Amazon Cloud Foundations
Which of the following are geographic areas that host two or more Availability Zones? Edge Locations Compute Zones AWS Regions AWS Origins
AWS Regions
Unlimited services are available with the AWS Free Tier to new AWS customers for 12 months following their AWS sign-up date (Select the best answer.) True False
False
Which component of AWS Global Infrastructure does Amazon CloudFront use to ensure low-latency delivery? AWS Regions AWS edge locations AWS Availability Zones Amazon Virtual Private Cloud (Amazon VPC)
AWS edge locations
In Amazon DynamoDB, what does the query operation enable you to do? Query a table using the partition key and an optional sort key filter Query any secondary indexes that exist for a table Efficiently retrieve items from a table or secondary index All of the above
All of the above
What is included in an Amazon Machine Image (AMI)? A template for the root volume for the instance Launch permissions that control which AWS accounts can use the AMI to launch instances A block device mapping that specifies the volumes to attach to the instance when it's launched All of the above
All of the above
A company has an application, which consists of a .NET layer that connects to a MySQL database. They want to move this application on to AWS and use AWS features such as high availability and automated backups. Which of the following would be an ideal database for this use case? Amazon DynamoDB Amazon Redshift Amazon Aurora Amazon RDS
Amazon Aurora
There is an audit at your company and they need to have a log of all access to AWS resources in the account. Which of the following services can assist in providing these details? Amazon Simple Notification Service ( Amazon SNS) Amazon CloudTrail Amazon Elastic Compute Cloud ( Amazon EC2) Amazon CloudWatch
Amazon CloudTrail
Which of the following services can help you collect important metrics from Amazon Relational Database Service (Amazon RDS) and Amazon Elastic Compute Cloud (Amazon EC2) instances? Amazon CloudWatch AWS CloudTrail Amazon CloudSearch Amazon CloudFront Amazon EC2 Auto Scaling
Amazon CloudWatch
If you are developing an application that requires a database with extremely fast performance, fast scalability, and flexibility in the database schema, which service should you consider? Amazon Relational Database Service (Amazon RDS) Amazon ElastiCache Amazon DynamoDB Amazon Redshift
Amazon DynamoDB
Which of the following is a compute service? (Select the best answer) Amazon EC2 Amazon VPC Amazon CloudFront Anazon S3 Amazon Redshift
Amazon EC2
Which of the following AWS tools helps your application scale up or down based on demand? (Choose two.) Availability zones Amazon EC2 Auto Scaling AWS Config AWS CloudFormation Elastic Load Balancing
Amazon EC2 Auto Scaling Elastic Load Balancing
What are the four support plans offered by AWS Support? (Select the best answer.) Basic, Developer, Business, Enterprise Basic, Startup, Business, Enterprise Free, Bronze, Silver, Gold All support is free
Basic, Developer, Business, Enterprise
When you create a bucket in Amazon S3, it is associated with a specific AWS Region. True False
True
In Amazon DynamoDB, an attribute is _____________. a collection of attributes a collection of items a fundamental data element
a fundamental data element
What should you consider when choosing a database type? (Select the best answer.) Data size Data access period Query frequency Highly available all of the above
all of the above
You can run applications and workloads from a Region closer to the end users to ____ latency. increase decrease no affect remove
decrease
Economies of scale result from ____. (Select the best answer) having to invest heavily in data centers and servers having many different cloud providers having hundreds of thousands of customers aggregated in the cloud having hundreds of cloud services available over the Internet
having hundreds of thousands of customers aggregated in the cloud
Amazon Elastic Block Store (Amazon EBS) is recommended when data _____ and ________. (Choose two.) requires object-level storage must be quickly accessible, requiring long-term persistence requires an encryption solution needs to be stored in a different Availability Zone than the one the EC2 instance is in
must be quickly accessible, requiring long-term persistence needs to be stored in a different Availability Zone than the one the EC2 instance is in
The name of an S3 bucket must be unique ________________. within a Region worldwide across all AWS accounts across all your AWS accounts within your AWS account
worldwide across all AWS accounts
AWS highly recommends provisioning your compute resources across ___ Availability Zones. single all multiple no
multiple
What are the advantages of cloud computing over computing on premises? (Select the best answer) Avoid large capital purchases Use on-demand capacity Go global in minutes Increase speed and agility All of the above
All of the above
Regarding Amazon S3 Glacier, what is a Vault? A container for storing archives The rules that determine who may (or may not) access archives A policy that identifies who can access content stored in Glacier An object (photos, videos, files, or documents)
A container for storing archives
Which of these statements about Availability Zones is not true? Availability Zones are made up of one or more data centers. Availability Zones are designed for fault isolation. Availability Zones are connected to each other using high-speed private links. A data center can be used for more than one Availability Zone.
A data center can be used for more than one Availability Zone.
Which of the following must be configured on an Elastic Load Balancing load balancer to expect incoming traffic? A network interface A listener A port An instance
A listener
What happens when you use Amazon Virtual Private Cloud (Amazon VPC) to create a new VPC? Three subnets are created by default in on Availability Zone. An internet gateway is created by default. A main route table is created by default. Three subnets is created by default: one for each Availability Zone.
A main route table is created by default.
Which of these are ways to access AWS core services? (Choose three) AWS Command Line Interface (AWS CLI) Technical Support calls AWS Marketplace Software Development Kits (SDKs) AWS Management Console
AWS Command Line Interface (AWS CLI) Software Development Kits (SDKs) AWS Management Console
Which of the following must be specified when launching a new Amazon Elastic Compute Cloud (Amazon EC2) Windows instance? (Choose two.) Password for the administrator account The Amazon EC2 instance ID Amazon Machine Image (AMI) Amazon EC2 instance type
Amazon Machine Image (AMI) Amazon EC2 instance type
Which of the following elements are used to create an Amazon EC2 Auto Scaling Launch configuration? (Choose three.) Amazon Machine Image (AMI) Load balancer Instance type Virtual private cloud (VPC) and subnets Amazon Elastic Block Store (Amazon EBS) volumes
Amazon Machine Image (AMI) Instance type Amazon Elastic Block Store (Amazon EBS) volumes
Which AWS Cloud service is best suited for analyzing your data by using standard structured query language (SQL) and your existing business intelligence (BI) tools? Amazon Relational Database Service (Amazon RDS) Amazon Simple Storage Service Glacier Amazon DynamoDB Amazon Redshift
Amazon Redshift
Which of the following are best practices to secure your account using AWS Identity and Access Management (IAM)? (Choose two.) Provide users with default administrative privileges Leave unused and unnecessary users and credentials in place Manage access to AWS resources Avoid using IAM groups to grant the same access permissions to multiple users. Define fine-grained access rights
Avoid using IAM groups to grant the same access permissions to multiple users. Define fine-grained access rights
Which of the following use cases is appropriate for using Amazon Relational Database Service (Amazon RDS)? Massive read/write rates Simple GET or PUT requests Complex transactions All of the above
Complex transactions
After initial login, what does AWS recommend as the best practice for the AWS account root user? Restrict permission on the AWS account root user Revoke all permissions on the AWS account root user Delete the AWS account root user Delete the access keys of AWS account root user
Delete the access keys of AWS account root user
AWS Key Management Service (AWS KMS) enables you to assess, audit, and evaluate the configurations of your AWS resources. True False
False
By default, all data stored in Amazon S3 is viewable by the public. True False
False
Cloud computing provides a simple way to access servers, storage, databases, and a broad set of application services over the Internet. You own the network-connected hardware required for these services and Amazon Web Services provisions what you need. True False
False
Containers contain an entire operating system. True False
False
Edge locations are only located in the same general area as Regions True False
False
____ means the infrastructure has built-in component redundancy and ___ means that resources dynamically adjust to increases or decreases in capacity requirements. Fault tolerant, elastic and scalable No human intervention, fault tolerant Elastic and scalable, no human intervention Elastic and scalable, fault tolerant Fault tolerant, no human intervention
Fault tolerant, elastic and scalable
Which of the following are not benefits of AWS Cloud Computing? (Choose two.) Fault-tolerant databases High latency Multiple procurement cycles High availability Temporary and disposable resources
High latency Multiple procurement cycles
There is no charge for which of the following? (Choose two answers.) Compute Storage Inbound data transfer (with some exceptions) Outbound data transfer Data transfer between services within the same AWS Region
Inbound data transfer (with some exceptions) Data transfer between services within the same AWS Region
Which of the following are elements of an Auto Scaling group? (Choose three.) Maximum size Minimum size Health checks Desired capacity
Maximum size Minimum size Desired capacity
You need to allow resources in a private subnet to access the Internet. Which of the following must be present to enable this access? NAT gateway Network access control lists Security groups Route tables
NAT gateway
Which of the following is an optional security control that can be applied at the subnet layer of a VPC? Firewall Network ACL Web application firewall Security group
Network ACL
Which of these is not a benefit of cloud computing over on-premises computing? (Select the best answer.) Eliminate guessing on your infrastructure capacity needs Increase speed and agility Benefit from massive economies of scale Trade capital expense for variable expense Pay for racking, stacking, and powering servers
Pay for racking, stacking, and powering servers
Your web application needs four instances to support steady traffic all of the time. On the last day of the month, the traffic triples. What is the most cost-effective way to handle this pattern? Run 12 Reserved Instances all of the time Run four On-Demand Instances constantly, then add eight more On-Demand Instances on the last day of each month. Run four Reserved Instances constantly, then add eight On-Demand Instances on the last day of each month. Run four On-Demand Instances constantly, then add eight Reserved Instances on the last day of each month.
Run four Reserved Instances constantly, then add eight On-Demand Instances on the last day of each month.
Which of the following can be used as a storage class for an S3 object lifecycle policy? (Choose three.) AWS Storage Gateway Amazon Dynamo DB S3 - Infrequent Access S3 - Reduced Redundancy Storage Simple Storage Service Glacier S3 - Standard Access
S3 - Infrequent Access Simple Storage Service Glacier S3 - Standard Access
You need to find an item in an Amazon DynamoDB table using an attribute other than the item's primary key. Which of the following operations should you use? PutItem Scan Query GetItem
Scan
In Elastic Load Balancing , when the load balancer detects and unhealthy target, which of the following are true? ( Choose three.) Stops routing traffic to that target Triggers alarm Resumes routing traffic when it detects target is healthy again Resumes routing traffic when manually restarted Routers traffic to a healthy target
Stops routing traffic to that target Resumes routing traffic when it detects target is healthy again Routers traffic to a healthy target
Which of these is not a cloud deployment model? (Select the best answer.) Software as a service Platform as a service Infrastructure as a service System administration as a service
System administration as a service
AWS Organizations enables you to consolidate multiple AWS accounts so that you centrally manage them. True False
True
With Amazon Virtual Private Cloud (Amazon VPC), what is the maximum size IP address range you can have in a VPC? /24 /30 /16 /28
16, /28, 24, 30
With Amazon Virtual Private Cloud (Amazon VPC), what is the smallest size subnet you can have in a VPC? /26 /30 /28 /24
24, /26, 30, 28
For certain services like Amazon Elastic Compute Cloud (Amazon EC2) and Amazon Relational Database Service (Amazon RDS), you can invest in reserved capacity.What options are available for Reserved Instances? ( Choose three.) AURI DURI PURI MURI NURI
AURI, PURI, NURI
Which component of the AWS Global Infrastructure does Amazon CloudFront use to ensure low-latency delivery? AWS Regions AWS Edge Locations AWS Availability Zone Amazon Virtual Private Cloud (Amazon VPC)
AWS Edge Locations
Which of the following services is a serverless compute service in AWS? Amazon OpsWorks Amazon EC2 AWS Lambda AWS Config
AWS Lambda
When creating an AWS Identity and Access Management (IAM) policy, what are the two types of access that can granted to a user? (Choose two.) AWS Management Console access Administrative root access Programmatic access Institutional access Authorized access
AWS Management Console access Programmatic access
You are designing an e commerce web application that will scale to hundreds of thousands of concurrent users. Which database technology is best suited to hold the session state in this example? Amazon DynamoDB Amazon Relational Database Service (Amazon RDS) Amazon Redshift Amazon Simple Storage Service (Amazon S3)
Amazon DynamoDB
Why is AWS more economical that traditional data centers for applications with varying compute workloads? Amazon EC2 costs are billed on a monthly basis Amazon EC2 instances can be launched on-demand when needed Customers can permanently run enough instances to handle peak workloads Customers retain full administrative access to their Amazon EC2 instances.
Amazon EC2 instances can be launched on-demand when needed
Which service would you use to send alerts based on Amaon CloudWatch alerts? AWS CloudTrail Amazon Simple Notification Service (AWS SNS) AWS Trusted Advisor Amazon Route 53
Amazon Simple Notification Service (AWS SNS)
Which AWS networking service enables a company to create a virtual network within AWS? Amazon Virtual Private Cloud (Amazon VPC) AWS Direct Connect AWS Config Amazon Route 53
Amazon Virtual Private Cloud (Amazon VPC)
Which of the following can only be done by the AWS account root user? Secure access for applications Integrate with other AWS services Change granular permissions Change the AWS support plan
Change the AWS support plan
What are the three types of load balancers that Elastic Load Balancing offers? Internet Load Balancer Application Load Balancer Network Load Balancer Compute Load Balancer Classic Load Balancer Auto Scaling Load Balancer
Classic Load Balancer Application Load Balancer Network Load Balancer
Which of the following are features of Amazon Elastic Block Store (Amazon EBS)? (Choose two) Data stored on Amazon EBS is automatically replicated within an Availability Zone. Amazon EBS data is automatically backed up to tape. Amazon EBS volumes can be encrypted transparently to workloads on the attached instance Data on an Amazon EBS volume is lost when the attached instance is stopped.
Data stored on Amazon EBS is automatically replicated within an Availability Zone. Amazon EBS volumes can be encrypted transparently to workloads on the attached instance
Which Amazon Elastic Compute Cloud (Amazon EC2) feature ensures your instances will not share a physical host with instances from any other AWS customer? Dedicated instances Reserved instances Placement groups Amazon VPC
Dedicated instances
What is true about Regions? (Choose two.) All Regions are located in one specific geographic area. Each Region is located in a separate geographic area. A Region is a physical location that has multiple Availability Zones. They are the physical locations of your customers.
Each Region is located in a separate geographic area. A Region is a physical location that has multiple Availability Zones.
As AWS grows, the cost of doing business is reduced and savings are passed back to the customer with lower pricing. What is this optimization called? (Select the best answer.) Economies of scale EC2 Right Sizing Matching supply and demand Expenditure awareness
Economies of scale
How would a system administrator add an additional layer of login security to a user's AWS Management Console? Use Amazon Cloud Directory Enable multi-factor authentication Enable AWS Cloud Trail Audit AWS Identity and Access Management (IAM) roles
Enable multi-factor authentication
Private subnets have direct access to the internet. True False
False
When are free data transfers applicable across AWS? (Choose two.) Free inbound data transfer across all AWS services in all Regions. Free outbound data transfer across all AWS services in all Regions Free inbound data transfer for Amazon Elastic Compute Cloud (Amazon EC2) instances Free outbound data transfer between AWS services within the same Region
Free inbound data transfer for Amazon Elastic Compute Cloud (Amazon EC2) instances Free outbound data transfer between AWS services within the same Region
Which of the following is the responsibility of AWS under the AWS shared responsibility model? Configuring third-party applications Maintaining physical hardware Securing application access and data Managing custom Amazon Machine Images (AMIs)
Maintaining physical hardware
What is the pricing model that enables AWS customers to pay for resource on an as-needed basis? (Select the best answer.) Pay as you go Pay as you buy Pay as you decommision Pay as you reserve
Pay as you go
Which Amazon EC2 option is best for long-term workloads with predictable usage patterns? Spot Instances Reserved Instances On-Demand Instances
Reserved Instances
Which of the following are characteristics of Amazon EC2 Auto Scaling? ( Choose three.) Only supports dynamic scaling Responds to changing conditions by adding or terminating instances Delivers push notifications Launches instances from a specific Amazon Machine Image (AMI) Enforces a minimum number of running Amazon EC2 instances
Responds to changing conditions by adding or terminating instances Launches instances from a specific Amazon Machine Image (AMI) Enforces a minimum number of running Amazon EC2 instances
If your project requires monthly reports that iterate through very large amounts of data, which Amazon Elastic Compute Cloud (Amazon EC2) purchasing option should you consider? Scheduled Reserved Instances Spot Instances Dedicated Hosts On-Demand Instances
Scheduled Reserved Instances
Which of the following can be used to protect Amazon Elastic Compute Cloud (Amazon EC2) instances hosted in AWS? Internet gateway All of the above Security group AMI
Security group
In the shared responsibility model, AWS is responsible for providing what? Security to the cloud Security of the cloud Security for the cloud Security in the cloud
Security of the cloud
What AWS tool compares the cost of running your application in an on-premises data center to AWS? (Select the best answer.) AWS Billing Dashboard AWS Cost and Usage Report AWS Simple Monthly calculator Total Cost of Ownership (TCO) calculator
Total Cost of Ownership (TCO) calculator
You can use Amazon Elastic File System (Amazon EFS) to: provide simple, scalable, elastic file storage for use only within AWS. implement storage for Amazon EC2 instances that multiple virtual machines can access at the same time. host a robust CDN to deliver entire web sites with dynamic, static, and streaming content. generate user-specific content.
host a robust CDN to deliver entire web sites with dynamic, static, and streaming content.
Amazon S3 replicates all objects ______. on multiple volumes within an Availability Zone. on multiple S3 buckets in multiple Availability Zones within the same Region across multiple Regions for higher durability
in multiple Availability Zones within the same Region
You are a solutions architect who works at a large retail company that is migrating its existing infrastructure to AWS. You recommend that they use a custom VPC. When you create a VPC, you assign it to an IPv4 Classless Inter-Domain Routing (CIDR) block of 10.0.1.0/24 (which has 256 total IP addresses). How many IP addresses are available? 250 246 256 251
251
Where can a customer go to get more details about Amazon Elastic Compute Cloud (Amazon EC2) billing activity that took place 3 months ago? (Select the best answer.) Amazon EC2 dashboard AWS Cost Explorer AWS CloudTrail logs stored in Amazon Simple Storage Service AWS Trusted Advisor dashboard
AWS Cost Explorer
What is the service provided by AWS that enables developers to easily deploy and manage applications in the cloud? Amazon Elastic Container Service AWS Elastic Beanstalk AWS OpsWorks AWS CloudFormation
AWS Elastic Beanstalk
To receive the discounted rate associated with Reserved Instances, you must make a full, upfront payment for the term of the agreement. (Select the best answer.) True False
False
In the shared responsibility model, which of the following are examples of "security in the cloud"? (Choose two.) Physical security of the facilities in which the services operate. Security group configurations Encryption of data at rest and data in transit Protecting the global infrastructure Compliance with compute security standards and regulations
Security group configurations Encryption of data at rest and data in transit
AWS offers a variety of services at no charge, for example, Amazon Virtual Private Cloud (Amazon VPC), AWS Identity and Access Management (IAM), Consolidated Billing, AWS Elastic Beanstalk, automatic scaling, AWS OpsWorks and AWS CloudFormaton. However, you might be charged for other AWS services that you use in conjunction with these services. True False
True
AWS owns and maintains the network-connected hardware required for application services, while you provision and use what you need. True False
True
Amazon RDS automatically patches the database software and backs up your database, storing the backups for a user-defined retention period and enabling point-in-time recovery. True False
True
Amazon Simple Storage Service (Amazon S3) is an object storage suitable for the storage of flat files like Microsoft Word documents, photos, etc. True False
True
Availability Zones within a Region are connected through low-latency links True False
True
Networking, storage, compute, and databases are examples of service categories that AWS offers. True False
True