Exam 3

Question 1

What is the minimum level of AWS support that provides 24x7 access to technical support engineers via phone and chat?

Answer 1

Business Support

Developer is the minimum and right below business, no phone/24/7 support.

Question 2

A company needs to migrate their website from on-premises to AWS. Security is a major concern for them, so they need to host their website on hardware that is NOT shared with other AWS customers. Which of the following EC2 instance options meets this requirement?

Answer 2

Dedicated instances

Question 3

TYMO Cloud Corp is looking forward to migrating their entire on-premises data center to AWS. What tool can they use to build a Business Case for moving to the AWS Cloud?

Answer 3

AWS Migration Evaluator

Question 4

A customer spent a lot of time configuring a newly deployed Amazon EC2 instance. After the workload increases, the customer decides to provision another EC2 instance with an identical configuration. How can the customer achieve this?

Answer 4

By creating an AMI from the old instance and launching a new instance from it

(Correct)

Question 5

Which statement best describes the concept of an AWS region?

Answer 5

An AWS Region is a geographical location with a collection of Availability Zones

Question 6

Which of the following are factors in determining the appropriate database technology to use for a specific workload? (Choose TWO)

Answer 6

The nature of the queries

(Correct)

[Control]

The number of reads and writes per second

Question 7

Which of the following allows you to create new RDS instances? (Choose TWO)

Answer 7

AWS Management Console

AWS CloudFormation

Question 8

Which of the following AWS services can help you perform security analysis and regulatory compliance auditing? (Choose TWO)

Answer 8

Amazon Inspector

AWS Config

With AWS Config, you can discover existing and deleted AWS resources, determine your overall compliance against rules, and dive into configuration details of a resource at any point in time. These capabilities enable compliance auditing, security analysis, resource change tracking, and troubleshooting.

             Amazon Inspector is an automated security assessment service that helps improve the security and compliance of applications deployed on AWS. Amazon Inspector automatically assesses applications for exposure, vulnerabilities, and deviations from best practices. This allows you to make security testing a more regular occurrence as part of development and IT operations.

Question 9

Which of the below are responsibilities of the customer when using Amazon EC2?

Answer 9

Protecting sensitive data

Installing and configuring third-party software

Question 10

What is the connectivity option that uses Internet Protocol Security (IPSec) to establish encrypted connectivity between an on-premises network and the AWS Cloud?

Answer 10

AWS Site-to-Site VPN
-AWS Site-to-Site VPN utilizes Internet Protocol Security (IPSec) to establish encrypted connectivity between your on-premises network and AWS over the Internet. With AWS Client VPN, your users can access AWS or on-premises resources from any location using a secure TLS connection.
“AWS Direct Connect” is incorrect. AWS Direct Connect does not involve the Internet; instead, it uses dedicated, private network connections between your on-premises network or branch office site and the AWS Cloud. AWS Direct Connect is a network service that provides an alternative to using the Internet to connect customer’s on-premise sites to AWS. Using AWS Direct Connect, data that would have previously been transported over the Internet can now be delivered through a private network connection between AWS and your datacenter or corporate network.

Question 11

Which of the following can be used to protect data at rest on Amazon S3? (Choose TWO)

Answer 11

Versioning

Permissions

Question 12

For managed services like Amazon DynamoDB, which of the below is AWS responsible for? (Choose TWO)

Answer 12

Patching the database software

Operating system maintenance

Question 13

Which AWS service can be used to send promotional text messages (SMS) to more than 200 countries worldwide?

Answer 13

Amazon Simple Notification Service (Amazon SNS)

Question 14

Which AWS Service provides the current status of all AWS Services in all AWS Regions?

Answer 14

AWS Service Health Dashboard

Question 15

What is the AWS tool that can help a company visualize their AWS spending in the last few months?

Answer 15

AWS Cost Explorer

Question 16

A company has hundreds of VPCs in multiple AWS Regions worldwide. What service does AWS offer to simplify the connection management among the VPCs?

Answer 16

AWS Transit Gateway

Question 17

Which AWS service or feature can be used to call AWS Services from different programming languages?

Answer 17

AWS Software Development Kit

Question 18

What is the AWS Compute service that executes code only when triggered by events?
*

Answer 18

AWS Lambda

Question 19

Why does every AWS Region contain multiple Availability Zones?

Answer 19

Multiple Availability Zones allows you to build resilient and highly available architectures

Question 20

Which support plan includes AWS Support Concierge Service?

Answer 20

Enterprise Support

Question 21

Why would an organization decide to use AWS over an on-premises data center? (Choose TWO)

Answer 21

Cost Savings
Elastic resources

Question 22

What is the framework created by AWS Professional Services that helps organizations design a road map to successful cloud adoption?

Answer 22

AWS CAF

Cloud Adoption Framework

Question 23

A company uses AWS Organizations to manage all of its AWS accounts. Which of the following allows the company to restrict what services and actions are allowed in each individual account?
*

Answer 23

AWS Service Control Policies (SCPs)

Question 24

What are the benefits of using DynamoDB? (Choose TWO)

Answer 24

Offers extremely low (single-digit millisecond) latency

Automatically scales to meet required throughput capacity

Question 25

A company plans to migrate a large amount of archived data to AWS. The archived data must be maintained for a period of 5 years and must be retrievable within 5 hours of a request. What is the most cost-effective AWS storage service to use?

Answer 25

Amazon S3 Glacier

Question 26

AWS recommends some practices to help organizations avoid unexpected charges on their bill. Which of the following is NOT one of these practices?

Answer 26

Deleting unused AutoScaling launch configuration

       "Deleting unused AutoScaling launch configuration" will not help, and thus is the correct choice. The AutoScaling launch configuration does not incur any charges. Thus, it will not make any difference whether it is deleted or not.
       AWS will charge the user once the AWS resource is allocated (even if it is not used). Thus, it is advised that once the user's work is completed they should: 1- Delete all Elastic Load Balancers. 2- Terminate all unused EC2 instances. 3- Delete the attached EBS volumes that they don’t need. 4- Release any unused Elastic IPs.

Question 27

Why do many startup companies prefer AWS over traditional on-premises solutions? (Choose TWO)

Answer 27

Using AWS allows companies to replace large capital expenditure with low variable costs

Using AWS, they can reduce time-to-market by focusing on business activities rather than on building and managing data centers

Question 28

App development companies move their business to AWS to reduce time-to-market and improve customer satisfaction, what are the AWS automation tools that help them deploy their applications faster? (Choose TWO)

Answer 28

AWS Elastic Beanstalk

AWS CloudFormation

Question 29

What is the most cost-effective purchasing option for running a set of EC2 instances that must always be available for a period of two months?

Answer 29

On-Demand Instances

Question 30

A customer is planning to move billions of images and videos to be stored on Amazon S3. The customer has approximately 60 Petabytes of data to move. Which of the following AWS Services is the best choice to transfer the data to AWS?

Answer 30

Snowmobile

Question 31

Which of the following statements describes the AWS Cloud’s agility?

Answer 31

AWS allows you to provision resources in minutes

Question 32

Which of the following is NOT a characteristic of Amazon Elastic Compute Cloud (Amazon EC2)?

Answer 32

Amazon EC2 is considered a Serverless Web Service

Question 33

A company needs to track resource changes using the API call history. Which AWS service can help the company achieve this goal?

Answer 33

AWS CloudTrail

Question 34

Both AWS and traditional IT distributors provide a wide range of virtual servers to meet their customers’ requirements. What is the name of these virtual servers in AWS?

Answer 34

Amazon EC2 Instances

Question 35

Which AWS service provides cost-optimization recommendations?

Answer 35

AWS Trusted Advisor

Question 36

What does AWS Service Catalog provide?

Answer 36

It simplifies organizing and governing commonly deployed IT services

Question 37

Which of the following AWS services scale automatically without your intervention? (Choose TWO)

Answer 37

Amazon S3
AWS Lambda

Question 38

Which of the following activities supports the Operational Excellence pillar of the AWS Well-Architected Framework?

Answer 38

Using AWS CloudFormation to manage infrastructure as code

Question 39

A company is trying to analyze the costs applied to their AWS account recently. Which of the following provides them the most granular data about their AWS costs and usage?

Answer 39

AWS Cost & Usage Report

Question 40

When running a workload in AWS, the customer is NOT responsible for: (Select TWO

Answer 40

Infrastructure security
Data center operations

Question 41

How do ELBs improve the reliability of your application?

Answer 41

By ensuring that only healthy targets receive traffic

Question 42

A company is planning to migrate an application from Amazon EC2 to AWS Lambda to use a serverless architecture. Which of the following will be the responsibility of AWS after migration? (Choose TWO)

Answer 42

Capacity management
Operating system maintenance

Question 43

What is the AWS IAM feature that provides an additional layer of security on top of user-name and password authentication?

Answer 43

MFA

Question 44

Which design principles relate to performance efficiency in AWS? (Choose TWO)

Answer 44

Build multi-region architectures to better serve global customers

Use serverless architectures

Question 45

A company has discovered that multiple S3 buckets were deleted, but it is unclear who deleted the buckets. Which of the following can the company use to determine the identity that deleted the buckets?

Answer 45

CloudTrail logs

Question 46

Which AWS Service is used to manage user permissions?

Answer 46

AWS IAM

Question 47

A company is planning to migrate a database with high read/write activity to AWS. What is the best storage option to use?

Answer 47

Amazon EBS

Question 48

Which of the following are use cases for Amazon S3? (Choose TWO)

Answer 48

Hosting static websites

A media store for the CloudFront service

“Cost-effective database and log storage” is incorrect. Amazon S3 can be used to store log files, images, videos (or any static content), but not databases. Databases and dynamic websites require block-level storage (such as EBS). S3 is an object-level storage, not Block-level storage. Object-level storage has limited I/O and is therefore ill-suited for use as a database store.

Question 49

A company wants to keep a secondary backup copy of its databases to meet regulatory requirements. Compliance policies require that the data be retrievable immediately when requested. What is the most cost-effective storage option that will meet these requirements?

Answer 49

Amazon S3 One Zone-Infrequent Access (S3 One Zone-IA)

Question 50

A company has developed a media transcoding application in AWS. The application is designed to recover quickly from hardware failures. Which one of the following types of instance would be the most cost-effective choice to use?

Answer 50

Spot Instances

Question 51

As part of the AWS Migration Acceleration Program (MAP), what does AWS provide to accelerate Enterprise adoption of AWS? (Choose TWO)

Answer 51

AWS Partners

AWS Professional Services

Question 52

What is the AWS service that provides five times the performance of a standard MySQL database?

Answer 52

Amazon Aurora

Amazon Aurora is a fully-managed, MySQL and PostgreSQL-compatible relational database engine. It combines the speed and reliability of high-end commercial databases with the simplicity and cost-effectiveness of open-source databases. It delivers up to five times the throughput of MySQL and up to three times the throughput of PostgreSQL without requiring changes to most of your existing applications.

Question 53

Which of the following is used to control network traffic in AWS? (Choose TWO)
*

Answer 53

Network Access Control Lists (NACLs)
Security Groups

Question 54

What are AWS shared controls?

Answer 54

Controls that apply to both the infrastructure layer and customer layers

Question 55

What is one benefit and one drawback of buying a reserved EC2 instance? (Select TWO)

Answer 55

Reserved instances require at least a one-year pricing commitment

Reserved instances provide a significant discount compared to on-demand instances

Question 56

Data security is one of the top priorities of AWS. How does AWS deal with old storage devices that have reached the end of their useful life?
*

Answer 56

AWS destroys the old devices in accordance with industry-standard practices

Question 57

Which AWS Service can be used to register a new domain name?

Answer 57

Amazon Route 53

Question 58

What is the benefit of using an API to access AWS Services?

Answer 58

It allows for programmatic management of AWS resources
(Correct)

Question 59

What are the benefits of using the Amazon Relational Database Service? (Choose TWO)

Answer 59

Lower administrative burden

Resizable compute capacity

Question 60

Which of the following is a benefit of running an application in multiple Availability Zones?

Answer 60

Increases the availability of your application

Question 61

A developer needs to set up an SSL security certificate for a client’s eCommerce website in order to use the HTTPS protocol. Which of the following AWS services can be used to deploy the required SSL server certificates? (Choose TWO)

Answer 61

AWS ACM

AWS Identity & Access Management

Question 62

What are the benefits of implementing a tagging strategy for AWS resources? (Choose TWO

Answer 62

Track AWS spending across multiple resources
Quickly identify resources that belong to a specific project

Question 63

What are the benefits of using an AWS-managed service? (Choose TWO)

Answer 63

Allows customers to deliver new solutions faster

Lowers operational complexity

Question 64

What is the AWS’ recommendation regarding access keys?

Answer 64

Rotate them regularly

Question 65

How can AWS customers track and avoid over-spending on underutilized reserved instances?

Answer 65

Customers can use the AWS Budgets service to track the reserved instances usage and set up alert notifications when their utilization drops below the threshold that they define