Cheslin Mock Test 4 PDF
Document Details
Uploaded by PromptDidgeridoo9975
2024
AWS
Cheslin Ralph Wilsnach
Tags
Summary
This is an AWS mock exam, containing past paper questions and answers. The exam is from 2024. It includes questions regarding AWS services and their functionalities. The document contains questions related to AWS cloud computing topics.
Full Transcript
Cheslin Ralph Wilsnach AWS Mock Exam 3 - JOH25 (v1) Finished 3/22/2024 5:01 AM / Scored 44/64 (69%) Test taker's answer a Correct r Incorrect = Partial Credit a 1) Which tool can you use to forecast your AWS spending? a) AWS Organiza...
Cheslin Ralph Wilsnach AWS Mock Exam 3 - JOH25 (v1) Finished 3/22/2024 5:01 AM / Scored 44/64 (69%) Test taker's answer a Correct r Incorrect = Partial Credit a 1) Which tool can you use to forecast your AWS spending? a) AWS Organizations b) Amazon Dev Pay c) AWS Trusted Advisor d) AWS Cost Explorer.. a 2) Which of the following is an optional Security layer attached to a subnet within a VPC for controlling traffic in & out of the VPC? a) VPC Flow Logs b) Web Application Firewall c) Security Group d) Network ACL.. a 3) A radio station compiles a list of the most popular songs each year. The songs are frequently fetched within 180 days. After that, the users will have a default retrieval time of 12 hours for downloading the files. The files should be stored for over 10 years. Which is the most cost-effective object storage after 180 days? a) Amazon S3 Glacier b) Amazon S3 One Zone - Infrequently Accessed c) Amazon S3 Glacier Deep Archive d) Amazon S3 Standard - Infrequently Accessed.. a 4) Which of the following is a customer responsibility under AWS Shared Responsibility Model? a) Patching of host OS deployed on Amazon S3. b) Logical Access controls for underlying infrastructure. c) Physical security of the facilities. d) Patching of guest OS deployed on Amazon EC2 instance.. Cheslin Ralph Wilsnach AWS Mock Exam 3 - JOH25 (v1) Finished 3/22/2024 5:01 AM / Scored 44/64 (69%) a 5) Which of the following is a factor when calculating Total Cost of Ownership (TCO) for the AWS Cloud? a) The number of servers migrated to AWS b) The number of users migrated to AWS c) The number of passwords migrated to AWS d) The number of keys migrated to AWS. a 6) A group of developers for a startup company store their source code and binary files on a shared open-source repository platform which is publicly accessible over the internet. They have embarked on a new project in which their client requires high confidentiality and security on all development assets. Which AWS service can the developers use to store the source code? a) AWS CodeCommit b) AWS CodeDeploy c) AWS Lambda d) AWS CodeStar.. r 7) An organization has a persistently high amount of throughput. It requires connectivity with no jitter and very low latency between its on-premise infrastructure and its AWS cloud build to support live streaming and real-time services. What is the MOST appropriate solution to meet this requirement? a) AWS Data Streams b) AWS Kinesis c) Kinesis Data Firehose d) AWS Direct Connect.. r 8) A Professional Educational Institution maintains a dedicated web server and database cluster that hosts an exam results portal undertaken by its students. The resource is idle for most of the learning cycle and becomes excessively busy when exam results are released. How can this architecture with servers be improved to be cost-efficient? a) Configure AWS Elastic load-balancing between the webserver and database cluster. b) Configure RDS multi-availability zone for performance optimization. c) Configure serverless architecture leveraging AWS Lambda functions. d) Migrate the web servers onto Amazon EC2 Spot Instances.. Cheslin Ralph Wilsnach AWS Mock Exam 3 - JOH25 (v1) Finished 3/22/2024 5:01 AM / Scored 44/64 (69%) a 9) A business analyst would like to move away from creating complex database queries and static spreadsheets when generating regular reports for high-level management. They would like to publish insightful, graphically appealing reports with interactive dashboards. Which service can they use to accomplish this? a) Amazon QuickSight b) Business intelligence on Amazon Redshift c) Amazon CloudWatch dashboards d) Amazon Athena integrated with Amazon Glue.. a 10) What is the AWS feature that enables fast, easy and secure transfers of files over long distances between your client and your Amazon S3 bucket? a) File Transfer b) HTTP Transfer c) Amazon S3 Transfer Acceleration d) S3 Acceleration.. a 11) In which five categories does Trusted Advisor service provide insight for an AWS account? a) Security, fault tolerance, high availability, connectivity and Service Limits b) Security, access control, high availability, performance and Service Limits c) Performance, cost optimization, security, fault tolerance and Service Limits d) Performance, cost optimization, access control, connectivity and Service Limits. a 12) Which of the following AWS services is suitable to be used as a fully managed data warehouse? a) Amazon Athena b) Amazon RedShift c) Amazon CloudWatch d) Amazon Warehouse.. r 13) What best describes the "Principle of Least Privilege"? Choose the correct answer from the options given below. a) All users should have the same baseline permissions granted to them to use basic AWS services. b) Users should be granted permission to access only resources they need to do their assigned job. c) Users should submit all access requests in written form so that there is a paper trail of who needs access to different AWS resources. d) Users should always have a little more permission than they need.. Cheslin Ralph Wilsnach AWS Mock Exam 3 - JOH25 (v1) Finished 3/22/2024 5:01 AM / Scored 44/64 (69%) r 14) A developer would like to automate the installation by updating a set of applications on a series of EC2 instances and on-premises servers. Which is the most appropriate service to use to achieve this requirement? a) AWS CodeBuild b) AWS CodeCommit c) AWS CodeDeploy d) AWS CloudFormation.. a 15) As per AWS global infrastructure, which of the following components within an AWS Region provides a low latency redundant connectivity? a) Data Centers b) Edge Location c) Availability Zones d) Regional Cache. a 16) Which of the following statements best describe the AWS Personal Health Dashboard? (Select Two) a) A concise representation of the general status of AWS services b) User-specific view on the availability and performance of AWS services, underlying their AWS resources. c) A service that prompts the user with alerts and notifications on AWS scheduled activities, pending issues, and planned changes. d) A minute-by-minute update of system outages and service errors on the AWS global infrastructure e) A rolling log of all service interruptions across the AWS network and records of incidents persistent for a year.. r 17) A startup company that works on social media apps development would like to grant freelance developers temporary access to its Lambda functions setup on AWS. These developers would be signing-in via Facebook authentication. Which service is the most appropriate to grant secure access? a) Create user credentials using Identity Access Management (IAM). b) Use Amazon Cognito for web-identity federation. c) Create temporary access roles using IAM d) Use a third-party Web ID, federated access provider.. Cheslin Ralph Wilsnach AWS Mock Exam 3 - JOH25 (v1) Finished 3/22/2024 5:01 AM / Scored 44/64 (69%) r 18) There is a requirement to host a database server for a minimum period of one year. Which of the following would result in the least cost a) Spot Instances b) On-Demand c) No Upfront costs Reserved d) Partial Upfront costs Reserved.. a 19) During an organization's information systems audit, the administrator is requested to provide a dossier of security and compliance reports and online service agreements between the organization and AWS. Which service can they utilize to acquire this information? a) AWS Artifact b) AWS Resource Center c) AWS Service Catalog d) AWS Directory Service.. r 20) A new department has recently joined the organization and the administrator needs to compose access permissions for the group of users. Given that they have various roles and access needs, what is the best-practice approach when granting access? a) After gathering information on their access needs, the administrator should allow every user to access the most common resources and privileges on the system. b) The administrator should grant all users the same permissions and then grant more upon request. c) The administrator should grant all users the least privilege and add more privileges to only to those who need it. d) Users should have no access and be granted temporary access on the occasions that they need to execute a task. r 21) Which of the following are advantages of having infrastructure hosted on the AWS Cloud? Choose 2 answers from the options given below. a) Having complete control over the physical infrastructure b) Having the pay as you go model c) No Upfront costs d) Having no need to worry about security. e) Pays more as AWS grows.. Cheslin Ralph Wilsnach AWS Mock Exam 3 - JOH25 (v1) Finished 3/22/2024 5:01 AM / Scored 44/64 (69%) a 22) There is an external audit being carried out on your company. The IT auditor needs to have a log of 'who made the requests' to the AWS resources in the company's account. Which of the below services can assist in providing these details? a) AWS Cloudwatch b) AWS CloudTrail c) AWS EC2 d) AWS SNS.. a 23) A web administrator maintains several public and private web-based resources for an organisation. Which service can they use to keep track of the expiry dates of SSL/TLS certificates as well as updating and renewal? a) AWS Data Lifecycle Manager b) AWS License Manager c) AWS Firewall Manager d) AWS Certificate Manager.. r 24) While making changes to AWS resources e.g. adding a new Security Group Ingress rule, I need to capture & record all these changes that will be helpful during an audit. Which of the following AWS service helps me do that? a) AWS Trusted Advisor b) AWS CloudWatch c) AWS Config d) AWS CloudFormation.. r 25) AWS Organizations help manage multiple accounts effectively in a large enterprise. Which of the following statements related to AWS Organizations are correct? (Select TW a) An Organizational Unit(OU) can have only one parent. b). An account can be a member of multiple Organizational Units (OU). c) An SCP policy only impacts a particular AWS account even if it is applied at the root account. d) Organizational level policies are known as Service Control Policies. e) Service Control Policies (SCPs) can only allow actions instead of deny actions.. Cheslin Ralph Wilsnach AWS Mock Exam 3 - JOH25 (v1) Finished 3/22/2024 5:01 AM / Scored 44/64 (69%) a 26) Which of the following is the responsibility of the customer to ensure the availability and backup of the EBS volumes? a) Delete the data and create a new EBS volume. b) Create EBS snapshots. c) Attach new volumes to EC2 Instances. d) Create copies of EBS Volumes.. a 27) Which AWS service gives the user the ability to group AWS resources across different AWS Regions by application and then collectively view their operational data for monitoring purposes? a) Systems Manager b) Management Console c) Resource Groups d) Resource Access Manager (AWS RAM). r 28) Which of the following is a situation that would require using both Spot and Reserved EC2 Instances? a) A build that has sudden unpredictable workload spikes but for a short time horizon. b) One in which there is a predictable resource demand over a long time horizon. c) One that has unpredictable spikes for a long time. d) One that has a constantly predictable workload with brief unpredictable spikes.. a 29) When designing a highly available architecture, what is the difference between vertical scaling (scaling-up) and horizontal scaling (scaling-out)? a) Scaling up provides for high availability whilst scaling out brings fault-tolerance. b) Scaling out is not cost-effective compared to scaling up. c) Scaling up adds more resources to an instance, scaling out adds more instances. d) Autoscaling groups require scaling up whilst launch configurations use scaling out.. a 30) Which of the following services can be used as a web application firewall in AWS? a) AWS EC2 b) AWS WAF c) AWS Firewall d) AWS Protection.. r 31) What can be termed as a user-defined label that has a key-value pair of variable character length? It is assigned to AWS resources as metadata for administration and management purposes. a) Resource Tag b) Resource Group c) Resource Flag d) Tag key.. Cheslin Ralph Wilsnach AWS Mock Exam 3 - JOH25 (v1) Finished 3/22/2024 5:01 AM / Scored 44/64 (69%) r 32) A financial Organization has an on-premises Data Center that holds large volumes of customers' financial transaction data on its legacy mainframe systems. While accessing transaction data, they have implemented a caching solution in the AWS cloud that will hold the customer's financial data due to performance issues. The transaction data is extremely confidential & is heavy in bandwidth while transferring to the cloud. What connectivity would you recommend for this data transfer? Select the best answer. a) Direct Connect with a VPN connection b). Virtual Private Network (VPN) c) AWS Storage Gateway d) AWS Snowball. a 33) Which of the following can be attached to EC2 Instances to store data? a) Amazon Glacier b) Amazon EBS Volumes c) Amazon EBS Snapshots d) Amazon SQS.. a 34) Which of the following networking component can be used to host EC2 resources in the AWS Cloud? a) AWS Trusted Advisor b) AWS VPC c) AWS Elastic Load Balancer d) AWS Autoscaling.. Cheslin Ralph Wilsnach AWS Mock Exam 3 - JOH25 (v1) Finished 3/22/2024 5:01 AM / Scored 44/64 (69%) a 35) I have a web application that has been deployed to the AWS Mumbai region. My application soon becomes popular. Now there are users all over the world who would like to access it. If I use a CloudFront distribution for doing so, which statements are FALSE for CloudFront? (Select TWO.) a) CloudFront uses the concept of Edge locations for caching and delivering content faster to its users. b) CloudFront can help improve performance by using Keep-alive connections between the Edge locations &the origin server. c) CloudFront does not cache dynamic content. d) CloudFront can use only S3 buckets as their Origin Server from where they can cache content. e) CloudFront can customize content at the Edge locations before delivering it to users.. a 36) Which of the following components of the Cloudfront service can be used to distribute content to users across the globe? a) Amazon VPC b) Amazon Regions c) Amazon Availability Zones d) Amazon Edge locations.. a 37) Your company is planning to move to the AWS Cloud. You need to give a presentation on the cost perspective when moving existing resources to the AWS Cloud. Considering Amazon EC2, which of the following is an advantage from the cost perspective a) Having the ability of automated backups of the EC2 instance, so that you don’t need to worry about the maintenance costs. b) The ability to choose low cost AMI’s to prepare the EC2 Instances. c) The ability to only pay for what you use. d) Ability to tag instances to reduce the overall cost. Cheslin Ralph Wilsnach AWS Mock Exam 3 - JOH25 (v1) Finished 3/22/2024 5:01 AM / Scored 44/64 (69%) a 38) Your company is planning to move to the AWS Cloud. Once it completely moves to the cloud, it wants to ensure that the right security settings are put in place. Which of the following tools are helpful? (Select TWO.) a) AWS Inspector b) AWS Trusted Advisor c) AWS Support d) AWS Kinesis.. a 39) There is a requirement to collect important metrics from AWS RDS and EC2 Instances. Which AWS service would be helpful to fulfill this requirement? a) Amazon CloudFront b) Amazon CloudSearch c) Amazon CloudWatch d) Amazon Config. a 40) I need to upload a large number of large-size objects from different Geographic locations to an S3 bucket. What is the best mechanism to do so in a fast & reliable way? a) I can connect to an application running on AWS EC2 that is hosted in multiple regions using Route 53 & use latency based routing to upload files to the S3 bucket. b) I can use a Direct Connect link from each of the Geographic location for transferring data quickly. c) I can use S3 Transfer Acceleration from each Geographic location that will route the data from their respective Edge locations to S3. d) I can directly access the S3 bucket from the different locations & use a multi-part- upload for transferring huge objects.. r 41) I have developed an application using AWS services that have been deployed to multiple regions. How do I achieve the best Performance and Availability when users from different locations access my application? a) Use Route 53 latency based routing for improving performance and Availability. b) Use a CloudFront distribution for improving performance and Availability c) Use Global Accelerator for improving performance and Availabilit d) Use an endpoint of the application directly for accessing it that lies within a user’s Region. Cheslin Ralph Wilsnach AWS Mock Exam 3 - JOH25 (v1) Finished 3/22/2024 5:01 AM / Scored 44/64 (69%) a 42) Which statement is accurate about AWS Budgets and Cost Explorer? a) AWS Budgets uses the cost visualizations provided by AWS Cost Explorer to show the status of preset budgets and to provide forecasts of estimated costs. b) Both AWS Budgets and AWS Cost Explorer can be used to predict usage and to give recommended cost-optimization measures. c) AWS Budgets will list the costs incurred over a period of time with a further breakdown by region and linked account. d) Due to the sensitivity of billing and cost management information, with the AWS Cost Explorer and AWS Budgets services, it is not possible to view the information for multiple accounts.. a 43) When designing a system, you use the principle of “design for failure and nothing will fail” Which of the following services/features of AWS can assist in supporting this design principle? Choose 3 answers from the options given below. a) Availability Zones b) Regions c) Elastic Load Balancer d) Pay as you go. a 44) You have a DevOps team in your current organization structure. They are keen to know if there is any service available in AWS which can be used to manage infrastructure as code. Which of the following can be met with such a requirement? a) Using AWS Cloudformation b) Using AWS Config c) Using AWS Inspector d) Using AWS Trusted Advisor.. a 45) Your design team is planning to design an application that will be hosted on the AWS Cloud. One of their main non-functional requirements is given below: Reduce inter-dependencies so failures do not impact other components. Which of the following concepts does this requirement relate to? a) Integration b) Decoupling c) Aggregation d) Segregation. Cheslin Ralph Wilsnach AWS Mock Exam 3 - JOH25 (v1) Finished 3/22/2024 5:01 AM / Scored 44/64 (69%) a 46) Which of the following can be used to increase the fault tolerance of an application? a) Deploying resources across multiple edge locations b) Deploying resources across multiple VPC’s c) Deploying resources across multiple Availability Zones d) Deploying resources across multiple AWS Accounts.. a 47) Which of the following security requirements are managed by AWS? Select 3 answers from the options given below a) Password Policies b) User permissions c) Physical security d) Disk disposal e) Hardware patching.. a 48) Which of the following is not the pillars of AWS Well-Architected Framework? a) Automation b) Cost Optimization c) eliability d) Performance Efficiency.. r 49) Your company is planning to offload some of the batch processing workloads on to AWS. These jobs can be interrupted and resumed at any time. Which of the following instance types would be the most cost-effective to use for this purpose? a) On-Demand b) Spot c) Full Upfront Reserved d) Partial Upfront Reserved.. a 50) Which service can be used to create steps required to automate build, test and deployments for a web application? a) AWS CodeCommit b) AWS CodePipeline c) AWS CodeDeploy d) AWS CodeBuild.. Cheslin Ralph Wilsnach AWS Mock Exam 3 - JOH25 (v1) Finished 3/22/2024 5:01 AM / Scored 44/64 (69%) a 51) Your company is planning to use the AWS Cloud. But there is a management decision that resources need to split department wise. And the decision is tending towards managing multiple AWS accounts. Which of the following would help in the effective management and also provide an efficient costing model? a) AWS Organizations b) AWS Organizations c) AWS Trusted Advisor d) AWS Cost Explorer. a 52) Which of the following can be used as an additional security layer for the user name and password when logging into the AWS Console? a) Multi-Factor Authentication (MFA) b) Secondary password c) Root access privileges d) Secondary user name.. a 53) Which AWS Cloud service helps in the quick deployment of resources which can use different programming languages such as.Net and Java? a) AWS Elastic Beanstalk b) AWS Elastic Compute Cloud (Amazon EC2) c) AWS VPC d) AWS SQS.. a 54) Your company handles a crucial e-Commerce application. This application needs to have an uptime of at least 99.5% There is a decision to move the application to the AWS Cloud. Which of the following deployment strategies can help build a robust architecture for such an application? a) Deploying the application across multiple VPC’s b) Deploying the application across multiple Regions c) Deploying the application across Edge locations d) Deploying the application across multiple subnets.. Cheslin Ralph Wilsnach AWS Mock Exam 3 - JOH25 (v1) Finished 3/22/2024 5:01 AM / Scored 44/64 (69%) r 55) Your company is moving a large application to AWS using a set of EC2 instances. A key requirement is reusing existing server-bound software licensing. Which of the following options is the best for satisfying the requirement? a) EC2 Dedicated Instances b) EC2 Reserved Instance c) EC2 Dedicated Hosts d) EC2 Spot Instances. a 56) You are planning on deploying a video-based application onto the AWS Cloud. Users across the world will access these videos. Which of the below services can help efficiently stream the content to the users across the globe a) Amazon SES b) Amazon Cloudtrail c) Amazon CloudFront d) Amazon S3. r 57) For the AWS Shared Responsibility Model, which of the following responsibilities is NOT a part of shared controls by both customer and AWS? a) Patch Management b) Configuration Management c) Global infrastructure that runs AWS Cloud services. d) Training.. r 58) There is a requirement to host EC2 Instances in the AWS Cloud, wherein the utilization is for a duration of 3 years. Which of the following would you utilize to minimize the costs? a) Reserved instances b) On-demand instances c) Spot instances d) Regular instances.. Cheslin Ralph Wilsnach AWS Mock Exam 3 - JOH25 (v1) Finished 3/22/2024 5:01 AM / Scored 44/64 (69%) a 59) Which of the following AWS services can be used to retrieve configuration changes made to AWS resources causing operational issues? a) Amazon Inspector b) AWS CloudFormation c) AWS Trusted Advisor d) AWS Config.. r 60) A company is deploying a two-tier, highly available web application to AWS. The application needs a storage layer to store artifacts such as photos and videos. Which of the following services can be used as the underlying storage mechanism? a) Amazon EBS volume b) Amazon S3 c) Amazon EC2 instance store d) Amazon RDS instance. a 61) Which of the below-mentioned services is equivalent to hosting virtual servers on an on- premises location? a) AWS IAM b) AWS Server c) AWS EC2 d) AWS Regions.. a 62) You have a set of EC2 Instances hosted on the AWS Cloud. The EC2 Instances are hosting a web application. Which of the following acts as a firewall to your VPC and the instances in it? Choose 2 answers from the options given below. a) Usage of Security Groups b) Usage of AWS Config c) Usage of Network Access Control Lists d) Usage of the Internet gateway.. Cheslin Ralph Wilsnach AWS Mock Exam 3 - JOH25 (v1) Finished 3/22/2024 5:01 AM / Scored 44/64 (69%) a 63) Your company is planning to pay for an AWS Support plan. They have the following requirements as far as the support plan goes: 24x7 access to Cloud Support Engineers via email, chat & phone Response time of less than 15 minutes for any business-critical system faults Which of the following plans will suffice to keep in mind the above requirement? a) Basic b) Developer c) Business d) Enterprise.. r 64) Your company is planning to pay for an AWS Support plan. They have the following requirements as far as the support plan goes: 24x7 access to Cloud Support Engineers via email, chat & phone Response time of less than 1 hour for any business-critical system faults Which of the following plans will suffice to keep in mind the above requirement? a) Basic b) Business c) Enterprise d) Developer.
