cloud mcq (1).pdf
Document Details
Uploaded by Deleted User
Tags
Full Transcript
1. Which of the following software architectural interaction styles is the most decoupled? RPC Event-driven RESTful Message driven 2. If a policy explicitly denies a privilege to a role: The privilege will always be denied. The privilege will be denied unless there is...
1. Which of the following software architectural interaction styles is the most decoupled? RPC Event-driven RESTful Message driven 2. If a policy explicitly denies a privilege to a role: The privilege will always be denied. The privilege will be denied unless there is another later policy that permits. Privileges cannot be explicitly denied. They are denied by default. They can only be permitted. 3. Order the following disaster recovery items based on how they would commonly be implemented over time. 1 - Fully working low-capacity standby on AWS. 2 - Add a hot standby in a second AWS Availability Zone or region. 3 - Back up (to Amazon S3) and restore. 4 - Pilot Light on AWS for quick recovery. 1,2,3,4 3,4,1,2 3,4,2,1 3,1,4,2 4. Preventing DDoS attacks is the sole responsibility of the customer. True False 5. Which of the following would probably not be a good use case for a NoSQL database? Secondary indexes for data stored with hex hashes in Amazon S3 Customer orders Lookup tables Scoreboards 6. Amazon SQS guarantees that the order in which messages are received is the order in which they will be delivered. False True 7. What AWS service can reduce coupling between Web Servers and Application Servers in a single VPC? Route53 Internal ELB Elastic IP EC2 8. What is the benefit of using a dead-letter queue? It separates unsuccessfully processed messages from unprocessed messages so they can be inspected. It diagnoses and fixes bad messages and resubmits them for processing. It identifies messages that may be a security threat and isolates them from your processing system. It allows you to restore messages that were inappropriately deleted. 9. Which statement is the best example of a circumstance where an Amazon Elastic Compute Cloud (Amazon EC2) instance could be replaced effectively with an AWS Lambda function? A small instance that will never need to scale out. A small instance that is notified when an Amazon DynamoDB table is updated, and responds with application programming interface (API) calls to DynamoDB. A large instance that could be replaced with multiple smaller instances running in parallel. A small instance that manages and tracks user authentication as they use an application. 10. Your organization maintains a successful online retail website. Several times a year, you have a huge influx of demand. The level of demand is often unpredictable and is growing with each cycle. Which solution will provide a cost-effective strategy to accommodate the traffic growth and demand? Using metrics gathered from the previous cycle, grow web and application instances by 20% in terms of resource capacity and number, and then place third-party load balancers between each tier that increase in capacity each cycle. Create Auto Scaling groups for the web and application instances and configure both internal and external ELB load balancers to distribute traffic between instances. Create Auto Scaling groups for the web and application instances and configure third-party load balancers between each tier that are configured with increased capacity each cycle. Using metrics gathered from the previous cycle, grow web and application instances by 20% in terms of resource capacity and number, and then place ELB load balancers between each tier. 11. When automated backups are turned on for your DB instance, Amazon RDS automatically performs a full daily snapshot of your data (during your preferred backup window) and captures transaction logs (as updates to your DB instance are made). True False 12. When creating a new AWS account it is good practice to (select all that apply) Do not use the root account for general AWS administration. Delete root user access keys Enable MFA Create an IAM user with Administrator access 13. What is the primary benefit of putting a cache in front of your Amazon Relational Database Service (Amazon RDS) instance? Increased total storage space An extra layer of security between your users and your database Increased speed of writes to your database Increased speed of reads from your database. 14. The most important difference between AWS KMS and AWS CloudHSM is AWS CloudHSM is inherently highly available. AWS KMS provides AWS Cloud Trail integration. AWS CloudHSM offers symmetric encryption. AWS CloudHSM gives you total control over your keys. 15. What does the visibility timeout feature of Amazon SQS do? Prevents multiple consumers from processing the same message at the same time. Prevents future processing attempts on a message that has failed to be processed a set number of times. Sets the maximum amount of time a message can stay in a queue before it expires and is deleted. Prevents multiple consumers from processing messages from the same queue at the same time. 16. Elastic IP addresses Auto Scaling can scale based on which factors? (Select 2) Geography Application Schedule Demand 17. _____ scaling refers to changing an instance's specifications. ______scaling refers to changing the number of instances. Horizontal/Vertical Linear/Lateral Vertical/Horizontal Lateral/linear 18. Within the AWS shared responsibility model, which responsibilities does AWS have? (Select 2) Group of answer choices Providing client-side data encryption and data integrity authentication. Configuration of the operating system, network, and firewall. Management of platform, applications, identity and access management. Securing the hardware, software, facilities, and networks that run all products and services. 19. The State-Sharing pattern involves using as a key-value store to host your user's state information. Amazon DynamoDB Amazon RDS Amazon EMR Amazon Elasticache 20. Amazon RDS instances can scale vertically. Group of answer choices True False 21. Which of the following are true about AWS Lambda? (Select 2) The code it runs is stateless. AWS Lambda can only make API calls to Amazon EC2 instances. When your function finishes, you must instruct AWS Lambda to terminate it or it will keep running. It is compatible with Node.js, Java, Python and c 22. Which service will help you monitor for sudden reliability issues? AWS Config Amazon CloudWatch Amazon Inspector AWS CloudTrail 23. Which of the following storage options have the highest durability? (Select 2) Instance Store Amazon Glacier Amazon S3 Amazon EBS 24. Amazon RDS instances can scale vertically. Group of answer choices True False 25. A launch configuration is A document that formally states one or more permissions. The top-level AWS OpsWorks entity. A template that an Auto Scaling group uses to launch Amazon EC2 instances. A template that launches AWS resources as stacks. 26. What is an AWS Cloud Formation stack? The system that interprets when an application environment is misconfigured. The file that describes resources to be created in a stack. A group of resources that have been created by AWS CloudFormation. The process that interprets CloudFormation stacks in order to create more stacks. 27. in a traditional environment, when you make a capacity decision before you deploy a system, you might end up with expensive idle resources or with the performance implications of limited capacity. Which technique can help you address this in a cloud-based environment? Allow for evolutionary architectures. Scale up and scale down automatically. Lower the risk of architectural change. Test systems at production scale. 28. What happens when an Amazon EC2 instance in an Auto Scaling Group fails the Amazon ELB health check? Nothing An event is triggered to notify the system administrators through SNS. The Amazon EC2 instance is automatically terminated and replaced with a new instance. The Amazon EC2 instance is automatically restarted (without loss of Instance Store data). No answer text provided. 29. An internal load balancer Routes traffic to your EC2 instances in private subnets. Uses SSL/TLS protocol for encrypted connections. None of these answers. Takes requests from clients over the Internet and distributes them across EC2 instances that are registered with the load balancer. 30. When a Spot Instance is marked for termination A termination notice is sent two minutes before termination and is stored in the instance's metadata. The instance terminates abruptly. A termination notice is sent five minutes before termination and is stored in the instance's metadata. An email notification is sent automatically. 31. Static IP addresses designed to be moved between Amazon EC2 instances to enable higher availability are known as Hosted zones Elastic network interfaces Elastic load balancers Elastic IP addresses 32. Which of the following are true about route tables? (Select 3) Route tables can be shared between subnets. Each subnet in a VPC must be associated with a route table. Each subnet can have a maximum of five route tables associated with it. Each VPC is given a route table by default when the VPC is created. 33. Put these storage options in order from "hottest" to "coldest" performance: 1 - Amazon EBS 2- Instance Store 3- Amazon S3 4- Amazon Glacier Group of answer choices 1,2,4,3 2,1,3,4 3,2,1,4 1,2, 3, 4 34. In the "infrastructure as code" philosophy, what is the infrastructure analog for software's source code? JSON/YAML template SLAS The desired infrastructure state Cloud Formation Engine 35. How many security groups can you assign to an Amazon EC2 instance? Only one Security groups are assigned to subnets Depends on the instance type More than one 36. Auto Scaling can scale based on which factors? (Select 2) Geography Application Schedule Demand 37. Which of the following are true about data stored in Amazon S3? (Select 3) Amazon S3 provides server-side encryption via AES-256. Data stored in Amazon S3 is private by default Access to Amazon S3 can be over HTTP or HTTPS. Amazon S3 supports access control lists at the object and prefix levels, but not at the bucket level. 38. What specifies when to increase or decrease the number of instances based on alarms? Scheduled action Auto Scaling group Launch configuration Auto Scaling policy 39. Order the following disaster recovery items based on how they would commonly be implemented over time. 1 - Fully working low-capacity standby on AWS. 2- Add a hot standby in a second AWS Availability Zone or region. 3 - Back up (to Amazon S3) and restore. 4- Pilot Light on AWS for quick recovery. Group of answer choices 3,4,1,2 1,2,3,4 3,4,2,1 3,1,4,2 40. How does an ELB load balancer connect to an Amazon VPC? ELB load balancers are Amazon EC2 instances visible to you and deployed within the subnets of your choice. ELB load balancers are invisible to the VPC; only their network traffic is visible. ELB load balancers connect to the subnets of your choice. 41. Amazon SQS guarantees. that the order in which messages are received is the order in which they will be delivered. False True 42. Which one of the following statements is true? An IAM user: cannot belong to more than one group. has default security credentials. can be assigned a role. must be a person. 43. Servers in a single VPC? Internal ELB Route53 Elastic IP EC2 44. "Subscribe-notify" interactions are used in which Web Architectural Interaction Style? Event-oriented Resource-oriented (RESTful) Method-oriented RPC Message-oriented 45. If a policy explicitly denies a privilege to a role: The privilege will always be denied. The privilege will be denied unless there is another later policy that permits. Privileges cannot be explicitly denied. They are denied by default. They can only be permitted. 46. Which of the following are true about Amazon SNS? (Select 3) Messages cannot be recalled after they are sent Messages are delivered exactly once. Messages are delivered in the same order in which they were received. Amazon SNS is a push notification serice. 47. Which of the following would probably not be a good use case for a NoSQL database? Lookup tables Customer orders Secondary indexes for data stored with hex hashes in Amazon S3 Scoreboards 48. What AWS service can Servers in a single VPC? reduce coupling between Web Servers and Application Internal ELB Route53 Elastic IP EC2 49. Which disaster recovery architectural pattern ensures that the alternate site is regularly verified and keeps costs low? Fully Working Low-Capacity Standby Backup and Restore Multi-Site Active-Active Pilot Light 50. Which of the following are true about Amazon SNS? (Select 3) Messages cannot be recalled after they are sent Messages are delivered exactly once. Amazon SNS is a push notification service. Messages are delivered in the same order in which they were received. 51. Which service will help you easily see an inventory of your AWS resources and configurations? AWS Config Amazon CloudWatch Amazon Inspector AWS CloudTrail 52. What is the RTO for Pilot Light? As long as it takes to fail over As long as it takes to detect the need for disaster recovery and automatically scale up a replacement system For critical load: as long as it takes to fail over; for all other load: as long as it takes to scale further As long as it takes to bring up the infrastructure and restore the system from backups 53. Which of the following are true about Amazon SQS? (Select 2) Each queue must be associated with a minimum of one consumer. Messages are delivered exactly once. Messages are stored redundantly on multiple servers and in multiple data centers. Queues can be created in any region. 54. How can Amazon CloudFront improve data transfer performance? It caches data that has been recently retrieved and delivers it to customers from an edge location instead of Amazon S3. It provides temporary additional storage while an Amazon S3 bucket scales out, and then transfers the data to the bucket when it's large enough. It uses high-speed data links to deliver content to other AWS resources from Amazon S3. It has faster PUT speeds than Amazon S3. 55. Which one of the following is best designed for real-time data processing over large, distributed data streams? Amazon SNS mobile push Amazon Mobile Analytics Amazon Cognito Amazon Kinesis 56. Which disaster recovery architectural pattern offers the smallest RTO/RPO? Multi-Site Active-Active Fully Working Low-capacity Standby Pilot Light Backup and Restore 57. In a Cloud Formation template, what does the "Mappings" section do? It defines the values returned whenever you view your stack's properties. It can control whether certain resources are created or certain properties are assigned a value during stack creation or update. It contains a list of attributes that can define default and allowed values. It allows you to customize a resource's properties based on specified conditions. 58. What are the primary benefits of loosely coupling your components? (Select 3) Increased availability Increased fault tolerance Increased security Increased scalability 59. What is the relationship between RPO/RTO and cost? (Select 2) Group of answer choices The shorter the RPO/RTO, the lower the cost. The longer the RPO/RTO, the faster the recovery. The longer the RPO/RTO, the slower the recovery. The longer the RPO/RTO, the lower the cost.