Exam 5

Question 1

To protect against data loss, you need to backup your database regularly. What is the most cost-effective storage option that provides immediate retrieval of your backups?

Answer 1

Amazon S3 Standard-Infrequent Access

S3 Standard-IA is ideal for data that is accessed less frequently (like database backups), but requires immediate access when needed.
Amazon S3 has a wide variety of storage classes to cover different workloads and use cases. The S3 storage class you choose primarily depends upon two factors: accessibility and cost. If you need immediate access to your data, then you want to use either S3 Standard, S3 Intelligent-Tiering, S3 Standard-Infrequent Access, or S3 One Zone-IA. If you don’t require regular and immediate access to your data, then S3 Glacier or S3 Glacier Deep Archive may be a good choice. The S3 Glacier storage classes have an overall lower cost than the S3 storage classes that provide immediate access to your data.

Question 2

You are facing a lot of problems with your current contact center. Which service provides a cloud-based contact center that can deliver a better service for your customers?

Answer 2

Amazon Connect
Amazon Connect is a cloud-based contact center solution. Amazon Connect makes it easy to set up and manage a customer contact center and provide reliable customer engagement at any scale. You can set up a contact center in just a few steps, add agents from anywhere, and start to engage with your customers right away

Question 3

What does the term “Economies of scale” mean?

Answer 3

It means that AWS will continuously lower costs as it grows

Question 4

You have a real-time IoT application that requires sub-millisecond latency. Which of the following services should you use?

Answer 4

Amazon ElastiCache for Redis
Amazon ElastiCache for Redis is a blazing fast in-memory data store that provides sub-millisecond latency to power internet-scale real-time applications. Built on open-source Redis and compatible with the Redis APIs, ElastiCache for Redis works with your Redis clients and uses the open Redis data format to store your data. Your self-managed Redis applications can work seamlessly with ElastiCache for Redis without any code changes. ElastiCache for Redis combines the speed, simplicity, and versatility of open-source Redis with manageability, security, and scalability from Amazon to power the most demanding real-time applications in Gaming, Ad-Tech, E-Commerce, Healthcare, Financial Services, and IoT.

Question 5

Which of the following is a feature of Amazon RDS that performs automatic failover when the primary database fails to respond?

Answer 5

RDS Multi-AZ
When you enable Multi-AZ, Amazon Relational Database Service (Amazon RDS) maintains a redundant and consistent standby copy of your data

Question 6

Which of the following would you use to manage your encryption keys in the AWS Cloud? (Choose TWO)

Answer 6

AWS KMS
CloudHSM

Question 7

Which AWS service helps developers compile and test their code?

Answer 7

AWS CodeBuild is a fully managed continuous integration service that compiles source code, runs tests, and produces software packages that are ready to deploy.

AWS CodeCommit vs. AWS CodeBuild vs. AWS CodeDeploy vs. AWS CodePipeline:
- AWS CodeCommit is used to store and version source code.
- AWS CodeBuild is used to compile and test source code, helping you find and fix bugs early in the development process when they are easy to fix.
- AWS CodeDeploy is used to deploy application code to a variety of compute services such as Amazon EC2, AWS Fargate, AWS Lambda, and your on-premises servers.
- AWS CodePipeline is the glue that builds these steps together. AWS CodePipeline enables you to automate all phases of your release process, from committing the code into AWS CodeCommit all the way to deploying it with AWS CodeDeploy. You can also integrate your own custom tools into any stage of the release process to form an end-to-end continuous delivery solution. This enables you to deliver new features and updates rapidly and reliably.

Question 8

A company wants to replace its traditional desktops with Cloud desktops and enable Work-From-Home for its employees. The virtualized desktops must be persistent and can be accessed from anywhere. Which AWS service will meet these requirements?

Answer 8

Amazon WorkSpaces
An Amazon WorkSpace is a cloud-based virtual desktop that can act as a replacement for a traditional desktop

Question 9

For new AWS customers, what is the EASIEST way to launch a simple WordPress website on AWS?

Answer 9

Run WordPress on an Amazon Lightsail instance

Amazon Lightsail is designed to be the easiest way to launch and manage a Web server using AWS. Lightsail plans include everything you need to jumpstart your project – a virtual machine, SSD-based storage, data transfer, DNS management, and a static IP address – for a low, predictable price.

Question 10

You have just set up your AWS environment and have created six IAM user accounts for the DevOps team. What is the AWS recommendation when granting permissions to these IAM accounts?

Answer 10

Apply the Principle of Least Privilege

Question 11

Which of the following compute resources are serverless? (Choose TWO

Answer 11

AWS Lambda
AWS Fargate

     AWS Lambda lets you run code without provisioning or managing servers. You pay only for the compute time you consume, and there is no charge when your code is not running.  AWS Fargate is a compute engine for deploying and managing containers, which frees you from having to manage any of the underlying infrastructure. With AWS Fargate, you no longer have to provision, configure, and scale clusters of virtual machines to run containers.

Question 12

Your CTO has asked you to contact AWS support using the chat feature to ask for guidance related to EBS. However, when you open the AWS support center you can’t see a way to contact support via Chat. What should you do?

Answer 12

At a minimum, upgrade to Business support plan

Question 13

What does the Amazon CloudFront service provide? (Choose TWO)

Answer 13

Increases application availability by caching at the edge
Delivers content to end users with low latency

Question 14

A company experiences fluctuations in traffic patterns to their e-commerce website when running flash sales. What service can help the company dynamically match the required compute capacity to handle spikes in traffic during flash sales?
*

Answer 14

AWS Auto Scaling
(Correct)
AWS Auto Scaling monitors your applications and automatically adjusts capacity to maintain steady, predictable performance at the lowest possible cost. Using AWS Auto Scaling, you maintain optimal application performance and availability, even when workloads are periodic, unpredictable, or continuously changin

Question 15

You have migrated your application to AWS recently. How can you view the AWS costs applied to your account?

Answer 15

Using the AWS Cost & Usage Report

Question 16

A media company has an application that requires the transfer of large data sets to and from AWS every day. This data is business critical and should be transferred over a consistent connection. Which AWS service should the company use?

Answer 16

AWS Snowmobile

Question 17

Amazon RDS supports multiple database engines to choose from. Which of the following is not one of them?

Answer 17

Teradata
Amazon Relational Database Service (Amazon RDS) is a managed service that makes it easy to set up, operate, and scale a relational database in the cloud. Amazon RDS is available on several database instance types - optimized for memory, performance or I/O - and provides you with six database engines to choose from, including Amazon Aurora, PostgreSQL, MySQL, MariaDB, Oracle, and Microsoft SQL Server.

Question 18

Which service can you use to route traffic to the endpoint that provides the best application performance for your users worldwide?

Answer 18

AWS Global Accelerator

Question 19

For Amazon RDS databases, what does AWS perform on your behalf? (Choose TWO)

Answer 19

Management of the operating system
Database setup

Question 20

A company is hosting business critical workloads in an AWS Region. To protect against data loss and ensure business continuity, a mirror image of the current AWS environment should be created in another AWS Region. Company policy requires that the standby environment must be available in minutes in case of an outage in the primary AWS Region. Which AWS service can be used to meet these requirements?
*

Answer 20

CloudEndure Disaster Recovery
CloudEndure Disaster Recovery is a disaster recovery solution that minimizes downtime and data loss by providing fast, reliable recovery of physical, virtual, and cloud-based servers into AWS Cloud. CloudEndure Disaster Recovery continuously replicates your machines (including operating system, system state configuration, databases, applications, and files) into a low-cost staging area in your target AWS account and preferred Region.

Question 21

What kind of reports does AWS Cost Explorer provide by default?

Answer 21

Reports about the utilization of Amazon EC2 Reserved Instances
AWS Cost Explorer lets you dive deeper into your AWS cost and usage data to identify trends, pinpoint cost drivers, and detect anomalies. You can view data for up to the last 12 months, forecast how much you’re likely to spend for the next 12 months, and get recommendations for what Savings Plans or Reserved Instances to purchase. AWS Cost Explorer reports include a breakdown of your top 5 cost-accruing AWS services, an analysis of your overall Amazon EC2 usage, an analysis of the total costs of your member accounts, and the Reserved Instance Utilization and Coverage reports.

Question 22

Which of the following AWS services uses Puppet to automate how EC2 instances are configured?

Answer 22

AWS OpsWorks
AWS OpsWorks is a configuration management service that provides managed instances of Chef and Puppet. Chef and Puppet are automation platforms that allow you to use code to automate the configurations of your servers

Question 23

What are some key design principles for designing public cloud systems? (Choose TWO)

Answer 23

Disposable resources instead of fixed servers
Loose coupling over tight coupling

Question 24

Which of the following services allows you to install and run custom relational database software?

Answer 24

• Amazon EC2

Question 25

Which of the following AWS services would help you migrate on-premise databases to AWS?

Answer 25

AWS DMS
AWS Database Migration Service helps you migrate databases to AWS quickly and securely. The source database remains fully operational during the migration, minimizing downtime to applications that rely on the database. The AWS Database Migration Service can migrate your data to and from most widely used commercial and open-source databases.

Question 26

Which of the following strategies help analyze costs in AWS?

Answer 26

Using tags to group resources
Explanation
Tags are key-value pairs that allow you to organize your AWS resources into groups. Implementing a tagging strategy will help you track usage and spending across different departments, applications, or Development/Production environments. For example, if you tag resources with an application name, you can track the total cost of a single application that runs on those resources.
You can use tags to:
1- Visualize information about tagged resources in one place.
2- View billing information using Cost Explorer and the AWS Cost and Usage report.
3- Create separate invoices for each project or work environment.

Question 27

Which of the following services provide real-time auditing for compliance and vulnerabilities? (Choose TWO)

Answer 27

AWS Trusted Advisor
AWS Config
Services like AWS Config, Amazon Inspector, and AWS Trusted Advisor continually monitor for compliance or vulnerabilities in your AWS environment which gives you a clear overview of which resources are in compliance, and which are not

Question 28

Which of the following are valid Amazon EC2 Reserved Instance types? (Choose TWO)

Answer 28

Convertible
Standard

Explanation
When you purchase a Reserved Instance, you can choose between a Standard or Convertible offering class.
Standard RIs: These provide the most significant discount (up to 72% off On-Demand) and are best suited for steady-state usage.
Convertible RIs: These provide a discount (up to 54% off On-Demand) and the capability to change the attributes of the RI as long as the exchange results in the creation of Reserved Instances of equal or greater value. Like Standard RIs, Convertible RIs are best suited for steady-state usage.

Question 29

The owner of an E-Commerce application notices that the compute capacity requirements vary heavily from time to time. What makes AWS more economical than traditional data centers for this type of application?

Answer 29

AWS allows customers to launch and terminate EC2 instances based on demand

Question 30

Which of the following services gives you access to all AWS auditor-issued reports and certifications?
*

Answer 30

AWS Artifact
AWS Artifact is your go-to, central resource for compliance-related information that matters to you. It provides on-demand access to AWS’ security and compliance reports and select online agreements. Reports available in AWS Artifact include AWS Service Organization Control (SOC) reports, Payment Card Industry (PCI) reports, and certifications from accreditation bodies across geographies and compliance verticals that validate the implementation and operating effectiveness of AWS security controls. Agreements available in AWS Artifact include the Business Associate Addendum (BAA) and the Nondisclosure Agreement (NDA).

Question 31

What can you use to assign permissions directly to an IAM user?

Answer 31

IAM Policy
A policy is an object in AWS that, when associated with an identity or resource, defines their permissions. AWS evaluates these policies when an IAM principal (user or role) makes a request. Permissions in the policies determine whether the request is allowed or denied.

Question 32

Which of the following has the greatest impact on cost? (Choose TWO)

Answer 32

Data Transfer Out charges
Compute charges
Storage

Question 33

Which of the following S3 storage classes is most appropriate to host static assets for a popular e-commerce website with stable access patterns?

Answer 33

S3 Standard

Question 34

You want to transfer 200 Terabytes of data from on-premises locations to the AWS Cloud, which of the following can do the job in a cost-effective way?

Answer 34

AWS Snowball

Question 35

Your web application currently faces performance issues and suffers from long load times. Which of the following AWS services could help fix these issues and improve performance?

Answer 35

AWS X-Ray

Question 36

Which statement is true in relation to the security of Amazon EC2?

Answer 36

u should regularly patch the operating system and applications on your EC2 instances

Question 37

Who from the following will get the largest discount?

Answer 37

A user who chooses to buy Reserved, Standard, All upfront instances

Question 38

Which AWS service collects metrics from running EC2 instances?

Answer 38

Amazon CloudWatch

Question 39

Which of the following strategies helps protect your AWS root account?

Answer 39

Delete root user access keys if you do not need them

Question 40

What are some key benefits of using AWS CloudFormation? (Choose TWO)

Answer 40

It allows you to model your entire infrastructure in just a text file
It automates the provisioning and updating of your infrastructure in a safe and controlled manner
1- CloudFormation allows you to model your entire infrastructure in a text file. This template becomes the single source of truth for your infrastructure. This helps you to standardize infrastructure components used across your organization, enabling configuration compliance and faster troubleshooting.
2- AWS CloudFormation provisions your resources in a safe, repeatable manner, allowing you to build and rebuild your infrastructure and applications, without having to perform manual actions or write custom scripts. CloudFormation takes care of determining the right operations to perform when managing your stack, and rolls back changes automatically if errors are detected.
3- Codifying your infrastructure allows you to treat your infrastructure as just code. You can author it with any code editor, check it into a version control system, and review the files with team members before deploying into production.
4- CloudFormation allows you to model and provision, in an automated and secure manner, all the resources needed for your applications across all regions and accounts.

Question 41

What best describes penetration testing?

Answer 41

Testing your network to find security vulnerabilities that an attacker could exploit

Question 42

hich of the following can help secure your sensitive data in Amazon S3? (Choose

Answer 42

Encrypt the data prior to uploading it
Enable S3 Encryption

Question 43

Select the services that are server-based: (Choose TWO)

Answer 43

Amazon RDS
Amazon EMR

Server-based services include: Amazon EC2, Amazon RDS, Amazon Redshift and Amazon EMR.
Serverless services include: AWS Lambda, AWS Fargate, Amazon SNS, Amazon SQS and Amazon DynamoDB.

Question 44

Which of the following is an available option when purchasing Amazon EC2 instances?

Answer 44

The ability to pay upfront to get lower hourly costs

Question 45

You manage a blog on AWS that has different environments: development, testing, and production. What can you use to create a custom console for each environment to view and manage your resources easily?

Answer 45

AWS Resource Groups

            If you work with multiple resources in multiple environments, you might find it useful to manage all the resources in each environment as a group rather than move from one AWS service to another for each task. Resource Groups help you do just that. By default, the AWS Management Console is organized by AWS service. But with the Resource Groups tool, you can create a custom console that organizes and consolidates information based on your project and the resources that you use.

Question 46

Which statement best describes the AWS Pay-As-You-Go pricing model?
*

Answer 46

With AWS, you replace large capital expenses with low variable payments

Question 47

Which of the following are use cases for Amazon EMR? (Choose TWO)
*

Answer 47

Enables you to analyze and process extremely large amounts of data in a timely manner
Enables you to easily run and scale Apache Spark, Hadoop,and other Big Data frameworks

      Amazon Elastic Map Reduce (Amazon EMR) is a web service that enables businesses, researchers, data analysts, and developers to easily and cost-effectively process vast amounts of data. It utilizes a hosted Hadoop framework running on the web-scale infrastructure of Amazon Elastic Compute Cloud (Amazon EC2) and Amazon Simple Storage Service (Amazon S3).
    Amazon EMR is ideal for problems that necessitate the fast and efficient processing of large amounts of data. EMR securely and reliably handles a broad set of big data use cases, including log analysis, web indexing, data transformations (ETL), machine learning, financial analysis, scientific simulation, and bioinformatics.

Question 48

An organization uses a hybrid cloud architecture to run their business. Which AWS service enables them to deploy their applications to any AWS or on-premises server?
*

Answer 48

AWS CodeDeploy
(Correct)
AWS CodeDeploy is a service that automates application deployments to any instance, including Amazon EC2 instances and instances running on-premises. AWS CodeDeploy makes it easier for you to rapidly release new features, helps you avoid downtime during deployment, and handles the complexity of updating your applications. You can use AWS CodeDeploy to automate deployments, eliminating the need for error-prone manual operations, and the service scales with your infrastructure so you can easily deploy to one instance or thousands.

Question 49

Your application requirements for CPU and RAM are changing in an unpredictable way. Which service can be used to dynamically adjust these resources based on load

Answer 49

Auto Scaling
ELB is incorrect. Elastic Load Balancing (ELB) is used to distribute traffic automatically across multiple targets, such as Amazon EC2 instances, containers, IP addresses, and Lambda functions.

Question 50

You want to create a backup of your data in another geographical location. Where should you create this backup?

Answer 50

In another Region

Question 51

What does AWS Cost Explorer provide to help manage your spend?

Answer 51

Highly accurate cost forecasts for up to 12 months ahead

    AWS Cost Explorer has an easy-to-use interface that lets you visualize, understand, and manage your AWS costs and usage over time.
    Cost Explorer’s cost forecast capabilities use machine learning to learn each customer’s historical spend patterns and use that information to forecast expected costs. Cost Explorer’s forecasting enables you to get a better idea of what your costs and usage may look like in the future, so that you can plan ahead. Customers can use AWS Cost Explorer to estimate their cost and usage in a custom time range within the next 3 months (DAILY forecasts) or within the next 12 months (MONTHLY forecasts).

The other options are incorrect:

“Accurate estimates of AWS service costs based on your expected usage” is incorrect. AWS Cost Explorer forecasts your future costs based on your past usage; NOT based on your expected usage. The AWS tool that can provide accurate estimates of AWS service costs based on your expected usage is the AWS Pricing Calculator. For example, if you are planning to use 500 GB of S3 storage, you can input this value directly in the AWS Pricing Calculator interface and the calculator provides an estimate of what you will pay monthly for this amount of storage.

Question 52

A company has infrastructure hosted in an on-premises data center. They currently have an operations team that takes care of identity management. If they decide to migrate to the AWS cloud, which of the following services would help them perform the same role in AWS?

Answer 52

AWS IAM
(Correct)

Question 53

Which of the below options is true of Amazon VPC?
*

Answer 53

AWS Customers have complete control over their Amazon VPC virtual networking environment
(Correct)

Question 54

Which of the below options are use cases of the Amazon Route 53 service? (Choose TWO)

Answer 54

DNS configuration and management
(Correct)
Manages global application traffic through a variety of routing types
(Correct)

Question 55

You are using several on-demand EC2 Instances to run your development environment. What is the best way to reduce your charges when these instances are not in use?

Answer 55

Stopping the instances

Question 56

A developer wants to quickly deploy and manage his application in the AWS Cloud, but he doesn’t have any experience with cloud computing. Which of the following AWS services would help the developer achieve his goal?

Answer 56

AWS Elastic Beanstalk

Question 57

You need to migrate a large number of on-premises workloads to AWS. Which AWS service is the most appropriate?

Answer 57

AWS Server Migration Service
(Correct)

Question 58

Which of the following is a cloud computing deployment model that connects infrastructure and applications between cloud-based resources and existing resources not located in the cloud?

Answer 58

Hybrid

Question 59

What is the main benefit of the AWS Storage Gateway service?

Answer 59

It allows integration of on-premises IT environments with Cloud Storage

AWS Storage Gateway connects an on-premises software appliance with cloud-based storage to provide seamless integration between your on-premises IT environment and the AWS storage infrastructure.
AWS Storage Gateway supports four key hybrid cloud use cases:
(1) Provide on-premises applications low latency access to data stored in AWS.
(2) Migrate on-premises data to AWS, while maintaining fast local access to recently accessed data.
(3) Optimize data transfer to AWS by sending only changed data, and compressing data.
(4) Reduce on-premises storage with cloud-backed file shares

Question 60

Which of the following will affect how much you are charged for storing objects in S3? (Choose TWO)

Answer 60

The total size in gigabytes of all objects stored
The storage class used for the objects stored