AWS Quiz Questions PDF

Question: what are the advantages of cloud computing over computing on-premises? Answer: all of the above (avoid large capital purchases / use 0n-demand capacity / go global in mins / increase speed and agility) Question: what is the pricing model that enables AWS customers to pay for resources on an as- needed basis ? Answer: Pay as you go Question: which of these is NOT a cloud computing model ? Answer: System administration as a service Question: True or False? AWS owns and maintains the network-connected hardware required for application services, while you provision and use what you need. Answer: True Question: Which of these is NOT a benefit of cloud computing over on-premises computing ? (select the best ans) Answer: Pay for racking, stacking, and powering servers Question: Which of the following are NOT benefits of AWS Cloud computing? (choose 2 ) Answer: Multiple procurement cycles / High latency Question: Which of the following is a compute service? (Select the best ans) Answer: Amazon EC2 Question: True or False? Cloud computing provides a simple way to access servers, storage, databases, and a broad set of application services over the internet. You own the network- connected hardware required for these services and Amazon Web Services provisions what you need. Answer: False Question: Economies of scale result from _____. (Select the best ans) Answer: having hundred of thousands of customers aggregated in the cloud Question: For certain services like Amazon Elastic Compute Cloud (Amazon EC2) and Amazon Relational Database Service (Amazon RDS), you can invest in reserved capacity. What options are available for Reserved Instances? Answer: AURI NURI PURI Question: Where can a customer go to get more details about Amazon Elastic Compute Cloud (Amazon EC2) billing activity that took the place 3 months ago? Answer: AWS Cost Explorer Question: True or false? To receive the discounted rate associated with Reserved Instances, you must make a full, upfront payment for the term of the agreement Answer: False Question: There is no charge for which of the following? Answer: Inbound data transfer (with some exceptions) Data transfer between services within the same AWS Reg Question: What are the four support plans offered by AWS Support? Answer: Basic, Developer, Business, Enterprise Question: What AWS tool compares the cost of running your application in an on-premises data center to AWS? Answer: Total Cost of Ownership (TCO) calculator Question: As AWS grows, the cost of doing business is reduced and savings are passed back to the customer with lower pricing. What is this optimization called? Answer: Economics of scale Question: True or false? AWS offers a variety of services at no charge, for example, Amazon Virtual Private Cloud (Amazon VPC), AWS Identity and Access Management (IAM), Consolidated Billing, AWS Elastic Beanstalk, automatic scaling, AWS OpsWorks and AWS CloudFormation. However, you might be charged for other AWS services that you use in conjunction with these services Answer: True Question: When are free data transfers applicable across AWS? Answer: Free inbound data transfer for Amazon Elastic Computer Cloud (Amazon EC2) instances Free outbound data transfer between AWS services within the same Region Question: True of false? Unlimited services are available with the AWS Free Tier to new AWS customers for 12 months following their AWS sign-up date. Answer: False Question: What are the benefits of using AWS organizations? (Choose two). Answer: -Provides the ability to create groups of accounts and then attach policies to a group. - Simplifies automating account creation and management by using API's. Question: What aws tool lets you explore AWS services and create an estimate for the cost of your use cases on AWS? (Select the best answer). Answer: AWS Pricing Calculator. Question: Which statement is true about the pricing model on aws? Answer: Storage is typically charged per gigabyte. Question: Which component of the AWS Global Infrastructure does Amazon CloudFront use to ensure low-latency delivery? (Select the best answer) Answer: AWS Edge locations Question: You can run applications and workloads from a region closer to the end users to ______ latency. Answer: Decrease Question: True / False? Networking, storage, compute and databases are examples of service categories that AWS offers. Answer: True Question: Which of these statements about Availability Zones is not true? (Select the best answer) Answer: A data center can be used for more than one availability zone Question: What is true about Regions (Choose two) Answer: A region is a physical location that has multiple availability zones. Each region is located in a separate geographic area Question: Which of the following are geographic areas that host two or more Availability Zones? (Select the best answer) Answer: AWS Regions Question: _____ means the infrastructure has built-in component redundancy and _____ means that resources dynamically adjust to increases or decreases in capacity requirements. Answer: Fault-tolerant, elastic and scalable Question: True or False? Availability Zones within a region are connected through low-latency links. Answer: True Question: AWS highly recommends provisioning your compute resources across _____ availability zones. Answer: Multiple Question: True or False? Edge locations are only located in the same general area as regions. Answer: False Question: In the shared responsibility model, AWS is responsible for providing what? Answer: Security of the cloud Question: In the shared responsibility model, which of the following are examples of "security in the cloud"? Answer: Security group configurations Encryption of data at rest and data in transit Question: Which of the following is the responsibility of AWS under the AWS shared responsibility model? Answer: Maintaining physical hardware Question: When creating an AWS Identity and Access Management (IAM) policy, what are the two types of access that can be granted to a user Answer: AWS Management Console access Programmatic access Question: True or False? AWS Organizations enables you to consolidate multiple AWS accounts so that you can centrally manage them Answer: True Question: Which of the following are best practices to secure your account using AWS Identity and Access Management (IAM)? Answer: Manage access to AWS resources Define fine-grained access rights Question: Which of the following should be done by the AWS account root user? Answer: Change the AWS support plan Question: After initial login, what does AWS recommend as the best practice for the AWS account root user? Answer: Delete the access keys of the AWS root user Question: How would a system administrator add an additional layer of login security to a user's AWS Management Console? Answer: Enable multi-factor authentication Question: True or False? AWS Key Management Service (AWS KMS) enables you to access, audit, and evaluate the configurations of your AWS resources Answer: False Question: with amazon virtual private cloud what is the smallest sized subnet u can have in a vpc Answer: /28 Question: with amazon virtual private cloud what is the max size ip address range u can have in a vpc Answer: /16 Question: Brainpower Answer: Read More Question: you need to allow resources in a private subnet to access the internet. what must be present to enable this access Answer: NAT gateway Question: which aws networking service enables a company to create a virtual network within aws Answer: amazon virtual private cloud Question: true or false, private subnets have direct access to the internet Answer: false Question: which component of aws global infrastructure does amazon cloudfront use to ensure low- latency delivery Answer: aws edge locations Question: which of the following is an optional security control that can be applied at the subnet layer of a vpc Answer: network acl Question: what happens when you use Amazon virtual private cloud to create a new vpc Answer: a main route table is created by default Question: which of the following can be used to protect amazon elastic compute cloud instances hosted in aws Answer: security group- acts as a virtual firewall for your instance to control inbound and outbound traffic Question: when you create a vpc, you assign it to an IPv4 Classless Inter-Domain Routing CIDR block of 10.0.1.0/24 (which has 256 total IP addresses). How many IP addresses are available? Answer: 251 because 5 are reserved Question: Why is AWS more economical than traditional data centers for applications with varying compute workloads Answer: Amazon EC2 instances can be launched on-demand when needed Question: If your project requires monthly reports that iterate through very large amounts of data, which Amazon Elastic Cloud (Amazon EC2) purchasing option should you consider? Answer: Scheduled Reserved Instances Question: What is included in an Amazon Machine Image (AMI)? Answer: All of the above Question: Which Amazon Elastic Compute Cloud (Amazon EC2) feature ensures your instances will not share a physical host with instances from any other customer? Answer: Dedicated Instances Question: Which of the following services is a serverless compute service in AWS? Answer: AWS Lambda Question: What is the service provided by AWS that enables developers to easily deploy and manage applications in the cloud? Answer: AWS Elastic Beanstalk Question: Your web application needs four instances to support study traffic all of the time. On the last day of the month, the traffic triples. What is the most cost-effective way to handle this pattern? Answer: Run for Reserved Instances constantly, then add eight On-Demand Instances on the last day of each month Question: Containers contain an entire operating system True or False? Answer: False Question: Which Amazon EC2 option is best for long-term workloads with predictable usage patterns? Answer: Reserved Instances Question: Which of the following must be specified when launching a new Amazon Elastic Compute Cloud (Amazon EC2) Windows Instance (Choose 2) Answer: Amazon EC2 Instance type Amazon Machine Image (AMI) Question: True or False? Amazon Simple Storage Service (Amazon S3) is an object storage suitable for the storage of flat files like Microsoft Word documents, photos, etc. Answer: True Question: Amazon S3 replicates all objects_______. Answer: in multiple Availability Zones within the same region Question: Which of the the following can be used as a storage class for an object lifecycle policy? Choose 3 Answer: S3 - Infrequent Access Simple Storage Service Glacier S3 - Standard Access Question: The name of a S3 bucket must be unique______________. Answer: worldwide across all AWS accounts Question: You can use Amazon Elastic File System (Amazon EFS) to: Answer: implement storage for Amazon EC2 instances that multiple virtual machines can access Question: Amazon Elastic Block Store (Amazon EBS) is recommended when data _____ and _______. Choose 2 Answer: must be quickly accessible, requiring long-term persistence requires an encryption solution Question: By default, all data stored in Amazon S3 is viewable by the public Answer: False Question: Regarding Amazon S3 Glacier, what is a Vault? Answer: A container for strong archives Question: When you create a bucket in Amazon S3, it is associated with a specific AWS Region Answer: True Question: Which of the following are features of Amazon Elastic Block Store (Amazon EBS)? Choose 2 Answer: Data stored on Amazon EBS in automatically replicated within an Availability Zone. Amazon EBS volumes can be encrypted transparently to workloads on the attached instance Question: You are designing an ecommerce web application that will scale to hundreds of thousands of concurrent users, Which database technology is best suited to hold the session state in this example? Answer: Amazon DynamoDB Question: You need to find an item in Amazon DynamoDB table using an attribute other than item's primary key. Which of the following operations should you use? Answer: Scan Question: In Amazon DynamoDB, what does the query operation enable you to do? Answer: All of the above Question: Which AWS Cloud service is best suited for analyzing your data by using standard structured query language (SQL) and your existing business intelligence (BI) tools Answer: Amazon Redshift Question: In Amazon DynamoDB, an attribute is________. Answer: a fundamental data element Question: Which of the following use cases is appropriate for using Amazon Relational Database Service (Amazon RDS)? Answer: Complex transactions Question: A company has an application, which consists of a.NET layer that connects to a MySQL database. They want to move this application on to AWS and use AWS features such as high availability and automated backups. Which of the following would be an ideal database for this use case Answer: Amazon Aurora Question: If you are developing an application that requires a database with extremely fast performance, fast scalability, and flexibility in the database schema, which service would you consider? Answer: Amazon DynamoDB Question: True of false? Amazon RDS automatically patches the database software and backs up your database, storing the backups for a user-defined retention period and enabling point-in-time recovery Answer: True Question: What should you consider when choosing database type? Answer: All of the above Question: Which of the following is not one of the four areas of the Performance Efficiency pillar of the AWS Well-Architected Framework? Answer: Tranceability Question: Which of the following is a principle when designing cloud-based systems? Answer: Assume everything will fail Question: Which of the following are pillars of the AWS Well-Architected Framework? (Choose three) Answer: Security Operational Excellence Cost Optimization Question: Which design principles are recommended when considering performance efficiency? (Choose 2) Answer: Use serverless architecture Democratize advanced technologies Question: AWS Trusted Advisor provides insight regarding which five categories of an AWS account? Answer: Performance, cost optimization, security, fault tolerance, service limits Question: The AWS Well-Architected Framework is organized into how many pillars? Answer: 5 Question: After you move to the AWS Cloud, you want to ensure that the right security settings are put in place.Which online tool can assist in security compliance? Answer: AWS Trusted Advisor Question: Which of the following is a measure of your system's ability to provide functionality when desired by the user? Answer: Reliability Question: What is defined as the ability for a system to remain operational even if some of the components of that system fail? Answer: Fault Tolerance Question: Which of the following best describes a system that can withstand some measures of degradation, experiences minimal downtime, and requires minimal human intervention Answer: Highly available Question: Which of the following AWS tools help your application scale up or down based on demand? Answer: Amazon EC2 Auto Scaling Elastic Load Balancing Question: Which service would you use to send alerts based on Amazon CloudWatch alarms? Answer: Amazon Simple Notification Service (Amazon SNS) Question: Which of the following are characteristics of Amazon EC2 Auto Scaling? Choose three Answer: Responds to changing conditions by adding or terminating instances Launches instances from a specified Amazon Machine Image (AMI) Enforces a minimum number of running Amazon EC2 instances Question: Which of the following must be configured on an Elastic Load Balancing load balancer to expect incoming traffic Answer: A listener Question: Which of the following elements are used to create an Amazon EC2 Auto Scaling launch configuration? Answer: Amazon Machine Image (AMI) Instance type Amazon Elastic Block Store (Amazon EBS) volumes Question: Which of the following services can help you conflict important metrics from Amazon Relational Database Service (Amazon RDS) and Amazon Elastic Compute Cloud (Amazon EC2) instances? Answer: Amazon CloudTrail Question: Which of the following are elements of an Auto Scaling group (Choose three) Answer: Maximum size Desired capacity Minimum size Question: There is an adult at your company and they need to have a big log of all access to AWS resources in the account. Which of the following services can assist in providing these details? Answer: AWS CloudTrail Question: In Elastic Load Balancing, when the load balancing detects an unhealthy target, which of the following are true (Choose three) Answer: Stops routing traffic to that target Resumes routing traffic when it detects that the target is healthy again Routes traffic to a healthy target Question: What are the three types of load balancers that Elastic Load Balancing offers? (Choose three) Answer: Application Load Balancer Network Load Balancer Classic Load Balancer Question: Advantage of cloud computing over on-premises Answer: All of above Question: AWS pricing model that enables customers to pay for resources on as-needed basis Answer: Pay as you go Question: Which is not a cloud computing model? Answer: System administration as a service Question: AWS maintains and owns the network connected hardware required for application services, while you provision what you need? Answer: True Question: Which is not a benefit of cloud computing over on-premises computing? Answer: Pay for racking, stacking and powering servers Question: Which of the following are NOT benefits of AWS Cloud Computing Answer: High Latency, Multiple Procurement Cycles Question: Which of the following is a compute service? Answer: Amazon EC2 Question: Cloud computing provides a simple way to access services, storage and databases over the internet. You own the network-connected hardware required for the services and AWS provisions what you need? Answer: False Question: Economies of Scale result from? Answer: Having hundreds of thousands of customers aggregated in the cloud Question: Which of these are ways to access AWS Services? Answer: AWS Management Console, AWS Command Line Interface (CLI), Software Development Kits (SDKs) Question: For certain services like EC2 and Amazon RDS you can invest in reserved capacity. What options are available for Reserved Instances? Answer: AURI, NURI, PURI Question: Where can a customer go to get more details about Amazon EC2 billing activity that took place 3 months ago? Answer: AWS Cost Explorer Question: To receive the discounted rate associated with Reserved Instances, you must make a full, upfront payment for the term of the agreement? Answer: False Question: There is no charge for which of the following? Answer: Inbound Data Transfer (with some exceptions), Data transfer between services within same AWS region Question: What are the support plans offered by AWS support? Answer: Basic, developer, business, enterprise Question: What AWS tool lets you explore AWS Services and create and estimate of the cost of your use cases on AWS? Answer: AWS Pricing Calculator Question: As AWS Grows, the cost of doing business is reduced and savings are passed back to the customer with lower pricing. What is this optimization called? Answer: Economies of Scale Question: AWS offers some services at no charge, such as Amazon VPC, AWS IAM, Consolidated billing, AWS Elastic Beanstalk, automatic scaling, AWS OpsWorks and AWS CloudFormation. However, you might be charged for other AWS services that you use in conjunction with these. Answer: True Question: When are free data transfers applicable across AWS? Answer: Free inbound data transfer for EC2 instances, Free outbound data transfer between AWS services within same region Question: Unlimited services are available with the AWS Free Tier to new AWS customers for 12 months following their AWS sign-up? Answer: False Question: Which component of the AWS Global infrastructure does Amazon CloudFront use to ensure low-latency delivery? Answer: AWS edge locations Question: You can run applications and workloads from a region closer to the end users to _____ latency. Answer: Decrease Question: Networking, storage, compute, and database are examples of service categories that AWS offers? Answer: True Question: Which of the following are geographic areas that host two or more availability zones? Answer: AWS Regions Question: ______ means the infrastructure has built-in component redundancy and ______ means that resources dynamically adjust to increases or decreases in capacity requirements. Answer: Fault tolerant, elastic and scalable Question: Availability zones within a region are connected through low-latency links? Answer: True Question: Which of these statements about availability zones is not true? Answer: A data center can be used for more than one availability zone Question: What is true about regions? Answer: Each region is located in a separate geographical area, A region is a physical location that has multiple availability zones Question: AWS highly recommends provisioning your compute resources across _______ availability zones. Answer: Multiple Question: True or False? Edge locations are only located in the same general area as regions? Answer: False Question: In the shared responsibility model, AWS is responsible for providing what? Answer: Security of the Cloud Question: In the shared responsibility model, which of the following are examples of "security IN the cloud"? Answer: Encryption of data at rest and in transit, Security group configurations Question: Which of the following is the responsibility of AWS under the AWS shared responsibility model? Answer: Maintaining physical hardware Question: When creating an AWS IAM policy, what are the two types of access that can be granted to a user? Answer: Programmatic access, AWS Management, Console access Question: AWS Organizations enables you to consolidate multiple AWS Accounts so that you can centrally manage them. Answer: True Question: Which of the following are best practices to secure your account using AWS IAM? Answer: Manage access to AWS resources, Defining fine-grained access rights Question: Which of the following should be done by the AWS account root user? Answer: Change AWS support plan Question: After initial login, what does AWS recommend as the best practice for the AWS account root user? Answer: Delete the access keys of the AWS account root user Question: How would a system administrator ass an additional layer of login security to a users AWS Management Console? Answer: Enable Multi-factor Authentication Question: AWS Key Management Services (AWS KMS) enables you to assess, audit, and evaluate the configurations of your AWS resources? Answer: False Question: With amazon VPC, what is the smallest size subnet you can have in a VPC? Answer: /28 Question: With amazon VPC, what is the maximum size IP address range you can have in a VPC? Answer: /16 Question: You need to allow resources in a sprivate subnet to access the internet. Which of the following must be present to enable this access? Answer: NAT Gateway Question: Which AWS Networking Service enables a company to create a virtual network within AWS? Answer: Amazon VPC Question: Private subnets have direct access to the internet? Answer: False Question: Which component of AWS Global Infrastructure does Amazon CloudFront use to ensure low-latency delivery? Answer: AWS Edge locations Question: Which of the following is an optional security control that can be applied at the subnet layer of a VPC? Answer: Network ACL Question: What happens when you use Amazon VPC to create a new VPC? Answer: A main route table is created by default Question: Which of the following can be used to protect Amazon EC2 instances hosted in AWS? Answer: Security Group Question: You are a solutions architect who works at a large retail company that is migrating its existing infrastructure to AWS. You recommend that they use a custom VPC. When you create a VPC, you assign it to an IPv4 CIDR block of 10.0.1.0/24. How many IP addresses are available? Answer: 251 because 5 are reserved Question: Why is AWS more economical than traditional data centers for applications with varying compute networks? Answer: Amazon EC2 instances can be launched on-demand when needed Question: If your project requires monthly reports that iterate through very large amounts of data, which Amazon EC2 purchasing option should you consider? Answer: Scheduled reserved instances Question: What is included in an Amazon Machine Image (AMI)? Answer: All of the above Question: Which Amazon EC2 feature ensures your instances will not share a physical host with instances from any other AWS customer? Answer: Dedicated Instances Question: Which of the following services is a serverless compute service in AWS?A Answer: WS Lambda Question: What is the service provided by AWS that enables developers to easily deploy and manage applications in the cloud Answer: AWS Elastic Beanstalk Question: Your web application needs four instances to support steady traffic all the time. On the last day of the month, the traffic triples. What is the most cost-effective way to handle this pattern? Answer: Run four reserved instances constantly, then add eight on-demand instances on the last day of the month Question: Containers contain an entire Operating system? Answer: False, they are smaller than virtual machines Question: Which Amazon EC2 option is best for long-term workloads with predictable usage patterns Answer: Reserved Instances Question: Which of the following must be specified when launching a new Amazon EC2 Windows instance Answer: Amazon Machine Image (AMI), Amazon Instance Type Question: Amazon Simple storage service (S3) is an object storage suitable for the storage of flat files like microsoft word documents, photos, etc? Answer: True Question: Amazon S3 replicates all objects ______? Answer: In multiple availability zones within the same region Question: Which of the following can be used as a storage class for an S3 object lifecycle policy? Answer: S3 Infrequent access, Glacier, S3 standard Access Question: The name of an s# bucket must be unique ______. Answer: Worldwide across all AWS accounts Question: You can use Amazon Elastic File System EFS to: Answer: Implement storage for EC2 instances that multiple virtual machines can access at the same time Question: Amazon Elastic Block Store EBS is recommended when data _______ and _______. Answer: Must be quickly accessible, requiring long term persistence, Requires an encryption solution Question: By default, all data stored in Amazon S3 is viewable by the public Answer: False Question: Regarding amazon S3 glacier, what is a vault? Answer: A container for storing archives Question: When you create a bucket in amazon S3, it is associated within a specific AWS Region? Answer: True Question: Which of the following are features of Elastic Block Store EBS? Answer: Amazon EBS volumes persist when the instance is stopped, Data automatically replicated within and availability zone, Can be encrypted upon creation and used by an instance, as if they were not encrypted Question: You are designing an ecommerce web application that will scale to hundreds of thousands of concurrent users, Which database technology is best suited to hold the session state in this example? Answer: Amazon DynamoDB Question: You need to find an item in Amazon DynamoDB table using an attribute other than item's primary key. Which of the following operations should you use? Answer: Scan Question: In Amazon DynamoDB, what does the query operation enable you to do? Answer: All of the above Question: Which AWS Cloud service is best suited for analyzing your data by using standard structured query language (SQL) and your existing business intelligence (BI) tools Answer: Amazon Redshift Question: In Amazon DynamoDB, an attribute is________. Answer: a fundamental data element Question: Which of the following use cases is appropriate for using Amazon Relational Database Service (Amazon RDS)? Answer: Complex transactions Question: A company has an application, which consists of a.NET layer that connects to a MySQL database. They want to move this application on to AWS and use AWS features such as high availability and automated backups. Which of the following would be an ideal database for this use case Answer: Amazon Aurora Question: If you are developing an application that requires a database with extremely fast performance, fast scalability, and flexibility in the database schema, which service would you consider? Answer: Amazon DynamoDB Question: True of false? Amazon RDS automatically patches the database software and backs up your database, storing the backups for a user-defined retention period and enabling point-in-time recovery Answer: True Question: What should you consider when choosing database type? Answer: All of the above Question: Which of the following is not one of the four areas of the Performance Efficiency pillar of the AWS Well-Architected Framework? Answer: Traceability Question: Which of the following is a principle when designing cloud-based systems? Answer: Assume everything will fail Question: Which of the following are pillars of the AWS Well-Architected Framework? Answer: Security, Operational Excellence, Cost Optimization Question: Which design principles are recommended when considering performance efficiency? Answer: Use serverless architecture , Democratize advanced technologies Question: AWS Trusted Advisor provides insight regarding which five categories of an AWS account? Answer: Performance, Cost optimization security, Fault tolerance, Service limits Question: The AWS Well-Architected Framework is organized into how many pillars? Answer: 5 Question: After you move to the AWS Cloud, you want to ensure that the right security settings are put in place.Which online tool can assist in security compliance? Answer: AWS Trusted Advisor Question: Which of the following is a measure of your system's ability to provide functionality when desired by the user? Answer: Reliability Question: What is defined as the ability for a system to remain operational even if some of the components of that system fail? Answer: Fault Tolerance Question: Which of the following best describes a system that can withstand some measures of degradation, experiences minimal downtime, and requires minimal human intervention Answer: Highly available Question: Which of the following AWS tools help your application scale up or down based on demand? Answer: Amazon EC2 Auto Scaling, Elastic Load Balancing Question: Which service would you use to send alerts based on Amazon CloudWatch alarms? Answer: Amazon Simple Notification Service (Amazon SNS) Question: Which of the following are characteristics of Amazon EC2 Auto Scaling? Answer: Responds to changing conditions by adding or terminating instances , Launches instances from a specified Amazon Machine Image (AMI), Enforces a minimum number of running Amazon EC2 instances Question: Which of the following must be configured on an Elastic Load Balancing load balancer to expect incoming traffic Answer: A listener Question: Which of the following elements are used to create an Amazon EC2 Auto Scaling launch configuration? Answer: Amazon Machine Image (AMI), Instance type, Amazon Elastic Block Store (Amazon EBS), Volumes Question: Which of the following services can help you conflict important metrics from Amazon Relational Database Service (Amazon RDS) and Amazon Elastic Compute Cloud (Amazon EC2) instances? Answer: Amazon CloudTrail Question: Which of the following are elements of an Auto Scaling group Answer: Maximum size, Desired capacity, Minimum size Question: There is an adult at your company and they need to have a big log of all access to AWS resources in the account. Which of the following services can assist in providing these details? Answer: AWS CloudTrail Question: In Elastic Load Balancing, when the load balancing detects an unhealthy target, which of the following are true Answer: Stops routing traffic to that target, Resumes routing traffic when it detects that the target is healthy again, Routes traffic to a healthy target Question: What are the three types of load balancers that Elastic Load Balancing offers? Answer: Application Load Balancer, Network Load Balancer, Classic Load Balancer Question: Which of the following is a best practice for adding an additional layer of security when logging into the AWS Management Console? a. Root access permissions b. Multi-factor authentication (MFA) c. Secondary password d. Secondary user name Answer: b. Multi-factor authentication (MFA) Question: Which of the following tasks is the customer's responsibility when creating Amazon VPC security groups? a. Adding rules regarding inbound traffic to the security group b. Choosing the level of physical security for the network c. Ensuring that the security groups are linked to Amazon EC2 d. Selecting an appropriate load balancing strategy for the network routers Answer: a. Adding rules regarding inbound traffic to the security group Question: Which of the following examples best demonstrates the agility that cloud computing offers? a. Protect your data by centralizing your applications in one Availability Zone b. Quickly deploy multi-factor authentication (MFA) to multiple data centers c. Spin up servers in minutes, and shut down servers when you don't need them. d. Increase network throughout with AWS Direct Connect (DX) nodes. Answer: c. Spin up servers in minutes, and shut down servers when you don't need them. Question: Which service provides persistent block storage volumes for use with Amazon EC2 instances? a. Amazon S3 b. Amazon EFS c. Amazon DynamoDB d. Amazon EBS Answer: d. Amazon EBS Question: What is Amazon Route 53 a. A highly available and scalable Domain Name System (DNS) web service b. A monitoring and management service that collects and tracks metrics c. A fast and flexible nonrelational database service for all applications that need consistent, single-digit millisecond latency at any scale. d. A cloud service solution that establishes private connectivity between AWS and your data center, office, or colocation environment. Answer: a. A highly available and scalable Domain Name System (DNS) web service Question: Users of your services are reporting latency. With on-premises architecture you would notify your Administrator to launch another server to balance the load. How can this be automated using AWS? a. Create six Amazon EC2 instances in different Availability Zones. b. Create a new template using AWS CloudFormation. c. Enable AWS CloudTrail to monitor latency issues. d. Enable an Amazon CloudWatch alarm to trigger a scaling policy. Answer: d. Enable an Amazon CloudWatch alarm to trigger a scaling policy. Question: Which of the following defines the AWS Command Line Interface (AWS CLI)? a. A systematic approach to evaluating and implementing architectures b. Packages that enable access to AWS in a variety of programming languages. c. A suite of utilities that can be launched from a command program in Linux, macOS, or Windows. d. A rich graphical interface to majority of the features offered by AWS. Answer: c. A suite of utilities that can be launched from a command program in Linux, macOS, or Windows. Question: Which service sends notifications or automatically makes changes to the resources being monitored based on rules you established? a. Amazon EC2 b. Amazon CloudWatch c. Elastic Load Balancing d. Amazon Aurora Answer: b. Amazon CloudWatch Question: Which of the following components is included in the value proposition of the AWS Cloud? a. Fully independent development without parameters b. Informal security restrictions c. Physical relocation of your servers d. Massive economies of scale Answer: d. Massive economies of scale Question: Which of the pillars of the well-Architected Framework is defined as the ability to run and monitor systems to deliver business value and to continually improve supporting processes and procedures? a. Performance efficiency b. Security c. Reliability d. Operational excellence Answer: d. Operational excellence Question: Which of the following services provides you with data and actionable insights to monitor your applications, understand and respond to system-wide performance changes, optimize resource utilization, and get a unified view of operational health? a. AWS Cloud9 b. Amazon CloudWatch c. AWS CloudFormation d. AWS CloudTrail Answer: b. Amazon CloudWatch Question: Who is responsible for security of the cloud according to the shared responsibility model? a. AWS b. Customer c. AWS Support d. IAM roles Answer: a. AWS Question: Which of the following AWS services has no additional charge associated with its use? (The resources provisioned within the service may incur costs.) a. Amazon Elastic Computer Cloud (Amazon EC2) b. Amazon Elastic Block Store (Amazon EBS) c. Amazon Simple Storage Service (Amazon S3) d. AWS Identity and Access Management (IAM) Answer: d. AWS Identity and Access Management (IAM) Question: Your company is developing a critical application, and the security of the application is one of the top priorities. Which of the following AWS service will provide recommendations for security optimization for your infrastructure? a. AWS Trusted Advisor b. Amazon CloudWatch c. Amazon Inspector d. Amazon Aurora Answer: a. AWS Trusted Advisor Question: Which of the following use cases is appropriate for Amazon CloudFront (Select Three) a. Schema Generation b. Database Backups c. Auto Scaling d. Static Asset Caching e. Live on-demand video streaming f. Security and encryption Answer: d. Static Asset Caching e. Live on-demand video streaming f. Security and encryption Question: Which parts of the AWS infrastructure support increased resilience? a. Multiple Regions distributed globally b. Multiple Availability Zones within a Region c. Multiple edge locations with a Region d. Multiple AWS Direct Connet (DX) gateways within a data center Answer: b. Multiple Availability Zones within a Region Question: Which category of services includes Amazon S3? a. Security b. Migration c. Storage d. Computing Answer: c. Storage Question: What is Elastic Load Balancing? a. Automatically stopping traffic when targets get overloaded b. Automatically distributing traffic across multiple targets c. Automatically slowing traffic to decrease latency d. Automatically monitoring traffic to ensure that cost are kept beneath a specified threshold Answer: b. Automatically distributing traffic across multiple targets Question: Which of the following is a responsibility of the customer according to the shared responsibility model? a. Physical security of the facilities in which the services operate b. AWS identify and Access management (IAM) c. Protection of the global infrastructure d. Availability of third-party audit reports Answer: b. AWS identify and Access management (IAM) Question: Which component of the AWS global infrastructure supports the caching of content for faster access? a. AWS Direct Connect locations b. Edge locations c. Availability Zones d. Regions Answer: b. Edge locations Question: Which of the following instance types provides you with a significant discount compared to On-Demand Instance pricing? a. Amazon EC2 Instant Instance b. Amazon EC2 Reserved Instance c. Amazon EC2 Dedicated Hosts d. Amazon EC2 Dedicated Instances Answer: b. Amazon EC2 Reserved Instance Question: Which AWS service enable you to repeatedly and predictably provision resources to power your applications? a. AWS CloudFormation b. AWS Cloud Map c. AWS CloudTrail d. Amazon CloudFront Answer: a. AWS CloudFormation Question: Which method would you used to access AWS services through an easy-to-use graphical interface? a. Software Development Kits (AWS SDK) b. AWS EasyLauch c. AWS Command Line Interface (AWS CLI) d. AWS Management Console Answer: d. AWS Management Console Question: Which AWS sevice is a managed DDos protection service that safeguards applications running on AWS? a. Amazon Inspector b. Amazon CloudWatch c. AWS Identity and Access Management d. AWS Shield Answer: d. AWS Shield Question: A company has 70 employees divided into 10 departments. The IT admin wants to customize each departments access to AWS. Which of the following options is most appropriate? a. Make each employee an AWS account root user. b. Create an IAM role for each department, and assign IAM users to the roles. c. Create a temporary role for each employee, and revise their access as needed. d. Create an IAM Group for ach department and assign IAM users to the groups Answer: d. Create an IAM Group for ach department and assign IAM users to the groups Question: How is storage typically priced on AWS Cloud? a. Charged per GB b. Charged by speed of transfer c. Charged by instance type d. Charged per hour or second Answer: a. Charged per GB Question: Which of the following AWS concepts refers to "Established best practices developed through lessons learned by working with customers"? a. Well-Architected Framework b. Reference architecture c. Security of the Cloud d. AWS Trusted Advisor Answer: a. Well-Architected Framework Question: You have am application composed of individual services and you need to route a request to a service based on the content of the request. What type of load balancer should you use? a. Application Load Balancer b. Network Load Balancer c. Classic Load Balancer d. VPN Load Balancer Answer: a. Application Load Balancer Question: You have been tasked with distributing a newsletter that will be pushed out to administrators by email. Which of the following is the best solution? a. Route the newsletters to an Amazon ElastiCache store b. Create a topic in Amazon Simple Notification Service (Amazon SNS) that administrators can subscribe to. c. Store the letters in an Amazon S3 bucket and distribute them with AWS CloudTrail d. Create a messaging queue in Amazon CloudFront Answer: b. Create a topic in Amazon Simple Notification Service (Amazon SNS) that administrators can subscribe to. Question: Which of the following options describes the most common AWS billing model? a. Annual Billing b. Pay in Advance c. Daily Billing d. Pay as you Go Answer: d. Pay as you Go Question: What are the benefits of using Amazon EC2 instances compared to physical servers in your infrastructure? (Select two) a. The ability to have different storage requirements b. Resizible c. The ability to and additional RAM d. Automatic automated backups e. Pay only for the capacity you use Answer: a. The ability to have different storage requirements e. Pay only for the capacity you use Question: Which components of the AWS infrastructure can be described as multiple, isolated locations within on geographic area? a. S3 Buckets b. Availability Zones c. Regions d. Edge Locations Answer: b. Availability Zones Question: Which of the following statements is true of Amazon Virtual Private Clouds (VPC)? a. Each AWS account can have one VPC associated with in b. You can create many subnets in a VPC though fewer is recommended to limit complexity c. Each VPC is a private, dedicated network connected from you premises to AWS d. A VPC acts as a physical firewall to your cloud infrastructure Answer: b. You can create many subnets in a VPC though fewer is recommended to limit complexity Question: You have an application composed of individual services. You need to route a request to a service based on the content of the request. Which service would you use? a. Elastic Load Balancing b. EC2 Auto Scaling c. Amazon Route S3 d. AWS CloudTrail Answer: a. Elastic Load Balancing Question: What is the first step in getting started with AWS Lambda? a. Pay for estimated computer time b. Deploy an OS image c. Provision EC2 instances d. Upload your code Answer: d. Upload your code Question: Which of the following statements best describes Amazon CloudFront? a. Provides topics for high-throughout, push-based, many to many messaging b. Provides a common language for you to describe and provision all the infrastructure resources in you cloud environmnet c. Speeds up the delivery of your content to viewers across the globe. d. Provides you with data and actionable insights to monitor your applications Answer: c. Speeds up the delivery of your content to viewers across the globe. Question: Which of the following is NOT a pillar of the AWS Well-Architected Framework? a. Cost Optimization b. Operational Excellence c. Persistence d. Security Answer: c. Persistence Question: Your web application requires temporary authorization to use AWS services. Which IAM entity should be used? a. Group b. MFA c. Role d. User Answer: c. Role Question: Which of the following is a managed Distribution Denial of Service (DDoS) protection service? a. AWS Trusted Advisor b. AWS Shield c. AWS Identity and Access Management d. Amazon Inspector Answer: b. AWS Shield Question: Which of the following statements best describes AWS Trusted Advisor? a. A tool that estimates savings when using AWS and provides a detailed set of reports b. A tool that helps customers estimate their monthly AWS bill more efficiently c. A tool the provides you real time guidance to help you provision your resources following AWS best practices. d. A tool that enables you to view and analyze your costs and usage. Answer: c. A tool the provides you real time guidance to help you provision your resources following AWS best practices. Question: There is a requirement to launch a new database in AWS where the customer assumes the responsibility and management of the guest operating system, including updates and security patches. Which of the following services should the customer use? a. Amazon DocumentDB b. Amazon DynamoDB c. Amazon Aurora d. Amazon EC2 Answer: d. Amazon EC2 Since you have more control over your EC2 instance, you can install any database that you prefer and manage its guest operating system, including the required updates and security patches. You can also choose an AMI with a pre-installed database (such as PostgreSQL or MySQL) in the Amazon EC2 Dashboard to save your time. Hence, the correct answer is Amazon EC2. Question: Which of the following is true regarding Elastic Load Balancing? a. It automatically increases or decreases the number of instances as the demand of your application changes b. It translates domain names into numeric IP addresses that Amazon EC2 instances use to connect to each other. c. It distributes incoming application traffic across multiple targets such as Amazon EC2 instances, in multiple Availability Zones. d. It is a virtual server that allows you to run applications in the AWS Cloud Answer: c. It distributes incoming application traffic across multiple targets such as Amazon EC2 instances, in multiple Availability Zones. It automatically distributes incoming application traffic across multiple targets, such as Amazon EC2 instances, containers, IP addresses, and Lambda functions. It can handle the varying load of your application traffic in a single Availability Zone or across multiple Availability Zones. Question: What are the things that you can implement to improve the security of your Identity and Access Management (IAM) users? (Select TWO) a. Configure a strong password policy for your users b. Block incoming traffic via network ACL c. Enable Multi-Factor Authentication (MFA) d. Enable AWS Mobile Push Notification Answer: c. Enable Multi-Factor Authentication (MFA) Question: Which of the following is a key financial benefit of migrating systems hosted on your on- premises data center to AWS? a. Opportunity to replace upfront capital expenses (CAPEX) with low variable costs b. Opportunity to replace upfront operational expenses (OPEX) with low variable operational expenses (OPEX) c. Opportunity to replace variable capital expenses (CAPEX) with low upfront costs. d. Opportunity to replace variable operational expenses (OPEX) with low upfront capital expenses (CAPEX) Answer: a. Opportunity to replace upfront capital expenses (CAPEX) with low variable costs Question: A company is designing a new cloud architecture for its mission-critical application in AWS which must be highly-available. Which of the following is the recommended pattern to meet this requirement? a. Make sure that each component of the application is high bandwidth and low- latency network connectivity using ENI's b. Deploy an Amazon EC2 Spot Fleet with a diversified allocation strategy. c Adopt a monolithic application architecture d. Using multiple Availability Zones to ensure that the application can handle the failure of any single component. Answer: d. Using multiple Availability Zones to ensure that the application can handle the failure of any single component. Question: A company which has a basic support plan needs resources to deploy, test, and improve their AWS environment. Which of the following can they use for free? a. Technical Account Manager b. AWS online documentation, whitepapers, blogs and support forums c. AWS Support API for programmatic case management d. In-person classes with an accredited AWS instructor Answer: b. AWS online documentation, whitepapers, blogs and support forums Question: Which of the following is a key design principle when running an application in AWS? a. Logical coupling b. Semantic coupling c. Loose coupling d. Tight coupling Answer: c. Loose coupling Question: Which of the following Amazon EC2 instance purchasing options can help you address compliance requirements and reduce costs by allowing you to use your existing server-bound software licenses? a. Reserved Instance b. On-Demand Instance c. Dedicated Instance d. Dedicated Host Answer: d. Dedicated Host Question: Which AWS services should you use to store rapidly changing data with low read and write latencies? (Select TWO) a. Amazon S3 b. Amazon RDS c. Amazon AppStream 2.0 d. Amazon EBS d. AWS Snowball Answer: b. Amazon RDS d. Amazon EBS Data that must be updated very frequently might be better served by a storage solution with lower read / write latencies, such as Amazon EBS volumes, Amazon RDS or other relational databases, or Amazon DynamoDB. Question: Which service should a company use to centrally manage policies and consolidate billing across multiple AWS accounts? a. AWS Organizations b. AWS Trusted Advisor c. AWS Budgets d. AWS Config Answer: a. AWS Organizations AWS Organizations helps you centrally govern your environment as you grow and scale your workloads on AWS. Whether you are a growing startup or a large enterprise, Organizations helps you to centrally manage billing; control access, compliance, and security; and share resources across your AWS accounts. Question: Which of the following can you use to connect your on-premises data center and your cloud architecture in AWS? (Select TWO) a. VPC Peering b. NAT Gateway c. Virtual Private Gateway (VPC) d. Egress-Only Internet Gateway e. Amazon Route 53 Answer: c. Virtual Private Gateway (VPC) e. Amazon Route 53 An Amazon VPC VPN connection can link your data center (or network) to your Amazon Virtual Private Cloud (VPC). A customer gateway is the anchor on your side of that connection. It can be a physical or software appliance. The anchor on the AWS side of the VPN connection is called a virtual private gateway. Amazon Route 53 is a highly available and scalable cloud Domain Name System (DNS) web service. It is designed to give developers and businesses an extremely reliable and cost-effective way to route end users to Internet applications by translating names like www.tutorialsdojo.com into the numeric IP addresses like 192.0.2.1 that computers use to connect to each other. Question: You need to launch a new EC2 Instance for a beta program which is scheduled to change its instance family, operating system and tenancy exactly 3 months after its trial period. Which type of Reserved Instance (RI) should you use? a. Zonal RI b. Standard RI c. Scheduled RI d. Convertible RI Answer: d. Convertible RI Convertible Reserved Instances (RI) provide you with a significant discount (up to 54%) compared to On-Demand Instances and can be purchased for a 1-year or 3- year term. Purchase Convertible Reserved Instances if you need additional flexibility, such as the ability to use different instance families, operating systems, or tenancies over the Reserved Instance term. Question: Which among the options below is a highly available and scalable cloud Domain Name System (DNS) web service in AWS? a. Lighttail b. Active Directory Domain Service c. Rekcognition d. Route 53 Answer: d. Route 53 Is a highly available and scalable cloud Domain Name System (DNS) web service. It is designed to give developers and businesses an extremely reliable and cost-effective way to route end users to Internet applications by translating names like www.tutorialsdojo.com into the numeric IP addresses like 192.0.2.1 that computers use to connect to each other. Amazon Route 53 is fully compliant with IPv6 as well Question: Which of the following shares a collection of offerings to help you achieve specific business outcomes related to enterprise cloud adoption through paid engagements in several specialty practice areas? a. Concierge Support b. AWS Technical Account Manager c. AWS Professional Services d. AWS Enterprise Support Answer: c. AWS Professional Services Shares a collection of offerings to help you achieve specific outcomes related to enterprise cloud adoption. Each offering delivers a set of activities, best practices, and documentation reflecting our experience supporting hundreds of customers in their journey to the AWS Cloud. AWS Professional Services' offerings use a unique methodology based on Amazon's internal best practices to help you complete projects faster and more reliably while accounting for evolving expectations and dynamic team structures along the way. It created the AWS Cloud Adoption Framework (AWS CAF) to help organizations design and travel an accelerated path to successful cloud adoption. Question: Which of the following best describes what CloudWatch is? a. An automated security assessment service b. A metric repository c. An audit service that records all API calls made to your AWS account d. A rules repository Answer: b. A metric repository Question: A company is currently using an On-Demand EC2 instance for their application which they plan to migrate to a Reserved EC2 Instance to save on cost. Which of the following is the most cost- effective option if the application being hosted would be used for more than 3 years? a. All upfront Convertible Reserved Instance pricing for a 1 year term b. No upfront Standard Reserved Instance pricing for a 1 year term that is renewed every year. c. No Upfront Convertible Reserved Instance pricing for a 3 year term d. All Upfront, Standard Reserved Instance pricing for a 3 year term Answer: d. All Upfront, Standard Reserved Instance pricing for a 3 year term Question: A company is using Amazon S3 to store their static media contents such as photos and videos. Which of the following should you use to provide specific users access to the bucket? a. Security Group b. SSH Key c. Bucket Policy d. Network Access Control List Answer: c. Bucket Policy Question: Among the following services, which is the most suitable one to use to store the results of I/O-intensive SQL database queries to improve application performance? a. AWS Greengrass b. Amazon CloudFront c. Amazon DynamoDB Accelerator (DAX) d. Amazon ElasticCache Answer: d. Amazon ElasticCache Amazon ElastiCache offers fully managed Redis and Memcached. Seamlessly deploy, run, and scale popular open source compatible in-memory data stores. With this service, you can build data-intensive apps or improve the performance of your existing apps by retrieving data from high throughput and low latency in-memory data stores. In- memory caching improves application performance by storing critical pieces of data in memory for low-latency access. Cached information may include the results of I/O-intensive database queries or the results of computationally-intensive calculations. Question: Which of the following Cost Management Tools allows you to track your Amazon EC2 Reserved Instance (RI) usage and view the discounted RI rate that was charged to your resources? a. AWS Systems Manager b. AWS Budgets c. AWS Cost and Usage report d. AWS Cost Explorer Answer: c. AWS Cost and Usage report This service is your one-stop-shop for accessing the most granular data about your AWS costs and usage. You can also load your cost and usage information into Amazon Athena, Amazon Redshift, AWS QuickSight, or a tool of your choice. Question: A company is planning to launch a new system in AWS but they do not have an employee who has an AWS-related expertise. Which of the following can help the company to design, architect, build, migrate, and manage their workloads and applications on AWS? a. AWS Partner Network Consulting Partners b. AWS Partner Network Technology Partners c. AWS Marketplace d. Technical Account Management Answer: a. AWS Partner Network Consulting Partners The AWS Partner Network (APN) is focused on helping partners build successful AWS-based businesses to drive superb customer experiences. This is accomplished by developing a global ecosystem of Partners with specialties unique to each customer's needs. There are two types of APN Partners: 1. APN Consulting Partners 2. APN Technology Partners Question: A company is planning to adopt a hybrid cloud architecture with AWS. Which of the following can they use to assist them in estimating their costs? (Select TWO) a. AWS Cost Explorer b. Consolidated Billing c. AWS Simple Monthly Calculator d. Cost Allocation Tag e. AWS Total Cost of Ownership (TCO) Calculator Answer: c. AWS Simple Monthly Calculator e. AWS Total Cost of Ownership (TCO) Calculator Question: Which of the following is true on how AWS lessens the time to provision your IT resources? a. It provides various ways to programmatically provision IT resources b. It provides an AI-powered IT ticketing platform for fulfilling resource requests c. It provides express service to deliver your servers to you data centers faster d. It provides an automated system of requesting and fulfilling IT resources from third-party vendors. Answer: a. It provides various ways to programmatically provision IT resources With the cloud, businesses no longer need to plan for and procure servers and other IT infrastructure weeks or months in advance. Instead, they can instantly spin up hundreds or thousands of servers in minutes and deliver results faster. AWS provides you various ways and tools to programmatically provision IT resources such as AWS CLI, AWS API and the web-based AWS Management Console. Question: Which of the following are the things that Amazon CloudWatch Logs can accomplish? (Select TWO) a. Adjust the retention policy for each log group b. Create alarms that automatically stop, terminate, reboot, or recover your EC2 instances. c. Store your log data at absolutely no charge d. Record AWS Management Console actions and API calls e. Monitor application logs from Amazon EC2 Instances. Answer: a. Adjust the retention policy for each log group e. Monitor application logs from Amazon EC2 Instances. You can use Amazon CloudWatch Logs to monitor, store, and access your log files from Amazon Elastic Compute Cloud (Amazon EC2) instances, AWS CloudTrail, Route 53, and other sources. CloudWatch Logs enables you to centralize the logs from all of your systems, applications, and AWS services that you use, in a single, highly scalable service Question: Which of the following is an advantage of using managed services like RDS, ElastiCache, and CloudSearch in AWS? a. Simplifies all of your OS patching and backup activities to help keep your resources current and secure b. Better performance than customer-managed services such as EC2 instances. c. Automatically scales the capacity without any customer intervention d. Frees up the customer from the task of choosing and optimizing the underlying instance type and size of the service Answer: b. Better performance than customer-managed services such as EC2 instances. Question: Which of the following is capable of inspecting your AWS environment and makes recommendations for saving money, improving system performance and reliability, or closing security gaps? a. AWS Cost Explorer b. AWS Trusted Advisor c. AWS Inspector d. AWS Budgets Answer: b. AWS Trusted Advisor This is an online tool that provides you real-time guidance to help you provision your resources following AWS best practices. It inspects your AWS environment and makes recommendations for saving money, improving system performance and reliability, or closing security gaps. Cost Optimization Security Fault Tolerance Performance Service Limits Question: Which among the options below can you use to launch a new Amazon RDS database cluster to your VPC? (Select TWO) a. AWS CloudFormation b. AWS CodePipeline c. AWS Management Console d. AWS Concierge e. AWS Systems Manager Answer: a. AWS CloudFormation c. AWS Management Console You can launch a new RDS database cluster using the AWS Management Console, AWS CLI, and AWS CloudFormation. The AWS Management Console provides a web-based way to administer AWS services. You can sign in to the console and create, list, and perform other tasks with AWS services for your account. These tasks might include starting and stopping Amazon EC2 instances and Amazon RDS databases, creating Amazon DynamoDB tables, creating IAM users, and so on. The AWS Command Line Interface (CLI), on the other hand, is a unified tool to manage your AWS services. Question: A company is in the process of choosing the most suitable AWS Region to migrate their applications. Which of the following factors should they consider? (Select TWO) a. Potential volume discounts for the specific AWS Region b. Proximity of your end-users for on-site visits to your on- premises data center c. Enhance customer experiences by reducing latency to users d. Support country-specific data sovereignty compliance requirements Answer: c. Enhance customer experiences by reducing latency to users d. Support country- specific data sovereignty compliance Question: For security audit, a company needs to download the compliance-related documents in AWS such as ISO certifications, Payment Card Industry (PCI), and Service Organization Control (SOC) reports. Which of the following should they use to retrieve these files? a. AWS Trusted Advisor b. AWS Certificate Manager c. AWS Artifact d. AW CloudTrail Answer: c. AWS Artifact This service is your go-to, central resource for compliance-related information that matters to you. It provides on-demand access to AWS' security and compliance reports and select online agreements. Reports available in AWS Artifact include our Service Organization Control (SOC) reports, Payment Card Industry (PCI) reports, and certifications from accreditation bodies across geographies and compliance verticals that validate the implementation and operating effectiveness of AWS security controls. Agreements available in AWS Artifact include the Business Associate Addendum (BAA) and the Nondisclosure Agreement (NDA). Question: Which of the following below are the benefits of using Consolidated billing in AWS? (Select TWO) a. Consolidate together the billing and payment of both AWS accounts and Amazon Internet Service b. Consolidate using the bills from multiple AWS accounts for only $1 every month c. You get one bill for multiple accounts d. Allow member account to pay the charges of all the master accounts e. Share the volume pricing and Reserved Instance discounts by combining the usage across all accounts in the organization Answer: c. You get one bill for multiple accounts e. Share the volume pricing and Reserved Instance discounts by combining the usage across all accounts in the organization Question: Which of the following allows you to categorize and track your AWS costs on a detailed level? a. Amazon Aurora Backtrack b. Consolidated Billing c. AWS Budgets d. Cost Allocation tags Answer: d. Cost Allocation tags A tag is a label that you or AWS assigns to an AWS resource. Each tag consists of a key and a value. A key can have more than one value. You can use tags to organize your resources, and cost allocation tags to track your AWS costs on a detailed level. After you activate cost allocation tags, AWS uses these tags to organize your resource costs on your cost allocation report, to make it easier for you to categorize and track your AWS costs. AWS provides two types of cost allocation tags, an AWS generated tags and user-defined tags. AWS defines, creates, and applies the AWS generated tags for you, and you define, create, and apply user-defined tags. You must activate both types of tags separately before they can appear in Cost Explorer or on a cost allocation report. Question: Which of the following allows you to set coverage targets and receive alerts when your utilization drops below the threshold you define? a. AWS Trusted Advisor b. AWS Cost Explorer c. Amazon CloudWatch Billing Alarms d. AWS Budgets Answer: d. AWS Budgets AWS Budgets gives you the ability to set custom budgets that alert you when your costs or usage exceed (or are forecasted to exceed) your budgeted amount. You can also use AWS Budgets to set reservation utilization or coverage targets and receive alerts when your utilization drops below the threshold you define. Reservation alerts are supported for Amazon EC2, Amazon RDS, Amazon Redshift, Amazon ElastiCache, and Amazon Elasticsearch reservations. Question: Which AWS service should you use if you need to launch a highly scalable MySQL database? a. Amazon DynamoDB b. Amazon Aurora c. Amazon Redshift d. Amazon ElastiCache Answer: b. Amazon Aurora This service is a MySQL and PostgreSQL-compatible relational database built for the cloud, that combines the performance and availability of traditional enterprise databases with the simplicity and cost-effectiveness of open source databases. Question: What is the minimum number of Availability Zones that you should set up for your Application Load Balancer in order to create a highly available architecture? a. 3 b. 1 c. 2 d. 4 Answer: c. 2 A load balancer serves as the single point of contact for clients. Clients send requests to the load balancer, and the load balancer sends them to targets, such as EC2 instances, in two or more Availability Zones. At the very minimum, you have to select at least two Availability Zones from your VPC. To configure your load balancer, you have to create target groups and then register targets with your target groups. You also create listeners to check for connection requests from clients, and listener rules to route requests from clients to the targets in one or more target groups. Question: A company has web servers running on Amazon EC2 instances that access a RESTful API hosted on their on-premises data center. What kind of architecture is the company using? a. Software as a Service (SaaS) b. Serverless architecture c. Platform as a Service (PaaS) d. Hybrid architecture Answer: d. Hybrid architecture Since the company has web servers running on Amazon EC2 instances that access a RESTful API hosted on their on-premises data center, they are considered to be using a hybrid cloud computing deployment model. Hence, the correct answer is Hybrid architecture Question: _________ is one of the components of AWS Global Infrastructure which consists of one or more discrete data centers each with redundant power, networking, and connectivity, and housed in separate facilities. a. Availability Zone b. VPC c. Edge location d. AWS Region Answer: a. Availability Zone The AWS Cloud infrastructure is built around AWS Regions and Availability Zones. An AWS Region is a physical location in the world where we have multiple Availability Zones. Availability Zones consist of one or more discrete data centers, each with redundant power, networking, and connectivity, housed in separate facilities. Question: Which of the following cloud architecture principles below is followed if you distribute your workloads across multiple Availability Zones in AWS as well as using Amazon RDS Multi-AZ? a. Design for failure b. Decouple your components c. Think parallel d. Implement elasticity Answer: a. Design for failure Question: You need to host a new Microsoft SQL Server database in AWS for an urgent project. Which AWS services should you use to meet this requirement? (Select TWO) a. Amazon Relational Database Service (Amazon RDS) b. Amazon EC2 c. Amazon Redshift d. Amazon Aurora Backtrack e. Amazon Aurora Answer: a. Amazon Relational Database Service (Amazon RDS) b. Amazon EC2 Amazon Web Services offers you the flexibility to run Microsoft SQL Server for as much or as little time as you need and select from a number of versions and editions. SQL Server on Amazon Elastic Compute Cloud (Amazon EC2) and Amazon Elastic Block Store (Amazon EBS) gives you complete control over every setting, just like when it's installed on-premises. Amazon Relational Database Service (Amazon RDS) is a fully managed service that takes care of all the maintenance, backups, and patching for you Question: Which statement below is correct regarding the components of the AWS Global Infrastructure? a. An edge location contains multiple AWS Regions b. An Availability Zone contains multiple AWS Regions c. An AWS Region contains multiple Availability Zones d. An Availability Zone contains edge locations Answer: c. An AWS Region contains multiple Availability Zones Question: In AWS Trusted Advisor, which of the following options are included among the five categories being considered to analyze your AWS environment and provide the best practice recommendations? (Select TWO) a. Instance Usage b. Fault Tolerance c. Performance d. Infrastructure e. Storage Capcity Answer: b. Fault Tolerance c. Performance This is an online tool that provides you real-time guidance to help you provision your resources following AWS best practices. It inspects your AWS environment and makes recommendations for saving money, improving system performance and reliability, or closing security gaps. Cost Optimization Security Fault Tolerance Performance Service Limits Question: Which of the following is true regarding the Developer support plan in AWS? (Select TWO) a. Full access to the AWS Support API b. Recommended if you have business and /or mission critical workloads in AWS c. Has access to the full set of Trusted Advisor checks d. No access to the AWS Support API e. Limited access to the 7 Core Trusted Advisor checks Answer: d. No access to the AWS Support API e. Limited access to the 7 Core Trusted Advisor checks Question: A company has hybrid cloud architecture where their on-premises data center interacts with their cloud resources in AWS. Which of the following services in AWS could you use to deploy a web application to servers running on-premises? (Select TWO) a. AWS CloudFormation b. AWS OpsWorks c. AWS Elasitc Beanstalk d. AWS Batch e. AWS CodeDeploy Answer: b. AWS OpsWorks e. AWS CodeDeploy OpsWorks - AWS OpsWorks is a configuration management service that helps customers configure and operate applications, both on-premises and in the AWS Cloud, using Chef and Puppet. CodeDeploy - AWS CodeDeploy automates code deployments to any instance, including Amazon EC2 instances and instances running on-premises. AWS CodeDeploy makes it easier to rapidly release new features, avoids downtime during application deployment, and handles the complexity of updating applications. Question: Users from different parts of the globe are complaining about the slow performance of the newly launched photo-sharing website in loading their high-resolution images. Which combination of AWS services should you use to serve the files with lowest possible latency? (Select TWO) a. Amazon Glacier b. AWS Storage Gateaway c. Amazon CloudFront d. Amazon S3 e. Amazon Elastic File System Answer: c. Amazon CloudFront d. Amazon S3 You can configure your application to deliver static content and decrease the end-user latency using Amazon S3 and Amazon CloudFront. High- resolution images, videos, and other static files can be stored in Amazon S3. CloudFront speeds up content delivery by leveraging its global network of data centers, known as edge locations, to reduce delivery time by caching your content close to your end-users. CloudFront fetches your content from an origin, such as an Amazon S3 bucket, an Amazon EC2 instance, an Amazon Elastic Load Balancing load balancer or your own web server, when it's not already in an edge location. CloudFront can be used to deliver your entire website or application, including dynamic, static, streaming, and interactive content. You can set your Amazon S3 bucket as the origin of your CloudFront web distribution. Question: Which Amazon EC2 instance purchasing option lets you take advantage of unused EC2 capacity in the AWS Cloud and provides up to a 90% discount compared to On-Demand prices? a. Spot Instance b. Convertible Reserved Instance c. Standard Reserved Instance d. Dedicated Host Answer: a. Spot Instance Lets you take advantage of unused EC2 capacity in the AWS cloud. Spot Instances are available at up to a 90% discount compared to On-Demand prices. Question: Which type of Elastic Load Balancer supports path-based routing, host-based routing, and bi-directional communication channels using WebSockets? a. Classic Load Balancer b. Network Load Balancer c. Both Application Load Balancer and Network Load Balancer d. Application Load Balancer Answer: d. Application Load Balancer This is best suited for load balancing of HTTP and HTTPS traffic and provides advanced request routing targeted at the delivery of modern application architectures, including microservices and containers. Operating at the individual request level (Layer 7), Application Load Balancer routes traffic to targets within Amazon Virtual Private Cloud (Amazon VPC) based on the content of the request. Question: "Increase speed and ______" is one of the six advantages of Cloud Computing which refers to the reduction of acquisition time for making new compute resources available to your developers from weeks to just minutes. a. Elasticity b. Reliability c. High Availability d. Agility Answer: d. Agility There are six advantages of using Cloud Computing: 1. Trade capital expense for variable expense 2. Benefit from massive economies of scale 3. Stop guessing capacity 4. Increase speed and agility 5. Stop spending money running and maintaining data centers 6. Go global in minutes Question: Which of the following IAM identities is associated with the access keys that are used in managing your cloud resources via the AWS Command Line Interface (AWS CLI)? a. IAM Policy b. IAM Role c. IAM Group d. IAM User Answer: d. IAM User Access keys are long-term credentials for an IAM user or the AWS account root user. You can use access keys to sign programmatic requests to the AWS CLI or AWS API (directly or using the AWS SDK). Access keys consist of two parts: 1. Access key ID (for example: AKIAIOSTUTORIALSDOJO) 2. Secret access key (for example: wJalrXUtnFEMI/K7MDENG/bTutorialsDojoKEY).

AWS Quiz Questions PDF

Document Details

Tags

Related

Summary

Full Transcript

Upgrade to continue