AWS Study Questions For Modules 1-10
IAM role
An employee requires temporary access to create several Amazon S3 buckets. Which option would be the best choice for this task? A. AWS account root user B. IAM group C. IAM role D. Service control policy (SCP)
EBS volumes store data within a single Availability Zone. Amazon EFS file systems store data across multiple Availability Zones.
Which statement or statements are TRUE about Amazon EBS volumes and Amazon EFS file systems? A. EBS volumes store data within a single Availability Zone. Amazon EFS file systems store data across multiple Availability Zones. B. EBS volumes store data across multiple Availability Zones. Amazon EFS file systems store data within a single Availability Zone. C. EBS volumes and Amazon EFS file systems both store data within a single Availability Zone. D. EBS volumes and Amazon EFS file systems both store data across multiple Availability Zones.
Retaining Rehosting
Which strategies are included in the six strategies for application migration? (Select TWO.) Revisiting Retaining Remembering Redeveloping Rehosting
Create cryptographic keys.
Which task can AWS Key Management Service (AWS KMS) perform? A. Configure multi-factor authentication (MFA). B. Update the AWS account root user password. C. Create cryptographic keys. D. Assign permissions to users and groups.
Configuring AWS infrastructure devices Maintaining virtualization infrastructure
Which tasks are the responsibilities of AWS? (Select TWO.) Configuring security groups on Amazon EC2 instances Configuring AWS infrastructure devices Training company employees on how to use AWS services Maintaining virtualization infrastructure Creating IAM users and groups
AWS Cost Explorer
Which tool enables you to visualize, understand, and manage your AWS costs and usage over time? AWS Cost Explorer AWS Pricing Calculator AWS Budgets AWS Artifact
AWS Command Line Interface
Which tool is used to automate actions for AWS services and applications through scripts? Amazon Redshift AWS Snowball AWS Command Line Interface Amazon QLDB
Security group
Which virtual private cloud (VPC) component controls inbound and outbound traffic for Amazon EC2 instances? Subnet Network access control list Internet Gateway Security group
Instance store
You are running an Amazon EC2 instance and want to store data in an attached resource. Your data is temporary and will not be kept long term. Which resource should you use? Amazon Elastic Block Store (Amazon EBS) volume Subnet Amazon S3 bucket Instance store
Place the Amazon EC2 instances in a public subnet and the Amazon RDS database instances in a private subnet.
Your company has an application that uses Amazon EC2 instances to run the customer-facing website and Amazon RDS database instances to store customers' personal information. How should the developer configure the VPC according to best practices? A. Place the Amazon EC2 instances in a private subnet and the Amazon RDS database instances in a public subnet. B. Place the Amazon EC2 instances in a public subnet and the Amazon RDS database instances in a private subnet. C. Place the Amazon EC2 instances and the Amazon RDS database instances in a public subnet. D. Place the Amazon EC2 instances and the Amazon RDS database instances in a private subnet
Enterprise
Your company wants to receive support from an AWS Technical Account Manager (TAM). Which support plan should you choose? Developer Enterprise Basic Business
The aggregated cloud usage from a large number of customers results in lower pay-as-you-go prices.
How does the scale of cloud computing help you to save costs? A. You do not have to invest in technology resources before using them. B. The aggregated cloud usage from a large number of customers results in lower pay-as-you-go prices. C. Accessing services on-demand helps to prevent excess or limited capacity. D. You can quickly deploy applications to customers and provide them with low latency.
S3 Standard-IA S3 Standard
In the S3 Intelligent-Tiering storage class, Amazon S3 moves objects between a frequent access tier and an infrequent access tier. Which storage classes are used for these tiers? (Select TWO.) S3 One Zone-IA S3 Standard-IA S3 Glacier Deep Archive S3 Standard S3 Glacier
Increase speed and agility. Stop spending money running and maintaining data centers.
What are the benefits of cloud computing? (Select TWO.) Increase speed and agility. Benefit from smaller economies of scale. Trade variable expense for upfront expense. Maintain infrastructure capacity. Stop spending money running and maintaining data centers.
3 Years
What are the contract length options for Amazon EC2 Reserved Instances? (Select TWO.) A. 1 year B. 2 years C. 3 years D. 4 years E. 5 years
Private Cloud Deployment
What is another name for on-premises deployment? A. Private cloud deployment B. Cloud-based application C. Hybrid deployment D. AWS Cloud
On-demand delivery of IT resources and applications through the internet with pay-as-you-go pricing
What is cloud computing? A. Backing up files that are stored on desktop and mobile devices to prevent data loss B. Deploying applications connected to on-premises infrastructure C. Running code without needing to manage or provision servers D. On-demand delivery of IT resources and applications through the internet with pay-as-you-go pricing
100 PB
What is the storage capacity of AWS Snowmobile? 40 PB 60 PB 80 PB 100 PB
Performance
Which AWS Trusted Advisor category includes checks for your service limits and overutilized instances? Cost Optimization Performance Fault Tolerance Security
S3 Glacier AND S3 Glacier Deep Archive
Which Amazon S3 storage classes are optimized for archival data? (Select TWO.) A. S3 Standard B. S3 Glacier C. S3 Intelligent-Tiering D. S3 Standard-IA E. S3 Glacier Deep Archive
Operations Perspective
Which Perspective of the AWS Cloud Adoption Framework focuses on recovering IT workloads to meet the requirements of your business stakeholders? People Perspective Operations Perspective Business Perspective Governance Perspective
Security Perspective
Which Perspective of the AWS Cloud Adoption Framework helps you structure the selection and implementation of permissions? Governance Perspective Security Perspective Operations Perspective Business Perspective
Deliver content to customers through a global network of edge locations.
Which action can you perform in Amazon CloudFront? Deliver content to customers through a global network of edge locations. Provision an isolated section of the AWS Cloud to launch resources in a virtual network that you define. Run infrastructure in a hybrid cloud approach. Provision resources by using programming languages or a text file.
Extend AWS infrastructure and services to your on-premises data center.
Which action can you perform with AWS Outposts? A. Automate actions for AWS services and applications through scripts. B. Access wizards and automated workflows to perform tasks in AWS services. C. Develop AWS applications in supported programming languages. D. Extend AWS infrastructure and services to your on-premises data center.
Combine usage across accounts to receive volume pricing discounts.
Which action can you perform with consolidated billing? Review how much cost your predicted AWS usage will incur by the end of the month. Create an estimate for the cost of your use cases on AWS. Combine usage across accounts to receive volume pricing discounts. Visualize and manage your AWS costs and usage over time.
Manage DNS records for domain names. Connect user requests to infrastructure in AWS and outside of AWS.
Which actions can you perform in Amazon Route 53? (Select TWO.) Automate the deployment of workloads into your AWS environment. Manage DNS records for domain names. Access AWS security and compliance reports and select online agreements. Connect user requests to infrastructure in AWS and outside of AWS. Monitor your applications and respond to system-wide performance changes.
Monitor your resources' utilization and performance Access metrics from a single dashboard
Which actions can you perform using Amazon CloudWatch? (Select TWO.) A. Monitor your resources' utilization and performance B. Receive real-time guidance for improving your AWS environment C. Compare your infrastructure to AWS best practices in five categories D. Access metrics from a single dashboard E. Automatically detect unusual account activity
performance Fault tolerance
Which categories are included in the AWS Trusted Advisor dashboard? (Select TWO.) Reliability Performance Scalability Elasticity Fault tolerance
Internet Gateway
Which component is used to connect a VPC to the internet? A. Public subnet B. Edge location C. Security group D. Internet gateway
AWS Direct Connect
Which component or service can be used to establish a private dedicated connection between your company's data center and AWS? A. Private subnet B. DNS C. AWS Direct Connect D. Amazon CloudFront
AWS Direct Connect
Which component or service enables you to establish a dedicated private connection between your data center and virtual private cloud (VPC)? AWS Direct Connect Internet gateway Virtual private gateway Amazon CloudFront
Savings Plans
Which compute option reduces costs when you commit to a consistent amount of compute usage for a 1-year or 3-year term? Reserved Instances Spot Instances Dedicated Hosts Savings Plans
Compliance with data governance and legal requirements AND B. Proximity to your customers
Which factors should be considered when selecting a Region? (Select TWO.) A. Compliance with data governance and legal requirements B. Proximity to your customers C. Access to 24/7 technical support D. Ability to assign custom permissions to different users E. Access to the AWS Command Line Interface (AWS CLI)
Refactoring
Which migration strategy involves changing how an application is architected and developed, typically by using cloud-native features? Rehosting Repurchasing Replatforming Refactoring
Performance Efficiency
Which pillar of the AWS Well-Architected Framework focuses on using computing resources in ways that meet system requirements? Security Operational Excellence Reliability Performance Efficiency
Operational Excellence
Which pillar of the AWS Well-Architected Framework includes the ability to run workloads effectively and gain insights into their operations? Cost Optimization Operational Excellence Performance Efficiency Reliability
AWS Budgets
Which pricing tool enables you to receive alerts when your service usage exceeds a threshold that you have defined? Billing dashboard in the AWS Management Console AWS Budgets AWS Free Tier AWS Cost Explorer
AWS Cost Explorer
Which pricing tool is used to visualize, understand, and manage your AWS costs and usage over time? AWS Pricing Calculator AWS Budgets AWS Cost Explorer AWS Free Tier
Ensuring that no single Amazon EC2 instance has to carry the full workload on its own
Which process is an example of Elastic Load Balancing? A. Ensuring that no single Amazon EC2 instance has to carry the full workload on its own B. Removing unneeded Amazon EC2 instances when demand is low C. Adding a second Amazon EC2 instance during an online store's popular sale D. Automatically adjusting the number of Amazon EC2 instances to meet demand
Amazon Augmented AI
Which service enables you to build the workflows that are required for human review of machine learning predictions? Amazon Textract Amazon Augmented AI Amazon Lex Amazon Aurora
AWS Organizations
Which service enables you to consolidate and manage multiple AWS accounts from a central location? AWS Organizations AWS Artifact AWS Key Management Service (AWS KMS) AWS Identity and Access Management (IAM)
AWS CloudTrail
Which service enables you to review details for user activities and API calls that have occurred within your AWS environment? Amazon Inspector AWS CloudTrail Amazon CloudWatch AWS Trusted Advisor
AWS Trusted Advisor
Which service enables you to review the security of your Amazon S3 buckets by checking for open access permissions? A. Amazon CloudWatch B. AWS CloudTrail C. AWS Trusted Advisor D. Amazon GuardDuty
AWS Shield
Which service helps protect your applications against distributed denial-of-service (DDoS) attacks? A. Amazon GuardDuty B. Amazon Inspector C. AWS Artifact D. AWS Shield
Amazon Route 53
Which service is used to manage the DNS records for domain names? A. Amazon Virtual Private Cloud B. AWS Direct Connect C. Amazon CloudFront D. Amazon Route 53
Amazon Redshift
Which service is used to query and analyze data across a data warehouse? A. Amazon Redshift B. Amazon Neptune C. Amazon DocumentDB D. Amazon ElastiCache
AWS Elastic Beanstalk
Which service is used to quickly deploy and scale applications on AWS? AWS Outposts AWS Elastic Beanstalk AWS Snowball Amazon CloudFront
Amazon Elastic Kubernetes Service (Amazon EKS)
Which service is used to run containerized applications on AWS? Amazon Elastic Kubernetes Service (Amazon EKS) Amazon SageMaker Amazon Aurora Amazon Redshift
AWS Snowmobile
Which service is used to transfer up to 100 PB of data to AWS? AWS DeepRacer Amazon Neptune AWS Snowmobile Amazon CloudFront
AWS Marketplace
Which service or resource is used to find third-party software that runs on AWS? AWS Marketplace AWS Free Tier AWS Support Billing dashboard in the AWS Management Console
Edge Location
Which site does Amazon CloudFront use to cache copies of content for faster delivery to users at any location? A. Region B. Availability Zone C. Edge location D. Origin
A digital catalog that includes thousands of software listings from independent software vendors
Which statement best describes AWS Marketplace? A digital catalog that includes thousands of software listings from independent software vendors A resource that provides guidance, architectural reviews, and ongoing communication with your company as you plan, deploy, and optimize your applications A resource that can answer questions about best practices and assist with troubleshooting issues An online tool that inspects your AWS environment and provides real-time guidance in accordance with AWS best practices
A global content delivery service
Which statement best describes Amazon CloudFront? A. A service that enables you to run infrastructure in a hybrid cloud approach B. A serverless compute engine for containers C. A service that enables you to send and receive messages between software components through a queue D. A global content delivery service
A serverless key-value database service
Which statement best describes Amazon DynamoDB? A. A service that enables you to run relational databases in the AWS Cloud B. A serverless key-value database service C. A service that you can use to migrate relational databases, nonrelational databases, and other types of data stores D. An enterprise-class relational database
A service that provides intelligent threat detection for your AWS infrastructure and resources
Which statement best describes Amazon GuardDuty? A service that lets you monitor network requests that come into your web applications A service that checks applications for security vulnerabilities and deviations from security best practices A service that provides intelligent threat detection for your AWS infrastructure and resources A service that helps protect your applications against distributed denial-of-service (DDoS) attacks
A service that enables you to build conversational interfaces using voice and text
Which statement best describes Amazon Lex? A service that enables you to build conversational interfaces using voice and text A machine learning service that automatically extracts text and data from scanned documents A document database service that supports MongoDB workloads A service that enables you to identify potentially fraudulent online activities
A service that distributes incoming traffic across multiple targets, such as Amazon EC2 instances
Which statement best describes Elastic Load Balancing? A service that monitors your applications and automatically adds or removes capacity from your resource groups in response to changing demand A service that distributes incoming traffic across multiple targets, such as Amazon EC2 instances A service that provides data that you can use to monitor your applications, optimize resource utilization, and respond to system-wide performance changes A service that enables you to set up, manage, and scale a distributed in-memory or cache environment in the cloud
A fully isolated portion of the AWS global infrastructure
Which statement best describes an Availability Zone? A separate geographical location with multiple locations that are isolated from each other The server from which Amazon CloudFront gets your files A site that Amazon CloudFront uses to cache copies of content for faster delivery to users at any location A fully isolated portion of the AWS global infrastructure
A document that grants or denies permissions to AWS services and resources
Which statement best describes an IAM policy? A. An authentication process that provides an extra layer of protection for your AWS account B. A document that grants or denies permissions to AWS services and resources C. An identity that you can assume to gain temporary access to permissions D. The identity that is established when you first create an AWS account
They are stateful and deny all inbound traffic by default.
Which statement best describes security groups? A. They are stateful and deny all inbound traffic by default. B. They are stateful and allow all inbound traffic by default. C. They are stateless and deny all inbound traffic by default. D. They are stateless and allow all inbound traffic by default.
Granting only the permissions that are needed to perform specific tasks
Which statement best describes the principle of least privilege? A. Adding an IAM user into at least one IAM group B. Checking a packet's permissions against an access control list C. Granting only the permissions that are needed to perform specific tasks D. Performing a denial of service attack that originates from at least one device
You pay only for compute time while your code is running.
Which statement is TRUE for AWS Lambda? Before using AWS Lambda, you must prepay for your estimated compute time. You pay only for compute time while your code is running. The first step in using AWS Lambda is provisioning a server. To use AWS Lambda, you must configure the servers that run your code.
A Region consists of two or more Availability Zones.
Which statement is TRUE for the AWS global infrastructure? A. A Region consists of a single Availability Zone. B. An Availability Zone consists of two or more Regions. C. A Region consists of two or more Availability Zones. D. An Availability Zone consists of a single Region.
Spot Instance
You have a workload that will run for a total of 6 months and can withstand interruptions. What would be the most cost-efficient Amazon EC2 purchasing option? A. Reserved Instance B. Spot Instance C. Dedicated Instance D. On-Demand Instance
S3 Intelligent-Tiering
You want Amazon S3 to monitor your objects' access patterns. Which storage class should you use? S3 One Zone-IA S3 Intelligent-Tiering S3 Glacier S3 Standard-IA
Amazon Elastic Kubernetes Service (Amazon EKS)
You want to deploy and manage containerized applications. Which service should you use? A. AWS Lambda B. Amazon Simple Notification Service (Amazon SNS) C. Amazon Simple Queue Service (Amazon SQS) D. Amazon Elastic Kubernetes Service (Amazon EKS)
Amazon Simple Queue Service (Amazon SQS)
You want to send and receive messages between distributed application components. Which service should you use? Amazon ElastiCache Amazon Simple Queue Service (Amazon SQS) Amazon Route 53 AWS Snowball
Amazon DynamoDB
You want to store data in a key-value database. Which service should you use? Amazon DocumentDB Amazon Aurora Amazon DynamoDB Amazon RDS
Amazon Elastic Block Store (Amazon EBS)
You want to store data in a volume that is attached to an Amazon EC2 instance. Which service should you use? Amazon Simple Storage Service (Amazon S3) Amazon ElastiCache Amazon Elastic Block Store (Amazon EBS) AWS Lambda
Amazon Simple Storage Service (Amazon S3)
You want to store data in an object storage service. Which AWS service is best for this type of storage? A. Amazon Managed Blockchain B. Amazon Elastic File System (Amazon EFS) C. Amazon Elastic Block Store (Amazon EBS) D. Amazon Simple Storage Service (Amazon S3)
Compute Optimized
You want to use an Amazon EC2 instance for a batch processing workload. What would be the best Amazon EC2 instance type to use? A. General purpose B. Memory optimized C. Compute optimized D. Storage optimized
