AWS Cloud Practitioner

Question 1

With the IaaS cloud model, the cloud service provider provides what service? While the customer manages what services?

Answer 1

The provider manages virtualization, servers, storage, and networking.The company manages applications, data, runtime, middleware, and operating systems.

Question 2

With the PaaS cloud model, the cloud service provider provides what service? While the customer manages what services?

Answer 2

The provider manages runtime, middleware, operating systems, virtualization, servers, storage, and networking.The company manages applications and data.

Question 3

With the SaaS cloud model, the cloud service provider provides what service? While the customer manages what services?

Answer 3

The provider manages applications, data, runtime, middleware, operating systems, virtualization, servers, storage, and networking.The company manages nothing.

Question 4

Which access method provides packages that allow the developers to access AWS in a variety of popular programming languages and make it easy to use AWS in their existing applications?

Answer 4

AWS Software Development Kits (SDKs)

Question 5

What tool can be used to create estimates for AWS use cases?

Answer 5

AWS Pricing Calculator

Question 6

Cloud service providers like AWS can pass savings to their customers by aggregating usage from hundreds of thousands of customers in the cloud. What is this cloud computing advantage called?

Answer 6

Massive economies of sale

Question 7

With cloud computing, a company stops guessing how much capacity it will need over time and starts scaling up and down as needed with only a few minute’s notice. What is this cloud computing advantage called?

Answer 7

Stop guessing capacity

Question 8

Which AWS compute service enables a company to run code without managing or provisioning servers.

Answer 8

AWS Lambda

Question 9

Which AWS service is a CDN (content deliver network) platform that securely delivers video, data, and applications to customers globally with low latency and high transfer speeds.

Answer 9

Amazon CloudFront

Question 10

What AWS infrastructure is designed to deliver services with the lowest latency possible? They are closer to users than regions or availability zones, often in major cities, so responses can be fast.

Answer 10

Edge locations

Question 11

What security measures are AWS responsible for in the cloud?

Answer 11

Physical security of data centers
Hardware and software infrastructure
Network Infrastructure
Virtualization infrastructure

Question 12

What security measures are the Customer responsible for in the cloud?

Answer 12

Selecting and securing any instance operating systems
Securing the applications that are launched on AWS resources
Security group configurations
Firewall configurations
Network configurations
Account management

Question 13

What tool allows you to control access to compute, storage, database, and application services in the AWS Cloud?

Answer 13

AWS Identity and Access Management (IAM)

Question 14

What are the essential components of Identity and Access Management (IAM)?

Answer 14

IAM user
IAM group
IAM policy
IAM role

Question 15

Which AWS service would allow a company to consolidate billing and payment for multiple AWS accounts?

Answer 15

AWS Organizations

Question 16

How can a company ensure that provisioned accounts stay in the company’s access control guidelines?

Answer 16

Use a service control policy (SCP) to define the maximum available permissions for all the AWS accounts.

A service control policy (SCP) specifies the services and actions that users and roles can use in the accounts that the SCP affects. SCP offers central control over the maximum available permissions for all accounts in AWS Organizations.

Question 17

Which AWS service can a company use if they use AWS Key Management Service (KMS) to protect its design data and must log all key usage?

Answer 17

AWS CloudTrail

AWS KMS integrates with AWS CloudTrail, which logs all the key usage.

Question 18

What AWS service provides authentication, authorization, and user management for web and mobile apps, allowing users to sign in directly with a username and password, or through a third party such as Facebook, Amazon, Google, or Apple.

Answer 18

Amazon Cognito

Question 19

Which AWS solution can a company use to protect its web application against infrastructure attacks?

Answer 19

AWS Shield

It is a managed distributed denial of service (DDoS) protection service that safeguards applications running on AWS.

Question 20

A developer is testing a new application hosted within a custom VPC and wants only the workstation to access the application during the test.

Answer 20

192.0.2.0 /32

Every bit in a /32 IP address block is fixed, and none (zero) of the bits is flexible, which means 2^0 (or 1) IP address is available for the network. It represents a single IP address and a single host.

Question 21

For better customer experience, a company needs a fixed IP address that will not change when it starts or stops the instance for updates. Which type of IP address is recommended for a small business to attach to its instance?

Answer 21

An Elastic IP address

When a company stops and restarts an EC2 instance associated with an elastic IP address, the EC2 instance retains its IP address after restarting. The existing application will not break because the application sees the (elastic) IP address it was expecting, even though the back-end EC2 instance has changed.

Question 22

A cloud solutions architect is setting up a VPC to have an address space of 172.16.1.0/16. There is a requirement that all resources within the VPC must be able to talk locally to one another without any additional configuration.
What is the best destination CIDR block to route the network traffic to in the route table to meet this requirement?

Answer 22

172.16.1.0/16

Since the network traffic will travel local to the originating subnet, the destination CIDR block is the same as the originating 172.16.1.0/16 CIDR block.

Question 23

A cloud solutions architect is setting up a custom VPC in the AWS cloud. The architect has assigned the VPC to an IPv4 classless inter-domain routing (CIDR) block size of 10.0.1.0/26 and created four equal-sized subnets.
How many IP addresses will be available for use by each subnet?

Answer 23

11

A /26 IP address block will have 26 (or 64) IP addresses available, which equates to 16 IP addresses for each subnet. But AWS reserves 5 IP addresses, which are not available for use, leaving only 11 IP addresses available for use per subnet.

Question 24

How do you pay for AWS?

Answer 24

1) Pay for what you use
2) Pay less when you reserve
3) Pay less when you use more
4) Pay even less as AWS grows

Question 25

For certain services like Amazon EC2 and Amazon RDS, you can invest in reserved capacity. What options are available for Reserved Instances?

Answer 25

1) All Upfront Reserved Instance (or AURI)
2) Partial Upfront Reserved Instance (or PURI)
3) No Upfront Payments Reserved Instance (or NURI)

Question 26

Where can a customer go to get more details about Amazon EC2 billing activity that took place 3 months ago?

Answer 26

AWS Cost Explorer

Question 27

True or False? To receive the discounted rate associated with Reserved Instances, you must make a full, upfront payment for the term of the agreement.

Answer 27

False

Question 28

Which AWS service provides infrastructure security optimization recommendations?

Answer 28

AWS Trusted Advisor

Question 29

Which of the following must be specified when launching a new Amazon EC2 Windows instance?

Answer 29

The Amazon EC2 instance type and Amazon Machine Image (AMI)

Question 30

Amazon S3 replicates all objects…

Answer 30

in multiple availability zones within the same region.

Question 31

Which of the following can be used as a storage class for an S3 object lifecycle policy?

Answer 31

1) S3 - Standard Access
2) S3 - Infrequent Access
3) Simple Storage Service Glacier

Question 32

The name of an S3 bucket must be unique…

Answer 32

worldwide across all AWS accounts

Question 33

What service can you use to implement storage for Amazon EC2 instances that multiple virtual machines can access at the same time?

Answer 33

Amazon Elastic File System (Amazon EFS)

Question 34

Amazon Elastic Block Store (Amazon EBS) is recommended when data _____ and _____.

Answer 34

must be quickly accessible, requiring long-term persistence and requires an encryption solution.

Question 35

What is a vault regarding Amazon S3 Glacier?

Answer 35

A container for storing archives

Question 36

True or False? When you create a bucket in Amazon S3, it is associated with a specific AWS Region.

Answer 36

True

Question 37

What are two features of Amazon Elastic Block Store (Amazon EBS)?

Answer 37

Volumes can be encrypted transparently to workloads on the attached instance.

Data is automatically replicated within an Availability Zone.

Question 38

What database technology excels at scaling to hundreds of thousands of requests with key/value access to user profile and session?

Answer 38

Amazon DynamoDB

Question 39

What operation would you use to find an item in a DynamoDB table other than the item’s primary key?

Answer 39

Scan

Question 40

In Amazon DynamoDB, what does the query operation enable you to do?

Answer 40

1) Query a table using the partition key and an optional sort key filter
2) Query any secondary indexes that exist for a table
3) Efficiently retrieve items from a table or secondary index

Question 41

What AWS Cloud service is best suited for analyzing data?

Answer 41

Amazon Redshift

Question 42

In Amazon DynamoDB, an attribute is _____.

Answer 42

a fundamental data element

Question 43

If you are developing an application that requires a database with extremely fast performance, fast scalability, and flexibility in the database schema, which service should you consider?

Answer 43

Amazon DynamoDB

Question 44

When should you use Amazon Relational Database Service (Amazon RDS)?

Answer 44

When your application requires complex transactions or complex queries.

A medium to high query or write rate –Up to 30,000 IOPS (15,000 reads + 15,000 writes)

No more than a single worker node or shard

High durability

Question 45

What compatible relational database would be ideal for a company to use if they want to move their application on to AWS, which consists of a .NET layer that connects to a MySQL database?

Answer 45

Amazon Aurora

It is a MySQL and PostgreSQL compatible relational database.

Question 46

True or False? Amazon RDS automatically patches the database software and backs up your database, storing the backups for a user-defined retention period and enabling point-in-time recovery.

Answer 46

True

Question 47

What you should you consider when choosing a database type?

Answer 47

Data size
Data access period
Query frequency
Highly available

Question 48

Which Amazon EC2 instance type is best suited for scientific modeling, gaming, video encoding, and other applications that benefit from high compute power?

Answer 48

Compute optimized instances

Question 49

How should a company group its EC2 instances to make sure its application benefits from low network latency and high network throughput?

Answer 49

Cluster placement group

Question 50

What placement group is a logical grouping of instances within a single availability zone. It is recommended for applications that need low network latency, high network throughput, or both.

Answer 50

Cluster placement group

Question 51

What placement group is a group of instances that are each placed on distinct racks, with each rack having its own network and power source. It is recommended for applications that have a multiple number of critical instances that should be kept separate from each other.

Answer 51

Spread placement group

Question 52

Which optimized instances are suitable for performance databases, in-memory analytics, real-time processing of unstructured big data, and other enterprise applications.

Answer 52

Memory optimized instances

Question 53

Which instances provide a balance of CPU, memory, and network resources, making them a good choice for websites and web applications, development environments, build servers, code repositories, and line of business applications.

Answer 53

General purpose instances

Question 54

Which optimized instances are suitable for relational databases, NoSQL databases, distributed file systems, and other workloads that require high, sequential read and write access.

Answer 54

Storage optimized instances

Question 55

Which AWS solution is a shared files system that multiple EC2 instances can access concurrently.

Answer 55

Amazon Elastic File System (EFS)

Question 56

Which AWS solution is a persistent, mountable storage that can be attached to an EC2 instance for primary storage of frequently updated data. Only one EC2 instance at a time can mount an Amazon EBS volume.

Answer 56

Amazon Elastic Block Storage (EBS)

Question 57

Which AWS solution is a persistent storage where each file becomes an object and available through a uniform resource locator (URL) that can be accessed from anywhere.

Answer 57

Amazon Simple Storage Service (S3)

Question 58

Which AWS solution is a temporary storage that can be added to an Amazon EC2 instance.

Answer 58

Instance store

Question 59

Which life cycle policy is for data that are accessed less frequently but require rapid access when needed.

Answer 59

S3 standard - infrequent access

Question 60

Which life cycle policy allows the data to be retrieved in three to five hours.

Answer 60

S3 Glacier standard

Question 61

How can a company reduce the load on the RDS MySQL database and improve the overall performance?

Answer 61

Add a read replica to the RDS MySQL database

Question 62

Which database service delivers consistent, single-digit millisecond latency at any scale and allow a company to create responsive mobile, console, and desktop games?

Answer 62

Amazon DynamoDB

Question 63

What are the four areas of the performance efficiency pillar of the AWS Well-Architected Framework?

Answer 63

1) Selection
2) Review
3) Monitoring
4) Tradeoffs

Question 64

What is a principle when designing cloud-based systems?

Answer 64

Assume everything will fail.

Question 65

What are the pillars of the AWS Well-Architected Framework?

Answer 65

1) Operational Excellence
2) Security
3) Reliability
4) Performance Efficiency
5) Cost Optimization
6) Sustainability

Question 66

What are the Operational excellence design principles?

Answer 66

1) Perform operations as code
2) Make frequent, small, reversible changes
3) Refine operations procedures frequently
4) Anticipate failure
5) Learn from all operational events and failures

Question 67

What are the Security design principles?

Answer 67

1) Implement a strong identity foundation
2) Enable traceability*Apply security at all layers
3) Automate security best practices
4)vProtect data in transit and at rest
5) Keep people away from data
6) Prepare for security events

Question 68

What are the Reliability design principles?

Answer 68

1) Automatically recover from failure
2) Test recovery procedures
3) Scale horizontally to increase aggregate workload availability
4) Stop guessing capacity
5) Manage change in automation

Question 69

What are the Performance efficiency design principles?

Answer 69

1) Democratize advanced technologies
2) Go global in minutes*Use serverless architectures
3) Experiment more often
4) Consider mechanical sympathy

Question 70

What are the Cost optimization design principles?

Answer 70

1) Implement Cloud Financial Management
2) Adopt a consumption model
3) Measure overall efficiency
4) Stop spending money on undifferentiated heavy lifting
5) Analyze and attribute expenditure

Question 71

AWS Trusted Advisor provides insight regarding which five categories of an AWS account?

Answer 71

Performance, cost optimization, security, fault tolerance, and service limits.

Question 72

What is the focus of the sustainability pillar of the Well-Architected Framework?

Answer 72

Minimizing the environmental impacts of running cloud workloads

Question 73

What AWS tools help your application scale up or down based on demand?

Answer 73

Amazon EC2 Auto Scaling and Elastic Load Balancing

Question 74

What service would you use to send alerts based on Amazon CloudWatch alarms?

Answer 74

Amazon Simple Notification Service (Amazon SNS)

Question 75

What are three characteristics of Amazon EC2 Auto Scaling?

Answer 75

Amazon EC2 Auto Scaling responds to changing conditions by adding or terminating instances, launches instances from an AMI, and enforces a minimum number of running Amazon EC2 instances.

Question 76

What must be configured on an Elastic Load Balancing load balancer to expect incoming traffic?

Answer 76

A listener

Question 77

What elements are used to create an Amazon EC2 Auto Scaling launch configuration?

Answer 77

Amazon Machine Image (AMI)
Instance Type
Amazon Elastic Block Store (Amazon EBS) volumes

Question 78

What service can help you collect important metrics from Amazon RDS and Amazon EC2 instances?

Answer 78

Amazon CloudWatch

It is a monitoring service for AWS cloud resources and the applications you run on AWS.

Question 79

What are three elements of an Auto Scaling group?

Answer 79

You can specify the minimum and maximum number of instances as well as desired capacity.

Question 80

What service enables governance, compliance, operational auditing, and risk auditing of your AWS account

Answer 80

AWS CloudTrail

Question 81

In Elastic Load Balancing, when the load balancer detects an unhealthy target, what takes place?

Answer 81

The load balancer stops routing traffic to that target and sends it to a healthy target. It then resumes routing traffic to that target when it detects that the target is healthy again.

Question 82

What are the three types of load balancers that Elastic Load Balancing offers?

Answer 82

Application Load Balancer
Network Load Balancer
Classic Load Balancer

Question 83

What load balancer routes TCP and UDP traffic to targets based on IP data.
Submit

Answer 83

Network load balancer

Question 84

What load balancer provides basic load balancing across multiple EC2 instances and operates at both the application level and network transport level. It supports load balancing of applications that use HTTP, HTTPS, TCP, and SSL.

Answer 84

Classic load balancer

Question 85

What load balancer helps easily deploy, scale, and manage third-party virtual appliances, providing one gateway for distributing traffic across multiple virtual appliances while scaling them up or down based on demand.

Answer 85

Gateway load balancer

Question 86

What load balancer distributes incoming application traffic across multiple targets, such as EC2 instances, to increases the availability of the application.

Answer 86

Application load balancer

Question 87

What AWS solution will allow a company to capture detailed information about the calls made to elastic load balancing application programming interface (API) and can be analyzed to determine who made the call, what calls were made, when the call was made, the source IP address the call came from, and so on.

Answer 87

CloudTrail logs

Question 88

What ability of the AWS Cloud allows you to automatically acquire resources as needed and release resources when no longer needed.

Answer 88

Elasticity

Question 89

What type of instance can withstand some measure of degradation while still remaining available. Downtime is also minimized as much as possible, and minimal human intervention is required.

Answer 89

High availability

Question 90

What AWS ability refers to the built-in redundancy of an application’s components and the ability of the application to remain operational even if some of its components fail.

Answer 90

Fault tolerance

Question 91

What scaling option is useful for predictable workloads, when increases and decreases in the number of instances in the auto scaling group are known.

Answer 91

Scheduled scaling