AWS Cloud Practitioner Practice Questions (CLF-C01) PDF

Chat with Document Download Quiz & Flashcards

Document Details

Uploaded by Deleted User

2024

AWS

Cathal

Tags

AWS Cloud Practitioner cloud computing practice questions cloud technologies

Related

Summary

This document provides practice questions for the AWS Certified Cloud Practitioner exam (CLF-C01). It covers various topics and includes explanations for the correct answers, aiding in exam preparation. The author, Cathal, compiled questions from different sources, ensuring accuracy.

Full Transcript

AWS Certified Cloud Practitioner (CLF-C01) Practice Questions IMPORTANT NOTE: This document covers the AWS Certified Cloud Practitioner exam (CLF-C01), however there is a new version of the exam out now (CLF-C02). I think these questions will still remain useful eve...

AWS Certified Cloud Practitioner (CLF-C01) Practice Questions IMPORTANT NOTE: This document covers the AWS Certified Cloud Practitioner exam (CLF-C01), however there is a new version of the exam out now (CLF-C02). I think these questions will still remain useful even for CLF-C02, tho it’s worth checking out other resources for CLF-C02 too, just to ensure you cover all the bases. Good luck in the exam – Cathal :) 15 July 2024 IMPORTANT NOTE #2: Please can I ask that people stop sending me emails requesting access to this document, the document is clearly already available online for all. I receive many messages every week regarding this. Practice Questions Intro I have included questions mainly taken from this website but also from other sources (such as this website). The answers on the above websites were often incorrect and the discussion sections contained confusing and conflicting information, so I think it is a good idea to compile the correct answers, along with reasoning of why they are the correct answers. I think a good way of revising for any exam is going over past paper questions, for me when I studied for this exam, I’d do 50 questions a day and it eventually stuck after a few weeks. I think I have gotten the correct answers for all the questions, though if you notice any errors or otherwise have any ideas for improvements just let me know at [email protected] I have also removed most of the duplicate questions I could find, there are definitely some duplicates remaining though but I do not have enough time to search for them all. In some cases I’ve left some very similar though not identical questions in place, they may be a bit redundant but I think it is worth getting very familiar with the topics they cover e.g. shared responsibility model, basics of cloud computing and best practices. I’ve included quoted text often in answers, these are normally directly from some AWS literature but not always, sometimes they are from external sources. I have double-checked any non-AWS sources to ensure they are reliable however. Occasionally I may update this document with the most recent information so if you do save your own copy of the document be sure to download a new copy every once in a while. I have also created a guide for the AWS Cloud Practitioner exam, it can be accessed here Click on the comment icon beside the question to see the answers and explanations: Example comment icon → Commented [MC1]: Answers that are correct will be shown in a green outline like this Thanks, Answers that are incorrect will be shown in a red outline Cathal like this Further information will be shown in a blue outline like this 1-50 Commented [MC2]: C “Data configuration (i.e. encrypting data at rest and in 1. Under the shared responsibility model, which of the following is the customer responsible transit) is responsibility of the customer” for? A. Ensuring that disk drives are wiped after use. Commented [MC3]: A B. Ensuring that firmware is updated on hardware devices. C. Ensuring that data is encrypted at rest. “After you activate cost allocation tags, AWS uses the cost allocation tags to organize your resource costs on your D. Ensuring that network cables are category six or higher. cost allocation report, to make it easier for you to categorize and track your AWS costs” 2. Which allows companies to track and categorize spending on a detailed level? Commented [MC4]: C A. Cost allocation tags Compared to block storage, object storage is much newer. B. Consolidated billing With object storage, data is bundled with customizable C. AWS Budgets metadata tags and a unique identifier to form objects. The D. AWS Marketplace metadata tags are a key advantage with object storage — they allow for much better identification and classification of data. 3. Stores objects, provides real-time access to those objects, and offers versioning and lifecycle Example of object storage: Amazon S3 capabilities: Versioning in Amazon S3 is a means of keeping multiple A. Amazon Glacier variants of an object in the same bucket. You can use the B. AWS Storage Gateway S3 Versioning feature to preserve, retrieve, and restore every version of every object stored in your buckets. With C. Amazon S3 versioning you can recover more easily from both D. Amazon EBS unintended user actions and application failures. After versioning is enabled for a bucket, if Amazon S3 receives multiple write requests for the same object simultaneously, it stores all of those objects. 4. What AWS team assists customers with accelerating cloud adoption through paid engagements in any of several specialty practice areas? Answer is NOT EBS because that stores blocks, not objects A. AWS Enterprise Support Block storage is the oldest and simplest form of data B. AWS Solutions Architects storage. Block storage stores data in fixed-sized chunks... C. AWS Professional Services Commented [MC5]: C D. AWS Account Managers “The AWS Professional Services organization is a global team of experts that can help you realize your desired business outcomes when using the AWS Cloud. We work 5. A customer would like to design and build a new workload on AWS Cloud but does not have together with your team and your chosen member of the the AWS-related software technical expertise in-house. Which of the following AWS AWS Partner Network (APN) to execute your enterprise cloud computing initiatives. programs can a customer take advantage of to achieve that outcome? A. AWS Partner Network Technology Partners Our team provides assistance through a collection of B. AWS Marketplace offerings which help you achieve specific outcomes related to enterprise cloud adoption. We also deliver... C. AWS Partner Network Consulting Partners D. AWS Service Catalogue Commented [MC6]: C “APN Consulting Partners are professional services firms that help customers of all types and sizes design, architect, build, migrate, and manage their workloads and applications on AWS, accelerating their journey to the cloud.” --INCORRECT ANSWERS--... 6. Distributing workloads across multiple Availability Zones supports which cloud architecture design principle? Commented [MC7]: C A. Implement automation. Using multiple-AZs removes single points of failure, which B. Design for agility. is part of design for failure (part of ‘Reliability Design C. Design for failure. Principles and Best Practices’) D. Implement elasticity. Each Availability Zone is engineered to be independent from failures in other Availability Zones. An example of a implementation designed for failure: 7. Which AWS services can host a Microsoft SQL Server database? (choose two) A fleet of application servers can be distributed across A. Amazon EC2 multiple Availability Zones and be attached to ELB. B. Amazon Relational Database Service (Amazon RDS) When the EC2 instances of a particular Availability Zone C. Amazon Aurora fail their health checks, ELB stops sending traffic to those D. Amazon Redshift nodes. E. Amazon S3... Commented [MC8]: A, B EC2 can run any database 8. Which of the following inspects AWS environments to find opportunities that can save money for users and also improve system performance? RDS can use Amazon Aurora, PostgreSQL, MySQL, MariaDB, Oracle Database, and Microsoft SQL Server. A. AWS Cost Explorer B. AWS Trusted Advisor --INCORRECT ANSWERS— C. Consolidated billing D. Detailed billing Aurora only supports MySql and PostgreSQL Commented [MC9]: B 9. Which of the following Amazon EC2 pricing models allow customers to use existing server- “AWS Trusted Advisor is an application that draws upon bound software licenses? best practices learned from AWS' aggregated operational A. Spot Instances history of serving hundreds of thousands of AWS customers. Trusted Advisor inspects your AWS B. Reserved Instances environment and makes recommendations for saving C. Dedicated Hosts money, improving system performance, or closing security D. On-Demand Instances gaps.” Commented [MC10]: C 10. Which AWS characteristics make AWS cost effective for a workload with dynamic user “A Dedicated Host is a physical EC2 server dedicated for demand? (Choose two.) your use. Dedicated Hosts can help you reduce costs by A. High availability allowing you to use your existing server-bound software licenses, including Windows Server, SQL Server, and SUSE B. Shared security model Linux Enterprise Server (subject to your license terms), C. Elasticity and can also help you meet compliance requirements.” D. Pay-as-you-go pricing E. Reliability Commented [MC11]: C, D “6 Advantages of Cloud Computing --Trade capital expense for variable expense (Pay-as-you- go model - make payment based on usage only) --Benefit from massive economies of scale --Stop guessing about capacity (i.e. elasticity makes it feasible to add/remove required resources as needed) --Increased speed and agility --Stop spending money running and maintaining data centres... 11. Which service enables risk auditing by continuously monitoring and logging account activity, including user actions in the AWS Management Console and AWS SDKs? Commented [CMG12]: B A. Amazon CloudWatch “CloudTrail - Track user activity and API usage. Helps you B. AWS CloudTrail enable governance, compliance, and operational and risk C. AWS Config auditing of your AWS account. Actions taken by a user, role, or an AWS service are recorded as events in D. AWS Health CloudTrail. Events include actions taken in the AWS Management Console, AWS Command Line Interface, and AWS SDKs and APIs.” 12. Which of the following are characteristics of Amazon S3? (Choose two.) --INCORRECT ANSWERS— A. A global file system B. An object store --CloudWatch Logs - reports on application logs. C. A local file store... D. A network file system Commented [MC13]: B, E E. A durable storage system “S3 is a “global” service (available on every region however it is not truly global because while you can replicate your buckets/objects across regions for reliability 13. Which services can be used across hybrid AWS Cloud architectures? (Choose two.) & disaster recovery purposes, by default S3 objects sit only in one region though they are stored on multiple A. Amazon Route 53 devices across multiple Availability Zones. B. Virtual Private Gateway C. Classic Load Balancer S3 provides developers and IT teams with secure, durable, highly-scalable binary object storage. D. Auto Scaling... E. Amazon CloudWatch default metrics Commented [MC14]: A, B - Route 53: Inbound query capability is provided by Route 53 Resolver Endpoints, allowing DNS queries that originate on-premises to resolve AWS hosted domains. 14. What costs are included when comparing AWS Total Cost of Ownership (TCO) with on- premises TCO? Virtual Private Gateway: Its the anchor of a VPN connection on AWS side. This making it possible for a VPN A. Project management connection to be established between AWS and on B. Antivirus software licensing premises. C. Data center security... D. Software development Commented [MC15]: C “Security and Compliance is a shared responsibility 15. A company is considering using AWS for a self-hosted database that requires a nightly between AWS and the customer. shutdown for maintenance and cost-saving purposes. Which service should the company use? This shared model can help relieve the customer’s operational burden as AWS operates, manages and A. Amazon Redshift controls the components from the host operating system B. Amazon DynamoDB and virtualization layer down to the physical security of C. Amazon Elastic Compute Cloud (Amazon EC2) with Amazon EC2 instance store the facilities in which the service operates. D. Amazon EC2 with Amazon Elastic Block Store (Amazon EBS)... Commented [MC16]: D “Amazon Elastic Block Store (EBS) is an easy to use, high- performance, block-storage service designed for use with Amazon Elastic Compute Cloud (EC2) for both throughput and transaction intensive workloads at any scale. A broad range of workloads, such as relational and non-relational databases, enterprise applications, containerized applications, big data analytics engines, file systems, and media workflows are widely deployed on Amazon EBS.... 16. Which of the following is a correct relationship between regions, Availability Zones, and edge locations? Commented [MC17]: B A. Data centers contain regions. Region is a geographical area that has two or more B. Regions contain Availability Zones. Availability Zones. Each Region is completely independent. C. Availability Zones contain edge locations. Availability Zone (AZ) is an area with either one or more D. Edge locations contain regions. discrete Data Centres (building filled with servers), each with redundant power, networking, and connectivity, housed in separate facilities. If there are more than one 17. Which AWS tools assist with estimating costs? (Choose three.) data centre, they are counted as one AZ because they are located close together. Each Availability Zone is isolated, A. Detailed billing report but the Availability Zones in a Region are connected B. Cost allocation tags through low-latency links. C. AWS Pricing Calculator --NOTES-- D. AWS Total Cost of Ownership (TCO) Calculator E. Cost Estimator --Edge Locations are endpoints used for caching content. They are located in most of the major cities around the... Commented [MC18]: B, C, D 18. Which of the following are advantages of AWS consolidated billing? (Choose two.) B - To forecast your costs, use the AWS Cost Explorer. Use A. The ability to receive one bill for multiple accounts cost allocation tags to divide your resources into groups, B. Service limits increasing by default in all accounts and then estimate the costs for each group. C. A fixed discount on the monthly bill C - To estimate a bill, use the AWS Pricing Calculator D. Potential volume discounts, as usage in all accounts is combined (formerly AWS Simply Monthly Calculator) E. The automatic extension of the master account's AWS support plan to all accounts... Commented [MC19]: A, D AWS Organizations is an account management service 19. Which of the following Reserved Instance (RI) pricing models provides the highest average that lets you consolidate multiple AWS accounts into an savings compared to On-Demand pricing? organization that you create and centrally manage. A. One-year, No Upfront, Standard RI pricing Allows you to: B. One-year, All Upfront, Convertible RI pricing --programmatically create new AWS accounts and allocate C. Three-year, All Upfront, Standard RI pricing resources D. Three-year, No Upfront, Convertible RI pricing --group accounts to organize your workflows --apply policies to accounts or groups for governance --define central configurations and audit requirements... Commented [MC20]: C 20. Compared with costs in traditional and virtualized data centers, AWS has: A. greater variable costs and greater upfront costs. “Standard Reserved Instances provide you with a B. fixed usage costs and lower upfront costs. significant discount compared to On-Demand Instance pricing, and can be purchased for a 1-year or 3-year term. C. lower variable costs and greater upfront costs. Customers have the flexibility to change the Availability D. lower variable costs and lower upfront costs. Zone, the instance size, and networking type of their Standard Reserved Instances. Purchase Convertible Reserved Instances if you need additional flexibility, such as the ability to use different... Commented [CMG21]: D “The cloud allows you to trade high initial CapEx (such as data centers and physical servers) for a variable OpEx model, and only pay for IT as you consume it. Plus, the variable OpEx expenses are much lower than what you would pay to do it yourself because of the massive economies of scale that AWS has created.” 21. A characteristic of edge locations is that they: Commented [MC22]: B A. host Amazon EC2 instances closer to users. The edge locations help to improve performance for your B. help lower latency and improve performance for users. users while lowering the operational burden and cost of C. cache frequently changing data without reaching the origin server. scaling your origin resources. D. refresh data changes daily. “Edge Locations are endpoints used for caching content. They are located in most of the major cities around the world and are specifically used by CloudFront to distribute 22. Which of the following can limit Amazon Storage Service (Amazon S3) bucket access to AWS content closer to end-users to reduce latency.” specific users? A. A public and private key-pair Commented [MC23]: C B. Amazon Inspector You manage access in AWS by creating policies and C. AWS Identity and Access Management (IAM) policies attaching them to IAM identities (users, groups of users, D. Security Groups or roles) or AWS resources. A policy is an object in AWS that, when associated with an identity or resource, defines their permissions. AWS 23. Which of the following security-related actions are available at no cost? evaluates these policies when an IAM principal (user or role) makes a request. A. Calling AWS Support B. Contacting AWS Professional Services to request a workshop Permissions in the policies determine whether the request C. Accessing forums, blogs, and whitepapers is allowed or denied. Most policies are stored in AWS as JSON documents. D. Attending AWS classes at a local university Incorrect answers:... 24. Which of the Reserved Instance (RI) pricing models can change the attributes of the RI as Commented [MC24]: C long as the exchange results in the creation of RIs of equal or greater value? Free Basic support only provides: A. Dedicated RIs --Customer Service and Communities - 24x7 access to B. Scheduled RIs customer service, documentation, whitepapers, and C. Convertible RIs support forums. --AWS Trusted Advisor - Access to the 7 core Trusted D. Standard RIs Advisor checks and guidance to provision your resources following best practices to increase performance and improve security. --AWS Personal Health Dashboard... 25. Which AWS feature will reduce the customer's total cost of ownership (TCO)? A. Shared responsibility security model Commented [MC25]: C B. Single tenancy “Convertible RIs provide a discount and the capability to C. Elastic computing change the attributes of the RI as long as the exchange D. Encryption results in the creation of Reserved Instances of equal or greater value. Like Standard RIs, Convertible RIs are best suited for steady-state usage.” Commented [MC26]: C “In cloud computing, elasticity is defined as "the degree to which a system is able to adapt to workload changes by provisioning and de-provisioning resources in an autonomic manner, such that at each point in time the available resources match the current demand as closely as possible. Some cloud solutions can also be automatically adjusted to meet these needs. This means you can set them up to scale up or down automatically based on certain... 26. Which of the following services will automatically scale with an expected increase in web Commented [MC27]: B traffic? Elastic Load Balancing automatically distributes incoming A. AWS CodePipeline application traffic across multiple targets, such as Amazon B. Elastic Load Balancing EC2 instances, containers, IP addresses, Lambda functions, and virtual appliances. It can handle the varying load of C. Amazon EBS your application traffic in a single Availability Zone or D. AWS Direct Connect across multiple Availability Zones. Elastic Load Balancing offers four types of load balancers that all feature the high availability, automatic scaling, and robust security necessary to make your applications fault tolerant. 27. Where are AWS compliance documents, such as an SOC 1 report, located? A. Amazon Inspector Incorrect answers: B. AWS CloudTrail --A & C -- has nothing to do with web traffic --D-- Direct Connect is a network connection, which is C. AWS Artifact more about just enabling private network traffic between D. AWS Certificate Manager AWS and an on-premises location in the first place Commented [MC28]: C 28. Under the AWS shared responsibility model, which of the following activities are the “AWS Artifact is your go-to, central resource for customer's responsibility? (Choose two.) compliance-related information that matters to you. It A. Patching operating system components for Amazon Relational Database Server provides on-demand access to AWS' security and (Amazon RDS) compliance reports and select online agreements. Reports available in AWS Artifact include our Service Organization B. Encrypting data on the client-side Control (SOC) reports, Payment Card C. Training the data center staff Industry (PCI) reports, and certifications from D. Configuring Network Access Control Lists (ACL) accreditation bodies across geographies and compliance verticals that validate the implementation and operating E. Maintaining environmental controls within a data center effectiveness of AWS security controls. Agreements available in AWS Artifact include the Business Associate Addendum (BAA) and the Nondisclosure Agreement... 29. Which is a recommended pattern for designing a highly available architecture on AWS? Commented [MC29]: B, D A. Ensure that components have low-latency network connectivity. Data configuration is the responsibility of the customer B. Run enough Amazon EC2 instances to operate at peak load. (i.e. encrypting data at rest and in transit) C. Ensure that the application is designed to accommodate failure of any single A network access control list (ACL) is an optional layer of component. security for your VPC that acts as a firewall for controlling D. Use a monolithic application that handles all operations. traffic in and out of one or more subnets. You might set up network ACLs with rules similar to your security groups in order to add an additional layer of security to your VPC. ACLs are the customer’s responsibility.... 30. According to best practices, how should an application be designed to run in the AWS Cloud? A. Use tighly coupled components. Commented [MC30]: C B. Use loosely coupled components. Highly available systems are reliable in the sense that they C. Use infrequently coupled components. continue operating even when critical components fail. They are also resilient, meaning that they are able to D. Use frequently coupled components. simply handle failure without service disruption or data loss, and seamlessly recover from such failure. Commented [MC31]: B “Loose coupling - As application complexity increases, a desirable attribute of an IT system is that it can be broken into smaller, loosely coupled components. This means that IT systems should be designed in a way that reduces interdependencies—a change or a failure in one component should not cascade to other components.” 31. AWS supports which of the following methods to add security to Identity and Access Commented [MC32]: D, E Management (IAM) users? (Choose two.) A. Implementing Amazon Rekognition “IAM Best Practices - To help secure your AWS resources, follow these recommendations for the AWS Identity and B. Using AWS Shield-protected resources Access Management (IAM) service: C. Blocking access with Security Groups --Lock away your AWS account root user access keys --Create individual IAM users D. Using Multi-Factor Authentication (MFA) --Use groups to assign permissions to IAM users E. Enforcing password strength and expiration --Grant least privilege --Get started using permissions with AWS managed policies --Use customer managed policies instead of inline policies 32. Which AWS services should be used for read/write of constantly changing data? (Choose --Use access levels to review IAM permissions two.) --Configure a strong password policy for your users --Enable MFA – These are not physical MFA tokens A. Amazon Glacier typically B. Amazon RDS --Use roles for applications that run on Amazon EC2 C. AWS Snowball instances --Use roles to delegate permissions D. Amazon Redshift --Do not share access keys E. Amazon EFS --Rotate credentials regularly --Remove unnecessary credentials --Use policy conditions for extra security --Monitor activity in your AWS account... 33. What is one of the advantages of the Amazon Relational Database Service (Amazon Commented [MC33]: B, E RDS)?(choose three) A. It simplifies relational database administration tasks. “Data that must be updated very frequently might be best B. It provides 99.99999999999% reliability and durability. served by a storage solution with lower read/write latencies, such as Amazon EBS, Amazon RDS, Amazon EFS, C. It automatically scales databases for loads. Amazon DynamoDB, or relational databases running on D. It enabled users to dynamically adjust CPU and RAM resources. Amazon EC2.” --RDS is a managed service for relational databases like MySQL and MariaDB. Simple and fast to setup and scale. 34. A customer needs to run a MySQL database that easily scales. Which AWS service should... they use? Commented [MC34]: A, C, D A. Amazon Aurora B. Amazon Redshift A - RDS makes it easy to set up, operate, and scale a relational database in the cloud. It provides cost-efficient C. Amazon DynamoDB and resizable capacity while automating time-consuming D. Amazon ElastiCache administration tasks, such as, hardware provisioning, database setup, patching and backups. C - Amazon RDS now supports Storage Auto Scaling 35. Which of the following components of the AWS Global Infrastructure consists of one or more discrete data centers interconnected through low latency links? D - You can scale the compute and memory resources powering your deployment up or down, up to a maximum... A. Availability Zone Commented [MC35]: A B. Edge location C. Region “Amazon Aurora supports MySQL and will automatically D. Private networking grow the size of your database volume as your database storage needs grow, up to a maximum of 64 TB or a maximum you define.” Commented [MC36]: A “An Availability Zone (AZ) is one or more discrete data centers with redundant power, networking, and connectivity in an AWS Region.” 36. Which of the following is a shared control between the customer and AWS? Commented [MC37]: D A. Providing a key for Amazon S3 client-side encryption AWS trains AWS employees, but a customer must train B. Configuration of an Amazon EC2 instance their own employees. C. Environmental controls of physical AWS data centers D. Awareness and training Commented [MC38]: B “Most providers of real-time communications align with 37. How many Availability Zones should compute resources be provisioned across to achieve service levels that provide availability from 99.9% to 99.999%. Depending on the degree of high availability high availability? (HA) that you want, you must take increasingly A. A minimum of one sophisticated measures along the full lifecycle of the B. A minimum of two application. We recommend following these guidelines to achieve a robust degree of high availability: C. A minimum of three --Design the system to have no single point of failure. Use D. A minimum of four or more automated monitoring, failure detection, and failover mechanisms for both stateless and stateful components --Single points of failure (SPOF) are commonly eliminated with an N+1 or 2N redundancy configuration, where N+1 38. One of the advantages to moving infrastructure from an on-premises data center to the is achieved via load balancing among active–active AWS Cloud is: nodes, and 2N is achieved by a pair of nodes in active– standby configuration. A. it allows the business to eliminate IT bills. --AWS has several methods for achieving HA through both B. it allows the business to put a server in each customer's data center. approaches, such as through a scalable, load balanced cluster or assuming an active–standby pair. C. it allows the business to focus on business activities. --Correctly instrument and test system availability. D. it allows the business to leave servers unpatched. --Prepare operating procedures for manual mechanisms to respond to, mitigate, and recover from the failure.... Commented [MC39]: C 39. What is the lowest-cost, durable storage option for retaining database backups for immediate retrieval? “Stop spending money running and maintaining datacenters – Focus on projects that differentiate your A. Amazon S3 business, not the infrastructure. Cloud computing lets you B. Amazon Glacier focus on your own customers, rather than on the heavy lifting of racking, stacking, and powering servers.” C. Amazon EBS D. Amazon EC2 Instance Store Commented [MC40]: A “Amazon Simple Storage Service (Amazon S3) provides 40. Which AWS IAM feature allows developers to access AWS services through the AWS CLI? developers and IT teams secure, durable, highly scalable A. API keys object storage at a very low cost. You can store and retrieve any amount of data, at any time, from anywhere B. Access keys on the web through a simple web service interface. You C. User names/Passwords can write, read, and delete objects containing from zero to 5 TB of data. Amazon S3 is highly scalable, allowing D. SSH keys concurrent read or write access to data by many separate clients or application threads”... Commented [MC41]: B “IAM users can be assigned an access key ID and secret access key for programmatic access to the AWS API (Application Programme Interface), CLI (Command Line Interface), SDK (Software Development Kit), and other development tools. Access keys consist of an access key ID and secret access key, which are used to sign programmatic requests that you make to AWS. If you don't have access keys, you can create them from the AWS Management Console. The... 41. Which of the following is a fast and reliable NoSQL database service? Commented [MC42]: C A. Amazon Redshift “Amazon DynamoDB is a fast and flexible NoSQL database B. Amazon RDS service for any scale. It is a key-value and document C. Amazon DynamoDB database that delivers single-digit millisecond D. Amazon S3 performance at any scale. It's a fully managed, multiregion, multimaster, durable database with built-in security, backup and restore, and in-memory caching for internet-scale applications” 42. What is an example of agility in the AWS Cloud? A. Access to multiple instance types Commented [MC43]: D B. Access to managed services “Agility is the practice of “building in” the ability to change C. Using Consolidated Billing to produce one bill quickly and inexpensively. D. Decreased acquisition time for new compute resources The cloud not only makes these other practices practical but provides agility on its own. Infrastructure can be provisioned in minutes instead of months, and de- 43. Which service should a customer use to consolidate and centrally manage multiple AWS provisioned or changed just as quickly.” accounts? A. AWS IAM Commented [MC44]: B B. AWS Organizations “AWS Organizations helps you centrally manage and C. AWS Schema Conversion Tool govern your environment as you grow and scale your AWS D. AWS Config resources. As an administrator of an organization, you can create accounts in your organization and invite existing accounts to join the organization. Allows you to: --programmatically create new AWS accounts and allocate 44. What approach to transcoding a large number of individual video files adheres to AWS resources architecture principles? --group accounts to organize your workflows --apply policies to accounts or groups for governance A. Using many instances in parallel --define central configurations and audit requirements B. Using a single large instance during off-peak hours --simplify billing by centralising it and using a single C. Using dedicated hardware payment method for all of your account. These account management and consolidated billing capabilities enable D. Using a large GPU instance type you to better meet the budgetary, security, and compliance needs of your business. --control access, manage compliance, coordinate security mechanisms (including restricting the AWS services,... 45. For which auditing process does AWS have sole responsibility? Commented [MC45]: A A. AWS IAM policies B. Physical security It is correct because it is aligned with the reliability Design C. Amazon S3 bucket policies Principles and Best Practices of scaling horizontally. D. AWS CloudTrail Logs “Reliability Design Principles and Best Practices … Scale horizontally: to increase aggregate workload availability. Replace one large resource with multiple small resources to reduce the impact of a single failure on the overall workload. Distribute requests across multiple,... Commented [MC46]: B AWS responsibility “Security of the Cloud” - AWS is responsible for protecting the infrastructure that runs all of the services offered in the AWS Cloud. This infrastructure is composed of the physical hardware, software, networking, and facilities that run AWS Cloud services. 46. Which feature of the AWS Cloud will support an international company's requirement for Commented [MC47]: B low latency to all of its customers? A. Fault tolerance “The AWS Global Infrastructure is built for performance. AWS Regions offer low latency, low packet loss, and high B. Global reach overall network quality. This is achieved with a fully C. Pay-as-you-go pricing redundant 100 GbE fiber network backbone, often D. High availability providing many terabits of capacity between Regions. AWS Local Zones and AWS Wavelength, with our telco providers, provide performance for applications that require single-digit millisecond latencies by delivering 47. Which of the following is the customer's responsibility under the AWS shared responsibility AWS infrastructure and services closer to end-users and 5G connected devices. Whatever your application needs, model? you can quickly spin up resources as you need them, A. Patching underlying infrastructure deploying hundreds or even thousands of servers in B. Physical security minutes.”... C. Patching Amazon EC2 instances Commented [MC48]: C D. Patching network infrastructure “Customer responsibility will be determined by the AWS Cloud services that a customer selects. This determines the amount of configuration work the customer must 48. A customer is using multiple AWS accounts with separate billing. How can the customer take perform as part of their security responsibilities. For example, a service such as Amazon Elastic Compute Cloud advantage of volume discounts with minimal impact to the AWS resources? (Amazon EC2) is categorized as Infrastructure as a Service A. Create one global AWS acount and move all AWS resources to that account. (IaaS) and, as such, requires the customer to perform all of B. Sign up for three years of Reserved Instance pricing up front. the necessary security configuration and management tasks. Customers that deploy an Amazon EC2 instance are C. Use the consolidated billing feature from AWS Organizations. responsible for management of the guest operating... D. Sign up for the AWS Enterprise support plan to get volume discounts. Commented [MC49]: C “AWS Organizations helps you centrally manage and 49. Which of the following is an AWS managed Domain Name System (DNS) web service? govern your environment as you grow and scale your AWS resources. As an administrator of an organization, you can A. Amazon Route 53 create accounts in your organization and invite existing B. Amazon Neptune accounts to join the organization. Allows you to: --programmatically create new AWS accounts and allocate C. Amazon SageMaker resources D. Amazon Lightsail --group accounts to organize your workflows --apply policies to accounts or groups for governance --define central configurations and audit requirements... 50. A customer is deploying a new application and needs to choose an AWS Region. Which of Commented [MC50]: A the following factors could influence the customer's decision? (Choose two.) “Amazon Route 53 is a highly available and scalable cloud A. Reduced latency to users Domain Name System (DNS) web service. It is designed to B. The application's presentation in the local language give developers and businesses an extremely reliable and cost effective way to route end users to Internet C. Data sovereignty compliance applications by translating names like www.example.com D. Cooling costs in hotter climates into the numeric IP addresses like 192.0.2.1 that E. Proximity to the customer's office for on-site visits computers use to connect to each other.” Commented [MC51]: A, C -- Costs of the AWS Services can be different for each region because the cost, taxes, manpower, etc for the physical infrastructure and data centers are different from Region to Region. --Latency depends on physical location. When your application is being accessed by your users, it should be blazing fast. So you need to identify the locations of your target audience and choose the region having a smaller latency for your customers.... 51-100 Commented [MC52]: D “You can use Amazon S3 to host a static website. On a 51. Which storage service can be used as a low-cost option for hosting static websites? static website, individual webpages include static content. A. Amazon Glacier They might also contain client-side scripts. B. Amazon DynamoDB By contrast, a dynamic website relies on server-side C. Amazon Elastic File System (Amazon EFS) processing, including server-side scripts such as PHP, JSP, D. Amazon Simple Storage Service (Amazon S3) or ASP.NET. Amazon S3 does not support server-side scripting, but AWS has other resources for hosting dynamic websites.” 52. Which Amazon EC2 instance pricing model can provide discounts of up to 90%? Commented [MC53]: D A. Reserved Instances B. On-Demand Spot - Up to 90% discount Reserved - Up to 75% discount C. Dedicated Hosts On-demand – Full price D. Spot Instances Dedicated hosts – Higher cost than on-demand Commented [MC54]: B 53. What is the AWS customer responsible for according to the AWS shared responsibility “The customer: model? --assumes responsibility and management of the guest A. Physical access controls operating system (including updates and security patches), B. Data encryption other associated application software as well as the configuration of the AWS provided security group firewall. C. Secure disposal of storage devices --should carefully consider the services they choose as D. Environmental risk management their responsibilities vary depending on the services used, the integration of those services into their IT environment, and applicable laws and regulations. --is responsible for data configuration (i.e. encrypting data 54. Which of the following AWS Cloud services can be used to run a customer-managed at rest and in transit)” relational database? A. Amazon EC2 B. Amazon Route 53 Commented [MC55]: A C. Amazon ElastiCache Key phrase is ‘customer-managed’ D. Amazon DynamoDB EC2 can be used to run a relational database on whatever operating system the EC2 instance is using e.g. Microsoft 55. A company is looking for a scalable data warehouse solution. Which of the following AWS SQL Server running on Microsoft Windows Server 2016. solutions would meet the company's needs? Incorrect Answers: A. Amazon Simple Storage Service (Amazon S3) B. Amazon DynamoDB --DynamoDB is NOSQL type, not a relational database and so is not a correct answer C. Amazon Kinesis D. Amazon Redshift --Route 53 is a DNS service, nothing related to databases... Commented [MC56]: D “With Redshift, you can query and combine exabytes of structured and semi-structured data across your data warehouse, operational database, and data lake using standard SQL. Redshift lets you easily save the results of your queries back to your S3 data lake using open formats, like Apache Parquet, so that you can do additional analytics from other analytics services like Amazon EMR, Amazon Athena, and Amazon SageMaker.” 56. Which statement best describes Elastic Load Balancing? Commented [MC57]: B A. It translates a domain name into an IP address using DNS. “Elastic Load Balancing automatically distributes incoming B. It distributes incoming application traffic across one or more Amazon EC2 application traffic across multiple targets, such as Amazon instances. EC2 instances, containers, IP addresses, Lambda functions, C. It collects metrics on connected Amazon EC2 instances. and virtual appliances. It can handle the varying load of your application traffic in a single Availability Zone or D. It automatically adjusts the number of Amazon EC2 instances to support incoming across multiple Availability Zones. Elastic Load Balancing traffic. offers four types of load balancers that all feature the high availability, automatic scaling, and robust security necessary to make your applications fault tolerant. Elastic Load Balancing scales with web traffic.” 57. Which of the following are valid ways for a customer to interact with AWS services? (Choose two.) Incorrect answers: A. Command line interface --D-- This is related to AutoScaling and not Load Balancing B. On-premises C. Software Development Kits Commented [MC58]: A, C D. Software-as-a-service There are three ways to interact with AWS Services: E. Hybrid --AWS Management Console - Graphical interface to access AWS features) 58. The AWS Cloud's multiple Regions are an example of: --Command Line Interface (CLI) - Lets you control AWS services from command line A. agility. B. global infrastructure. --Software Development Kits (SDK) - Enable you to access C. elasticity. AWS using a variety of popular programming languages D. pay-as-you-go pricing. Commented [MC59]: B Global infrastructure > Regions > Availability Zones 59. Which of the following AWS services can be used to serve large amounts of online video content with the lowest possible latency? (Choose two.) “The AWS Global Cloud Infrastructure is the most secure, extensive, and reliable cloud platform, offering over 200 A. AWS Storage Gateway fully featured services from data centers globally. B. Amazon S3 Whether you need to deploy your application workloads C. Amazon Elastic File System (EFS) across the globe in a single click, or you want to build and deploy specific applications closer to your end-users with D. Amazon Glacier single-digit millisecond latency, AWS provides you the E. Amazom CloudFront cloud infrastructure where and when you need it. With millions of active customers and tens of thousands of 60. Web servers running on Amazon EC2 access a legacy application running in a corporate data partners globally, AWS has the largest and most dynamic... center. What term would describe this model? Commented [MC60]: B, E A. Cloud-native “Amazon CloudFront is a fast content delivery network B. Partner network (CDN) service that securely delivers data, videos, C. Hybrid architecture applications, and APIs to customers globally with low latency, high transfer speeds, all within a developer- D. Infrastructure as a service friendly environment. CloudFront offers the most advanced security capabilities, including field level encryption and HTTPS support, seamlessly integrated with AWS Shield, AWS Web Application Firewall and Route 53 to protect against... Commented [MC61]: C “Hybrid cloud - Mix of public and private cloud” 61. What is the benefit of using AWS managed services, such as Amazon ElastiCache and Amazon Relational Database Service (Amazon RDS)? Commented [MC62]: C A. They require the customer to monitor and replace failing instances. "AWS Managed Services takes care of all of your patching B. They have better performance than customer-managed services. and backup activities to help keep your resources current C. They simplify patching and updating underlying OSs. and secure. When updates or patches are released by OS vendors, AWS Managed Services applies them in a timely D. They do not require the customer to optimize instance type or size selections. and consistent manner to minimize the impact on your business Critical security patches are applied immediately, while 62. Which service provides a virtually unlimited amount of online highly durable object storage? others are applied based on the patch schedule you A. Amazon Redshift request. Backups of Stacks are automated using Amazon Elastic Block Store (EBS) and RDS snapshots, and can be B. Amazon Elastic File System (Amazon EFS) restored in the event of a failure or outage, ensuring C. Amazon Elastic Container Service (Amazon ECS) business continuity.” (https://aws.amazon.com/managed- D. Amazon S3 services/features/) Commented [MC63]: D 63. Which of the following Identity and Access Management (IAM) entities is associated with an “Amazon S3 is object storage built to store and retrieve access key ID and secret access key when using AWS Command Line Interface (AWS CLI)? any amount of data from anywhere on the Internet. It’s a A. IAM group simple storage service that offers an extremely durable, highly available, and infinitely scalable data storage B. IAM user infrastructure at very low costs. C. IAM role … D. IAM policy Size limit is for individual item (5TB) not for the whole S3 capacity, which is unlimited” 64. Which of the following security-related services does AWS offer? (Choose two.) Commented [MC64]: B A. Multi-factor authentication physical tokens Access keys are long-term credentials for an IAM user or B. AWS Trusted Advisor security checks the AWS account root user. You can use access keys to sign programmatic requests to the AWS CLI or AWS API C. Data encryption (directly or using the AWS SDK). D. Automated penetration testing E. Amazon S3 copyrighted content detection Incorrect Answers:... Commented [MC65]: B, C 65. Which AWS managed service is used to host databases? A. AWS Batch --B-- B. AWS Artifact Trust Advisor gives recommendations on performance, service quotas, cost optimisation, security and fault C. AWS Data Pipeline tolerance D. Amazon RDS --C-- "AWS offers you the ability to add a layer of security to your data at rest in the cloud, providing scalable and efficient encryption features. These include:... Commented [MC66]: D “Amazon Relational Database Service (Amazon RDS) makes it easy to set up, operate, and scale a relational database in the cloud. It provides cost-efficient and resizable capacity while automating time-consuming administration tasks such as hardware provisioning, database setup, patching and backups. It frees you to focus on your applications so you can give them the fast performance, high availability, security and compatibility they need.”... 66. Which AWS service provides a simple and scalable shared file storage solution for use with Commented [MC67]: D Linux-based AWS and on-premises servers? A. Amazon S3 “Amazon Elastic File System (Amazon EFS) provides a simple, scalable, fully managed elastic NFS file system for B. Amazon Glacier use with AWS Cloud services and on-premises resources. It C. Amazon EBS is built to scale on demand to petabytes without disrupting applications, growing and shrinking D. Amazon EFS automatically as you add and remove files, eliminating the need to provision and manage capacity to accommodate 67. When architecting cloud applications, which of the following are a key design principle? growth. Amazon EFS is designed to provide the throughput, IOPS, A. Use the largest instance possible and low latency needed for Linux workloads. Throughput B. Provision capacity for peak load and IOPS scale as a file system grows and can burst to C. Use the Scrum development process higher throughput levels for short periods of time to support the unpredictable performance needs of file... D. Implement elasticity Commented [MC68]: D AWS encourages elasticity and not specifically provisioning for peak traffic. 68. Which AWS service should be used for long-term, low-cost storage of data backups?

Use Quizgecko on...
Browser
Open
Browser
Browser