Practice Test 1

Ace your homework & exams now with Quizwiz!

A company plans to deploy a relational database on AWS. The IT department will perform database administration. Which service should the company use? A) Amazon Elasticache B) Amazon DynamoDB C) Amazon RedShift D) Amazon EC2

A self-managed relational database can be installed on Amazon EC2. When using this deployment you can choose the operating system and instance type that suits your needs and then install and manage any database software you require. The table below helps you to understand when to use different types of database deployment:

Which of the following AWS services are compute services? (Select TWO.) A) AWS CloudTrail B) AWS Elastic Beanstalk C) Amazon EFS D) Amazon Inspector E) AWS Batch

AWS Batch enables developers, scientists, and engineers to easily and efficiently run hundreds of thousands of batch computing jobs on AWS. AWS Elastic Beanstalk is an easy-to-use service for deploying and scaling web applications and services developed with Java, .NET, PHP, Node.js, Python, Ruby, Go, and Docker on familiar servers such as Apache, Nginx, Passenger, and IIS.

Which AWS service provides a managed software version control system? A) AWS CodePipeline B) AWS DataSync C) AWS CodeCommit D) Amazon CodeDeploy

AWS CodeCommit is a fully-managed source control service that hosts secure Git-based repositories. It makes it easy for teams to collaborate on code in a secure and highly scalable ecosystem. CodeCommit eliminates the need to operate your own source control system or worry about scaling its infrastructure. You can use CodeCommit to securely store anything from source code to binaries, and it works seamlessly with your existing Git tools.

A company is deploying an application on Amazon EC2 that requires low-latency access to application components in an on-premises data center. Which AWS service or resource can the company use to extend their existing VPC to the on-premises data center? A) AWS Direct Connect B) Amazon Connect C) Amazon Workspaces D) AWS Outposts

AWS Outposts is a fully managed service that offers the same AWS infrastructure, AWS services, APIs, and tools to virtually any datacenter, co-location space, or on-premises facility for a truly consistent hybrid experience. With AWS Outposts you can extend your VPC into the on-premises data center as in the following diagram:

Which AWS Cloud service provides recommendations on how to optimize performance for AWS services? A) Amazon CloudWatch B) AWS CloudTrail C) AWS trusted Advisor D) Amazon Inspector

AWS Trusted Advisor can improve the performance of your service by checking your service limits, ensuring you take advantage of provisioned throughput, and monitoring for overutilized instances.

Which of the following will help a user determine if they need to request an Amazon EC2 service limit increase? A) Amazon RDS B) AWS Health Dashboard C) AWS Trusted Advisor D) AWS Cost Explorer

AWS Trusted Advisor is an online tool that provides you real time guidance to help you provision your resources following AWS best practices. Trusted Advisor checks help optimize your AWS infrastructure, improve security and performance, reduce your overall costs, and monitor service limits.

A user needs to identify underutilized Amazon EC2 instances to reduce costs. Which AWS service or feature will meet this requirement? A) Aws Health Dashboard B) AWS Cost Explorer C) AWS Trusted Advisor D) Aws CodeBuild

AWS Trusted Advisor offers a rich set of best practice checks and recommendations across five categories: cost optimization, security, fault tolerance, performance, and service limits. The Trusted Advisor "low utilization Amazon EC2 instances" check, checks the Amazon Elastic Compute Cloud (Amazon EC2) instances that were running at any time during the last 14 days and alerts you if the daily CPU utilization was 10% or less and network I/O was 5 MB or less on 4 or more days.

According to the AWS shared responsibility model, which of the following is a responsibility of AWS? A) Updating the firmware on the underlying EC2 hosts B) Updating security group rules to enable connectivity C) Patching software running on Amazon EC2 instances D) Configuring network ACLs to block malicious attacks

AWS are responsible for updating firmware on the physical Amazon EC2 host servers. Customers are then responsible for any patching of the EC2 operating system and any installed software.

Which type of credential should a Cloud Practitioner use for programmatic access to AWS resources from the AWS CLI/API?

Access keys

A company is deploying a MySQL database on AWS. The database must easily scale and have automatic backup enabled. Which AWS service should the company use? A) Amazon Athena B) Amazon Aurora C) Amazon DynamoDB D) Amazon DocumentDB

Amazon Aurora is a relational database that is compatible with MySQL and PostgreSQL database engines. Aurora is extremely fast and scales up to 128 TB. You can also deploy replicas for read scaling within and across Regions. Aurora also offers automated backups.

A company is deploying a new web application in a single AWS Region that will be used by users globally. Which AWS services will assist with lowering latency and improving transfer speeds for the global users? (Select TWO.) A) AWS Direct Connect B) AWS Snowcone C) AWS Global Accelerator D) Amazon CloudFront E) AWS Transit Gateway

Amazon CloudFront is a content delivery network (CDN) that caches content around the world for lower latency access. AWS Global Accelerator enables access to your application by leveraging the same Edge Locations as CloudFront and routing connections across the AWS global network. Both of these services assist with lowering latency and improving transfer speeds for users who are distributed around the world.

A website has a global customer base and users have reported poor performance when connecting to the site. Which AWS service will improve the customer experience by reducing latency? A) Amazon EC2 Auto Scaling B) Amazon CloudFront C) Amazon ElastiCache D) AWS Direct Connect

Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds, all within a developer-friendly environment.

Which AWS services can a company use to gather information about activity in their AWS account? (Select TWO.) A) AWS Trusted Advisor B) Amazon CloudFront C) Amazon CloudWatch D) Amazon Connect E) Amazon CloudTrail

Amazon CloudWatch is a performance monitoring service. AWS services send metrics about their utilization to CloudWatch which collects the metrics. Additionally, CloudWatch collects metrics about account activity such as billing information which can also be viewed. AWS CloudTrail is an auditing service that monitors API activity in your account. Whenever you perform any operation in the account this results in an API action and this information is recorded to create an audit trail.

Customers using AWS services must patch operating systems on which of the following services? A) Amazon EC2 B) AWS Lambda C) Amazon DynamoDB D) AWS Fargate

Amazon EC2 is an infrastructure as a service (IaaS) solution. This means the underlying hardware and software layer for running a virtual server are managed for you. As a customer you must then manage the operating system and any software you install. This includes installing patches on the operating system as part of regular maintenance activities.

Which AWS service can a company use to discover and protect sensitive data that is stored in Amazon S3 buckets. A) AWS Policy Generator B) Amazon GuardDuty C) Amazon Detective D) Amazon Macie

Amazon Macie is a fully managed data security and data privacy service that uses machine learning and pattern matching to discover and protect your sensitive data in AWS. Amazon Macie automates the discovery of sensitive data at scale and lowers the cost of protecting your data. Macie automatically provides an inventory of Amazon S3 buckets including a list of unencrypted buckets, publicly accessible buckets, and buckets shared with AWS accounts outside those you have defined in AWS Organizations. Then, Macie applies machine learning and pattern matching techniques to the buckets you select to identify and alert you to sensitive data, such as personally identifiable information (PII).

What advantages does a database administrator obtain by using the Amazon Relational Database Service (RDS)? A) RDS Provides 99.99% reliability and durability B) RDS dbs automatically scale based on load C) RDS simplifies relational db admin tasks D) RDS enables users to dynamically adjust CPU and RAM resources

Amazon RDS is a managed relational database service on which you can run several types of database software. The service is managed so this reduces the database administration tasks an administrator would normally undertake. The managed service includes hardware provisioning, database setup, patching and backups.

A company is deploying a new workload and software licensing requirements dictate that the workload must be run on a specific, physical server. Which Amazon EC2 instance deployment option should be used? A) Dedicated Instances B) Dedicated Hosts C) Spot Instances D) Reserved Instances

An Amazon EC2 Dedicated Host is a physical server fully dedicated for your use, so you can help address corporate compliance requirements. Amazon EC2 Dedicated Hosts allow you to use your eligible software licenses from vendors such as Microsoft and Oracle on Amazon EC2, so that you get the flexibility and cost effectiveness of using your own licenses, but with the resiliency, simplicity and elasticity of AWS

A company is migrating a monolithic application that does not scale well into the cloud and refactoring it into a microservices architecture. Which best practice of the AWS Well-Architected Framework does this plan relate to? A) Manage change in automation B) Stop Spending money on undifferentiated heavy lifting C) Implement loosely coupled services D) Use multiple solutions to improve performance

C. A microservices architecture will help ensure that each component of the application can scale independently and be updated independently. Loose coupling further assists as it places reduces the dependencies between systems and ensures that messages and data being passed between application components can be reliably and durably stored.

For what purpose would a Cloud Practitioner access AWS Artifact? A) Create a security assessment report for AWS services B) Download configuration details for all AWS resources C) Gain access to AWS security and compliance documents D) Access training materials for AWS services

C. AWS Artifact is your go-to, central resource for compliance-related information that matters to you. It provides on-demand access to AWS' security and compliance reports and select online agreements. Reports available in AWS Artifact include our Service Organization Control (SOC) reports, Payment Card Industry (PCI) reports, and certifications from accreditation bodies across geographies and compliance verticals that validate the implementation and operating effectiveness of AWS security controls.

What can a Cloud Practitioner use to categorize and track AWS costs by project? A) Multiple accounts B) Consolidated billing C) Cost Allocation Tags D) AWS Trusted Advisor

Cost allocation tags can be used to tag and categorize your resources and then run view the billing in Cost Explorer and the cost allocation report. For example you can tag your resources by department or project and then view costs attributed to the resources used by those groups.

Which AWS feature can be used to launch a pre-configured Amazon Elastic Compute Cloud (EC2) instance? A) Amazon Elastic Block Store (EBS) B) Amazon Machine Image (AMI) C) Amazon AppStream 2.0 D) Amazon EC2 Systems Manager

Explanation An Amazon Machine Image (AMI) provides the information required to launch an instance. You must specify an AMI when you launch an instance. You can launch multiple instances from a single AMI when you need multiple instances with the same configuration. You can use different AMIs to launch instances when you need instances with different configurations.

What is the best practice for managing AWS IAM access keys? A) AWS rotate access keys on a schedule B) never use access keys, always use IAM roles C) customers should rotate access keys regularly D) There is no need to manage access keys

It is a security best practice to rotate access keys regularly. This practice ensures that if access keys are compromised the security exposure is mitigated.

Which of the following statements best describes the concept of agility in relation to cloud computing on AWS? (Select TWO.) A) The ability to experiment quickly B) The ability to automatically scale capacity C) The speed at which AWS rolls out new features D) The speed at which AWS resources can be created E) The elimination of wasted capacity

In a cloud computing environment, new IT resources are only a click away, which means that you reduce the time to make those resources available to your developers from weeks to just minutes. This results in a dramatic increase in agility for the organization, since the cost and time it takes to experiment and develop is significantly lower.

An application uses a PostgreSQL database running on a single Amazon EC2 instance. A Cloud Practitioner has been asked to increase the availability of the database so there is automatic recovery in the case of a failure. Which tasks can the Cloud Practitioner take to meet this requirement? A) Configure EC2 Auto Recovery to move the instance to another Region B) Set the DeleteOnTermination value to false for the EBS root volume C) Migrate the db to Amazon RDS and enable the Multi-AZ feature D) Configure an Elastic Load Balancer in from of the EC2 instance

Moving the database to Amazon RDS means that the database can take advantage of the built-in Multi-AZ feature. This feature creates a standby instance in another Availability Zone and synchronously replicates to it. In the event of a failure that affects the primary database an automatic failover can occur and the database will become functional on the standby instance.

A Cloud Practitioner requires point-in-time recovery (PITR) for an Amazon DynamoDB table. Who is responsible for configuring and performing backups? A) The customer is responsible for configuring and AWS is responsible for performing backups B) The customer is responsible for both C) AWS is responsible for both D) AWS is responsible for configuring and the user is responsible for performing backups

Point-in-time recovery (PITR) provides continuous backups of your DynamoDB table data. When enabled, DynamoDB maintains incremental backups of your table for the last 35 days until you explicitly turn it off. It is a customer responsibility to enable PITR on and AWS is responsible for actually performing the backups.

Which tasks can a user complete using the AWS Cost Management tools? (Select TWO.) A) Create budgets and receive notifications if current or forecasted usage exceeds the budgets B) Automatically terminate AWS resources if budget thresholds are exceeded C) Delete all of your AWS resources with a single click D) Move data stored in Amazon S3 Standard to an archiving storage class to reduce cost E) Launch either EC2 Spot instances or On-Demand instances based on the current pricing

The AWS Cost Management tools includes services, tools, and resources to organize and track cost and usage data, enhance control through consolidated billing and access permissions, enable better planning through budgeting and forecasts, and further lower costs with resources and pricing optimizations.

Which of the following AWS features or services can be used to provide root storage volumes for Amazon EC2 instances? A) Amazon Elastic File System (EFS) B) Amazon Simple Storage Service (S3) C) Amazon Elastic Block Store (EBS) D) Amazon Machine Image

The Amazon Elastic Block Store (EBS) provides block-based storage volumes for Amazon EC2 instances. Root volumes are where the operating system is installed and can be either EBS volumes or instance store volumes.

How much data can a company store in the Amazon S3 service? A) Virtually limitless B) 100 TB C) 100 PB D) 1 PB

The Amazon Simple Storage Service (S3) offers virtually unlimited storage. The total volume of data and number of objects you can store are unlimited. Individual Amazon S3 objects can range in size from a minimum of 0 bytes to a maximum of 5 terabytes. The largest object that can be uploaded in a single PUT is 5 gigabytes.

An individual IAM user must be granted access to an Amazon S3 bucket using a bucket policy. Which element in the S3 bucket policy should be updated to define the user account for which access will be granted? A) Action B) Resource C) Principal D) Condition

The Principal element specifies the user, account, service, or other entity that is allowed or denied access to a resource. The bucket policy below has a Principal element set to * which is a wildcard meaning any user. To grant access to a specific IAM user the following format can be used: "Principal":{"AWS":"arn:aws:iam::AWSACCOUNTNUMBER:user/username"}

Which of the following are valid benefits of using the AWS Cloud? (Select TWO.) A) Total control over data center infrastructure B) Fast provisioning of IT resources C) Outsource all operational risk D) Outsource all application development to AWS E) Ability to go global quickly

The ability to provision IT resources quickly and easily and also globally are valid benefits of using the AWS cloud. These are covered in AWS' 6 advantages of cloud which include "Increase speed and agility" and "Go global in minutes".

A company uses Amazon EC2 instances to run applications that are dedicated to different departments. The company needs to break out the costs of these applications and allocate them to the relevant department. The EC2 instances run in a single VPC. How can the company achieve these requirements? A)Add additional Amazon VPCs and launch each application in a separate VPC. B)Create tags by department on the instances and then run a cost allocation report. C)Enable billing access for IAM users and view the costs in Cost Explorer. D)Enable billing alerts through Amazon CloudWatch and Amazon SNS.

The company should create cost allocation tags that specify the department and assign them to resources. These tags must be activated so they are visible in the cost allocation report. Once this is done and a monthly cost allocation report has been configured it will be easy to monitor the costs for each department.

A company is planning to deploy an application with a relational database on AWS. The application layer requires access to the database instance's operating system in order to run scripts. The company prefer to keep management overhead to a minimum. Which deployment should be used for the database? A) Amazon Dynamo DB B) Amazon RDS C) Amazon S3 D) Amazon EC2

The company would like to keep management overhead to a minimum so RDS would be good to meet that requirement. However, with RDS you cannot access the operating system so the requirement for running scripts on the OS rules RDS out. Therefore, the next best solution is to deploy on an Amazon EC2 instances as the other options presented are unsuitable for a relational database.

A company is launching a new website which is expected to have highly variable levels of traffic. The website will run on Amazon EC2 and must be highly available. What is the MOST cost-effective approach? A) Create an Amazon EC2 Auto Scaling group and configure an Elastic Load Balancer B) Determine the highest expected traffic and use an appropriate instance type C) Launch the website using an Amazon EC2 instance running on a dedicated host D) Use the AWS CLI to launch and terminate Amazon EC2 instances to match demand

The most cost-effective approach for ensuring the website is highly available on Amazon EC2 instances is to use an Amazon EC2 Auto Scaling group. This will ensure that the appropriate number of instances is always available to service the demand. An Elastic Load Balancer can be placed in front of the instances to distribute incoming connections.

A company runs a batch job on an Amazon EC2 instance and it takes 6 hours to complete. The workload is expected to double in volume each month with a proportional increase in processing time. What is the most efficient cloud architecture to address the growing workload? A) Run the batch workload in parallel across multiple Amazon EC2 instances B) Change the Amazon EC2 volume type to a Provisioned IOPS SSD volume C) Run the application on a bare metal Amazon EC2 instance. D) Run the batch job on a larger Amazon EC2 instance type with more CPU

The most efficient option is to use multiple EC2 instances and distribute the workload across them. This is an example of horizontal scaling and will allow the workload to keep growing in size without any issue and without increasing the overall processing timeframe.

Which benefits can a company gain by deploying a relational database on Amazon RDS instead of Amazon EC2? (Select TWO.) A) Schema management B) Software patching C) Indexing of tables D) Root access to OS E) Automated Backups

Two of the benefits of using a managed Amazon RDS service instead of a self-managed database on EC2 are that you get automated backups and automatic software patching.

When running applications in the AWS Cloud, which common tasks can AWS manage on behalf of their customers? (Select TWO.) A) Patching db software B) Taking a backup of a db C) Application security testing D) Application source code auditing E) Creating a db schema

With AWS managed services you can reduce your time spent performing common IT tasks. With services such as Amazon RDS, AWS will patch the database host operating system and database software and perform patch management activities.


Related study sets

Luke 24 - Flashcard MC questions - Ted Hildebrandt

View Set

Supply Chain: Chapter 7 Questions

View Set

General Psychology Test #2 (Part 1)

View Set

review questions ch 24 list the enzymes that are present and state which type of food .

View Set