CPC Practice Exam #7
Which of the following are AWS Security, Identity, and Compliance services?
1. AWS Security Hub 2. AWS Key Management Service (KMS) 3. AWS Secrets Manager
Which of the following AWS services fall under the Migration and Transfer category?
1. AWS Snowball 2. AWS Database Migration Service
Which of the following falls under the AWS compute services category?
1. Amazon Elastic Beanstalk 2. AWS Lambda
Which of the following falls under AWS compute services category?
1. Amazon Elastic Beanstalk 2. Amazon Elastic Compute Cloud (EC2) 3. Amazon Lightsail
Which of the following statements is true of AWS CloudTrail?
1. CloudTrail delivers log files within 15 minutes of account activity. 2. With CloudTrail, you can create a trail that either applies to one Region or to all Regions. 3. Log files are encrypted
Enabling Amazon GuardDuty automatically grants the service permission to analyze continuous metadata streams from which of the following data sources?
1. DNS query logs 2. AWS CloudTrail logs 3. VPC Flow Logs
AWS uses the shared responsibility model. For security, which of the following are the responsibilities of AWS?
1. Disk disposal 2. Network patching 3. Physically securing compute resources
Which of the following statements are true of Amazon Aurora?
1. It is a Relational Database Service (RDS) database engine developed by Amazon. 2. It can deliver up to five times the throughput of MySQL.
Which of the following statements are true of Amazon Aurora?
1. It is compatible with the MySQL and PostgreSQL database engines. 2. It uses the AWS Management Console, AWS CLI commands, and API operations to handle routine database tasks.
Which of the following statements are true of Amazon Redshift?
1. It is designed for storing petabytes of data. 2. It is a data warehouse service.
According to the AWS Shared Responsibility Model, which of the following is the customer responsible for?
1. Network access control lists (network ACLs) 2. Subnets 3. Security groups
Upon which of these measurements is AWS Lambda pricing based?
1. Number of requests 2. Duration
Which of the following engines are classified as relational databases on AWS?
1. Oracle 2. MySQL 3. PostgreSQL
Which of the below are you responsible for when running an EC2 instance on AWS?
1. Patching the operating system 2. Patching the applications
Which of the following are characteristics of Availability Zones (AZs)?
1. Physically separated 2. Fault tolerant 3. Connected through low-latency links
Which deployment types offers the advantages of cloud computing?
1. Public cloud 2. Hybrid cloud
An organization is considering migrating internal applications to the AWS Cloud. The organization will follow the 5 pillars of the AWS Well-Architected Framework. Which items are pillars of the AWS Well-Architected Framework?
1. Reliability 2. Operational excellence
How are permissions assigned to an IAM group?
1. Roles 2. Policies
Which of the following are characteristics of cloud computing?
1. Services are delivered via the internet. 2. On-demand delivery 3. Pay-as-you-go pricing
Which of the following are part of the AWS storage services category?
1. Storage Gateway 2. Amazon EFS 3. Amazon S3
When would you use the Reserved Instance pricing model?
1. Your application has steady state usage 2. Your application requires a capacity reservation
Which of the following describes a subnet accurately?
A segment of a VPC's IP address range where you can place groups of isolated resources.
Which of the following does AWS use to notify you by email when you exceed 85% of your Free Tier limits for each service?
AWS Budgets
Which of the following enables you to interact with AWS services using only textual commands?
AWS CLI
An auditor is conducting an audit of your IT operations for compliance. The auditor requests visibility to logs of event history across your AWS-based employee expense system infrastructure. Which AWS service will record and provide you the information you need?
AWS CloudTrail
Which of the following AWS services enables you to continuously monitor and record configuration changes of your resources?
AWS Config
Your company has entered into a 3-year contract with a government agency. Your best option for EC2 is Reserved Instances. Which AWS feature would you use to track your Reserved Instance usage?
AWS Cost and Usage Report
A company has multiple AWS accounts across multiple Regions. Which AWS service can be used to manage these accounts and provide consolidated billing?
AWS Organizations
You are leading a pilot program to try the AWS Cloud for 1 of your applications. You have been instructed to provide an estimate of your AWS bill. Which service will allow you to do this by manually entering your planned resources by service?
AWS Pricing Calculator
You have been tasked with going into the AWS company account and getting information on saving money, improving system performance and reliability, and closing security gaps. Which tool can you use to get this information?
AWS Trusted Advisor
Users need to access AWS resources from the Command Line Interface. Which IAM option can be used for authentication?
Access keys
Which benefit of cloud computing helps you innovate faster and gives you speed to market?
Agility
Your company has recently migrated large amounts of data to the AWS Cloud in S3 buckets. It is necessary to discover and protect the sensitive data in these buckets. Which AWS service can do that?
Amazon Macie
Which of the following AWS services can be used to create billing alarms?
CloudWatch
You have recently started using AWS and now need to launch a large number of instances in your VPC. You learn that this number exceeds the service limits for instances in a VPC. What can you do?
Contact AWS and request a service limit increase.
ElastiCache is an example of what type of AWS service?
Database
Which of the following support plans features access to Enhanced Technical Support via email only during business hours?
Developer
Who are the main users of the AWS Command Line Interface (CLI)?
Developers
Which service allows you to connect a private cloud to a public cloud?
Direct Connect
Which of the following best describes Availability Zones (AZs)?
Distinct locations from within an AWS Region that are engineered to be isolated from failures
Which component of the AWS Global Infrastructure caches content for fast delivery to users?
Edge locations
In AWS, you can stop or terminate instances when not in use. Which of the following concepts describes this capability?
Elasticity
Which benefit of cloud computing allows you to avoid planning ahead of time for how much capacity you need?
Elasticity
Which of the following best describes the ability to scale computing resources out or in easily, while only paying for the resources used?
Elasticity
Which of the following AWS Support levels offers the assistance of a Technical Account Manager?
Enterprise
Which term refers to the Identity and Access Management (IAM) resource objects that AWS uses for authentication?
Entities
You are using your corporate directory to grant your users access to AWS services. What is this called?
Federated access
Which of the following provides the least expensive Amazon S3 storage?
Glacier Deep Archive
Which of the following best describes a system that is always online — without the need for human intervention?
Highly available
You are working with IAM and need to attach policies to users, groups, and roles. Which of the following will you be attaching these policies to?
Identities
A company on the Business Support plan currently runs all their applications in a single Region. They have made the decision to expand to multiple Regions. What is the process to start deploying their applications to the new Regions?
Just start deploying the applications to the new Regions.
You need to execute code in response to a specific change to your S3 bucket. Which of the following compute services should you choose to execute your code?
Lambda
Which of the following compute services is ideal if you need to run a simple website or a simple e-commerce application?
Lightsail
Trusted Advisor is classified as what type of AWS service?
Management & Governance
VPC, CloudFront, and Route 53 are examples of what type of AWS service?
Networking and Content Delivery
Which following statement is true of newly created security groups with their default rules?
New security groups allow only outbound traffic and block all incoming traffic.
The AWS Global Infrastructure comprises Regions, Availability Zones, and edge locations, and there is a different number of each infrastructure element. Select the option that shows the correct order from greatest to least.
Number of Edge Locations > Number of Availability Zones > Number of Regions
A company has a large number of S3 buckets and needs to manage and automate tasks on these buckets at one time. Which AWS feature can do this?
Resource groups
Adding resources to your application as user demand grows is an example of which cloud concept?
Scalability
Which service allows a user to rotate, manage, and retrieve secrets?
Secrets Manager
You need to set up a virtual firewall for your EC2 instance. Which would you use?
Security group
You have used On-Demand Instances for a month but have met unexpected costs with this choice. Which EC2 option provides up to 90% discount on On-Demand Instances while taking advantage of AWS unused EC2 capacity?
Spot Instances
You've been tasked with assessing your AWS infrastructure in terms of cost optimization. Which of the following AWS services would help with this task?
Trusted Advisor
How would a customer create a virtual firewall for an EC2 instance?
With a security group
