Source: GitHub Kananinirav
Practice Exam 1
AWS allows users to manage their resources using a web based user interface. What is the name of this interface?
- A. AWS CLI.
- B. AWS API.
- C. AWS SDK.
- D. AWS Management Console.
Answer
Which of the following is an example of horizontal scaling in the AWS Cloud?
- A. Replacing an existing EC2 instance with a larger, more powerful one.
- B. Increasing the compute capacity of a single EC2 instance to address the growing demands of an application.
- C. Adding more RAM capacity to an EC2 instance.
- D. Adding more EC2 instances of the same size to handle an increase in traffic.
Answer
You have noticed that several critical Amazon EC2 instances have been terminated. Which of the following AWS services would help you determine who took this action?
- A. Amazon Inspector.
- B. AWS CloudTrail.
- C. AWS Trusted Advisor.
- D. EC2 Instance Usage Report.
Answer
Which of the below options are related to the reliability of AWS? (Choose TWO)
- A. Applying the principle of least privilege to all AWS resources.
- B. Automatically provisioning new resources to meet demand.
- C. All AWS services are considered Global Services, and this design helps customers serve their international users.
- D. Providing compensation to customers if issues occur.
- E. Ability to recover quickly from failures.
Answer
Which statement is true regarding the AWS Shared Responsibility Model?
- A. Responsibilities vary depending on the services used.
- B. Security of the IaaS services is the responsibility of AWS.
- C. Patching the guest OS is always the responsibility of AWS.
- D. Security of the managed services is the responsibility of the customer.
Answer
You have set up consolidated billing for several AWS accounts. One of the accounts has purchased a number of reserved instances for 3 years. Which of the following is true regarding this scenario?
- A. The Reserved Instance discounts can only be shared with the master account.
- B. All accounts can receive the hourly cost benefit of the Reserved Instances.
- C. The purchased instances will have better performance than On-demand instances.
- D. There are no cost benefits from using consolidated billing; It is for informational purposes only.
Answer
A company has developed an eCommerce web application in AWS. What should they do to ensure that the application has the highest level of availability?
- A. Deploy the application across multiple Availability Zones and Edge locations.
- B. Deploy the application across multiple Availability Zones and subnets.
- C. Deploy the application across multiple Regions and Availability Zones.
- D. Deploy the application across multiple VPC’s and subnets.
Answer
What does AWS Snowball provide? (Choose TWO)
- A. Built-in computing capabilities that allow customers to process data locally.
- B. A catalog of third-party software solutions that customers need to build solutions and run their businesses.
- C. A hybrid cloud storage between on-premises environments and the AWS Cloud.
- D. An Exabyte-scale data transfer service that allows you to move extremely large amounts of data to AWS.
- E. Secure transfer of large amounts of data into and out of the AWS.
Answer
A company has an AWS Enterprise Support plan. They want quick and efficient guidance with their billing and account inquiries. Which of the following should the company use?
- A. AWS Health Dashboard.
- B. AWS Support Concierge.
- C. AWS Customer Service.
- D. AWS Operations Support.
Answer
A Japanese company hosts their applications on Amazon EC2 instances in the Tokyo Region. The company has opened new branches in the United States, and the US users are complaining of high latency. What can the company do to reduce latency for the users in the US while minimizing costs?
- A. Applying the Amazon Connect latency-based routing policy.
- B. Registering a new US domain name to serve the users in the US.
- C. Building a new data center in the US and implementing a hybrid model.
- D. Deploying new Amazon EC2 instances in a Region located in the US.
Answer
An organization has a large number of technical employees who operate their AWS Cloud infrastructure. What does AWS provide to help organize them into teams and then assign the appropriate permissions for each team?
- A. IAM roles.
- B. IAM users.
- C. IAM user groups.
- D. AWS Organizations.
Answer
A company has decided to migrate its Oracle database to AWS. Which AWS service can help achieve this without negatively impacting the functionality of the source database?
- A. AWS OpsWorks.
- B. AWS Database Migration Service.
- C. AWS Server Migration Service.
- D. AWS Application Discovery Service.
Answer
Adjusting compute capacity dynamically to reduce cost is an implementation of which AWS cloud best practice?
- A. Build security in every layer.
- B. Parallelize tasks.
- C. Implement elasticity.
- D. Adopt monolithic architecture.
Answer
What are the benefits of having infrastructure hosted in AWS? (Choose TWO)
- A. Increasing speed and agility.
- B. There is no need to worry about security.
- C. Gaining complete control over the physical infrastructure.
- D. Operating applications on behalf of customers.
- E. All of the physical security and most of the data/network security are taken care of for you.
Answer
What is the advantage of the AWS-recommended practice of “decoupling” applications?
- A. Allows treating an application as a single, cohesive unit.
- B. Reduces inter-dependencies so that failures do not impact other components of the application.
- C. Allows updates of any monolithic application quickly and easily.
- D. Allows tracking of any API call made to any AWS service.
Answer
Which of the following helps a customer view the Amazon EC2 billing activity for the past month?
- A. AWS Budgets.
- B. AWS Pricing Calculator.
- C. AWS Systems Manager.
- D. AWS Cost & Usage Reports.
Answer
What do you gain from setting up consolidated billing for five different AWS accounts under another master account?
- A. AWS services’ costs will be reduced to half the original price.
- B. The consolidated billing feature is just for organizational purpose.
- C. Each AWS account gets volume discounts.
- D. Each AWS account gets five times the free-tier services capacity.
Answer
What should you do in order to keep the data on EBS volumes safe? (Choose TWO)
- A. Regularly update firmware on EBS devices.
- B. Create EBS snapshots.
- C. Ensure that EBS data is encrypted at rest.
- D. Store a backup daily in an external drive.
- E. Prevent any unauthorized access to AWS data centers.
Answer
One of the most important AWS best-practices to follow is the cloud architecture principle of elasticity. How does this principle improve your architecture’s design?
- A. By automatically scaling your on-premises resources based on changes in demand.
- B. By automatically scaling your AWS resources using an Elastic Load Balancer.
- C. By reducing interdependencies between application components wherever possible.
- D. By automatically provisioning the required AWS resources based on changes in demand.
Answer
A startup company is operating on limited funds and is extremely concerned about cost overruns. Which of the below options can be used to notify the company when their monthly AWS bill exceeds $2000? (Choose TWO)
- A. Setup a CloudWatch billing alarm that triggers an SNS notification when the threshold is exceeded.
- B. Configure the Amazon Simple Email Service to send billing alerts to their email address on a daily basis.
- C. Configure the AWS Budgets Service to alert the company when the threshold is exceeded.
- D. Configure AWS CloudTrail to automatically delete all AWS resources when the threshold is exceeded.
- E. Configure the Amazon Connect Service to alert the company when the threshold is exceeded.
Answer
What does Amazon CloudFront use to distribute content to global users with low latency?
- A. AWS Global Accelerator.
- B. AWS Regions.
- C. AWS Edge Locations.
- D. AWS Availability Zones.
Answer
What does the “Principle of Least Privilege” refer to?
- A. You should grant your users only the permissions they need when they need them and nothing more.
- B. All IAM users should have at least the necessary permissions to access the core AWS services.
- C. All trusted IAM users should have access to any AWS service in the respective AWS account.
- D. IAM users should not be granted any permissions; to keep your account safe.
Answer
Which of the following does NOT belong to the AWS Cloud Computing models?
- A. Platform as a Service (PaaS).
- B. Infrastructure as a Service (IaaS).
- C. Software as a Service (SaaS).
- D. Networking as a Service (NaaS).
Answer
The identification process of an online financial services company requires that new users must complete an online interview with their security team. The completed recorded interviews are only required in the event of a legal issue or a regulatory compliance breach. What is the most cost-effective service to store the recorded videos?
- A. S3 Intelligent-Tiering.
- B. AWS Marketplace.
- C. Amazon S3 Glacier Deep Archive.
- D. Amazon EBS.
Answer
Which service provides DNS in the AWS cloud?
- A. Route 53.
- B. AWS Config.
- C. Amazon CloudFront.
- D. Amazon EMR.
Answer
Hundreds of thousands of DDoS attacks are recorded every month worldwide. What service does AWS provide to help protect AWS Customers from these attacks? (Choose TWO)
- A. AWS Shield.
- B. AWS Config.
- C. Amazon Cognito.
- D. AWS WAF.
- E. AWS KMS.
Answer
A company is deploying a new two-tier web application in AWS. Where should the most frequently accessed data be stored so that the application’s response time is optimal?
- A. AWS OpsWorks.
- B. AWS Storage Gateway.
- C. Amazon EBS volume.
- D. Amazon ElastiCache.
Answer
You want to run a questionnaire application for only one day (without interruption), which Amazon EC2 purchase option should you use?
- A. Reserved instances.
- B. Spot instances.
- C. Dedicated instances.
- D. On-demand instances.
Answer
You are working on a project that involves creating thumbnails of millions of images. Consistent uptime is not an issue, and continuous processing is not required. Which EC2 buying option would be the most cost-effective?
- A. Reserved Instances.
- B. On-demand Instances.
- C. Dedicated Instances.
- D. Spot Instances.
Answer
Which of the following can be described as a global content delivery network (CDN) service?
- A. AWS VPN.
- B. AWS Direct Connect.
- C. AWS Regions.
- D. Amazon CloudFront.
Answer
Which of the following services allows customers to manage their agreements with AWS?
- A. AWS Artifact.
- B. AWS Certificate Manager.
- C. AWS Systems Manager.
- D. AWS Organizations.
Answer
Which of the following are examples of AWS-Managed Services, where AWS is responsible for the operational and maintenance burdens of running the service? (Choose TWO)
- A. Amazon VPC.
- B. Amazon DynamoDB.
- C. Amazon Elastic MapReduce.
- D. AWS IAM.
- E. Amazon Elastic Compute Cloud.
Answer
Your company has a data store application that requires access to a NoSQL database. Which AWS database offering would meet this requirement?
- A. Amazon Aurora.
- B. Amazon DynamoDB.
- C. Amazon Elastic Block Store.
- D. Amazon Redshift.
Answer
As part of the Enterprise support plan, who is the primary point of contact for ongoing support needs?
- A. AWS Identity and Access Management (IAM) user.
- B. Infrastructure Event Management (IEM) engineer.
- C. AWS Consulting Partners.
- D. Technical Account Manager (TAM).
Answer
How can you view the distribution of AWS spending in one of your AWS accounts?
- A. By using Amazon VPC console.
- B. By contacting the AWS Support team.
- C. By using AWS Cost Explorer.
- D. By contacting the AWS Finance team.
Answer
Which of the following must an IAM user provide to interact with AWS services using the AWS Command Line Interface (AWS CLI)?
- A. Access keys.
- B. Secret token.
- C. UserID.
- D. User name and password.
Answer
You have AWS Basic support, and you have discovered that some AWS resources are being used maliciously, and those resources could potentially compromise your data. What should you do?
- A. Contact the AWS Customer Service team.
- B. Contact the AWS Abuse team.
- C. Contact the AWS Concierge team.
- D. Contact the AWS Security team.
Answer
Select TWO examples of the AWS shared controls.
- A. Patch Management.
- B. IAM Management.
- C. VPC Management.
- D. Configuration Management.
- E. Data Center operations.
Answer
In order to implement best practices when dealing with a “Single Point of Failure,” you should attempt to build as much automation as possible in both detecting and reacting to failure. Which of the following AWS services would help? (Choose TWO)
- A. ELB.
- B. Auto Scaling.
- C. Amazon Athen.
- D. ECR.
- E. Amazon EC2.
Answer
A company is planning to host an educational website on AWS. Their video courses will be streamed all around the world. Which of the following AWS services will help achieve high transfer speeds?
- A. Amazon SNS.
- B. Amazon Kinesis Video Streams.
- C. AWS CloudFormation.
- D. Amazon CloudFront.
Answer
A developer is planning to build a two-tier web application that has a MySQL database layer. Which of the following AWS database services would provide automated backups for the application?
- A. A MySQL database installed on an EC2 instance.
- B. Amazon Aurora.
- C. Amazon DynamoDB.
- D. Amazon Neptune.
Answer
What is the AWS service that enables AWS architects to manage infrastructure as code?
- A. AWS CloudFormation.
- B. AWS Config.
- C. Amazon SES.
- D. Amazon EMR.
Answer
Under the shared responsibility model, which of the following is the responsibility of AWS?
- A. Client-side encryption.
- B. Configuring infrastructure devices.
- C. Server-side encryption.
- D. Filtering traffic with Security Groups.
Answer
What does the AWS Health Dashboard provide? (Choose TWO)
- A. Detailed troubleshooting guidance to address AWS events impacting your resources.
- B. Health checks for Auto Scaling instances.
- C. Recommendations for Cost Optimization.
- D. A dashboard detailing vulnerabilities in your applications.
- E. Personalized view of AWS service health.
Answer
You have deployed your application on multiple Amazon EC2 instances. Your customers complain that sometimes they can’t reach your application. Which AWS service allows you to monitor the performance of your EC2 instances to assist in troubleshooting these issues?
- A. AWS Lambda.
- B. AWS Config.
- C. Amazon CloudWatch.
- D. AWS CloudTrail.
Answer
Your company is developing a critical web application in AWS, and the security of the application is a top priority. Which of the following AWS services will provide infrastructure security optimization recommendations?
- A. AWS Shield.
- B. AWS Management Console.
- C. AWS Secrets Manager.
- D. AWS Trusted Advisor.
Answer
Which of the following is not a benefit of Amazon S3? (Choose TWO)
- A. Amazon S3 provides unlimited storage for any type of data.
- B. Amazon S3 can run any type of application or backend system.
- C. Amazon S3 stores any number of objects, but with object size limits.
- D. Amazon S3 can be scaled manually to store and retrieve any amount of data from anywhere.
- E. Amazon S3 provides 99.999999999% (11 9’s) of data durability.
Answer
In the AWS Shared responsibility Model, which of the following are the responsibility of the customer? (Choose TWO)
- A. Disk disposal.
- B. Controlling physical access to compute resources.
- C. Patching the Network infrastructure.
- D. Setting password complexity rules.
- E. Configuring network access rules.
Answer
What does AWS provide to deploy popular technologies such as IBM MQ on AWS with the least amount of effort and time?
- A. Amazon Aurora.
- B. Amazon CloudWatch.
- C. AWS Quick Start reference deployments.
- D. AWS OpsWorks.
Answer
An organization has decided to purchase an Amazon EC2 Reserved Instance (RI) for three years in order to reduce costs. It is possible that the application workloads could change during the reservation period. What is the EC2 Reserved Instance (RI) type that will allow the company to exchange the purchased reserved instance for another reserved instance with higher computing power if they need to?
- A. Elastic RI.
- B. Premium RI.
- C. Standard RI.
- D. Convertible RI.
Answer
Practice Exam 2
A global company with a large number of AWS accounts is seeking a way in which they can centrally manage billing and security policies across all accounts. Which AWS Service will assist them in meeting these goals?
- A. AWS Organizations.
- B. AWS Trusted Advisor.
- C. IAM User Groups.
- D. AWS Config.
Answer
Which service provides object-level storage in AWS?
- A. Amazon EBS.
- B. Amazon Instance Store.
- C. Amazon EFS.
- D. Amazon S3.
Answer
A company is concerned that they are spending money on underutilized compute resources in AWS. Which AWS feature will help ensure that their applications are automatically adding/removing EC2 compute capacity to closely match the required demand?
- A. AWS Elastic Load Balancer.
- B. AWS Budgets.
- C. AWS Auto Scaling.
- D. AWS Cost Explorer.
Answer
Which S3 storage class is best for data with unpredictable access patterns?
- A. Amazon S3 Intelligent-Tiering.
- B. Amazon S3 Glacier Flexible Retrieval.
- C. Amazon S3 Standard.
- D. Amazon S3 Standard-Infrequent Access.
Answer
What is the AWS database service that allows you to upload data structured in key-value format?
- A. Amazon DynamoDB.
- B. Amazon Aurora.
- C. Amazon Redshift.
- D. Amazon RDS.
Answer
Which of the following is NOT correct regarding Amazon EC2 On-demand instances?
- A. You have to pay a start-up fee when launching a new instance for the first time.
- B. The on-demand instances follow the AWS pay-as-you-go pricing model.
- C. With on-demand instances, no longer-term commitments or upfront payments are needed.
- D. When using on-demand Linux instances, you are charged per second based on an hourly rate.
Answer
A company has moved to AWS recently. Which of the following AWS Services will help ensure that they have the proper security settings? (Choose TWO)
- A. AWS Trusted Advisor.
- B. Amazon Inspector.
- C. Amazon SNS.
- D. Amazon CloudWatch.
- E. Concierge Support Team.
Answer
What is the AWS feature that provides an additional level of security above the default authentication mechanism of usernames and passwords?
- A. Encrypted keys.
- B. Email verification.
- C. AWS KMS.
- D. AWS MFA.
Answer
A company is introducing a new product to their customers, and is expecting a surge in traffic to their web application. As part of their Enterprise Support plan, which of the following provides the company with architectural and scaling guidance?
- A. AWS Knowledge Center.
- B. AWS Health Dashboard.
- C. Infrastructure Event Management.
- D. AWS Support Concierge Service.
Answer
You work as an on-premises MySQL DBA. The work of database configuration, backups, patching, and DR can be time-consuming and repetitive. Your company has decided to migrate to the AWS Cloud. Which of the following can help save time on database maintenance so you can focus on data architecture and performance?
- A. Amazon RDS.
- B. Amazon Redshift.
- C. Amazon DynamoDB.
- D. Amazon CloudWatch.
Answer
Which of the below is a best-practice when designing solutions on AWS?
- A. Invest heavily in architecting your environment, as it is not easy to change your design later.
- B. Use AWS reservations to reduce costs when testing your production environment.
- C. Automate wherever possible to make architectural (© ) experimentation easier.
- D. Provision a large compute capacity to handle any spikes in load
Answer
According to the AWS Acceptable Use Policy, which of the following statements is true regarding penetration testing of EC2 instances?
- A. Penetration testing is not allowed in AWS.
- B. Penetration testing is performed automatically by AWS to determine vulnerabilities in your AWS infrastructure.
- C. Penetration testing can be performed by the customer on their own instances without prior authorization from AWS.
- D. The AWS customers are only allowed to perform penetration testing on services managed by AWS.
Answer
Which service is used to ensure that messages between software components are not lost if one or more components fail?
- A. Amazon SQS.
- B. Amazon SES.
- C. AWS Direct Connect.
- D. Amazon Connect.
Answer
The principle “design for failure and nothing will fail” is very important when designing your AWS Cloud architecture. Which of the following would help adhere to this principle? (Choose TWO)
- A. Multi-factor authentication.
- B. Availability Zones.
- C. Elastic Load Balancing.
- D. Penetration testing.
- E. Vertical Scaling.
Answer
What is the AWS service that provides a virtual network dedicated to your AWS account?
- A. AWS VPN.
- B. AWS Subnets.
- C. AWS Dedicated Hosts.
- D. Amazon VPC.
Answer
According to the AWS Shared responsibility model, which of the following are the responsibility of the customer? (Choose TWO)
- A. Managing environmental events of AWS data centers.
- B. Protecting the confidentiality of data in transit in Amazon S3.
- C. Controlling physical access to AWS Regions.
- D. Ensuring that the underlying EC2 host is configured properly.
- E. Patching applications installed on Amazon EC2.
Answer
Which of the following AWS services can be used as a compute resource? (Choose TWO)
- A. Amazon VPC.
- B. Amazon CloudWatch.
- C. Amazon S3.
- D. Amazon EC2.
- E. AWS Lambda.
Answer
Your company is designing a new application that will store and retrieve photos and videos. Which of the following services should you recommend as the underlying storage mechanism?
- A. Amazon EBS.
- B. Amazon SQS.
- C. Amazon S3.
- D. Amazon Instance store.
Answer
Which of the following is equivalent to a user name and password and is used to authenticate your programmatic access to AWS services and APIs?
- A. Instance Password.
- B. Key pairs.
- C. Access Keys.
- D. MFA.
Answer
What does Amazon ElastiCache provide?
- A. In-memory caching for read-heavy applications.
- B. An Ehcache compatible in-memory data store.
- C. An online software store that allows Customers to launch pre-configured software with just few clicks.
- D. A domain name system in the cloud.
Answer
What is the AWS service that enables you to manage all of your AWS accounts from a single master account?
- A. AWS WAF.
- B. AWS Trusted Advisor.
- C. AWS Organizations.
- D. Amazon Config.
Answer
Which of the following EC2 instance purchasing options supports the Bring Your Own License (BYOL) model for almost every BYOL scenario?
- A. Dedicated Instances.
- B. Dedicated Hosts.
- C. On-demand Instances.
- D. Reserved Instances.
Answer
Which of the following is one of the benefits of moving infrastructure from an on-premises data center to AWS?
- A. Free support for all enterprise customers.
- B. Automatic data protection.
- C. Reduced Capital Expenditure (CapEx).
- D. AWS holds responsibility for managing customer applications.
Answer
Which of the following are important design principles you should adopt when designing systems on AWS? (Choose TWO)
- A. Always use Global Services in your architecture rather than Regional Services.
- B. Always choose to pay as you go.
- C. Treat servers as fixed resources.
- D. Automate wherever possible.
- E. Remove single points of failure.
Answer
Which AWS Service can be used to establish a dedicated, private network connection between AWS and your datacenter?
- A. AWS Direct Connect.
- B. Amazon CloudFront.
- C. AWS Snowball.
- D. Amazon Route 53.
Answer
You are working on two projects that require completely different network configurations. Which AWS service or feature will allow you to isolate resources and network configurations?
- A. Internet gateways.
- B. Virtual Private Cloud.
- C. Security Groups.
- D. Amazon CloudFront.
Answer
Which of the following services can help protect your web applications from SQL injection and other vulnerabilities in your application code?
- A. Amazon Cognito.
- B. AWS IAM.
- C. Amazon Aurora.
- D. AWS WAF.
Answer
An organization needs to analyze and process a large number of data sets. Which AWS service should they use?
- A. Amazon EMR.
- B. Amazon MQ.
- C. Amazon SNS.
- D. Amazon SQS.
Answer
Based on the AWS Shared Responsibility Model, which of the following are the sole responsibility of AWS? (Choose TWO)
- A. Monitoring network performance.
- B. Installing software on EC2 instances.
- C. Creating hypervisors.
- D. Configuring Access Control Lists (ACLs).
- E. Hardware maintenance.
Answer
What is the AWS service that provides you the highest level of control over the underlying virtual infrastructure?
- A. Amazon Redshift.
- B. Amazon DynamoDB.
- C. Amazon EC2.
- D. Amazon RDS.
Answer
What are the default security credentials that are required to access the AWS management console for an IAM user account?
- A. MFA.
- B. Security tokens.
- C. A user name and password.
- D. Access keys.
Answer
In your on-premises environment, you can create as many virtual servers as you need from a single template. What can you use to perform the same in AWS?
- A. IAM.
- B. An internet gateway.
- C. EBS Snapshot.
- D. AMI.
Answer
What are two advantages of using Cloud Computing over using traditional data centers? (Choose TWO)
- A. Reserved Compute capacity.
- B. Eliminating Single Points of Failure (SPOFs).
- C. Distributed infrastructure.
- D. Virtualized compute resources.
- E. Dedicated hosting.
Answer
Which of the following aspects of security are managed by AWS? (Choose TWO)
- A. Encryption of EBS volumes.
- B. VPC security.
- C. Access permissions.
- D. Hardware patching.
- E. Securing global physical infrastructure.
Answer
Which statement best describes the operational excellence pillar of the AWS Well-Architected Framework?
- A. The ability of a system to recover gracefully from failure.
- B. The efficient use of computing resources to meet requirements.
- C. The ability to monitor systems and improve supporting processes and procedures.
- D. The ability to manage datacenter operations more efficiently.
Answer
AWS has created a large number of Edge Locations as part of its Global Infrastructure. Which of the following is NOT a benefit of using Edge Locations?
- A. Edge locations are used by CloudFront to cache the most recent responses.
- B. Edge locations are used by CloudFront to improve your end users’ experience when uploading files.
- C. Edge locations are used by CloudFront to distribute traffic across multiple instances to reduce latency.
- D. Edge locations are used by CloudFront to distribute content to global users with low latency.
Answer
What are the change management tools that helps AWS customers audit and monitor all resource changes in their AWS environment? (Choose TWO)
- A. AWS CloudTrail.
- B. Amazon Comprehend.
- C. AWS Transit Gateway.
- D. AWS X-Ray.
- E. AWS Config.
Answer
Which of the following services allows you to run containerized applications on a cluster of EC2 instances?
- A. Amazon ECS.
- B. AWS Data Pipeline.
- C. AWS Cloud9.
- D. AWS Personal Health Dashboard.
Answer
Which of the following services will help businesses ensure compliance in AWS?
- A. CloudFront.
- B. CloudEndure Migration.
- C. CloudWatch.
- D. CloudTrail.
Answer
Which of the following procedures will help reduce your Amazon S3 costs?
- A. Use the Import/Export feature to move old files automatically to Amazon Glacier.
- B. Use the right combination of storage classes based on different use cases.
- C. Pick the right Availability Zone for your S3 bucket.
- D. Move all the data stored in S3 standard to EBS.
Answer
What are the AWS services/features that can help you maintain a highly available and fault-tolerant architecture in AWS? (Choose TWO)
- A. AWS Direct Connect.
- B. Amazon EC2 Auto Scaling.
- C. Elastic Load Balancer.
- D. CloudFormation.
- E. Network ACLs.
Answer
Which of the following activities may help reduce your AWS monthly costs?
- A. Enabling Amazon EC2 Auto Scaling for all of your workloads.
- B. Using the AWS Network Load Balancer (NLB) to load balance the incoming HTTP requests.
- C. Removing all of your Cost Allocation Tags.
- D. Deploying your AWS resources across multiple Availability Zones.
Answer
What is the AWS service/feature that takes advantage of Amazon CloudFront’s globally distributed edge locations to transfer files to S3 with higher upload speeds?
- A. S3 Transfer Acceleration.
- B. AWS WAF.
- C. AWS Snowmobile.
- D. AWS Snowball.
Answer
Which of the following AWS security features is associated with an EC2 instance and functions to filter incoming traffic requests?
- A. AWS X-Ray.
- B. Network ACL.
- C. Security Groups.
- D. VPC Flow logs.
Answer
Which AWS services can be used to improve the performance of a global application and reduce latency for its users? (Choose TWO)
- A. AWS KMS.
- B. AWS Global accelerator.
- C. AWS Direct Connect.
- D. AWS Glue.
- E. Amazon CloudFront.
Answer
Using Amazon RDS falls under the shared responsibility model. Which of the following are customer responsibilities? (Choose TWO)
- A. Building the relational database schema.
- B. Performing backups.
- C. Managing the database settings.
- D. Patching the database software.
- E. Installing the database software.
Answer
A company has a large amount of structured data stored in their on-premises data center. They are planning to migrate all the data to AWS, what is the most appropriate AWS database option?
- A. Amazon DynamoDB.
- B. Amazon SNS.
- C. Amazon RDS.
- D. Amazon ElastiCache.
Answer
A company has created a solution that helps AWS customers improve their architectures on AWS. Which AWS program may support this company?
- A. APN Consulting Partners.
- B. AWS TAM.
- C. APN Technology Partners.
- D. AWS Professional Services.
Answer
What is the AWS serverless service that allows you to run your applications without any administrative burden?
- A. Amazon LightSail.
- B. AWS Lambda.
- C. Amazon RDS instances.
- D. Amazon EC2 instances.
Answer
Jessica is managing an e-commerce web application in AWS. The application is hosted on six EC2 instances. One day, three of the instances crashed; but none of her customers were affected. What has Jessica done correctly in this scenario?
- A. She has properly built an elastic system.
- B. She has properly built a fault tolerant system.
- C. She has properly built an encrypted system.
- D. She has properly built a scalable system.
Answer
Practice Exam 3
Where can you store files in AWS? (Choose TWO)
- A. Amazon EFS.
- B. Amazon SNS.
- C. Amazon EBS.
- D. Amazon ECS.
- E. Amazon EMR.
Answer
Which AWS service can be used to store and reliably deliver messages across distributed systems?
- A. Amazon Simple Queue Service.
- B. AWS Storage Gateway.
- C. Amazon Simple Email Service.
- D. Amazon Simple Storage Service.
Answer
Which of the following describes the payment model that AWS makes available for customers that can commit to using Amazon EC2 over a one or 3-year term to reduce their total computing costs?
- A. Pay less as AWS grows.
- B. Pay as you go.
- C. Pay less by using more.
- D. Save when you reserve.
Answer
A company is migrating its on-premises database to Amazon RDS. What should the company do to ensure Amazon RDS costs are kept to a minimum?
- A. Right-size before and after migration.
- B. Use a Multi-Region Active-Passive architecture.
- C. Combine On-demand Capacity Reservations with Saving Plans.
- D. Use a Multi-Region Active-Active architecture.
Answer
What is the primary storage service used by Amazon RDS database instances?
- A. Amazon Glacier.
- B. Amazon EBS.
- C. Amazon EFS.
- D. Amazon S3.
Answer
A company is developing a new application using a microservices framework. The new application is having performance and latency issues. Which AWS Service should be used to troubleshoot these issues?
- A. AWS CodePipeline.
- B. AWS X-Ray.
- C. Amazon Inspector.
- D. AWS CloudTrail.
Answer
Which of the following AWS services is designed with native Multi-AZ fault tolerance in mind? (Choose TWO)
- A. Amazon Redshift.
- B. AWS Snowball.
- C. Amazon Simple Storage Service.
- D. Amazon EBS.
- E. Amazon DynamoDB.
Answer
What are the Amazon RDS features that can be used to improve the availability of your database? (Choose TWO)
- A. AWS Regions.
- B. Multi-AZ Deployment.
- C. Automatic patching.
- D. Read Replicas.
- E. Edge Locations.
Answer
Sarah has deployed an application in the Northern California (us-west-1) region. After examining the application’s traffic, she notices that about 30% of the traffic is coming from Asia. What can she do to reduce latency for the users in Asia?
- A. Replicate the current resources across multiple Availability Zones within the same region.
- B. Migrate the application to a hosting provider in Asia.
- C. Recreate the website content.
- D. Create a CDN using CloudFront, so that content is cached at Edge Locations close to and in Asia.
Answer
An organization runs many systems and uses many AWS products. Which of the following services enables them to control how each developer interacts with these products?
- A. AWS Identity and Access Management.
- B. Amazon RDS.
- C. Network Access Control Lists.
- D. Amazon EMR.
Answer
Using Amazon EC2 falls under which of the following cloud computing models?
- A. Iaas & SaaS.
- B. IaaS.
- C. SaaS.
- D. PaaS.
Answer
Which of the below is a best-practice when building applications on AWS?
- A. Strengthen physical security by applying the principle of least privilege.
- B. Ensure that the application runs on hardware from trusted vendors.
- C. Use IAM policies to maintain performance.
- D. Decouple the components of the application so that they run independently.
Answer
Your company is designing a new application that will store and retrieve photos and videos. Which of the following services should you recommend as the underlying storage mechanism?
- A. Amazon EBS.
- B. Amazon SQS.
- C. Amazon Instance store.
- D. Amazon S3.
Answer
Amazon Glacier is an Amazon S3 storage class that is suitable for storing […] & […]. (Choose TWO)
- A. Active archives.
- B. Dynamic websites’ assets.
- C. Long-term analytic data.
- D. Active databases.
- E. Cached data.
Answer
What does Amazon Elastic Beanstalk provide?
- A. A PaaS solution to automate application deployment.
- B. A compute engine for Amazon ECS.
- C. A scalable file storage solution for use with AWS and on-premises servers.
- D. A NoSQL database service.
Answer
What is the AWS service that performs automated network assessments of Amazon EC2 instances to check for vulnerabilities?
- A. Amazon Kinesis.
- B. Security groups.
- C. Amazon Inspector.
- D. AWS Network Access Control Lists.
Answer
Under the Shared Responsibility Model, which of the following controls do customers fully inherit from AWS? (Choose TWO)
- A. Patch management controls.
- B. Database controls.
- C. Awareness & Training.
- D. Environmental controls.
- E. Physical controls.
Answer
A company needs to host a database in Amazon RDS for at least three years. Which of the following options would be the most cost-effective solution?
- A. Reserved instances – No Upfront.
- B. Reserved instances – Partial Upfront.
- C. On-Demand instances.
- D. Spot Instances.
Answer
Your application has recently experienced significant global growth, and international users are complaining of high latency. What is the AWS characteristic that can help improve your international users’ experience?
- A. Elasticity.
- B. Global reach.
- C. Data durability.
- D. High availability.
Answer
Savings Plans are available for which of the following AWS compute services? (Choose TWO)
- A. AWS Batch.
- B. AWS Outposts.
- C. Amazon Lightsail.
- D. Amazon EC2.
- E. AWS Lambda.
Answer
A company has business critical workloads hosted on AWS and they are unwilling to accept any downtime. Which of the following is a recommended best practice to protect their workloads in the event of an unexpected natural disaster?
- A. Replicate data across multiple Edge Locations worldwide and use Amazon CloudFront to perform automatic failover in the event of an outage.
- B. Deploy AWS resources across multiple Availability Zones within the same AWS Region.
- C. Create point-in-time backups in another subnet and recover this data when a disaster occurs.
- D. Deploy AWS resources to another AWS Region and implement an Active-Active disaster recovery strategy.
Answer
Which statement is correct with regards to AWS service limits? (Choose TWO)
- A. You can contact AWS support to increase the service limits.
- B. Each IAM user has the same service limit.
- C. There are no service limits on AWS.
- D. You can use the AWS Trusted Advisor to monitor your service limits.
- E. The Amazon Simple Email Service is responsible for sending email notifications when usage approaches a service limit.
Answer
What is the AWS tool that enables you to use scripts to manage all AWS services and resources?
- A. AWS Console.
- B. AWS Service Catalog.
- C. AWS OpsWorks.
- D. AWS CLI.
Answer
What are the connectivity options that can be used to build hybrid cloud architectures? (Choose TWO)
- A. AWS Artifact.
- B. AWS Cloud9.
- C. AWS Direct Connect.
- D. AWS CloudTrail.
- E. AWS VPN.
Answer
A company has deployed a new web application on multiple Amazon EC2 instances. Which of the following should they use to ensure that the incoming HTTP traffic is distributed evenly across the instances?
- A. AWS EC2 Auto Recovery.
- B. AWS Auto Scaling.
- C. AWS Network Load Balancer.
- D. AWS Application Load Balancer.
Answer
Which of the following AWS offerings is a MySQL-compatible relational database service that can scale capacity automatically based on demand?
- A. Amazon Neptune.
- B. Amazon Aurora.
- C. Amazon RDS for SQL Server.
- D. Amazon RDS for PostgreSQL.
Answer
Which of the following can help protect your EC2 instances from DDoS attacks? (Choose TWO)
- A. AWS CloudHSM.
- B. Security Groups.
- C. AWS Batch.
- D. AWS IAM.
- E. Network Access Control Lists (Network ACLs).
Answer
What is the AWS data warehouse service that supports a high level of query performance on large amounts of datasets?
- A. Amazon Redshift.
- B. Amazon Kinesis.
- C. Amazon DynamoDB.
- D. Amazon RDS.
Answer
Which of the following should be considered when performing a TCO analysis to compare the costs of running an application on AWS instead of on-premises?
- A. Application development.
- B. Market research.
- C. Business analysis.
- D. Physical hardware.
Answer
How are AWS customers billed for Linux-based Amazon EC2 usage?
- A. EC2 instances will be billed on one second increments, with a minimum of one minute.
- B. EC2 instances will be billed on one hour increments, with a minimum of one day.
- C. EC2 instances will be billed on one minute increments, with a minimum of one hour.
- D. EC2 instances will be billed on one day increments, with a minimum of one month.
Answer
Which of the following will impact the price paid for an EC2 instance? (Choose TWO)
- A. Instance type.
- B. The Availability Zone where the instance is provisioned.
- C. Load balancing.
- D. Number of buckets.
- E. Number of private IPs.
Answer
A customer spent a lot of time configuring a newly deployed Amazon EC2 instance. After the workload increases, the customer decides to provision another EC2 instance with an identical configuration. How can the customer achieve this?
- A. By creating an AWS Config template from the old instance and launching a new instance from it.
- B. By creating an EBS Snapshot of the old instance.
- C. By installing Aurora on EC2 and launching a new instance from it.
- D. By creating an AMI from the old instance and launching a new instance from it.
Answer
A company uses AWS Organizations to manage all of its AWS accounts. Which of the following allows the company to restrict what services and actions are allowed in each individual account?
- A. IAM Principals.
- B. AWS Service Control Policies (SCPs).
- C. IAM policies.
- D. AWS Fargate.
Answer
Which of the following statements describes the AWS Cloud’s agility?
- A. AWS allows you to host your applications in multiple regions around the world.
- B. AWS provides customizable hardware at the lowest possible cost.
- C. AWS allows you to provision resources in minutes.
- D. AWS allows you to pay upfront to reduce costs.
Answer
What are the benefits of using the Amazon Relational Database Service? (Choose TWO)
- A. Lower administrative burden.
- B. Complete control over the underlying host.
- C. Resizable compute capacity.
- D. Scales automatically to larger or smaller instance types.
- E. Supports the document and key-value data structure.
Answer
What is the connectivity option that uses Internet Protocol Security (IPSec) to establish encrypted connectivity between an on-premises network and the AWS Cloud?
- A. Internet Gateway.
- B. AWS IQ.
- C. AWS Direct Connect.
- D. AWS Site-to-Site VPN.
Answer
What is the minimum level of AWS support that provides 24×7 access to technical support engineers via phone and chat?
- A. Enterprise Support.
- B. Developer Support.
- C. Basic Support.
- D. Business Support.
Answer
Which of the following is used to control network traffic in AWS? (Choose TWO)
- A. Network Access Control Lists (NACLs).
- B. Key Pairs.
- C. Access Keys.
- D. IAM Policies.
- E. Security Groups.
Answer
A company has developed a media transcoding application in AWS. The application is designed to recover quickly from hardware failures. Which one of the following types of instance would be the most cost-effective choice to use?
- A. Reserved instances.
- B. Spot Instances.
- C. On-Demand instances.
- D. Dedicated instances.
Answer
Which AWS Service provides the current status of all AWS Services in all AWS Regions?
- A. AWS Service Health Dashboard.
- B. AWS Management Console.
- C. Amazon CloudWatch.
- D. AWS Personal Health Dashboard.
Answer
Which AWS service or feature can be used to call AWS Services from different programming languages?
- A. AWS Software Development Kit.
- B. AWS Command Line Interface.
- C. AWS CodeDeploy.
- D. AWS Management Console.
Answer
Which AWS Service can be used to register a new domain name?
- A. Amazon Personalize.
- B. Amazon Route 53.
- C. AWS KMS.
- D. AWS Config.
Answer
App development companies move their business to AWS to reduce time-to-market and improve customer satisfaction, what are the AWS automation tools that help them deploy their applications faster? (Choose TWO)
- A. AWS CloudFormation.
- B. AWS Migration Hub.
- C. AWS IAM.
- D. AWS Elastic Beanstalk.
- E. Amazon Macie.
Answer
Which AWS service provides cost-optimization recommendations?
- A. AWS Trusted Advisor.
- B. AWS Pricing Calculator.
- C. Amazon QuickSight.
- D. AWS X-Ray.
Answer
A company has hundreds of VPCs in multiple AWS Regions worldwide. What service does AWS offer to simplify the connection management among the VPCs?
- A. VPC Peering.
- B. AWS Transit Gateway.
- C. Amazon Connect.
- D. Security Groups.
Answer
What is one benefit and one drawback of buying a reserved EC2 instance? (Select TWO)
- A. Instances can be shut down by AWS at any time with no notification.
- B. Reserved instances require at least a one-year pricing commitment.
- C. There is no additional charge for using dedicated instances.
- D. Reserved instances provide a significant discount compared to on-demand instances.
- E.Reserved instances are best suited for periodic workloads.
Answer
Why does every AWS Region contain multiple Availability Zones?
- A. Multiple Availability Zones allows you to build resilient and highly available architectures.
- B. Multiple Availability Zones results in lower total cost compared to deploying in a single Availability Zone.
- C. Multiple Availability Zones allows for data replication and global reach.
- D. Multiple Availability Zones within a region increases the storage capacity available in that region.
Answer
What is the most cost-effective purchasing option for running a set of EC2 instances that must always be available for a period of two months?
- A. On-Demand Instances.
- B. Spot Instances.
- C. Reserved Instances – All Upfront.
- D. Reserved Instances – No Upfront.
Answer
Which of the following is a benefit of running an application in multiple Availability Zones?
- A. Allows you to exceed AWS service limits.
- B. Reduces application response time between servers and global users.
- C. Increases available compute capacity.
- D. Increases the availability of your application.
Answer
Data security is one of the top priorities of AWS. How does AWS deal with old storage devices that have reached the end of their useful life?
- A. AWS sells the old devices to other hosting providers.
- B. AWS destroys the old devices in accordance with industry-standard practices.
- C. AWS sends the old devices for remanufacturing.
- D. AWS stores the old devices in a secure place.
Answer
Practice Exam 4
A developer needs to set up an SSL security certificate for a client’s eCommerce website in order to use the HTTPS protocol. Which of the following AWS services can be used to deploy the required SSL server certificates? (Choose TWO)
- A. Amazon Route 53.
- B. AWS ACM.
- C. AWS Directory Service.
- D. AWS Identity & Access Management.
- E. AWS Data Pipeline.
Answer
Which of the following AWS services scale automatically without your intervention? (Choose TWO)
- A. Amazon EC2.
- B. Amazon S3.
- C. AWS Lambda.
- D. Amazon EMR.
- E. Amazon EBS.
Answer
A company is planning to migrate an application from Amazon EC2 to AWS Lambda to use a serverless architecture. Which of the following will be the responsibility of AWS after migration? (Choose TWO)
- A. Application management.
- B. Capacity management.
- C. Access control.
- D. Operating system maintenance.
- E. Data management.
Answer
How do ELBs improve the reliability of your application?
- A. By distributing traffic across multiple S3 buckets.
- B. By replicating data to multiple availability zones.
- C. By creating database Read Replicas.
- D. By ensuring that only healthy targets receive traffic.
Answer
A company needs to migrate their website from on-premises to AWS. Security is a major concern for them, so they need to host their website on hardware that is NOT shared with other AWS customers. Which of the following EC2 instance options meets this requirement?
- A. On-demand instances.
- B. Spot instances.
- C. Dedicated instances.
- D. Reserved instances.
Answer
A customer is planning to move billions of images and videos to be stored on Amazon S3. The customer has approximately 60 Petabytes of data to move. Which of the following AWS Services is the best choice to transfer the data to AWS?
- A. Snowball.
- B. S3 Transfer Acceleration.
- C. Snowmobile.
- D. Amazon VPC.
Answer
A company plans to migrate a large amount of archived data to AWS. The archived data must be maintained for a period of 5 years and must be retrievable within 5 hours of a request. What is the most cost-effective AWS storage service to use?
- A. Amazon S3 Glacier.
- B. Amazon EFS.
- C. Amazon S3 Standard.
- D. Amazon EBS.
Answer
Which AWS Service is used to manage user permissions?
- A. Security Groups.
- B. Amazon ECS.
- C. AWS IAM.
- D. AWS Support.
Answer
Which support plan includes AWS Support Concierge Service?
- A. Premium Support.
- B. Business Support.
- C. Enterprise Support.
- D. Standard Support.
Answer
A company needs to track resource changes using the API call history. Which AWS service can help the company achieve this goal?
- A. AWS Config.
- B. Amazon CloudWatch.
- C. AWS CloudTrail.
- D. AWS CloudFormation.
Answer
What are the benefits of using an AWS-managed service? (Choose TWO)
- A. Provides complete control over the virtual infrastructure.
- B. Allows customers to deliver new solutions faster.
- C. Lowers operational complexity.
- D. Eliminates the need to encrypt data.
- E. Allows developers to control all patching related activities.
Answer
Which of the following are use cases for Amazon S3? (Choose TWO)
- A. Hosting static websites.
- B. Hosting websites that require sustained high CPU utilization.
- C. Cost-effective database and log storage.
- D. A media store for the CloudFront service.
- E. Processing data streams at any scale.
Answer
What is the AWS’ recommendation regarding access keys?
- A. Delete all access keys and use passwords instead.
- B. Only share them with trusted people.
- C. Rotate them regularly.
- D. Save them within your application code.
Answer
What is the AWS IAM feature that provides an additional layer of security on top of user-name and password authentication?
- A. Key Pair.
- B. Access Keys.
- C. SDK.
- D. MFA.
Answer
What is the benefit of using an API to access AWS Services?
- A. It improves the performance of AWS resources.
- B. It reduces the time needed to provision AWS resources.
- C. It reduces the number of developers necessary.
- D. It allows for programmatic management of AWS resources.
Answer
A company is planning to migrate a database with high read/write activity to AWS. What is the best storage option to use?
- A. AWS Storage Gateway.
- B. Amazon S3.
- C. Amazon EBS.
- D. Amazon Glacier.
Answer
How can AWS customers track and avoid over-spending on underutilized reserved instances?
- A. Customers can add all AWS accounts to an AWS Organization, enable Consolidated Billing, and turn off Reserved Instance sharing.
- B. Customers can use Amazon Neptune to track and analyze their usage patterns, detect underutilized reserved instances, and then sell them on the Amazon EC2 Reserved Instance Marketplace.
- C. Customers can use the AWS Budgets service to track the reserved instances usage and set up alert notifications when their utilization drops below the threshold that they define.
- D. Customers can use Amazon CloudTrail to automatically check for unused reservations and get recommendations to reduce their bill.
Answer
What is the AWS service that provides five times the performance of a standard MySQL database?
- A. Amazon Aurora.
- B. Amazon Redshift.
- C. Amazon DynamoDB.
- D. Amazon Neptune.
Answer
What does AWS Service Catalog provide?
- A. It enables customers to quickly find descriptions and use cases for AWS services.
- B. It enables customers to explore the different catalogs of AWS services.
- C. It simplifies organizing and governing commonly deployed IT services.
- D. It allows developers to deploy infrastructure on AWS using familiar programming languages.
Answer
For managed services like Amazon DynamoDB, which of the below is AWS responsible for? (Choose TWO)
- A. Protecting credentials.
- B. Logging access activity.
- C. Patching the database software.
- D. Operating system maintenance.
- E. Creating access policies.
Answer
Which of the following AWS Services helps with planning application migration to the AWS Cloud?
- A. AWS Snowball Migration Service.
- B. AWS Application Discovery Service.
- C. AWS DMS.
- D. AWS Migration Hub.
Answer
A company is trying to analyze the costs applied to their AWS account recently. Which of the following provides them the most granular data about their AWS costs and usage?
- A. Amazon Machine Image.
- B. AWS Cost Explorer.
- C. AWS Cost & Usage Report.
- D. Amazon CloudWatch.
Answer
Which statement best describes the concept of an AWS region?
- A. An AWS Region is a geographical location with a collection of Edge locations.
- B. An AWS Region is a virtual network dedicated only to a single AWS customer.
- C. An AWS Region is a geographical location with a collection of Availability Zones.
- D. An AWS Region represents the country where the AWS infrastructure exist.
Answer
A company has discovered that multiple S3 buckets were deleted, but it is unclear who deleted the buckets. Which of the following can the company use to determine the identity that deleted the buckets?
- A. SNS logs.
- B. SQS logs.
- C. CloudWatch Logs.
- D. CloudTrail logs.
Answer
Which of the following are factors in determining the appropriate database technology to use for a specific workload? (Choose TWO)
- A. Availability Zones.
- B. Data sovereignty.
- C. The number of reads and writes per second.
- D. The nature of the queries.
- E. Software bugs.
Answer
What are the benefits of implementing a tagging strategy for AWS resources? (Choose TWO)
- A. Quickly identify resources that belong to a specific project.
- B. Quickly identify software solutions on AWS.
- C. Track API calls in your AWS account.
- D. Quickly identify deleted resources and their metadata.
- E. Track AWS spending across multiple resources.
Answer
What are AWS shared controls?
- A. Controls that are solely the responsibility of the customer based on the application they are deploying within AWS services.
- B. Controls that a customer inherits from AWS.
- C. Controls that apply to both the infrastructure layer and customer layers.
- D. Controls that the customer and AWS collaborate together upon to secure the infrastructure.
Answer
Which design principles relate to performance efficiency in AWS? (Choose TWO)
- A. Build multi-region architectures to better serve global customers.
- B. Apply security at all layers.
- C. Implement strong Identity and Access controls.
- D. Use serverless architectures.
- E. Enable audit logging.
Answer
Which of the below are responsibilities of the customer when using Amazon EC2? (Choose TWO)
- A. Protecting sensitive data.
- B. Patching of the underlying infrastructure.
- C. Setup and operation of managed databases.
- D. Maintaining consistent hardware components.
- E. Installing and configuring third-party software.
Answer
Why would an organization decide to use AWS over an on-premises data center? (Choose TWO)
- A. Free commercial software licenses.
- B. Free technical support.
- C. Elastic resources.
- D. On-site visits for auditing.
- E. Cost Savings.
Answer
Which of the following AWS services can help you perform security analysis and regulatory compliance auditing? (Choose TWO)
- A. Amazon Inspector.
- B. AWS Virtual Private Gateway.
- C. AWS Batch.
- D. Amazon ECS.
- E. AWS Config.
Answer
Which of the following is NOT a characteristic of Amazon Elastic Compute Cloud (Amazon EC2)?
- A. Amazon EC2 is considered a Serverless Web Service.
- B. Amazon EC2 eliminates the need to invest in hardware upfront.
- C. Amazon EC2 can launch as many or as few virtual servers as needed.
- D. Amazon EC2 offers scalable computing.
Answer
What is the AWS Compute service that executes code only when triggered by events?
- A. AWS Lambda.
- B. Amazon CloudWatch.
- C. AWS Transit Gateway.
- D. Amazon EC2.
Answer
Both AWS and traditional IT distributors provide a wide range of virtual servers to meet their customers’ requirements. What is the name of these virtual servers in AWS?
- A. Amazon EBS Snapshots.
- B. Amazon VPC.
- C. AWS Managed Servers.
- D. Amazon EC2 Instances.
Answer
What is the framework created by AWS Professional Services that helps organizations design a road map to successful cloud adoption?
- A. AWS Secrets Manager.
- B. AWS WAF.
- C. AWS CAF.
- D. Amazon EFS.
Answer
TYMO Cloud Corp is looking forward to migrating their entire on-premises data center to AWS. What tool can they use to perform a cost-benefit analysis of moving to the AWS Cloud?
- A. AWS Cost Explorer.
- B. AWS TCO Calculator.
- C. AWS Budgets.
- D. AWS Pricing Calculator.
Answer
Which of the following activities supports the Operational Excellence pillar of the AWS Well-Architected Framework?
- A. Using AWS Trusted Advisor to find underutilized resources.
- B. Using AWS CloudTrail to record user activities.
- C. Using AWS CloudFormation to manage infrastructure as code.
- D. Deploying an application in multiple Availability Zones.
Answer
Why do many startup companies prefer AWS over traditional on-premises solutions? (Choose TWO)
- A. AWS allows them to pay later when their business succeed.
- B. AWS can build complete data centers faster than any other Cloud provider.
- C. Using AWS, they can reduce time-to-market by focusing on business activities rather than on building and managing data centers.
- D. AWS removes the need to invest in operational expenditure.
- E. Using AWS allows companies to replace large capital expenditure with low variable costs.
Answer
What are the benefits of using DynamoDB? (Choose TWO)
- A. Automatically scales to meet required throughput capacity.
- B. Provides resizable instances to match the current demand.
- C. Supports both relational and non-relational data models.
- D. Offers extremely low (single-digit millisecond) latency.
- E. Supports the most popular NoSQL database engines such as CouchDB and MongoDB.
Answer
Which of the following can be used to protect data at rest on Amazon S3? (Choose TWO)
- A. Versioning.
- B. Deduplication.
- C. Permissions.
- D. Decryption.
- E. Conversion.
Answer
As part of the AWS Migration Acceleration Program (MAP), what does AWS provide to accelerate Enterprise adoption of AWS? (Choose TWO)
- A. AWS Partners.
- B. AWS Artifact.
- C. AWS Professional Services.
- D. Amazon Athena.
- E. Amazon PinPoint.
Answer
AWS recommends some practices to help organizations avoid unexpected charges on their bill. Which of the following is NOT one of these practices?
- A. Deleting unused EBS volumes after terminating an EC2instance.
- B. Deleting unused AutoScaling launch configuration.
- C. Deleting unused Elastic Load Balancers.
- D. Releasing unused Elastic IPs after terminating an EC2instance.
Answer
What is the AWS tool that can help a company visualize their AWS spending in the last few months?
- A. AWS Cost Explorer.
- B. AWS Pricing Calculator.
- C. AWS Budgets.
- D. AWS Consolidated Billing.
Answer
When running a workload in AWS, the customer is NOT responsible for: (Select TWO)
- A. Running penetration tests.
- B. Reserving capacity.
- C. Data center operations.
- D. Auditing and regulatory compliance.
- E. Infrastructure security.
Answer
Which AWS service can be used to send promotional text messages (SMS) to more than 200 countries worldwide?
- A. Amazon Simple Email Service (Amazon SES).
- B. Amazon Simple Storage Service (Amazon S3).
- C. Amazon Simple Notification Service (Amazon SNS).
- D. Amazon Simple Queue Service (Amazon SQS).
Answer
Which of the following allows you to create new RDS instances? (Choose TWO)
- A. AWS CodeDeploy.
- B. AWS Quick Starts.
- C. AWS CloudFormation.
- D. AWS DMS.
- E. AWS Management Console.
Answer
One of the major advantages of using AWS is cost savings. What does AWS provide to reduce the cost of running Amazon EC2 instances?
- A. Low monthly instance maintenance costs.
- B. Low-cost instance tagging.
- C. Per-second instance billing.
- D. Low instance start-up fees.
Answer
Which AWS Group assists customers in achieving their desired business outcomes?
- A. AWS Security Team.
- B. AWS Professional Services.
- C. AWS Trusted Advisor.
- D. AWS Concierge Support Team.
Answer
Which AWS service or feature is used to manage the keys used to encrypt customer data?
- A. AWS KMS.
- B. AWS Service Control Policies (SCPs).
- C. Multi-Factor Authentication (MFA).
- D. Amazon Macie.
Answer
Which AWS Service allows customers to download AWS SOC & PCI reports?
- A. AWS Well-Architected Tool.
- B. AWS Artifact.
- C. AWS Glue.
- D. Amazon Chime.
Answer
Practice Exam 5
A company is using EC2 Instances to run their e-commerce site on the AWS platform. If the site becomes unavailable, the company will lose a significant amount of money for each minute the site is unavailable. Which design principle should the company use to minimize the risk of an outage?
- A. Least Privilege.
- B. Pilot Light.
- C. Fault Tolerance.
- D. Multi-threading.
Answer
You decide to buy a reserved instance for a term of one year. Which option provides the largest total discount?
- A. All up-front reservation.
- B. All reserved instance payment options provide the same discount level.
- C. Partial up-front reservation.
- D. No up-front reservation.
Answer
What features does AWS offer to help protect your data in the Cloud? (Choose TWO)
- A. Access control.
- B. Physical MFA devices.
- C. Data encryption.
- D. Unlimited storage.
- E. Load balancing.
Answer
An AWS customer has used one Amazon Linux instance for 2 hours, 5 minutes and 9 seconds, and one CentOS instance for 4 hours, 23 minutes and 7 seconds. How much time will the customer be billed for?
- A. 3 hours for the Linux instance and 5 hours for the CentOS instance.
- B. 2 hours, 5 minutes and 9 seconds for the Linux instance and 4 hours, 23 minutes and 7 seconds for the CentOS instance.
- C. 2 hours, 5 minutes and 9 seconds for the Linux instance and 5 hours for the CentOS instance.
- D. 3 hours for the Linux instance and 4 hours, 23 minutes and 7 seconds for the CentOS instance.
Answer
What is the AWS Support feature that allows customers to manage support cases programmatically?
- A. AWS Trusted Advisor.
- B. AWS Operations Support.
- C. AWS Support API.
- D. AWS Personal Health Dashboard.
Answer
Which methods can be used by customers to interact with AWS Identity and Access Management (IAM)? (Choose TWO)
- A. AWS CLI.
- B. AWS Security Groups.
- C. AWS SDKs.
- D. AWS Network Access Control Lists.
- E. AWS CodeCommit.
Answer
Which of the following are types of AWS Identity and Access Management (IAM) identities? (Choose TWO)
- A. AWS Resource Groups.
- B. IAM Policies.
- C. IAM Roles.
- D. IAM Users.
- E. AWS Organizations.
Answer
Which of the following Amazon RDS features facilitates offloading of database read activity?
- A. Database Snapshots.
- B. Multi-AZ Deployments.
- C. Automated Backups.
- D. Read Replicas.
Answer
How does AWS notify customers about security and privacy events pertaining to AWS services?
- A. Using the AWS ACM service.
- B. Using Security Bulletins.
- C. Using the AWS Management Console.
- D. Using Compliance Resources.
Answer
Which IAM entity can best be used to grant temporary access to your AWS resources?
- A. IAM Users.
- B. Key Pair.
- C. IAM Roles.
- D. IAM Groups.
Answer
A company has a web application that is hosted on a single EC2 instance and is approaching 100 percent CPU Utilization during peak loads. Rather than scaling the server vertically, the company has decided to deploy three Amazon EC2 instances in parallel and to distribute traffic across the three servers. What AWS Service should the company use to distribute the traffic evenly?
- A. AWS Global Accelerator.
- B. AWS Application Load Balancer (ALB).
- C. Amazon CloudFront.
- D. Transit VPC.
Answer
Which of the following approaches will help you eliminate human error and automate the process of creating and updating your AWS environment?
- A. Use Software test automation tools.
- B. Use AWS CodeDeploy to build and automate your AWS environment.
- C. Use code to provision and operate your AWS infrastructure.
- D. Migrate all of your applications to a dedicated host.
Answer
A company is seeking to better secure its AWS account from unauthorized access. Which of the below options can the customer use to achieve this goal?
- A. Restrict any API call made through SDKs or CLI.
- B. Create one IAM account for each department in the company (Development, QA, Production), and share it across all staff in that department.
- C. Require Multi-Factor Authentication (MFA) for all IAM User access.
- D. Set up two login passwords.
Answer
Which AWS Service offers volume discounts based on usage?
- A. Amazon VPC.
- B. Amazon S3.
- C. Amazon Lightsail.
- D. AWS Cost Explorer.
Answer
Which of the following factors should be considered when determining the region in which AWS Resources will be deployed? (Choose TWO)
- A. The AWS Region’s security level.
- B. Data sovereignty.
- C. Cost.
- D. The planned number of VPCs.
- E. Geographic proximity to the company’s location.
Answer
You are running a financial services web application on AWS. The application uses a MySQL database to store the data. Which of the following AWS services would improve the performance of your application by allowing you to retrieve information from fast in-memory caches?
- A. Amazon EFS.
- B. Amazon Neptune.
- C. Amazon ElastiCache.
- D. DAX.
Answer
What are the advantages of using Auto Scaling Groups for EC2 instances?
- A. Auto Scaling Groups caches the most recent responses at global edge locations to reduce latency and improve performance.
- B. Auto Scaling Groups scales EC2 instances in multiple Availability Zones to increase application availability and fault tolerance.
- C. Auto Scaling Groups scales EC2 instances across multiple regions to reduce latency for global users.
- D. Auto Scaling Groups distributes application traffic across multiple Availability Zones to enhance performance.
Answer
The TCO gap between AWS infrastructure and traditional infrastructure has widened over the recent years. Which of the following could be the reason for that?
- A. AWS helps customers invest more in capital expenditures.
- B. AWS automates all infrastructure operations, so customers save more on human resources costs.
- C. AWS continues to lower the cost of cloud computing for its customers.
- D. AWS secures AWS resources at no additional charge.
Answer
Which of the following are examples of the customer’s responsibility to implement “security IN the cloud”? (Choose TWO)
- A. Building a schema for an application.
- B. Replacing physical hardware.
- C. Creating a new hypervisor.
- D. Patch management of the underlying infrastructure.
- E. File system encryption.
Answer
Which of the following is a type of MFA device that customers can use to protect their AWS resources?
- A. AWS CloudHSM.
- B. U2F Security Key.
- C. AWS Access Keys.
- D. AWS Key Pair.
Answer
A company is seeking to deploy an existing .NET application onto AWS as quickly as possible. Which AWS Service should the customer use to achieve this goal?
- A. Amazon SNS.
- B. AWS Elastic Beanstalk.
- C. AWS Systems Manager.
- D. AWS Trusted Advisor.
Answer
Which of the following is NOT a factor when estimating the costs of Amazon EC2? (Choose TWO)
- A. The amount of time the instances will be running.
- B. Number of security groups.
- C. Allocated Elastic IP Addresses.
- D. Number of Hosted Zones.
- E. Number of instances.
Answer
Which AWS Service helps enterprises extend their on-premises storage to AWS in a cost-effective manner?
- A. AWS Data Pipeline.
- B. AWS Storage Gateway.
- C. Amazon Aurora.
- D. Amazon EFS.
Answer
A company is building an online cloud storage platform. They need a storage service that can scale capacity automatically, while minimizing cost. Which AWS storage service should the company use to meet these requirements?
- A. Amazon Simple Storage Service.
- B. Amazon Elastic Block Store.
- C. Amazon Elastic Container Service.
- D. AWS Storage Gateway.
Answer
You have just hired a skilled sys-admin to join your team. As usual, you have created a new IAM user for him to interact with AWS services. On his first day, you ask him to create snapshots of all existing Amazon EBS volumes and save them in a new Amazon S3 bucket. However, the new member reports back that he is unable to create neither EBS snapshots nor S3 buckets. What might prevent him from doing this simple task?
- A. EBS and S3 are accessible only to the root account owner.
- B. The systems administrator must contact AWS Support first to activate his new IAM account.
- C. There is not enough space in S3 to store the snapshots.
- D. There is a non-explicit deny to all new users.
Answer
An external auditor is requesting a log of all accesses to the AWS resources in the company’s account. Which of the following services will provide the auditor with the requested information?
- A. AWS CloudTrail.
- B. Amazon CloudFront.
- C. AWS CloudFormation.
- D. Amazon CloudWatch.
Answer
Which of the below options is true of Amazon Cloud Directory?
- A. Amazon Cloud Directory allows the organization of hierarchies of data across multiple dimensions.
- B. Amazon Cloud Directory enables the analysis of video and data streams in real time.
- C. Amazon Cloud Directory allows users to access AWS with their existing Active Directory credentials.
- D. Amazon Cloud Directory allows for registration and management of domain names.
Answer
A user has opened a “Production System Down” support case to get help from AWS Support after a production system disruption. What is the expected response time for this type of support case?
- A. 12 hours.
- B. 15 minutes.
- C. 24 hours.
- D. One hour.
Answer
Which of the below options is a best practice for making your application on AWS highly available?
- A. Deploy the application to at least two Availability Zones.
- B. Use Elastic Load Balancing (ELB) across multiple AWS Regions.
- C. Deploy the application code on at least two servers in the same Availability Zone.
- D. Rewrite the application code to handle all incoming requests.
Answer
Which of the following should be taken into account when performing a TCO analysis regarding the costs of running an application on AWS VS on-premises? (Choose TWO)
- A. Labor and IT costs.
- B. Cooling and power consumption.
- C. Amazon EBS computing power.
- D. Software architecture.
- E. Software compatibility.
Answer
Your company requires a response time of less than 15 minutes from support interactions about their business-critical systems that are hosted on AWS if those systems go down. Which AWS Support Plan should this company use?
- A. AWS Basic Support.
- B. AWS Developer Support.
- C. AWS Business Support.
- D. AWS Enterprise Support.
Answer
Which of the following AWS offerings are serverless services? (Choose TWO)
- A. Amazon EC2.
- B. AWS Lambda.
- C. Amazon DynamoDB.
- D. Amazon EMR.
- E. Amazon RDS.
Answer
Which AWS service enables you to quickly purchase and deploy SSL/TLS certificates?
- A. Amazon GuardDuty.
- B. AWS ACM.
- C. Amazon Detective.
- D. AWS WAF.
Answer
Which AWS Service provides integration with Chef to automate the configuration of EC2 instances?
- A. AWS Config.
- B. AWS OpsWorks.
- C. AutoScaling.
- D. AWS CloudFormation.
Answer
A customer is seeking to store objects in their AWS environment and to make those objects downloadable over the internet. Which AWS Service can be used to accomplish this?
- A. Amazon EBS.
- B. Amazon EFS.
- C. Amazon S3.
- D. Amazon Instance Store.
Answer
Which of the following services can be used to monitor the HTTP and HTTPS requests that are forwarded to Amazon CloudFront?
- A. AWS WAF.
- B. Amazon CloudWatch.
- C. AWS Cloud9.
- D. AWS CloudTrail.
Answer
A company is migrating a web application to AWS. The application’s compute capacity is continually utilized throughout the year. Which of the below options offers the company the most cost-effective solution?
- A. On-demand Instances.
- B. Dedicated Hosts.
- C. Spot Instances.
- D. Reserved Instances.
Answer
A company wants to grant a new employee long-term access to manage Amazon DynamoDB databases. Which of the following is a recommended best-practice when granting these permissions?
- A. Create an IAM role and attach a policy with Amazon DynamoDB access permissions.
- B. Create an IAM role and attach a policy with Administrator access permissions.
- C. Create an IAM user and attach a policy with Amazon DynamoDB access permissions.
- D. Create an IAM user and attach a policy with Administrator access permissions.
Answer
When granting permissions to applications running on Amazon EC2 instances, which of the following is considered best practice?
- A. Generate new IAM access keys every time you delegate permissions.
- B. Store the required AWS credentials directly within the application code.
- C. Use temporary security credentials (IAM roles) instead of long-term access keys.
- D. Do nothing; Applications that run on Amazon EC2 instances do not need permission to interact with other AWS services or resources.
Answer
Which of the following will help AWS customers save on costs when migrating their workloads to AWS?
- A. Use servers instead of managed services.
- B. Use existing third-party software licenses on AWS.
- C. Migrate production workloads to AWS edge locations instead of AWS Regions.
- D. Use AWS Outposts to run all workloads in a cost-optimized environment.
Answer
An organization has a legacy application designed using monolithic-based architecture. Which AWS Service can be used to decouple the components of the application?
- A. Amazon SQS.
- B. Virtual Private Gateway.
- C. AWS Artifact.
- D. Amazon CloudFront.
Answer
Which of the following can be used to enable the Virtual Multi-Factor Authentication? (Choose TWO)
- A. Amazon Connect.
- B. AWS CLI.
- C. AWS Identity and Access Management (IAM).
- D. Amazon SNS.
- E. Amazon Virtual Private Cloud.
Answer
According to best practices, which of the below options is best suited for processing a large number of binary files?
- A. Vertically scaling EC2 instances.
- B. Running RDS instances in parallel.
- C. Vertically scaling RDS instances.
- D. Running EC2 instances in parallel.
Answer
A company is planning to use Amazon S3 and Amazon CloudFront to distribute its video courses globally. What tool can the company use to estimate the costs of these services?
- A. AWS Cost Explorer.
- B. AWS Pricing Calculator.
- C. AWS Budgets.
- D. AWS Cost & Usage Report.
Answer
What should you do if you see resources, which you don’t remember creating, in the AWS Management Console? (Choose TWO)
- A. Stop all running services and open an investigation.
- B. Give your root account password to AWS Support so that they can assist in troubleshooting and securing the account.
- C. Check the AWS CloudTrail logs and delete all IAM users that have access to your resources.
- D. Open an investigation and delete any potentially compromised IAM users.
- E. Change your AWS root account password and the passwords of any IAM users.
Answer
A key practice when designing solutions on AWS is to minimize dependencies between components so that the failure of a single component does not impact other components. What is this practice called?
- A. Elastic coupling.
- B. Loosely coupling.
- C. Scalable coupling.
- D. Tightly coupling.
Answer
Which AWS Service offers an NFS file system that can be mounted concurrently from multiple EC2 instances?
- A. Amazon Elastic File System.
- B. Amazon Simple Storage Service.
- C. Amazon Elastic Block Store.
- D. AWS Storage Gateway.
Answer
Availability Zones within a Region are connected over low-latency links. Which of the following is a benefit of these links?
- A. Create private connection to your data center.
- B. Achieve global high availability.
- C. Automate the process of provisioning new compute resources.
- D. Make synchronous replication of your data possible.
Answer
Which of the following are true regarding the languages that are supported on AWS Lambda? (Choose TWO)
- A. Lambda only supports Python and Node.js, but third party plugins are available to convert code in other languages to these formats.
- B. Lambda natively supports a number of programming languages such as Node.js, Python, and Java.
- C. Lambda is AWS’ proprietary programming language for microservices.
- D. Lambda doesn’t support programming languages; it is a serverless compute service.
- E. Lambda can support any programming language using an API.
Answer
What are the capabilities of AWS X-Ray? (Choose TWO)
- A. Automatically decouples application components.
- B. Facilitates tracking of user requests to identify application issues.
- C. Helps improve application performance.
- D. Deploys applications to Amazon EC2 instances.
- E. Deploys applications to on-premises servers.
Answer