazon DynamoDB, an attribute is ______. (Select the best answer
a fundamental data element
In Amazon DynamoDB, an attribute is ______. (Select the best answer)
a fundamental data element
You can run applications and workloads from a region to ......... latency to end users
decrease
You can run applications and workloads from a region to _______ latency to end users. increase decrease
decrease
Economies of scale results from ..................
having hundreds of thousands of customers aggregated in the cloud
Economies of scale results from ______. (Select the best answer) having hundreds of thousands of customers aggregated in the cloud having hundreds of cloud services available over the internet having to invest heavily in data centers and servers having many different cloud provders
having hundreds of thousands of customers aggregated in the cloud
To view all categories of instance metadata from within a running instance, which URI should you use? (Select the best answer)
http://169.254.169.254/latest/meta-data/
To view all categories of instance metadata from within a running instance, which URI should you use? (Select the best answer)
http://169.254.169.254/latest/meta-data/
You wish to migrate your on-premise tape backup solution to the AWS Storage Gateway Platform. Which protocol can help you mount these virtual tapes for your backup application?
iSCSI
S3 replicates all objects ______. (Select the best answer)
in multiple availability zones within the same region
S3 replicates all objects ______. (Select the best answer)
in multiple availability zones within the same region
Which files do you need to upload at a minimum to enable an Amazon S3 bucket to be used as a static website? (Choose 2 answers)
index.html and error.html
AWS highly recommends provisioning your compute resources across ........ Availability zones.
multiple
AWS highly recommends provisioning your compute resources across ___ availability zones. Multiple single all no
multiple
What is the pricing model that allows AWS costumers to pay for resources on an as-needed basis?
pay as you go
When you create a table in Amazon DynamoDB, in addition to the table name, you must specify the _____ of the table. (Select the best answer)
primary key
When you create a table in Amazon DynamoDB, in addition to the table name, you must specify the _____ of the table. (Select the best answer)
primary key
Amazon EBS is recommended when data _______ and _______. (Choose two)
requires an encryption solution, must be quickly accessible, requiring long-term persistence
Which of these is not a cloud deployment model? (Select the best answer) System administration as a service infrastructure as a service platform as a service software as a service
system administration as a service
True or False? S3 is an object storage suitable for the storage of 'flat' files like Word documents, photos, etc.
true
True or False? You can launch multiple instances of different types from a single AMI when launching an EC2 instance.
true
The name of an S3 bucket must be unique _________. (Select the best answer)
worldwide across all AWS accounts
The name of an S3 bucket must be unique _________. (Select the best answer)
worldwide across all AWS accounts