Full Cloud Computing - Exam 1 Review Guide
Which statement accurately describes a content delivery network (CDN)? A: A CDN caches frequently request files B: A CDN creates fast connections between origin servrs C: A CDN is a Regional group of servers D: A CDN speeds up domain name resolution for application servers
A: A CDN caches frequently request files
Which IT requirement would lead an architect to choose an infrastructure as a service (IaaS) cloud service model? A: A company wants to maintain the highest level of flexibility over its IT resources B: A company wants to run a managed instance for the marketplace. C: A company wants to use a web-based email solution D: A company wants to maintain control of its applications but avoid maintaining servers and operating systems.
A: A company wants to maintain the highest level of flexibility over its IT resources
Which scenario should be addressed with a Network Load Balancer: A: A solution must load balance millions of requests per second while maintaining low latency B: A solution load balance incoming gRPC requests C: A solution must route traffic at the Open Systems Interconnection (OSI) model layer 7. D: A solution must support routing traffic to a containerized application basaed on the contents of incoming requests
A: A solution must load balance millions of requests per second while maintaining low latency
A company must produce reports of any changes to its Amazon EC2 instance settings. Which AWS service should they use? A: AWS Config B: AWS Cloudtrail C: AWS Artifact D: Amazon CloudWatch
A: AWS Config
Which statements about responsibility are accurate based on the AWS shared responsibility model? (Select TWO): A: AWS is responsible for the physical security of data centers. B: AWS is reponsible for the configuration of security groups C: Customers are responsible for the installation, maintenance, and decommissioning of the hardware that they use in the AWS data center D: Customers are responsible for managing their user data. E: AWS is responsible for deciding what data to encrypt in customers' Amazon S3 buckets
A: AWS is responsible for the physical security of data centers. D: Customers are responsible for managing their user data.
Which statements about AWS identity and Access Management (IAM) policies are accurate (SELECT TWO) A: Access control lists (ACLs) are a form of resource-based policies B: Resource-based policies allow access by default C: Identity-based policies can only be attached to a single entity D: Identity-based policies are attached to a user, group, or role E: Resoure-based policies are attached to a user, group or role
A: Access control lists (ACLs) are a form of resource-based policies D: Identity-based policies are attached to a user, group, or role
A company wants complete control over its server's configurations, operating system (OS), and application software stack. Which AWS compute service should they choose? A: Amazon EC2 B: Amazon Elastic Container Service (Amazon ECS) C: Amazon RDS D: AWS Lambda
A: Amazon EC2
A developer needs temporary block storage for cache data on an Amazon EC2 instance. Which option should they choose? A: Amazon EC2 Instance store B: Amazon Elastic File System (Amazon EFS) C: Amazon Elastic Block Store (Amazon EBS) D: Amazon S3
A: Amazon EC2 Instance store
A developer wants to use Amazon EBS for their application. What action should they take? A: Attach the Amazon EBS volume to an Amazon EC2 instance B: Replicate the Amazon EBS volume in a different Availability Zone C: Attach the Amazon EBS volume to multiple Amazon EC2 instances in multiple Availability Zones D: Back up the Amazon EBS volume using snapshots
A: Attach the Amazon EBS volume to an Amazon EC2 instance
Which pieces of information MUST be configured for the Amazon EC2 instances that will be part of an Amazon EC2 Auto Scaling group? (Select TWO). A: ID of an Amazon Machine Image (AMI) B: Storage Volume C: Amazon EC2 Auto Scaling group metrics D: Network access control list (ACL E: Amazon EC2 instance type
A: ID of an Amazon Machine Image (AMI) E: Amazon EC2 instance type
A developer is testing a prototype on Amazon EC2. The instances are terminated after testing, but the application requires uninterrupted compute while processing. Which type of Amazon EC2 instance pricing meets the need at the lowest cost? A: On-Demand Instance B: Spot Instance C: Scheduled Reserved Instance D: Reserved Instance
A: On-Demand Instance
What are advantages of cloud computing for a company moving from a traditional on-premises computing model? (CHOOSE 2) A: Resources can be created, scaled up, scaled down, or destroyed based on demand B: All on-premises server licenses can be easily transferred and managed centrally in the cloud C: IT teams can make capacity decisions before deplying applications so that they always have excess capacity D: The company can focus less on infrastructure and focus more on differentiating the business E: The company can invest in more fixed (capital) expenses and reduce their variable expenses
A: Resources can be created, scaled up, scaled down, or destroyed based on demand D: The company can focus less on infrastructure and focus more on differentiating the business
Which statement about AWS Regions is true? A: Using a Region as close as possible to users can reduce latency B: Data stored in an AWS Region isn't subject to geographical compliance requirements C: All available Regions are enabled by default in an AWS account D: All AWS accounts can access all AWS Regions
A: Using a Region as close as possible to users can reduce latency
Which statements about how a company would use AWS Organizations are accurate? (Select TWO) A: A company can use AWS Organizations consolidated identity and access management (IAM) feature to replace the existing IAM system for an individual account B: A company can benefit from volume discounts with consolidated billing C: A company can only manage AWS Organizations through the AWS Management Console D: A company can consolidate and centrally manage multiple AWS accounts E: A company can use AWS Organizations to create security groups that control access to resources
B: A company can benefit from volume discounts with consolidated billing D: A company can consolidate and centrally manage multiple AWS accounts
Which requirement suggests configuring Amazon Route 53 with latency routing? A: A company wants to perform A/B testing and route traffic to different locations based on a percentage of traffic B: A company wants to route traffic to the Region that provides the fastest experience based on performance measurements C: A company wants to route traffic to only locations where they have distribution rights D: A company wants to detect website outages and automatically redirect customers to a healthy location
B: A company wants to route traffic to the Region that provides the fastest experience based on performance measurements
Which statement about AWS Auto Scaling is true? A: AWS Auto Scaling can be used to automatically scale Amazon RDS databases B: AWS Auto Scaling can be used to automatically scale Amazon DynamoDB tables and indexes C: AWS Auto Scaling and Amazon EC2 are synonymous D: You can use either Amazon EC2 Auto Scaling or AWS Auto Scaling, but not both
B: AWS Auto Scaling can be used to automatically scale Amazon DynamoDB tables and indexes
How does AWS Trusted Advisor assist a company getting started with AWS? A: AWS Trusted Advisor automatically increases service limits (quotas) if you're near the limit B: AWS Trusted Advisor provides recommendations on configuring your AWS resources C: AWS Trusted Advisor prevents access to resources that have overly broad permissions D: AWS Trusted Advisor provides recommendations for migrating on-premises resources to the cloud
B: AWS Trusted Advisor provides recommendations on configuring your AWS resources
Which statement about edge locations is true? A: Regional edge caches are used to cache data that's frequently updated and must be refreshed continously B: Amazon CloudFront uses edge locations and regional edge caches to deliver content with lower latency C: AWS points of presense provide two to three edge locations per Region D: The AWS global network includes a large number of Regional edge caches and a smaller number of edge locations to deliver content to users
B: Amazon CloudFront uses edge locations and regional edge caches to deliver content with lower latency
A company has an ecommerce site that requires storage and retrieval of unstructured customer metadata to support one of its microservices. Which database option is best suited to store this data? A: Amazon Aurora B: Amazon DynamoDB C: Amazon Redshift D: Amazon RDS
B: Amazon DynamoDB
Which statement about Amazon Elastic Block Store (Amazon EBS) is true? A: Amazon EBS volumes are automatically replicated across multiple Availability Zones B: Amazon EBS volumes persist independently from the Amazon EC2 instances that they're attached to C: Amazon EBS volumes can't be resized D: Amazon EBS volumes aren't recommended for storage that requires frequent updating
B: Amazon EBS volumes persist independently from the Amazon EC2 instances that they're attached to
A company needs to store billions of low volume daily events that will be used for analytics. Which storage option best fits this use case? A: Amazon Elastic Container Service B: Amazon S3 C: Amazon Elastic Block Store (Amazon EBS) D: Amazon EC2 Instance store
B: Amazon S3
A company needs to store long-lived data. They need the data to be available immediately, but access patterns are unpredictable. Which Amazon S3 storage class would be most cost-effective A: Amazon S3 One Zone-infrequent Access B: Amazon S3 Intelligent-Tiering C: Amazon S3 Glacier D: Amazon S3 Standard
B: Amazon S3 Intelligent-Tiering
What type of alert might be provided by AWS Trusted Advisor? A: An alert of unauthorized access in an AWS account B: An alert that multi-factor authentication isn't activated on an AWS account C: An alert that an AWS IAM user has requested service quota changes D: An alert of unusual API calls made in an AWS account
B: An alert that multi-factor authentication isn't activated on an AWS account
For which type of use case is it usually OK to have 2 nines of availability (99%)? A: Online commerce B: Batch Processing C: IoT D: ATM Transactions
B: Batch Processing
A Company needs to run a short script each time a new item is added to an Amazon S3 bucket. Which compute option meets the need with the least amount of resource provisioning A: Set up the script to run in a container, and deploy the container on Amazon Elastic Container Service (Amazon ECS) B: Create an AWS Lambda function to run the script whenever a new item is added to the bucket C: Set up a small Amazon EC2 instance that runs code to check for new uploads to the bucket and runs the script D: Write a batch job to run the script on all new items overnight when there's less competition for resources. Run the batch on Spot Instances
B: Create an AWS Lambda function to run the script whenever a new item is added to the bucket
A company uploads PDF forms to Amazon S3 that must be retained for 1 year. The forms are rarely accessed after 1 week, but they must be available within 1 day when they're requested. What lifecycle policy is most cost-effective for their needs? A: Move objects from Amazon S3 Standard to Amazon S3 One Zone-Infrequent Access after 7 days. Delete the objects after 365 days B: Move objects from Amazon S3 Standard to Amazon S3 Glacier after 7 days. Delete them after 365 days C: Move objects from Amazon S3 Standard to Amazon S3 Standard-Infrequent Access after 7 days D: Move objects from Amazon Standard-Infrequent Access to Amazon S3 Standard after 1 week
B: Move objects from Amazon S3 Standard to Amazon S3 Glacier after 7 days. Delete them after 365 days
Which statement reflects a design principle of the Reliability pillar of the AWS Well-Architected Framework? A: Limit automation when updating infrastructure B: Replace one large resource with multiple, smaller resources, and distribute requests across these smaller resources C: Scale vertically to the largest instance types that your budget allows based on your best guess of capacity D: Don't deploy code to production until you're certain that it can't fail
B: Replace one large resource with multiple, smaller resources, and distribute requests across these smaller resources
What role do security groups play in managing access to Amazon EC2 Instances? A: Security groups define the AWS IAM roles that can access an instance B: Security groups provide a set of rules to control traffic to or from an instance C: Security groups identify the public and private keys required to connect to an Amazon EC2 instance D: Security groups control inbound access to the subnet that an Amazon EC2 is associate
B: Security groups provide a set of rules to control traffic to or from an instance
Which statement describes the business perspective of the AWS Cloud Adoption Framework? A: Stakeholders can use architectural dimensions and models to understand and communicate the nature of IT systems and their relationships. B: Stakeholders can create a strong business case for cloud adoption and prioritize cloud adoption initiatives C: Stakeholders can focus on the skills and processes that are needed to align IT strategy and goals with business strategy and goals D: Stakeholders can evaluate organizational structures and roles, new skill and process requirements, and identify gaps
B: Stakeholders can create a strong business case for cloud adoption and prioritize cloud adoption initiatives
Which statements about securing data in transit are true? (Select TWO) A: Data moving between AWS services is encrypted using TLS and AWS Key management services (AWS KMS) B: TLS Certificates can be managed using AWS Certificate Manager (ACM) C: Web traffic that runs over HTTP is encrypted using TLS D: TLS is a proprietary protocol that's used to secure traffic between AWS VPCs E: TLS provides encryption of data in transit
B: TLS Certificates can be managed using AWS Certificate Manager (ACM) E: TLS provides encryption of data in transit
How does the AWS Billing Dashboard help companies analyze their AWS usage to find potential cost-saving opportunities? A: The billing dashboard lists all AWS accounts with activity in the previous 6 months and a summary of spending for each account B: The billing dashboard shows the status of the month-to-date AWS expenditure and the AWS services that account for the majority of the overall expenditure C: The billing dashboard shows the pricing models for all the AWS service that are used in your account and where your usage falls in the AWS free tier D: The billing dashboard lists the costs that were incurred over the past month by service, by AWS Region, and by linked accounts
B: The billing dashboard shows the status of the month-to-date AWS expenditure and the AWS services that account for the majority of the overall expenditure
Which scenario is a good fit for Amazon Redshift? A: A company needs to store a database for managing unstructured data B: A company needs to store large volumes of mixed media image and video files C: A company needs a data warehouse to support analytics applications D: A company needs a relational database for a line-of-business transactional database
C: A company needs a data warehouse to support analytics applications
Which scenario is a good fit for Amazon EFS storage? A: A company needs temporary file storage for its application running on Amazon EC2 B: A company wants to build a petabyte-sized data lake for analytics C: A company needs to give all Amazon EC2 instances in its virtual private cloud read and write access to a network file system D: A company wants to host a website
C: A company needs to give all Amazon EC2 instances in its virtual private cloud read and write access to a network file system
Which statement about Amazon S3 Glacier security is accurate? A: For all operations and interactions with Amazon S3 Glacier, you can use the AWS management Console B: The data in Amazon S3 Glacier is public by default C: Access to Amazon S3 Glacier can be managed using AWS Identity and Access Management (IAM) policies D: Application encryption must be initiated on objects archived to Amazon S3 Glacier either using the AWS management Console or programmatically
C: Access to Amazon S3 Glacier can be managed using AWS Identity and Access Management (IAM) policies
A network administrator wants to configure a public subnet and route incoming and outgoing traffic to and from an Amazon EC2 instance in the public subnet to the public internet. Which virtual private cloud (VPC) feature should they use? A: A network access control list (ACL) B: A network address translation (NAT) gateway C: An internet gateway D: VPC sharing
C: An internet gateway
Which statement reflects a design principle of the Security pillar of the AWS Well-Architected Framework A: Ensure that staff are actively monitoring potential risks manually B: Decentralize permissions management C: Apply security at all layers of an architecture D: Don't deploy a solution to production until you're certain that there are no security risks
C: Apply security at all layers of an architecture
An AWS account administrator wants to grant temporary cross-account access that allows external users to access specific resources within their own account. Which action would align with the best practice of using temporary sessions: A: Create a new AWS Identity and Access Management (IAM) user account for each user that needs access B: Create an AWS Identity and Access Management (IAM) group, grant resource permissions to the group, then add IAM users to the group C: Create an AWS Identity and Access Management (IAM) role that can be assumed by external users and grant it permissions to the specific resources D: Create an AWS Identity and Access Management (IAM) policy that allows external users to access the specifc resources
C: Create an AWS Identity and Access Management (IAM) role that can be assumed by external users and grant it permissions to the specific resources
A network administrator wants to run their ecommerce web application on a virtual private cloud. Which step is part of setting up the VPC (Choose TWO) A: Create the main route table B: Attach the VPC to the security group C: Create private and public subnets D: Specify the range of IP addresses for the VPC E: Delete the local route in the route table
C: Create private and public subnets D: Specify the range of IP addresses for the VPC
How do economies of scale help customers moving to cloud computing from on-premises computing A: Customers can deploy resources globablly B: Customers have full control of their infrastructure C: Customers can achieve lower variable costs and scale infrastructure beyond what is possible on premises D: Customers can scale servers horizontally
C: Customers can achieve lower variable costs and scale infrastructure beyond what is possible on premises
How is Elastic Load Balancing (ELB) used with Amazon EC2 Auto Scaling? (Select TWO) A: ELB triggers an Amazon EC2 Auto Scaling event when a threshold is reached B: ELB automatically adds new instances to the Amazon EC2 Auto Scaling group when they load reaches a predetermined limit C: ELB performs health checks on new Amazon EC2 instances that are added to the Amazon EC2 Auto Scaling group D: ELB establishes the minimum and maximum number of instances in the Amazon EC2 Auto Scaling Group E: ELB Distributes traffic between Amazon EC2 instances in an Amazon EC2 Auto Scaling group
C: ELB performs health checks on new Amazon EC2 instances that are added to the Amazon EC2 Auto Scaling group E: ELB Distributes traffic between Amazon EC2 instances in an Amazon EC2 Auto Scaling group
Which scenario describes a good use case for Amazon S3 Standard storage? A: Sharing an NFS file system B: Running a relational database C: Hosting website images D: Act as an EC2 instance store
C: Hosting website images
Which feature of Amazon RDS should a company configure to enable high availability? A: Encryption with AWS Key Management Service Keys B: Provisioned IOPS storage C: Multi-AZ deployment D: VPC deployment
C: Multi-AZ deployment
Which statement is an advantage of the platform as a service (PaaS) cloud service model? A: PaaS is the most similar to traditional on-premises models for IT resources B: PaaS provides the greatest level of control over IT resources C: PaaS avoids the need to manage operating systems D: PaaS reduces the need to handle application deployments
C: PaaS avoids the need to manage operating systems
Which factors are considered in calculating the total cost of ownership (TCO) for the AWS Cloud? (Select TWO.) A: The number of users that need to be migrated to the cloud B: The number to groups that need to be migrated to the cloud C: The number of servers that need to be migrated D: The amount of storage that needs to be migrated to the cloud E: The number of roles that need to be migrated to the cloud
C: The number of servers that need to be migrated D: The amount of storage that needs to be migrated to the cloud
Which statement about AWS storage services is Accurate? A: Amazon EBS volumes provide temporary block storage to Amazon EC2, but they don't persist when the EC2 instance is stopped B: Amazon EC2 instance store is a good choice for running big data processing analytics C: To access an Amazon Elastic File System (amazon EFS), the file system must be mounted on an Amazon EC2 instance in your VPC D: Amazon EC2 instance store provides durable storage for the Amazon EC2 instance that it's attached to, but it isn't available to other EC2 instances
C: To access an Amazon Elastic File System (amazon EFS), the file system must be mounted on an Amazon EC2 instance in your VPC
Which Statements accurately describes AWS pricing? A: Outbound data transfers aren't charged B: Companies must sign a long-term contract to be able to pay only for what they use. C: Volume-based discounts are available when usage increases (on some services) D: Companies can reserve capacity for some services, but it doesn't impact the cost.
C: Volume-based discounts are available when usage increases (on some services)
Which scenario best describes a use case for Amazon Aurora? A: A company needs a data warehouse that can be queried using standard business intelligence tools B: A company wants to run an Oracle database in the cloud C: A company needs a database to store semistructured data D: A company needs a highly available PostgreSQL-compatible database
D: A company needs a highly available PostgreSQL-compatible database
Which statement describes high availability? A: It's the probability that your entire system will function as intended for a specified period B: It's the measure of the total time in service divided by the number of failures C: A system can provide its expected functionality when desired by a user D: A system can withstand some measure of degradation without going down
D: A system can withstand some measure of degradation without going down
A cloud practitioner wants to visualize their AWS costs per EC2 instance type for the past 3 months. Which AWS tool or feature should they use? A: AWS Pricing Calculator B: AWS Budgets C: AWS Bills page D: AWS Cost Explorer
D: AWS Cost Explorer
Which scenario describes a use case for AWS CloudTrail? A: A developer wants to control user logins to their website B: A systems administrator wants to protect their web application from denial of service attacks C: An account administrator wants to centrally control access permissions for groups of accounts D: An account administrator wants the ability to track user activity on their account
D: An account administrator wants the ability to track user activity on their account
Which option is a company's responsibility when running Amazon RDS? A: Operating system installation B: Database software patching C: Operating system Patching D: Application optimization
D: Application optimization
How does cloud computing improve a company's ability to provision resources to meet capacity demands compared to on-premises computing: A: Cloud resources can be cost forecasted B: Cloud resources can be locked down to the resource level C: Cloud resources can experience peaks and valleys in usage D: Cloud resources can scale up or down based on demand
D: Cloud resources can scale up or down based on demand
Which statement accurately describes how customers can use AWS support? A: Customers should contact their Support Concierge to provide quick and efficient technical support B: Customers must choose one of three support plans: Basic Support, Business Support, and Enterprise Support C: Customers are assigned a Technical Account Manager (TAM) for all AWS Support plans D: Customers can get AWS Support for both experimental non-production accounts and for business-critical production accounts
D: Customers can get AWS Support for both experimental non-production accounts and for business-critical production accounts
A company has an application running on two Amazon EC2 instances. They want to reduce idle EC2 capacity. The application load is difficult to forecast, and they want to keep the CPU utilization close to 40 percent on all instances. Which type of Amazon EC2 Auto Scaling should they configure? A: Predictive scaling B: Scheduled scaling C: Manual scaling D: Dynamic scaling.
D: Dynamic scaling.
What is the relationship between AWS Regions, Availability Zones, and Data Centers: A: A set of data centers in a geographical area create a Region. Availability Zones are connections between Regions B: Each Region has a set of data centers. Each data center maps to one Availability Zone C: Each Availability Zone includes data centers. Each Data center in an Availability Zone is located in a different geographical Region D: Each Region has locations called Availability Zones. Each Availability Zone has data centers.
D: Each Region has locations called Availability Zones. Each Availability Zone has data centers.
Which statement reflects a design principle of the Security pillar of the AWS Well-Architected Framework: A: Limit automation when updating infrastructure B: Don't deploy code to production until you're certain that it cant fail C: Scale vertically to the largest instance types that your budget allows based on your best guess of capacity D: Replace one large resource with multiple, smaller resources, and distribute requests across these smaller resources
D: Replace one large resource with multiple, smaller resources, and distribute requests across these smaller resources
A company has a set of big data processing jobs in Amazon Simple Queue Service (SQS) that need a lot of compute. Which Amazon EC2 instancing pricing model would meet the need at the lowest possible cost? A: Reserved Instance B: On-Demand Instance C: Scheduled Reserved Instance D: Spot Instance
D: Spot Instance
Which option describes a capability of Amazon VPCs? A: They can belong to multiple AWS Regions B: They can be configured as a physically isolated section of the AWS Cloud C: They can have the address range changed as desired after creation D: They can span availability Zones
D: They can span availability Zones
Which configuration represents a valid use of security groups in a virtual private cloud (VPC)? A: Limit inbound access to the private subnet of the VPC B: Set a deny rule that prevents outbound traffic from an Amazon EC2 instance in a VPC C: Set a deny rule that prevents access to the subnet from the public internet. D: Limit outbound traffic from an Amazon EC2 instance in the VPC to a specific database server
NOT B NOT A
What is an attribute in an Amazon DynamoDB table? A: A data element that is shared by all items in a table B: A key that uniquely identifies a set of data lements C: A data element that doesn't need to be broken down further D: A set of related data
Not A Not B
Which statement accurately describes how amazon EC2 auto scaling is used? A: Amazon EC2 Auto scaling is useful for predictable workloads B: Amazon EC2 Auto scaling allows an application to automatically add resources, but it can't automatically scale them back down C: Amazon EC2 Auto scaling is useful for dynamic, unpredictable workloads but doesn't add much value for predictable workloads D: The size of an Amazon EC2 Auto Scaling group will scale up and down automatically based on its configuration and the number of instances cant be manually adjusted
Not D Not C
