Practice exam 7 Flashcards

1
Q

Which of the following can help secure your sensitive data in Amazon S3? (Choose TWO)

A. Delete the encryption keys once your data is encrypted.
B. With AWS you do not need to worry about encryption.
C. Enable S3 Encryption.
D. Encrypt the data prior to uploading it.
E. Delete all IAM users that have access to S3.

A

C. Enable S3 Encryption.
D. Encrypt the data prior to uploading it.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Which AWS service helps developers compile and test their code?

A. AWS CodeDeploy.
B. AWS CodeCommit.
C. CloudEndure.
D. AWS CodeBuild.

A

D. AWS CodeBuild.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Which of the following will affect how much you are charged for storing objects in S3? (Choose TWO)

A. Using default encryption for any number of S3 buckets.
B. The number of EBS volumes attached to your instances.
C. The storage class used for the objects stored.
D. Creating and deleting S3 buckets.
E. The total size in gigabytes of all objects stored.

A

C. The storage class used for the objects stored.
E. The total size in gigabytes of all objects stored.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What does the Amazon CloudFront service provide? (Choose TWO)

A. Tracks user activity and APl usage.
B. Increases application availability by caching at the edge.
C. Enables faster disaster recovery.
D. Stores archived data at very low costs.
E. Delivers content to end users with low latency.

A

B. Increases application availability by caching at the edge.
E. Delivers content to end users with low latency.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

You are facing a lot of problems with your current contact center. Which service provides a cloud-based contact center that can deliver a better service for your customers?

A. Amazon Lightsail.
B. Amazon Connect.
C. AWS Direct Connect.
D. AWS Elastic Beanstalk.

A

B. Amazon Connect.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

You have migrated your application to AWS recently. How can you view the AWS costs applied to your account?

A. Using the AWS Cost & Usage Report.
B. Using the AWS Total Cost of Ownership (TCO) dashboard.
C. Using the AWS CloudWatch logs dashboard.
D. Using the Amazon VPC dashboard.

A

A. Using the AWS Cost & Usage Report.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Which of the following are valid Amazon EC2 Reserved Instance types? (Choose TWO)

A. Convertible.
B. Expedited.
C. Bulk.
D. Spot.
E. Standard.

A

A. Convertible.
E. Standard.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Which of the following services gives you access to all AWS auditor-issued reports and certifications?

A. AWS Artifact.
B. AWS Config.
C. Amazon CloudWatch.
D. AWS CloudTrail.

A

A. AWS Artifact.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

You manage a blog on AWS that has different environments: development, testing, and production. What can you use to create a custom console for each environment to view and manage your resources easily?

A. AWS Resource Groups.
B. AWS Placement Groups.
C. AWS Management Console.
D. AWS Tag Editor.

A

A. AWS Resource Groups.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Which AWS service collects metrics from running EC2 instances?

A. Amazon Inspector.
B. Amazon CloudWatch.
C. AWS CloudFormation.
D. AWS CloudTrail.

A

B. Amazon CloudWatch.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Your web application currently faces performance issues and suffers from long load times. Which of the following AWS services could help fix these issues and improve performance?

A. Amazon Detective.
B. AWS X-Ray.
C. AWS Security Hub.
D. AWS Shield.

A

B. AWS X-Ray.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Which of the following compute resources are serverless? (Choose TWO)

A. Amazon EC2.
B. AWS Fargate.
C. AWS Lambda.
D. Amazon ECS.
E. Amazon EMR.

A

B. AWS Fargate.
C. AWS Lambda.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

For compliance and regulatory purposes, a government agency requires that their applications must run on hardware that is dedicated to them only. How can you meet this requirement?

A. Use EC2 Dedicated Hosts.
B. Use EC2 Reserved Instances.
C. Use EC2 Spot Instances.
D. Use EC2 On-demand Instances.

A

A. Use EC2 Dedicated Hosts.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Which AWS Cost Governance best practice recommends refining workloads regularly to make the most of existing AWS resources and reduce costs?

A. Tagging Enforcement.
B. Architecture Optimization.
C. Budgeting Processes.
D. Resource Controls.

A

B. Architecture Optimization.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

An organization needs to build a financial application that requires support for ACID transactions. Which AWS database service is most appropriate in this case?

A. RedShift.
B. RDS.
C. CloudHSM.
D. DMS.

A

B. RDS.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

What can you use to assign permissions directly to an IAM user?

A. IAM Identity.
B. IAM Group.
C. IAM Role.
D. IAM Policy.

A

D. IAM Policy.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

The owner of an E-Commerce application notices that the compute capacity requirements vary heavily from time to time. What makes AWS more economical than traditional data centers for this type of application?

A. AWS allows customers to launch powerful EC2 instances to handle spikes in load.
B. AWS allows customers to pay upfront to get bigger discounts.
C. AWS allows customers to launch and terminate EC2 instances based on demand.
D. AWS allows customers to choose cheaper types of EC2 instances that best fit their needs.

A

C. AWS allows customers to launch and terminate EC2 instances based on demand.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

Amazon RDS supports multiple database engines to choose from. Which of the following is not one of them?

A. PostgreSQL.
B. Oracle.
C. Microsoft SQL Server.
D. Teradata.

A

D. Teradata.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
19
Q

Which of the following AWS services would help you migrate on-premise databases to AWS?

A. AWS DMS.
B. Amazon S3 Transfer Acceleration.
C. AWS Directory Service.
D. AWS Transit Gateway.

A

A. AWS DMS.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
20
Q

For new AWS customers, what is the EASIEST way to launch a simple WordPress website on AWS?

A. Run WordPress on an Amazon Lightsail instance.
B. Install WordPress on an Amazon EC2 instance.
C. Use the Amazon S3 Web hosting feature.
D. Host the website directly on AWS Cloud Development Kit (AWS CDK).

A

A. Run WordPress on an Amazon Lightsail instance.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
21
Q

Which of the following would you use to manage your encryption keys in the AWS Cloud? (Choose TWO)

A. AWS KMS.
B. AWS Certificate Manager.
C. AWS CodeDeploy.
D. AWS CodeCommit.
E. CloudHSM.

A

A. AWS KMS.
E. CloudHSM.

22
Q

Which of the following services allows you to install and run custom relational database software?

A. Amazon EC2.
B. Amazon Cognito.
C. Amazon RDS.
D. Amazon Inspector.

A

A. Amazon EC2.

23
Q

Your application requirements for CPU and RAM are changing in an unpredictable way. Which service can be used to dynamically adjust these resources based on load?

A. Auto Scaling.
B. ELB.
C. Amazon Route53.
D. Amazon Elastic Container Service.

A

A. Auto Scaling.

24
Q

A company has infrastructure hosted in an on-premises data center. They currently have an operations team that takes care of identity management. If they decide to migrate to the AWS cloud, which of the following services would help them perform the same role in AWS?

A. AWS IAM.
B. AWS Outposts.
C. AWS Federation.
D. Amazon Redshift.

A

A. AWS IAM.

25
Q

What are some key design principles for designing public cloud systems? (Choose TWO)

A. Reserved capacity instead of on demand.
B. Loose coupling over tight coupling.
C. Servers instead of managed services.
D. Disposable resources instead of fixed servers.
E. Multi-AZ deployments instead of multi-region deployments.

A

B. Loose coupling over tight coupling.
D. Disposable resources instead of fixed servers.

26
Q

Where can AWS account owners get a list of all users in their account, including the status of their AWS credentials?

A. AWS CloudTrail Trails.
B. IAM Credential Report.
C. AWS Artifact reports.
D. AWS Cost and Usage Report.

A

B. IAM Credential Report.

27
Q

Which of the following services enables you to easily generate and use your own encryption keys in the AWS Cloud?

A. AWS Shield.
B. AWS Certificate Manager.
C. AWS CloudHSM.
D. AWS WAF.

A

C. AWS CloudHSM.

28
Q

You have developed a web application targeting a global audience. Which of the following will help you achieve the highest redundancy and fault tolerance from an infrastructure perspective?

A. There is no need to architect for these capabilities in AWS, as AWS is redundant by default.
B. Deploy the application in a single Availability Zone.
C. Deploy the application in multiple Availability Zones in a single AWS region.
D. Deploy the application in multiple Availability Zones in multiple AWS regions.

A

D. Deploy the application in multiple Availability Zones in multiple AWS regions.

29
Q

For some services, AWS automatically replicates data across multiple Availability Zones to provide fault tolerance in the event of a server failure or Availability Zone outage. Select TWO services that automatically replicate data across Availability Zones.

A. Instance Store.
B. S3.
C. DynamoDB.
D. Amazon Route 53.
E. AWS VPN.

A

B. S3.
C. DynamoDB.

30
Q

Which of the following factors affect Amazon CloudFront cost? (Choose TWO)

A. Number of Requests.
B. Traffic Distribution.
C. Number of Volumes.
D. Instance type.
E. Storage Class.

A

A. Number of Requests.
B. Traffic Distribution.

31
Q

Which of the following resources can an AWS customer use to learn more about prohibited uses of the services offered by AWS?

A. AWS Service Control Policies (SCPs).
B. AWS Artifact.
C. AWS Budgets.
D. AWS Acceptable Use Policy.

A

D. AWS Acceptable Use Policy.

32
Q

Which of the following security resources are available to any user for free? (Choose TWO)

A. AWS Bulletins.
B. AWS TAM.
C. AWS Support APl.
D. AWS Security Blog.
E. AWS Classroom Training.

A

A. AWS Bulletins.
D. AWS Security Blog.

33
Q

How can you protect data stored on Amazon S3 from accidental deletion?

A. By enabling S3 Versioning.
B. By configuring S3 Bucket Policies.
C. By configuring S3 Lifecycle Policies.
D. By disabling S3 Cross-Region Replication (CRR)

A

A. By enabling S3 Versioning.

34
Q

Which of the following is the responsibility of AWS according to the AWS Shared Responsibility Model?

A. Securing regions and edge locations.
B. Performing auditing tasks.
C. Monitoring AWS resources usage.
D. Securing access to AWS resources.

A

A. Securing regions and edge locations.

35
Q

Which of the following AWS support plans provides access to only the seven core AWS Trusted Advisor checks?

A. Business & Enterprise Support.
B. Basic & Developer Support.
C. Developer & Enterprise Support.
D. Developer & Business Support.

A

B. Basic & Developer Support.

36
Q

Which of the following is NOT a benefit of using AWS Lambda?

A. AWS Lambda runs code without provisioning or managing servers.
B. AWS Lambda provides resizable compute capacity in the cloud.
C. There is no charge when your AWS Lambda code is not running.
D. AWS Lambda can be called directly from any mobile app.

A

D. AWS Lambda can be called directly from any mobile app.

37
Q

How does AWS help customers achieve compliance in the cloud?

A. It’s not possible to meet regulatory compliance requirements in the Cloud.
B. AWS applies the most common Cloud security standards, and is responsible for complying with customers’ applicable laws and regulations.
C. AWS has many common assurance certifications such as ISO 9001 and HIPAA.
D. Many AWS services are assessed regularly to comply with local laws and regulations.

A

C. AWS has many common assurance certifications such as ISO 9001 and HIPAA.

38
Q

Who is responsible for scaling a DynamoDB database in the AWS Shared Responsibility Model?

A. Your security team.
B. Your development team.
C. AWS.
D. Your internal DevOps team.

A

C. AWS

39
Q

You are working as a web app developer. You are currently facing issues in media playback for mobile devices because your media format is not supported. Which of the following AWS services can help you convert your media into another format?

A. Amazon Elastic Transcoder.
B. Amazon Pinpoint.
C. AmazonS3.
D. Amazon Rekognition.

A

A. Amazon Elastic Transcoder.

40
Q

What are the benefits of the AWS Organizations service? (Choose TWO)

A. Control access to AWS services.
B. Help organizations design and maintain an accelerated path to successful cloud adoption.
C. Manage your organization’s payment methods.
D. Help organization achieve their desired business outcomes with AWS.
E. Consolidate billing across multiple AWS accounts.

A

A. Control access to AWS services.
E. Consolidate billing across multiple AWS accounts.

41
Q

Which AWS service allows you to build a data warehouse in the cloud?

A. AWS Shield.
B. Amazon Redshift.
C. Amazon RDS.
D. Amazon Comprehend.

A

B. Amazon Redshift.

42
Q

What AWS service allows you to buy third-party software solutions and services that run on AWS resources?

A. AWS Application Discovery service.
B. Amazon DevPay.
C. AWS Marketplace.
D. Resource Groups.

A

C. AWS Marketplace.

43
Q

Which of the following services is an AWS repository management system that allows for storing, versioning, and managing your application code?

A. AWS CodePipeline.
B. AWS CodeCommit.
C. AWS X-Ray.
D. Amazon Inspector.

A

B. AWS CodeCommit.

44
Q

Which AWS service can be used to route end users to the nearest AWS Region to reduce latency?

A. Amazon Cognito.
B. AWS Systems Manager.
C. AWS Cloud9.
D. Amazon Route 53.

A

D. Amazon Route 53.

45
Q

Which feature enables users to sign into their AWS accounts with their existing corporate credentials?

A. Federation.
B. Access keys.
C. IAM Permissions.
D. WAF rules.

A

A. Federation.

46
Q

According to the AWS shared responsibility model, what are the controls that customers fully inherit from AWS? (Choose TWO)

A. Awareness and Training.
B. Communications controls.
C. Data center security controls.
D. Environmental controls.
E. Resource Configuration Management.

A

C. Data center security controls.
D. Environmental controls.

47
Q

What can you access by visiting the URL: http://status.aws.amazon.com?

A. AWS Billing Dashboard.
B. AWS Cost Dashboard.
C. AWS Service Health Dashboard.
D. AWS Security Dashboard.

A

C. AWS Service Health Dashboard.

48
Q

Which of the following procedures can reduce latency when your end users are retrieving data? (Choose TWO)

A. Store media assets in the region closest to your end users.
B. Store media assets on an additional EBS volume and increase the capacity of your server.
C. Replicate media assets to at least two availability zones.
D. Reduce the size of media assets using the Amazon Elastic Transcoder.
E. Store media assets in S3 and use CloudFront to distribute these assets.

A

A. Store media assets in the region closest to your end users.
E. Store media assets in S3 and use CloudFront to distribute these assets.

49
Q

Which of the following are part of the seven design principles for security in the cloud? (Choose TWO)

A. Use manual monitoring techniques to protect your AWS resources.
B. Use IAM roles to grant temporary access instead of long-term credentials.
C. Scale horizontally to protect from failures.
D. Enable real-time traceability.
E. Never store sensitive data in the cloud.

A

B. Use IAM roles to grant temporary access instead of long-term credentials.
D. Enable real-time traceability.

50
Q

A company is migrating production workloads to AWS, and they are concerned about cost management across different departments. Which option should the company implement to categorize and track AWS spending?

A. Use the AWS Pricing Calculator service to monitor the costs incurred by each department.
B. Use Amazon Aurora to forecast AWS spending based on usage.
C. Apply cost allocation tags to segment AWS costs by different e projects and departments.
D. Configure AWS Price List API to receive billing updates for each department automatically.

A

C. Apply cost allocation tags to segment AWS costs by different e projects and departments.