Chapter 3 - Storage: Amazon Simple Storage Services (S3), EBS, EFS, Storage Gateway, Snoball, FSX, DATASYNC Flashcards

Question 1

Q

What are some of the key characteristics of Amazon S3? Choose 3.

Data is stored as objects within resources called “buckets”
With S3 Versioning, you can easily preserve, retrieve, and restore every version of an object stored in Amazon S3
With S3 Cross-Region Replication (CRR), you can replicate objects (and their respective metadata and object tags) into other AWS Regions
S3 can be attached to an EC2 instance to provide block storage

Answer

A

Data is stored as objects within resources called “buckets”
With S3 Versioning, you can easily preserve, retrieve, and restore every version of an object stored in Amazon S3
With S3 Cross-Region Replication (CRR), you can replicate objects (and their respective metadata and object tags) into other AWS Regions
S3 can be attached to an EC2 instance to provide block storage

Question 2

Q

What are storage classes provided by S3? Choose 3.

Standard, Intelligent-Tiering, Standard-Infrequent Access
One Zone-Infrequent Access (One Zone-IA), Glacier (S3 Glacier)
Glacier Deep Archive
Elastic File System and Elastic Block Storage
Storage Gateway

Answer

A

Standard, Intelligent-Tiering, Standard-Infrequent Access
One Zone-Infrequent Access (One Zone-IA), Glacier (S3 Glacier)
Glacier Deep Archive
Elastic File System and Elastic Block Storage
Storage Gateway

Question 3

Q

Which of the following are use cases for using Amazon Simple Storage Service (Amazon S3)? Choose 4.

File System - mounted to EC2 instance
For Backup and Storage
To Provide application hosting services that deploy, install, and manage web applications
To build a redundant, scalable, and highly available infrastructure that hosts video, photo, or music uploads and downloads.
To host software applications that customers can download

Answer

A

File System - mounted to EC2 instance
For Backup and Storage
To Provide application hosting services that deploy, install, and manage web applications
To build a redundant, scalable, and highly available infrastructure that hosts video, photo, or music uploads and downloads.
To host software applications that customers can download

Question 4

Q

A construction engineering company wants to leverage cloud storage to store their large architecture blueprints files which are saved as pdfs in network shared folder through a collaboration application between project team members. The blueprint files for the active projects should be accessible fast while files pertaining to completed projects are not accessed frequently. What is the best cloud storage solution for them which will work with existing application?

Store latest project files in s3-Standard and store files more than one month old S3-IA. Create a life cycle policy to move files accordingly.
Install an AWS Storage volume gateway in cached mode.
Install an AWS Storage volume gateway in stored mode.
Install AWS Storage File Gateway.

Answer

A

Store latest project files in s3-Standard and store files more than one month old S3-IA. Create a life cycle policy to move files accordingly.
Install an AWS Storage volume gateway in cached mode.
Install an AWS Storage volume gateway in stored mode.
Install AWS Storage File Gateway.

Question 5

Q

Which of the following statements are correct for Amazon S3 Data consistency model?

A process writes a new object to Amazon S3 and immediately lists keys within its bucket. Until the change is fully propagated, the object might not appear in the list.
A process replaces an existing object and immediately attempts to read it. Until the change is fully propagated, Amazon S3 might return the prior data.
A process deletes an existing object and immediately attempts to read it. Until the deletion is fully propagated, Amazon S3 might return the deleted data.
A process deletes an existing object and immediately lists keys within its bucket. Until the deletion is fully propagated, Amazon S3 might list the deleted object.
All of the above

Answer

A

A process writes a new object to Amazon S3 and immediately lists keys within its bucket. Until the change is fully propagated, the object might not appear in the list.
A process replaces an existing object and immediately attempts to read it. Until the change is fully propagated, Amazon S3 might return the prior data.
A process deletes an existing object and immediately attempts to read it. Until the deletion is fully propagated, Amazon S3 might return the deleted data.
A process deletes an existing object and immediately lists keys within its bucket. Until the deletion is fully propagated, Amazon S3 might list the deleted object.
All of the above

Question 6

Q

Jason creates a S3 bucket ‘mywestwebsite’ in ‘us-west-1’ region. Which of these are correct url to access this bucket? Choose 3.

https://amazonaws. s3.us-west-1.com/mywestwebsite
https://s3.us-west-1.amazonaws.com/mywestwebsite
https://s3.amazonaws.com/mywestwebsite
https://mywestwebsite.s3.amazonaws.com
https://mywestwebsite.s3.us-west-1.amazonaws.com

Answer

A

https://amazonaws. s3.us-west-1.com/mywestwebsite
https://s3.us-west-1.amazonaws.com/mywestwebsite
https://s3.amazonaws.com/mywestwebsite
https://mywestwebsite.s3.amazonaws.com
https://mywestwebsite.s3.us-west-1.amazonaws.com

Question 7

Q

Jason creates a S3 bucket ‘myeastwebsite’ in ‘us-east-1’ region. Which of these are correct url to access this bucket? Choose 4.

https://amazonaws.s3.us-east-1.com/myeastwebsite
https://s3.us-east-1.amazonaws.com/myeastwebsite
https://s3.amazonaws.com/myeastwebsite
https://myeastwebsite.s3.amazonaws.com
https://myeastwebsite.s3.us-east-1.amazonaws.com

Answer

A

https://amazonaws.s3.us-east-1.com/myeastwebsite
https://s3.us-east-1.amazonaws.com/myeastwebsite
https://s3.amazonaws.com/myeastwebsite
https://myeastwebsite.s3.amazonaws.com
https://myeastwebsite.s3.us-east-1.amazonaws.com

Question 8

Q

Based on the following Amazon S3 URL of an object, which of the following statement are correct? Choose 2.

https://mywestwebsite.s3.amazonaws.com/photos/whale.jpg

“whale.jpg” is stored in the folder “photos” inside the bucket “mywestwebsite”.
The key of the object will be “photos/whale.jpg”
The key of the object will be “whale.jpg”
The object “whale.jpg” is stored in the main bucket folder “mywestwebsite”

Answer

A

“whale.jpg” is stored in the folder “photos” inside the bucket “mywestwebsite”.
The key of the object will be “photos/whale.jpg”
The key of the object will be “whale.jpg”
The object “whale.jpg” is stored in the main bucket folder “mywestwebsite”

Question 9

Q

John Smith has an object saved in S3 with attribute value “color=violet”. He updates the object with attribute value to “color=red”. He GET the object after 2 seconds and reads the attribute value of color. What will be the value?

The value will be “ violet”
The value will be “red”
The value can be either “ violet” or “red”
He will get 404 object not found error.

Answer

A

The value will be “ violet”
The value will be “red”
The value can be either “ violet” or “red”
He will get 404 object not found error.

Question 10

Q

Agrim uses S3 to store all his personal photos. He has a bucket name “personalgallery” in us-east-1 region. After he came back from a vacation in Alaska, he uploads all camera snaps in his laptop desktop folder “alaskaphotos”. The photos have file name photo1.jpg, photo2.jpg etc. He logs into his AWS account and opens the S3 console. He then drags the desktop folder “alaskaphotos” inside the “personalgallery” bucket to upload files. Which of the following is correct? Choose 2.

All the snap files photo1.jpg, photo2.jpg etc. will be visible in the S3 console inside the main bucket folder “personalgallery”
All the snap files photo1.jpg, photo2.jpg etc. will be visible in the S3 console inside another folder “alaskaphotos” under the main bucket folder “personalgallery”
The key name of the photos files will be “photo1.jpg” “photo2.jpg” etc.
The key name of the photos files will be “/alaskaphotos/photo1.jpg” “/alaskaphotos/photo2.jpg” etc.

Answer

A

All the snap files photo1.jpg, photo2.jpg etc. will be visible in the S3 console inside the main bucket folder “personalgallery”
All the snap files photo1.jpg, photo2.jpg etc. will be visible in the S3 console inside another folder “alaskaphotos” under the main bucket folder “personalgallery”
The key name of the photos files will be “photo1.jpg” “photo2.jpg” etc.
The key name of the photos files will be “/alaskaphotos/photo1.jpg” “/alaskaphotos/photo2.jpg” etc.

Question 11

Q

John hosts his personal blog website as static website on S3. The bucket name he uses to store his website files is ‘west-bucket’ in ‘us-west-2’ region. The photos are uploaded under the main bucket folder using the S3 console. What is the url of john’s static website?

A. http:// s3-us-west-2.amazonaws.com/ west-bucket
B. http://west-bucket.s3-us-west-2.amazonaws.com/
C. http://west-bucket.s3-website-us-west-2.amazonaws.com/
D. http:// s3-website-us-west-2.amazonaws.com/west-bucket

Answer

A

A. http:// s3-us-west-2.amazonaws.com/ west-bucket
B. http://west-bucket.s3-us-west-2.amazonaws.com/
C. http://west-bucket.s3-website-us-west-2.amazonaws.com/
D. http:// s3-website-us-west-2.amazonaws.com/west-bucket

Question 12

Q

James hosts his personal blog website as static website on S3. The bucket name he uses to store his website files is ‘eu-bucket’ in ‘eu-central-1’ region. The photos are uploaded under the main bucket folder using the S3 console. What will be url of James’ static website?

A. http:// s3- eu-central-1.amazonaws.com/eu-bucket
B. http://eu-bucket.s3-website. eu-central-1.amazonaws.com/
C. http://eu-bucket.s3-website-eu-central-1.amazonaws.com/
D. http:// s3-website- eu-central-1amazonaws.com/eu-bucket

Answer

A

A. http:// s3- eu-central-1.amazonaws.com/eu-bucket
B. http://eu-bucket.s3-website. eu-central-1.amazonaws.com/
C. http://eu-bucket.s3-website-eu-central-1.amazonaws.com/
D. http:// s3-website- eu-central-1amazonaws.com/eu-bucket

Question 13

Q

You are an architect who has been tasked to build a static website using S3. What are the essential prerequisite steps? Choose 2.

Register a custom domain name in Route 53.
Configure the bucket’s property for static website hosting with an index, error file and redirection rule.
Enable HTTP on the bucket.
Ensure that bucket and its objects must have public read access.

Answer

A

Register a custom domain name in Route 53.
Configure the bucket’s property for static website hosting with an index, error file and redirection rule.
Enable HTTP on the bucket.
Ensure that bucket and its objects must have public read access.

Question 14

Q

Which S3 storage class is not designed to be resilient to simultaneous complete data loss in a single Availability Zone and partial loss in another Availability Zone?

STANDARD_IA
ONEZONE_IA
INTELLIGENT_TIERING
DEEP_ARCHIVE

Answer

A

STANDARD_IA
ONEZONE_IA
INTELLIGENT_TIERING
DEEP_ARCHIVE

Question 15

Q

Which S3 storage class are designed for long-lived and infrequently accessed data? Choose 2.

STANDARD_IA
ONEZONE_IA
GLACIER
DEEP_ARCHIVE

Answer

A

STANDARD_IA
ONEZONE_IA
GLACIER
DEEP_ARCHIVE

Question 16

Q

The GLACIER and DEEP_ARCHIVE storage classes offer the same durability and resiliency as the STANDARD storage class.

True
False

Answer

A

True
False

Question 17

Q

What are the benefits of AWS Storage Gateway? Choose 3.

Hybrid storage service that enables your on-premises applications to seamlessly use AWS cloud storage.
You can use the service for backup and archiving, disaster recovery, cloud data processing, storage tiering, and migration.
In premise solution for enhancing your company data center storage capability without connecting to AWS cloud storage.
Your applications connect to the service through a virtual machine or hardware gateway appliance using standard storage protocols, such as NFS, SMB and iSCSI.

Answer

A

Hybrid storage service that enables your on-premises applications to seamlessly use AWS cloud storage.
You can use the service for backup and archiving, disaster recovery, cloud data processing, storage tiering, and migration.
In premise solution for enhancing your company data center storage capability without connecting to AWS cloud storage.
Your applications connect to the service through a virtual machine or hardware gateway appliance using standard storage protocols, such as NFS, SMB and iSCSI.

Question 18

Q

What are the three storage interfaces supported by AWS Storage Gateway?

File Gateway
Volume Gateway
Tape Gateway
Network Gateway

Answer

A

File Gateway
Volume Gateway
Tape Gateway
Network Gateway

Question 19

Q

What is the minimum file size that can be store in S3?

1 Byte
0 Byte
1 KB
1 MB

Answer

A

1 Byte
0 Byte
1 KB
1 MB

Question 20

Q

What is the largest object size that can be uploaded to S3 in a single PUT?

5GB
5TB
5MB
5KB

Answer

A

5GB
5TB
5MB
5KB

Question 21

Q

What is the maximum file size that can be stored on S3?

5GB
5TB
5MB
5KB

Answer

A

5GB
5TB
5MB
5KB

Question 22

Q

A law firm has an internal tablet/mobile application used by employees to download large word documents in their devices for offline review. These document’s size are in the range of 10-20 MB. The employees save the document in local device storage, edit it in offline mode and then use the feature in app to upload file to cloud storage. Most of the time users are expected to be in area of high mobile bandwidth of LTE or WIFI but some time they may be in area using a slow speed network (EDGE) or 3G with lots of fluctuations. The files are stored in AWS S3 buckets. What approach should the architect recommend for file upload in application?

Use Single PUT operation to upload the files to S3
Use Multipart upload to upload the files to S3
Use Amazon S3 Transfer Acceleration to upload the files
Use Single POST operation to upload the files to S3

Answer

A

Use Single PUT operation to upload the files to S3
Use Multipart upload to upload the files to S3
Use Amazon S3 Transfer Acceleration to upload the files
Use Single POST operation to upload the files to S3

Question 23

Q

What are the recommended scenarios to use multipart uploading to S3? Choose 2.

If you’re uploading any size objects over a stable high-bandwidth network, use multipart uploading to maximize the use of your available bandwidth by uploading object parts in parallel for multi-threaded performance.
If you’re uploading large objects over a stable high-bandwidth network, use multipart uploading to maximize the use of your available bandwidth by uploading object parts in parallel for multi-threaded performance.
If you’re uploading over a stable high-bandwidth network, use multipart uploading to increase resiliency to network errors by avoiding upload restarts.
If you’re uploading over a spotty network, use multipart uploading to increase resiliency to network errors by avoiding upload restarts.

Answer

A

If you’re uploading any size objects over a stable high-bandwidth network, use multipart uploading to maximize the use of your available bandwidth by uploading object parts in parallel for multi-threaded performance.
If you’re uploading large objects over a stable high-bandwidth network, use multipart uploading to maximize the use of your available bandwidth by uploading object parts in parallel for multi-threaded performance.
If you’re uploading over a stable high-bandwidth network, use multipart uploading to increase resiliency to network errors by avoiding upload restarts.
If you’re uploading over a spotty network, use multipart uploading to increase resiliency to network errors by avoiding upload restarts.

Question 24

Q

What is S3 transfer acceleration? Choose 2.

Enables fast, easy, and secure transfers of files over long distances between your client and your Amazon S3 bucket.
Enables fast, easy, and secure transfers of files over short distances between your client and your Amazon S3 bucket.
Leverages Amazon CloudFront’s globally distributed AWS Edge Locations.
Leverages Amazon CloudFront’s regionally distributed AWS Edge Locations.

Answer

A

Enables fast, easy, and secure transfers of files over long distances between your client and your Amazon S3 bucket.
Enables fast, easy, and secure transfers of files over short distances between your client and your Amazon S3 bucket.
Leverages Amazon CloudFront’s globally distributed AWS Edge Locations.
Leverages Amazon CloudFront’s regionally distributed AWS Edge Locations.

Question 25

Q

You have designed an intranet web application for your employees to upload files to S3 buckets for archive. One of employee is trying to upload a 6 GB file to S3 but keep getting the following AWS error message “Your proposed upload exceeds the maximum allowed object size.”. What can be the possible reason?

Your intranet firewall is not allowing upload of that object size.
Your browser is not allowing upload of that object size.
Maximum size of object that can be uploaded to S3 in single PUT operation is 5 GB.
The S3 bucket cannot store object of that size.

Answer

A

Your intranet firewall is not allowing upload of that object size.
Your browser is not allowing upload of that object size.
Maximum size of object that can be uploaded to S3 in single PUT operation is 5 GB.
The S3 bucket cannot store object of that size.

Question 26

Q

In general, at what object size AWS recommends using multipart uploads instead of uploading the object in a single operation?

5 MB
50 MB
100 MB
5 GB

Answer

A

5 MB
50 MB
100 MB
5 GB

Question 27

Q

What are the reasons to use S3 Transfer acceleration? Choose 2.

Applications that upload to a centralized bucket from all over the world.
Transfer gigabytes to terabytes of data on a regular basis across continents.
To improve application performance
To improve snapshot copy of EC2 EBS volume.

Answer

A

Applications that upload to a centralized bucket from all over the world.
Transfer gigabytes to terabytes of data on a regular basis across continents.
To improve application performance
To improve snapshot copy of EC2 EBS volume.

Question 28

Q

Amazon EBS provide which type of storage?

Block based Storage
Object based Storage
Magnetic Storage
File Storage

Answer

A

Block based Storage
Object based Storage
Magnetic Storage
File Storage

Question 29

Q

Your company is planning to store their important documents in S3 storage. The compliance unit wants to be intimated when documents are created or deleted along with the user name. You know that S3 has the feature of event notification for object events like s3: ObjectCreated:*, s3: ObjectRemoved:*. What are the destination where S3 can publish events? Choose3.

Amazon SES
Amazon Simple Notification Service (Amazon SNS) topic
Amazon Simple Queue Service (Amazon SQS) queue
AWS Lambda

Answer

A

Amazon SES
Amazon Simple Notification Service (Amazon SNS) topic
Amazon Simple Queue Service (Amazon SQS) queue
AWS Lambda

Question 30

Q

You want to host your own cloud blog website with custom domain as “www. Mycloudblog.com” as static website using S3. What are the essential prerequisite steps? Choose 4.

Register the custom domain name in Route 53. Create the alias records that you add to the hosted zone for your domain name.
Configure the bucket’s property for static website hosting with an index, error file and redirection rule.
The bucket names must match the names of the website that you are hosting.
Enable HTTP on the bucket
Ensure that bucket and its objects must have public read access

Answer

A

Register the custom domain name in Route 53. Create the alias records that you add to the hosted zone for your domain name.
Configure the bucket’s property for static website hosting with an index, error file and redirection rule.
The bucket names must match the names of the website that you are hosting.
Enable HTTP on the bucket
Ensure that bucket and its objects must have public read access

Question 31

Q

What are the benefit of using versioning in S3? Choose 2.

To restrict access to bucket.
To preserve, retrieve, and restore every version of every object stored in your Amazon S3 bucket.
To encrypt objects stored in the bucket.
To recover from both unintended user actions and application failures.

Answer

A

To restrict access to bucket.
To preserve, retrieve, and restore every version of every object stored in your Amazon S3 bucket.
To encrypt objects stored in the bucket.
To recover from both unintended user actions and application failures.

Question 32

Q

What is the version id of the stored objects before the version is enabled on the bucket?

111111
222222
999999
Null

Answer

A

111111
222222
999999
Null

Question 33

Q

How does versioning-enabled buckets enable you to recover objects from accidental deletion or overwrite? Choose 2.

If you delete or overwrite an object AWS keeps a copy in the archive folder.
If you delete an object, instead of removing it permanently, Amazon S3 inserts a delete marker, which becomes the current object version.
If you overwrite an object, it results in a new object version in the bucket.
If you delete or overwrite an object AWS emails you a copy of the previous version.

Answer

A

If you delete or overwrite an object AWS keeps a copy in the archive folder.
If you delete an object, instead of removing it permanently, Amazon S3 inserts a delete marker, which becomes the current object version.
If you overwrite an object, it results in a new object version in the bucket.
If you delete or overwrite an object AWS emails you a copy of the previous version.

Question 34

Q

Choose the statements that are true? Choose 3.

Buckets can be in one of three states: unversioned (the default), versioning-enabled, or versioning-suspended.
Buckets can be in one of two states: unversioned (the default) or versioning-enabled.
Once you version-enable a bucket, it can never return to an unversioned state.
Once you version-enable a bucket, it can return to an unversioned state.
Once you version-enable a bucket, you can only suspend versioning on that bucket.

Answer

A

Buckets can be in one of three states: unversioned (the default), versioning-enabled, or versioning-suspended.
Buckets can be in one of two states: unversioned (the default) or versioning-enabled.
Once you version-enable a bucket, it can never return to an unversioned state.
Once you version-enable a bucket, it can return to an unversioned state.
Once you version-enable a bucket, you can only suspend versioning on that bucket.

Question 35

Q

Your company stores customer contract documents in S3. One of the Account Manager deleted the signed contracts of his accounts. As a result of this you have been asked to configure S3 storage in such a way that files can be protected against inadvertent or intentional deletion. How will you configure the S3? Choose 2.

Enable Versioning on the bucket.
Write a lambda program which copies the file in another backup bucket.
Enable MFA delete on the bucket.
Use lifecycle policy which copies the data after POST/UPDATE into another bucket.
Use cross region replication which copies the data after POST/UPDATE into another bucket.

Answer

A

Enable Versioning on the bucket.
Write a lambda program which copies the file in another backup bucket.
Enable MFA delete on the bucket.
Use lifecycle policy which copies the data after POST/UPDATE into another bucket.
Use cross region replication which copies the data after POST/UPDATE into another bucket.

Question 36

Q

What is S3 cross region replication?

Enables automatic, synchronous copying of objects across buckets in same AWS Regions
Enables automatic, synchronous copying of objects across buckets in different AWS Regions
Enables automatic, asynchronous copying of objects across buckets in different AWS Regions
Enables automatic, asynchronous copying of objects across buckets in same AWS Regions

Answer

A

Enables automatic, synchronous copying of objects across buckets in same AWS Regions
Enables automatic, synchronous copying of objects across buckets in different AWS Regions
Enables automatic, asynchronous copying of objects across buckets in different AWS Regions
Enables automatic, asynchronous copying of objects across buckets in same AWS Regions

Question 37

Q

What are the reasons to enable cross region replication on your S3 buckets?

Comply with compliance requirements
Minimize latency
Increase operational efficiency
Maintain object copies under different ownership
All of the above

Answer

A

Comply with compliance requirements
Minimize latency
Increase operational efficiency
Maintain object copies under different ownership
All of the above

Question 38

Q

What are pre-requisite to enable Cross Region Replication? Choose 4.

The source and destination bucket owner must have their respective source and destination AWS Regions enabled for their account.
Both source and destination buckets must be in different region having their versioning enabled.
Amazon S3 must have permissions to replicate objects from the source bucket to the destination bucket.
If the owner of the source bucket doesn’t own the object in the bucket, the object owner must grant the bucket owner READ and READ_ACP permissions with the object access control list (ACL).
Both source and destination buckets must be in same region having their versioning enabled
Amazon S3 needs to have only one permission to read objects in the source bucket.

Answer

A

The source and destination bucket owner must have their respective source and destination AWS Regions enabled for their account.
Both source and destination buckets must be in different region having their versioning enabled.
Amazon S3 must have permissions to replicate objects from the source bucket to the destination bucket.
If the owner of the source bucket doesn’t own the object in the bucket, the object owner must grant the bucket owner READ and READ_ACP permissions with the object access control list (ACL).
Both source and destination buckets must be in same region having their versioning enabled
Amazon S3 needs to have only one permission to read objects in the source bucket.

Question 39

Q

What is S3 Object expiration?

When an object reaches the end of its lifetime, Amazon S3 queues it for removal and removes it synchronously
When an object reaches the end of its lifetime, Amazon S3 queues it for removal and removes it asynchronously
When an object reaches the end of its lifetime, Amazon S3 queues it for removal and moves it to DEEP_ARCHIVE
When an object reaches the end of its lifetime, Amazon S3 queues it for removal and moves it to GLACIER

Answer

A

When an object reaches the end of its lifetime, Amazon S3 queues it for removal and removes it synchronously
When an object reaches the end of its lifetime, Amazon S3 queues it for removal and removes it asynchronously
When an object reaches the end of its lifetime, Amazon S3 queues it for removal and moves it to DEEP_ARCHIVE
When an object reaches the end of its lifetime, Amazon S3 queues it for removal and moves it to GLACIER

Question 40

Q

What isn’t replicated by default when you enable Cross Region Replication on your S3 bucket? Choose 3.

Objects with file type .doc, .pdf, png
Objects that existed before you added the replication configuration to the bucket.
Objects in the source bucket that the bucket owner doesn’t have permissions for.
Objects created with server-side encryption using customer-provided (SSE-C) encryption keys.
Objects encrypted using Amazon S3 managed keys (SSE-S3)

Answer

A

Objects with file type .doc, .pdf, png
Objects that existed before you added the replication configuration to the bucket.
Objects in the source bucket that the bucket owner doesn’t have permissions for.
Objects created with server-side encryption using customer-provided (SSE-C) encryption keys.
Objects encrypted using Amazon S3 managed keys (SSE-S3)

Question 41

Q

Suppose that you are a solution architect of a global company having regional headquarters in US-East, Ireland and Sydney. You have configured cross-region replication where bucket ‘myuseastbucket’ in ‘us-east-1’ US East (N. Virginia) region is the source and bucket ‘myeuwestbucket’ in ‘eu-west-1’ EU (Ireland) is the destination. Now you added another cross-region replication configuration where bucket ‘myeuwestbucket’ is the source and bucket ‘mysoutheastbucket’ in Asia Pacific (Sydney) ‘ap-southeast-2’ is the destination. You notice that file created in ‘myuseastbucket’ is getting replicated in ‘myeuwestbucket’ but not in ‘mysoutheastbucket’ ? What is the possible reason?

You have not configured cross region replication for ‘myuseastbucket’ to mysoutheastbucket’
Daisy Chain replication is not supported by S3.
You have not called S3 support and get cross region replication to more than two destination.
You have not given S3 permission to replicated objects to ‘mysoutheastbucket’

Answer

A

You have not configured cross region replication for ‘myuseastbucket’ to mysoutheastbucket’
Daisy Chain replication is not supported by S3.
You have not called S3 support and get cross region replication to more than two destination.
You have not given S3 permission to replicated objects to ‘mysoutheastbucket’

Question 42

Q

What are the actions that can be configured in the S3 object lifecycle? Choose 2.

Define when objects transition to another storage class.
Define when objects expire.
Define when object versioning is to be started.
Define when object cross region replication is to be started.

Answer

A

Define when objects transition to another storage class.
Define when objects expire.
Define when object versioning is to be started.
Define when object cross region replication is to be started.

Question 43

Q

Which statements on Amazon S3 pricing are true? Choose 3.

If you create a lifecycle expiration rule that causes objects that have been in INTELLIGENT_TIERING, STANDARD_IA, or ONEZONE_IA storage for less than 30 days to expire, you are charged for 30 days
You are always only charged for number of days objects are in the INTELLIGENT_TIERING, STANDARD_IA, or ONEZONE
If you create a lifecycle expiration rule that causes objects that have been in GLACIER storage for less than 90 days to expire, you are charged for 90 days.
If you create a lifecycle expiration rule that causes objects that have been in DEEP_ARCHIVE storage for less than 180 days to expire, you are charged for 180 days.

Answer

A

If you create a lifecycle expiration rule that causes objects that have been in INTELLIGENT_TIERING, STANDARD_IA, or ONEZONE_IA storage for less than 30 days to expire, you are charged for 30 days
You are always only charged for number of days objects are in the INTELLIGENT_TIERING, STANDARD_IA, or ONEZONE
If you create a lifecycle expiration rule that causes objects that have been in GLACIER storage for less than 90 days to expire, you are charged for 90 days.
If you create a lifecycle expiration rule that causes objects that have been in DEEP_ARCHIVE storage for less than 180 days to expire, you are charged for 180 days.

Question 44

Q

Which of the following lifecycle transitions between storage classes are supported? Choose 2.

You can only transition from STANDARD to STANDARD_IA or ONEZONE_IA
You can transition from the STANDARD storage class to any other storage class.
You can only transition from STANDARD to the GLACIER or DEEP_ARCHIVE storage classes.
You can transition from any storage class to the GLACIER or DEEP_ARCHIVE storage classes.

Answer

A

You can only transition from STANDARD to STANDARD_IA or ONEZONE_IA
You can transition from the STANDARD storage class to any other storage class.
You can only transition from STANDARD to the GLACIER or DEEP_ARCHIVE storage classes.
You can transition from any storage class to the GLACIER or DEEP_ARCHIVE storage classes.

Question 45

Q

Which lifecycle transitions between storage classes are supported? Choose 3.

You can transition from the STANDARD_IA storage class to the INTELLIGENT_TIERING or ONEZONE_IA storage classes.
You can transition from any storage class to the STANDARD storage class.
You can transition from the INTELLIGENT_TIERING storage class to the ONEZONE_IA storage class.
You can transition from the DEEP_ARCHIVE storage class to any other storage class.
You can transition from the GLACIER storage class to the DEEP_ARCHIVE storage class.

Answer

A

You can transition from the STANDARD_IA storage class to the INTELLIGENT_TIERING or ONEZONE_IA storage classes.
You can transition from any storage class to the STANDARD storage class.
You can transition from the INTELLIGENT_TIERING storage class to the ONEZONE_IA storage class.
You can transition from the DEEP_ARCHIVE storage class to any other storage class.
You can transition from the GLACIER storage class to the DEEP_ARCHIVE storage class.

Question 46

Q

Which lifecycle transitions between storage classes are not supported? Choose 4.

Transition from any storage class to the STANDARD storage class.
Transition from the STANDARD storage class to any other storage class.
Transition from the INTELLIGENT_TIERING storage class to the STANDARD_IA storage class.
Transition from the ONEZONE_IA storage class to the STANDARD_IA or INTELLIGENT_TIERING storage classes.
Transition from the DEEP_ARCHIVE storage class to any other storage class.

Answer

A

Transition from any storage class to the STANDARD storage class.
Transition from the STANDARD storage class to any other storage class.
Transition from the INTELLIGENT_TIERING storage class to the STANDARD_IA storage class.
Transition from the ONEZONE_IA storage class to the STANDARD_IA or INTELLIGENT_TIERING storage classes.
Transition from the DEEP_ARCHIVE storage class to any other storage class.

Question 47

Q

A manufacturing company has been using in-premise servers for storage. They have nearly used their installed storage capacity but don’t want to spend on adding new storage capacity to in-premise. They want to leverage AWS but don’t want to migrate their whole current in-premise data to cloud. Which AWS service can they use to achieve their requirement?

Amazon S3
Amazon EBS
Amazon Storage Gateway
Amazon RDS

Answer

A

Amazon S3
Amazon EBS
Amazon Storage Gateway
Amazon RDS

Question 48

Q

Which option of AWS Storage Gateway provides cloud-backed storage volumes that you can mount as Internet Small Computer System Interface (iSCSI) devices from your on-premises application servers?

File Gateway
Volume Gateway
Tape Gateway
iSCSI Gateway

Answer

A

File Gateway
Volume Gateway
Tape Gateway
iSCSI Gateway

Question 49

Q

You are creating a bucket with name ‘mybucket’ but you get an error message that ‘bucket name already exist’. You don’t have a bucket with same name nor you created a bucket with similar name earlier, what is the reason you are getting this error?

S3 doesn’t allow you to create a bucket with name ‘mybucket’, it is reserved.
You cannot have substring ‘bucket’ in you bucket name.
Bucket names must be unique across all existing bucket names in Amazon S3.
‘mybucket’ is not a DNS-compliant bucket name

Answer

A

S3 doesn’t allow you to create a bucket with name ‘mybucket’, it is reserved.
You cannot have substring ‘bucket’ in you bucket name.
Bucket names must be unique across all existing bucket names in Amazon S3.
‘mybucket’ is not a DNS-compliant bucket name

Question 50

Q

Which option of AWS Storage Gateway provides you feature to store and retrieve objects in Amazon S3 using industry-standard file protocols such as Network File System (NFS) and Server Message Block (SMB)?

File Gateway
Volume Gateway
Tape Gateway
iSCSI Gateway

Answer

A

File Gateway
Volume Gateway
Tape Gateway
iSCSI Gateway

Question 51

Q

Which of the following statements are correct about Volume Gateway? Choose 2.

Cached volumes store your data in Amazon S3 and retains a copy of frequently accessed data subsets locally.
Stored volumes provides low-latency access to your entire dataset by storing all your data locally.
Stored volumes store your data in Amazon S3 and retains a copy of frequently accessed data subsets locally.
Cached volumes provides low-latency access to your entire dataset by storing all your data locally.

Answer

A

Cached volumes store your data in Amazon S3 and retains a copy of frequently accessed data subsets locally.
Stored volumes provides low-latency access to your entire dataset by storing all your data locally.
Stored volumes store your data in Amazon S3 and retains a copy of frequently accessed data subsets locally.
Cached volumes provides low-latency access to your entire dataset by storing all your data locally.

Question 52

Q

What are the advantages provided by multipart upload? Choose 4.

Ability to upload parts in parallel to improve throughput.
Ability to begin an upload before knowing the object size.
Ability to pause and resume the upload.
Quick recovery from network issues.
Ability to upload 10 MB to 5 GB, last part can be < 10 MB.

Answer

A

Ability to upload parts in parallel to improve throughput.
Ability to begin an upload before knowing the object size.
Ability to pause and resume the upload.
Quick recovery from network issues.
Ability to upload 10 MB to 5 GB, last part can be < 10 MB.

Question 53

Q

What are the hosting options for AWS Storage Gateway? Choose 3.

On-premises as a VM appliance
Hardware appliance
In AWS Elastic Beanstalk
In AWS as an Amazon EC2 instance

Answer

A

On-premises as a VM appliance
Hardware appliance
In AWS Elastic Beanstalk
In AWS as an Amazon EC2 instance

Question 54

Q

Which of the following options are correct for File Storage Gateway? Choose 3.

File gateway presents a file-based interface to Amazon S3, which appears as a network file share. It enables you to store and retrieve Amazon S3 objects through standard file storage protocols.
With file gateway, your configured S3 buckets will be available as Network File System (NFS) mount points or Server Message Block (SMB) file shares to your existing file-based applications or devices.
With file gateway, your configured S3 buckets will be available as iSCSI shares to your existing file-based applications or devices.
The gateway translates these file operations into object requests on your S3 buckets. Your most recently used data is cached on the gateway for low-latency access, and data transfer between your data center and AWS is fully managed and optimized by the gateway.

Answer

A

File gateway presents a file-based interface to Amazon S3, which appears as a network file share. It enables you to store and retrieve Amazon S3 objects through standard file storage protocols.
With file gateway, your configured S3 buckets will be available as Network File System (NFS) mount points or Server Message Block (SMB) file shares to your existing file-based applications or devices.
With file gateway, your configured S3 buckets will be available as iSCSI shares to your existing file-based applications or devices.
The gateway translates these file operations into object requests on your S3 buckets. Your most recently used data is cached on the gateway for low-latency access, and data transfer between your data center and AWS is fully managed and optimized by the gateway.

Question 55

Q

Which S3 storage class is suitable for performance-sensitive use cases (those that require millisecond access time) and frequently accessed data?

INTELLIGENT_TIERING
STANDARD
STANDARD-IA
ONEZONE_IA

Answer

A

INTELLIGENT_TIERING
STANDARD
STANDARD-IA
ONEZONE_IA

Question 56

Q

Your company is adopting AWS and want to minimize on-premises storage footprint, but need to retain on-premises access to storage for their existing apps. You would like to leverage AWS services as a way to replace on-premises storage with cloud-backed storage, which allows existing applications to operate without changes, while still getting the benefits of storing and processing this data in AWS. Which AWS service will be appropriate?

Amazon S3
Amazon RDS
Amazon EBS
Amazon Storage Gateway

Answer

A

Amazon S3
Amazon RDS
Amazon EBS
Amazon Storage Gateway

Question 57

Q

Which of the following are applicable use cases for AWS Storage Gateway? Choose 3.

Increase performance and reduce latency of on premise storage.
Moving on-premises backups to AWS.
Replace on-premises storage with cloud-backed storage, while allowing their existing applications to operate without changes, while still getting the benefits of storing and processing this data in AWS.
Run apps in AWS and make the results available from multiple on-premises locations such as data centers or branch and remote offices. Also, customers that have moved their on-prem archives to AWS often want to make this data available for access from existing on-premises applications.

Answer

A

Increase performance and reduce latency of on premise storage.
Moving on-premises backups to AWS.
Replace on-premises storage with cloud-backed storage, while allowing their existing applications to operate without changes, while still getting the benefits of storing and processing this data in AWS.
Run apps in AWS and make the results available from multiple on-premises locations such as data centers or branch and remote offices. Also, customers that have moved their on-prem archives to AWS often want to make this data available for access from existing on-premises applications.

Question 58

Q

Which of the following server side encryption methods are supported in S3?

Server-Side Encryption with Amazon S3-Managed Keys (SSE-S3)
Server-Side Encryption with AWS KMS-Managed Keys (SSE-KMS)
Server-Side Encryption with Customer-Provided Keys (SSE-C)
All of the above

Answer

A

Server-Side Encryption with Amazon S3-Managed Keys (SSE-S3)
Server-Side Encryption with AWS KMS-Managed Keys (SSE-KMS)
Server-Side Encryption with Customer-Provided Keys (SSE-C)
All of the above

Question 59

Q

What is a Tape Gateway? Choose 3.

Cloud based Virtual Tape Library.
Cloud based File and Object Library.
Provides virtual tape library (VTL) interface for existing tape-based backup infrastructure to store data on virtual tape cartridges that you create on your tape gateway.
After you deploy and activate a tape gateway, you mount the virtual tape drives and media changer on your on-premises application servers as iSCSI devices.
After you deploy and activate a tape gateway, you mount the virtual tape drives and media changer on your on-premises application servers as File share.

Answer

A

Cloud based Virtual Tape Library.
Cloud based File and Object Library.
Provides virtual tape library (VTL) interface for existing tape-based backup infrastructure to store data on virtual tape cartridges that you create on your tape gateway.
After you deploy and activate a tape gateway, you mount the virtual tape drives and media changer on your on-premises application servers as iSCSI devices.
After you deploy and activate a tape gateway, you mount the virtual tape drives and media changer on your on-premises application servers as File share.

Question 60

Q

Which of the following two statements are correct for appropriate use for STANDARD_IA and ONEZONE_IA?

ONEZONE_IA —Use for your primary or only copy of data that can’t be recreated.
STANDARD_IA—Use for your primary or only copy of data that can’t be recreated.
ONEZONE_IA—Use if you can recreate the data if the Availability Zone fails, and for object replicas when setting cross-region replication (CRR).
STANDARD_IA —Use if you can recreate the data if the Availability Zone fails, and for object replicas when setting cross-region replication (CRR).

Answer

A

ONEZONE_IA —Use for your primary or only copy of data that can’t be recreated.
STANDARD_IA—Use for your primary or only copy of data that can’t be recreated.
ONEZONE_IA—Use if you can recreate the data if the Availability Zone fails, and for object replicas when setting cross-region replication (CRR).
STANDARD_IA —Use if you can recreate the data if the Availability Zone fails, and for object replicas when setting cross-region replication (CRR).

Question 61

Q

If you encrypt a bucket on S3, what type of encryption does AWS use?

1028-bit Advanced Encryption Standard (AES-1028)
256-bit Advanced Encryption Standard (AES-256)
128-bit Advanced Encryption Standard (AES-128)
192-bit Advanced Encryption Standard (AES-192)

Answer

A

1028-bit Advanced Encryption Standard (AES-1028)
256-bit Advanced Encryption Standard (AES-256)
128-bit Advanced Encryption Standard (AES-128)
192-bit Advanced Encryption Standard (AES-192)

Question 62

Q

Your company is exploring AWS Storage Gateway for extending their on-premise storage. One of the key criteria is to have AWS as the primary storage but still there should be fast and low latency access to frequently accessed data. Which Storage Gateway option will meet this criteria? Choose 2.

Tape Gateway
File Gateway
Volume Stored Gateway
Volume Cached Gateway

Answer

A

Tape Gateway
File Gateway
Volume Stored Gateway
Volume Cached Gateway

Question 63

Q

How can you protect data in transit to S3?

Using an AWS KMS–Managed Customer Master Key (CMK)
Using a Client-Side Master Key
Using SSL between client and S3
All of the above

Answer

A

Using an AWS KMS–Managed Customer Master Key (CMK)
Using a Client-Side Master Key
Using SSL between client and S3
All of the above

Question 64

Q

You have an object saved in S3 with attribute “color=yellow”. There are two applications ‘Client1’ and ‘Client 2’ which update the value of attribute to ‘Red’ and ‘Ruby’ one after another as shown in the figure below. Client 1 does a read operation ‘R1’ after the write W2 from client 2 and Client 2 does a read operation after the R1 as shown in the timeline in the figure below. What will be value of color for R1 read? Choose 3.

For R1 the value of Color = Red
For R1 the value of Color = Ruby
For R1 the value of Color = Yellow
For R1 the value of Color = Null

Answer

A

For R1 the value of Color = Red
For R1 the value of Color = Ruby
For R1 the value of Color = Yellow
For R1 the value of Color = Null

Answer 65

A

Using server side encryption
Using client side encryption
Using SSL between client and S3

Answer 66

A

With S3 Block Public Access, account administrators and bucket owners can easily set up centralized controls to limit public access to their Amazon S3 resources that are enforced regardless of how the resources are created.
You can enable block public access settings only for access points, buckets, and AWS accounts.
Amazon S3 evaluates whether an operation is prohibited by a block public access setting, it rejects any request that violates setting.
You can enable block public access settings only for objects, buckets, and AWS accounts.

Answer 67

A

After Step2, Amazon S3 generates a new version ID (121212), and adds the newer version to the bucket retaining the older version with ID=111111.There is two versions of photo.gif.
After Step2, Amazon S3 overwrites the older version with ID=111111 and grants it new ID. There is only one version of photo.gif.
After Step 3, when you DELETE an object, all versions remain in the bucket and Amazon S3 inserts a delete marker.
After Step 3, when you DELETE an object, all versions are deleted from the bucket.

Answer 68

A

Writing AWS Identity and Access Management (IAM) user policies that specify the users that can access specific buckets and objects.
Writing bucket policies that define access to specific buckets and objects.
Using Client side encryption
Using Amazon S3 Block Public Access as a centralized way to limit public access.
Using server side encryption
Setting access control lists (ACLs) on your buckets and objects.

Answer 69

A

When an object ACL is the only way to manage access to objects not owned by the bucket owner.
When permissions vary by object and you need to manage permissions at the object level.
When you want to define permission at object level.
To grant write permission to the Amazon S3 Log Delivery group to write access log objects to your bucket.
When the AWS account that owns the object also owns the bucket and you need to manage object permissions.

Answer 70

A

GET object will return object with version ID = 111111
GET object will return object with version ID = 222222
GET Object returns a 404 not found error.
GET object will return delete marker object with version ID = 456789

Answer 71

A

True
False

Answer 72

A

You can GET a specific object version.
You can permanently delete a specific object by specifying the version you want to delete.
You can permanently delete only latest version of object. version ID=222222
You can GET only latest version of object. version ID=222222

Answer 73

A

If you upload periodic logs to a bucket, your application might need them for a week or a month. After that, you might want to delete them.
Some documents are frequently accessed for a limited period of time. After that, they are infrequently accessed. At some point, you might not need real-time access to them, but your organization or regulations might require you to archive them for a specific period. After that, you can delete them.
Daily upload of data from regional offices to a central bucket for ETL processing.
You might upload some types of data to Amazon S3 primarily for archival purposes, long-term database backups, and data that must be retained for regulatory compliance.

Answer 74

A

You prefer to keep access control policies in the IAM environment not only for S3 but for other AWS resources
If you’re more interested in “What can this user do in AWS?”
If you’re more interested in “Who can access this S3 bucket?”
You have numerous S3 buckets each with different permissions requirements.

Answer 75

A

1,2,3,4
2,3,4,1
3,4,1,2
1,3,4,2

Answer 76

A

Amazon S3 evaluates the user context by reviewing the policies authored by the account to verify that Principal has the necessary permissions, then it evaluates the bucket context, to verify that bucket owner has granted Jill (or her parent AWS account) permission to perform the requested operation.
Amazon S3 evaluates the user context by reviewing the policies authored by the account to verify that Principal has the necessary permissions, then it evaluates the bucket context, to verify that bucket owner has granted Jill (or her parent AWS account) permission to perform the requested operation and last object context evaluates the object ACL to determine if Jill has permission to access the objects in the bucket.
Amazon S3 evaluates the bucket context, to verify that bucket owner has granted Jill (or her parent AWS account) permission to perform the requested operation and in object context evaluates the object ACL to determine if Jill has permission to access the objects in the bucket.

Answer 77

A

If you’re more interested in “What can this user do in AWS?”
If you’re more interested in “Who can access this S3 bucket?”
You want a simple way to grant cross-account access to your S3 environment, without using IAM roles.
Your IAM policies are reaching the size limit (up to 2 kb for users, 5 kb for groups, and 10 kb for roles). S3 supports bucket policies of up 20 kb.
You prefer to keep access control policies in the S3 environment.

Answer 78

A

In the user context Amazon S3 evaluates all policies that belong to the parent AWS account to determine if Principal has permission to perform the operation.
Amazon S3 evaluates the user context by reviewing the policies authored by the account to verify that Principal has the necessary permissions, then it evaluates the bucket context, to verify that bucket owner has granted Jill (or her parent AWS account) permission to perform the requested operation.
Amazon S3 evaluates the user context by reviewing the policies authored by the account to verify that Principal has the necessary permissions, then it evaluates the bucket context, to verify that bucket owner has granted Jill (or her parent AWS account) permission to perform the requested operation and last object context evaluates the object ACL to determine if Jill has permission to access the objects in the bucket.
Amazon S3 evaluates the bucket context, to verify that bucket owner has granted Jill (or her parent AWS account) permission to perform the requested operation and in object context evaluates the object ACL to determine if Jill has permission to access the objects in the bucket.

Answer 79

A

Resource-based access policy options that you can use to manage access to your buckets and objects.
You can grant permissions only to other AWS accounts; you cannot grant permissions to users in your account.
A grantee can be an AWS account or IAM user.
You cannot grant conditional permissions, nor can you explicitly deny permissions.
A grantee can be an AWS account or one of the predefined Amazon S3 groups.

Answer 80

A

Create bucket policies with Action=Allow and the condition block element IpAddress having values for the corporate domain ip address.
Create IAM policy with Action=Deny the condition block element if NotIpAddress having values for the corporate domain ip address.
Create IAM policy with Action=Allow the condition block element if IpAddress having values for the corporate domain ip address.
All of the above

Answer 81

A

Amazon RDS
Amazon Volume Storage Gateway Cached
Amazon EBS
Amazon S3
Amazon Volume Storage Gateway Stored

Answer 82

A

1/18/2020 10.30 AM UTC
1/18/2020 10.30 PM UTC
1/19/2020 00:00 UTC
1/18/2020 00:00 UTC

Answer 83

A

Make the S3 folder publically accessible
Attach a bucket policy to the folder so that it is accessible by the registered users
Generate a pre-signed URL to grant time-limited permission to download the video file
Create IAM users for the users registered in the website and give access to S3 bucket

Answer 84

A

Use AWS Tape Gateway.
Use a third party software to convert data in tape to a block storage for storing in in premise EFS.
Use a third party software to convert data in tape to an object storage for uploading to S3.
Use AWS File Gateway.
Use AWS Volume Cached Gateway

Answer 85

A

Use AWS Tape Gateway.
Use AWS Volume Storage Gateway.
Use AWS File Gateway.
Use AWS Volume Cached Gateway

Answer 86

A

INTELLIGENT_TIERING
STANDARD
STANDARD-IA
ONEZONE_IA

Answer 87

A

Use AWS Tape Gateway.
Use AWS Volume Stored Gateway.
Use AWS File Gateway.
Use AWS Volume Cached Gateway

Answer 88

A

On the specified date, S3 expires all the qualified objects in the bucket.
S3 will expire subsequent new objects created in the bucket.
S3 continues to apply the date-based action even after the date has passed, as long as the rule status is Enabled.
S3 will apply the date based rule only for that day on the existing and new objects created till 11:59:59 PM.

Answer 89

A

STANDARD_IA
ONEZONE_IA
GLACIER
DEEP_ARCHIVE

Answer 90

A

You need to pass a unique header value from browser to Amazon S3 for every request.
You need to pass a unique header value from Amazon S3 to browser for every request.
Need to configure your CORS Settings for your bucket on amazon S3 console.
Need to configure your CORS Settings for your bucket in Route 53 record.

Answer 91

A

Use AWS Tape Gateway.
Use Volume Storage Gateway.
Use AWS File Gateway.
Use AWS Volume Cached Gateway

Answer 92

A

Use STANDARD tier for storing paid invoice for first 30 days. Configure lifecycle rule to move the invoice to ONEZONE_IA after 30 days and to GLACIER after the financial year is over.
Use STANDARD tier for storing paid invoice for first 30 days. Configure lifecycle rule to move the invoice to STANDARD _IA after 30 days and to GLACIER after the financial year is over.
Use STANDARD tier for storing paid invoice for first 30 days. Configure lifecycle rule to move the invoice to STANDARD _IA after 30 days and to DEEP_ARCHIVE after the financial year is over.
Use STANDARD tier for storing paid invoice for first 30 days. Configure lifecycle rule to move the invoice to STANDARD _IA after 30 days and to DEEP_ARCHIVE after the financial year is over.

Answer 93

A

GLACIER—used for archives where portions of the data might need to be retrieved in minutes.
DEEP_ARCHIVE —used for archives where portions of the data might need to be retrieved in minutes.
GLACIER —Use for archiving data that rarely needs to be accessed.
DEEP_ARCHIVE—Use for archiving data that rarely needs to be accessed.

Answer 94

A

Objects that are stored in the GLACIER or DEEP_ARCHIVE storage classes are available in real time.
You must first initiate a restore request and then a temporary copy of the object is available immediately for the duration that you specify in the request.
Objects that are stored in the GLACIER or DEEP_ARCHIVE storage classes are not available in real time.
You must first initiate a restore request and then wait until a temporary copy of the object is available for the duration that you specify in the request.

Answer 95

A

The configuration rules does not apply to existing objects.
The configuration rules applies to existing objects.
The configuration rules applies to objects that you add later.
The configuration rules applies only to existing objects and not to objects that you add later.

Answer 96

A

Part Size can be from 5 MB to 5 GB
Part Size can be from 50 MB to 5 GB
Last part can be < 5 MB
Last part can be < 5 KB

Answer 97

A

S3 will return an error.
S3 deletes all the versions in the bucket.
S3 creates a delete marker and returns its version ID in the response.
S3 will delete the current object ID =222222

Answer 98

A

Store the data on Amazon S3 with lifecycle policy that change the storage class from Standard to Standard-IA in six months, from Standard-IA to Glacier in 1.5 years and expiration in 3.5 years.
Store the data on Amazon S3 with lifecycle policy that change the storage class from Standard to Standard-IA in six months, from Standard-IA to Glacier in two year and expiration in five years.
Store all the data in Redshift data warehouse.
Store all the data in EBS general purpose volume attached to EC2 cheapest instance.

Answer 99

A

Delete API invoked with Key=photo.gif and ID=111111, will return an error.
Delete API invoked with Key=photo.gif and ID=456789, will return an error.
Delete API invoked with Key=photo.gif and ID=111111, will delete that version.
Delete API invoked with Key=photo.gif and ID=456789, will delete the delete marker. This makes the object reappear in your bucket.

Answer 100

A

S3 SQL
S3 Select
S3 Download
S3 Filter

Answer 101

A

The Amazon Elastic Block Store (Amazon EBS) volumes is ideal for temporary storage
The instance store is ideal for temporary storage
For data to retain longer, or encrypt the data, use Amazon Elastic Block Store (Amazon EBS) volumes
For data to retain longer, or encrypt the data, use instance store

Answer 102

A

SSD-backed volumes optimized for transactional workloads involving frequent read/write operations with small I/O size, where the dominant performance attribute is IOPS
HDD-backed volumes optimized for transactional workloads involving frequent read/write operations with small I/O size, where the dominant performance attribute is IOPS
SSD-backed volumes optimized for large streaming workloads where throughput (measured in MiB/s) is a better performance measure than IOPS
HDD-backed volumes optimized for large streaming workloads where throughput (measured in MiB/s) is a better performance measure than IOPS

Answer 103

A

General purpose SSD volume balances price and performance for a wide variety of workloads
Provisioned IOPS SSD is highest-performance SSD volume for mission-critical low-latency or high-throughput workloads
Provisioned IOPS SSD volume balances price and performance for a wide variety of workloads
General purpose is highest-performance SSD volume for mission-critical low-latency or high-throughput workloads

Answer 104

A

Provides block level storage volumes for use with EC2 instances.
You can mount multiple volumes on the same instance, and each volume can also be attached to more than one instance at a time.
You can mount multiple volumes on the same instance, but each volume can be attached to only one instance at a time.
You can create a file system on top of these volumes, or use them in any way you would use a block device (like a hard drive).
EBS volumes that are attached to an EC2 instance are exposed as storage volumes that persist independently from the life of the instance.

Answer 105

A

General Purpose SSD (gp2)
Provisioned IOPS SSD (io1)
Throughput Optimized HDD (st1)
Cold HDD (sc1)

Answer 106

A

General Purpose SSD (gp2)
Provisioned IOPS SSD (io1)
Throughput Optimized HDD (st1)
Cold HDD (sc1)

Answer 107

A

General Purpose SSD (gp2)
Provisioned IOPS SSD (io1)
Throughput Optimized HDD (st1)
Cold HDD (sc1)

Answer 108

A

General Purpose SSD (gp2)
Provisioned IOPS SSD (io1)
Throughput Optimized HDD (st1)
Cold HDD (sc1)

Answer 109

A

New volumes created from existing EBS snapshots load lazily in the background.
New volumes created from existing EBS snapshots doesn’t load lazily in the background.
After test environment EBS volume is created from production EBS snapshot, there is no need to wait for all of the data to transfer from Amazon S3 to test EBS volume before your attached test EC2 instance can start accessing the volume and all its data.
After test environment EBS volume is created from production EBS snapshot, you have to wait for all of the data to transfer from Amazon S3 to test EBS volume before your attached test EC2 instance can start accessing the volume and all its data.

Answer 110

A

Use EBS-Optimized Instances
Use Compute intensive Instance
Be Aware of the Performance Penalty When Initializing Volumes from Snapshots
Use RAID 0 to Maximize Utilization of Instance Resources

Answer 111

A

RAID 0
RAID 1
RAID 5
RAID 6

Answer 112

A

RAID 0
RAID 1
RAID 5
RAID 6

Answer 113

A

You can create a 1000 GiB RAID 1 array with an available bandwidth of 8,000 IOPS and 1,000 MiB/s of throughput.
You can create a 500 GiB RAID 0 array with an available bandwidth of 4,000 IOPS and 500 MiB/s of throughput
You can create a 1000 GiB RAID 0 array with an available bandwidth of 8,000 IOPS and 1,000 MiB/s of throughput.
You can create a 500 GiB RAID 1 array with an available bandwidth of 4,000 IOPS and 500 MiB/s of throughput.

Answer 114

A

General Purpose SSD (gp2) and Provisioned IOPS SSD (io1)—deliver consistent performance whether an I/O operation is large or sequential.
General Purpose SSD (gp2) and Provisioned IOPS SSD (io1)—deliver consistent performance whether an I/O operation is random or sequential.
HDD-backed volumes—Throughput Optimized HDD (st1) and Cold HDD (sc1)—deliver optimal performance only when I/O operations are large and sequential.
HDD-backed volumes—Throughput Optimized HDD (st1) and Cold HDD (sc1)—deliver optimal performance only when I/O operations are random and sequential.

Answer 115

A

Have two 500 GiB Amazon EBS io1 volumes in RAID 1 configuration.
Use EC2 instance with enhanced networking and put in placement group.
Have two 500 GiB Amazon EBS io1 volumes in RAID 0 configuration.
Use EBS optimized EC2 instance.

Answer 116

A

RAID 0
RAID 1
RAID 5
RAID 6

Answer 117

A

By enabling encryption by default, the volume will be automatically encrypted.
Amazon EBS doesn’t support encryption of new empty EBS volume other than default key encryption.
Amazon EBS supports encryption of EBS snapshots only and not of new volume.
By enabling encryption for the specific volume creation operation, you can specify the CMK to be used to encrypt the volume.

Answer 118

A

Snapshots of encrypted volumes are automatically encrypted.
Volumes that you create from encrypted snapshots are automatically encrypted.
Snapshots of encrypted volumes are not automatically encrypted.
Volumes that you create from encrypted snapshots are not automatically encrypted.
Volumes that you create from an unencrypted snapshot that you own or have access to can be encrypted on-the-fly.
Volumes that you create from an unencrypted snapshot that you own or have access to cannot be encrypted on-the-fly.

Answer 119

A

When you copy an unencrypted snapshot that you own, you cannot encrypt it during the copy process.
When you copy an encrypted snapshot that you own or have access to, you cannot reencrypt it with a different key during the copy process.
When you copy an unencrypted snapshot that you own, you can encrypt it during the copy process.
When you copy an encrypted snapshot that you own or have access to, you can reencrypt it with a different key during the copy process.

Answer 120

A

Data at rest inside the volume
All data moving between the volume and the instance
All snapshots created from the volume
All volumes created from those snapshots
All of the above

Answer 121

A

Use Amazon Data Lifecycle Manager (DLM) to create lifecycle policies to automate EBS snapshot management.
Use AWS Glue to create lifecycle policies to automate EBS snapshot management.
Use AWS Data pipeline to create lifecycle policies to automate EBS snapshot management.
Create a scheduled job which runs twice a day across the workloads system.

Answer 122

A

An unencrypted EBS volume cannot be converted to encrypt in any way.
Create an EBS snapshot of the volume you want to encrypt. Copy the EBS snapshot, encrypting the copy in the process.
Create a new EBS volume from your new encrypted EBS snapshot. The new EBS volume will be encrypted. Detach the original EBS volume and attach your new encrypted EBS volume, making sure to match the device name.
Create a new, empty EBS volume by enabling encryption by default, the volume is automatically encrypted. Detach the original EBS volume and attach your new encrypted EBS volume, making sure to match the device name.

Answer 123

A

An in-progress snapshot is not affected by ongoing reads and writes to the volume.
You cannot use the EBS while the snapshot is in progress.
EBS volume can be used in read only mode while snapshot is in progress.
Snapshots only capture data that has been written to your Amazon EBS volume at the time the snapshot command is issued.

Answer 124

A

Modify the web application business layer program to encrypt/decrypt the data in transit and data at rest.
Use AWS IAM to encrypt/decrypt the data in transit and data at rest.
Configure your AWS account to enforce the encryption of the new EBS volumes and snapshot copies that you create.
When you create a new, empty EBS volume, you can encrypt it by enabling encryption for the specific volume creation operation.
Use HTTPS/TLS protocol for communication between user and webserver to encrypt data in transit.

Answer 125

A

S3
EFS
EBS
RDS

Answer 126

A

Throughput Optimized HDD is Low-cost HDD volume designed for frequently accessed, throughput-intensive workloads
Cold HDD is Lowest cost HDD volume designed for less frequently accessed workloads
Throughput Optimized is Lowest cost HDD volume designed for less frequently accessed workloads
Cold HDD is Low-cost HDD volume designed for frequently accessed, throughput-intensive workloads

Answer 127

A

Yes EBS volume is automatically replicated to three AZs in the region it is created.
Yes if Multi-AZ is enabled for the EBS volume.
No, EBS volume is automatically replicated within one zone only in which it is created.
Yes if the EC2 instance auto scale to multi AZs.

Answer 128

A

General Purpose SSD (gp2)
Provisioned IOPS SSD (io1)
Throughput Optimized HDD (st1)
Cold HDD (sc1)

Answer 129

A

Use S3-Standard-IA for premium members and S3-One Zone-IA for free members.
Use S3-Standard for free members and S3-One Zone-IA for premium members.
Use S3-Standard for premium members and S3-Glacier for free members.
Use S3-Standard for premium members and S3-One Zone-IA for free members.

Answer 130

A

General Purpose SSD (gp2)
Provisioned IOPS SSD (io1)
Throughput Optimized HDD (st1)
Cold HDD (sc1)

Answer 131

A

GET after a DELETE
LIST after a DELETE
GET after PUT to an existing object
GET after PUT of new object

Answer 132

A

General Purpose SSD (gp2)
Provisioned IOPS SSD (io1)
Throughput Optimized HDD (st1)
Cold HDD (sc1)

Answer 133

A

Set S3 object lock
Enable S3 cross region replication
Enable bucket versioning
Enable MFA delete on a bucket

Answer 134

A

Write a java or .net program which will run at a scheduled time.
Use Cloudtrail , CloudWatch and CloudFormation
User EBS Automate
Use Amazon Data Lifecycle Manager (Amazon DLM)

Answer 135

A

Access Analyzer for S3
Policy Analyzer for S3
Bucket Analyzer for S3
Amazon Inspector

Answer 136

A

Expedited
Standard
Urgent
Bulk
Immediate

Answer 137

A

Create only one bucket example.com to host your content. Upload your index document and optional website content to your bucket.
Create two buckets. You will host your content out of the root domain bucket (example.com), and you will create a redirect request for the subdomain bucket (www.example.com). Upload your index document and optional website content to your root domain bucket.
Make example.com bucket publically readable. Disable block public access for the bucket and write a bucket policy that allows public read access.
Create the alias records in the hosted zone for your domain maps example.com and www.example.com. The alias records use the Amazon S3 website endpoints.

Answer 138

A

Use Object Locking with retention period of 7 years in compliance mode.
Use Object Locking with retention period of 7 years in governance mode.
Use Object Locking with legal period of 7 years in compliance mode.
Use Object Locking with legal period of 7 years in governance mode.

Answer 139

A

New object created events
Object removal events
New bucket created events
Bucket removal events
Restore object events
Reduced Redundancy Storage (RRS) object lost events
Replication events

Answer 140

A

Cross-Region replication (CRR)
Subnet-to-Subnet replication (SSR)
Account-to-Account replication (AAR)
Same-Region replication (SRR)

Answer 141

A

Replicate objects while retaining metadata
Replicate objects into different storage classes
Replicate objects across VPCs
Maintain object copies under different ownership
Replicate objects within 15 minutes

Answer 142

A

Aggregate logs into a single bucket
Production and test accounts that uses same data
Store multiple copies of your data in separate AWS accounts within a certain Region to abide by data sovereignty rules.
Reduce latency of global users.

Answer 143

A

Objects that existed before you added the replication configuration to the bucket.
Objects created after you add a replication configuration.
Unencrypted objects and Objects encrypted at rest under Amazon S3 managed keys (SSE-S3) or customer master keys (CMKs) stored in AWS Key Management Service (SSE-KMS).
Only objects in the source bucket for which the bucket owner has permissions to read objects and access control lists (ACLs).
Objects created with server-side encryption using customer-provided (SSE-C) encryption keys.

Answer 144

A

After you configure B as the source bucket, object replication from A to B will stop.
You cannot configure an existing ‘destination’ bucket as ‘source’ bucket.
Objects in bucket B that are replicas of objects in bucket A are replicated to bucket C.
Objects in bucket B that are replicas of objects in bucket A are not replicated to bucket C.

Answer 145

A

Amazon S3 adds a delete marker in bucket A. It does replicate the delete marker in the destination bucket B.
Amazon S3 deletes that object version in the bucket A. But it doesn’t replicate the deletion in the destination bucket B.
Amazon S3 deletes that object version in the bucket A and replicates the deletion in the destination bucket B.
Amazon S3 adds a delete marker in bucket A. But it doesn’t replicate the delete marker in the destination bucket B.

Answer 146

A

Amazon S3
Amazon RDS
Amazon EFS
Amazon EBS

Answer 147

A

Amazon S3
Amazon RDS
Amazon EFS
Amazon EBS

Answer 148

A

You can migrate data from on-premises datacenters to permanently reside in Amazon EFS file systems.
You can support cloud bursting workloads to offload your application processing to the cloud. You can move data from your on-premises servers into your EFS file systems, analyze it on a cluster of EC2 instances in your Amazon VPC, and store the results permanently in your EFS file systems or move the results back to your on-premises servers.
You can periodically copy your on-premises file data to EFS to support backup and disaster recovery scenarios.
All of the above

Answer 149

A

Amazon EFS
Amazon EBS
Amazon S3
Amazon RDS

Answer 150

A

Cloud trail
VPC Flow Logs
Cloudwatch
Server Access Logging

Answer 151

A

Create an IAM role and attach it to the bucket.
Remove Block Public Access settings on the bucket.
Use a bucket policy that grants public read access to a specific object tag.
Update the object’s access control list (ACL) for photo objects which you want to make accessible.

Answer 152

A

Snowball
Snowball Edge
Internet
None of the above

Answer 153

A

Snowball : 80 TB and 50 TB models
Snowball edge: 80 TB and 50 TB models
Snowball: 100 TB
Snowball edge : 100 TB

Answer 154

A

Use one Snowball 80 TB device
Use two Snowball 50 TB device
Use one Snowball Edge 100 TB storage optimized device
Through 100mbs internet connection

Answer 155

A

This file will be stored as a file in the S3 bucket my-bucket with a key of dir/file.html.
This file will be stored as an object in the S3 bucket my-bucket with a key of dir/file.html.
This file will be stored as a file in the S3 bucket my-bucket with a key of file.html.
This file will be stored as an object in the S3 bucket my-bucket with a key of file.html.

Answer 156

A

Grant the Amazon S3 Log Delivery group write permission on the source bucket for which you want Amazon S3 to deliver access logs.
Turn on the log delivery by adding logging configuration on the source bucket for which you want Amazon S3 to deliver access logs.
Grant the Amazon S3 Log Delivery group write permission on the target bucket where you want the access logs saved.
Turn on the log delivery by adding logging configuration on the target bucket where you want the access logs saved.

Answer 157

A

Amazon S3 Standard, S3 Standard-IA, and S3 Glacier storage classes redundantly store your objects on multiple devices across a minimum of three Availability Zones (AZs)
S3 One Zone-IA storage class stores data redundantly across multiple devices within a single AZ.
Amazon S3 Standard, S3 Standard-IA, and S3 Glacier storage classes redundantly store your objects on multiple devices across a minimum of two Availability Zones (AZs)
Amazon S3 Standard, S3 Standard-IA, and S3 Glacier storage classes redundantly store your objects on multiple devices across a minimum of six Availability Zones (AZs)

Answer 158

A

Store the data in Deep Archive and use Expedited retrieval option
Purchase provisioned retrieval capacity if your workload requires highly reliable and predictable access to a subset of your data in minutes
Store the data in Glacier and use Standard retrieval option
Store the data in Glacier and use Expedited retrieval option

Answer 159

A

I/O size is capped at 256 KiB for HDD volumes
I/O size is capped at 1,024 KiB for HDD volumes
I/O size is capped at 256 KiB for SSD volumes
I/O size is capped at 1,024 KiB for SSD volumes

Answer 160

A

1 operation
16 operations
32 operations
4 operations

Answer 161

A

256 KiB
1024 KiB
16KiB
128KiB

Answer 162

A

100
300
3000
5000

Answer 163

A

St1 provides Throughput Credits and Burst Performance.
For a 1-TiB st1 volume, burst throughput is limited to 250 MiB/s, the bucket fills with throughput credits at 40 MiB/s, and it can hold up to 1 TiB-worth of credits.
St1 provides I/O Credits and Burst Performance.
For a 1-TiB st1 volume, burst I/O is limited to 3000, the credit bucket is not applicable.

Answer 164

A

You cannot create snapshots for Amazon EBS volumes that are configured in a RAID array.
To create snapshots for Amazon EBS volumes that are configured in a RAID array, use the multi-volume snapshot feature of your instance.
Follow a mutli-step process: pause I/O or stop the instance to temporarily disable write access, create snapshots for each of your volumes, and then resume I/O.
You can create snapshots for each of your volumes individually, AWS will ensure that they are in sync with relative to each other.

Answer 165

A

Use S3 multipart upload.
Change you design to first upload the data in region closest to the plan , then replicate it to us-west-1 central bucket using cross-region replication.
Use S3 Transfer Acceleration.
Use Amazon Cloudfront.

Answer 166

A

Cold HDD (sc1) Volumes
Throughput Optimized HDD (st1) Volumes
Provisioned IOPS SSD (io1)
General Purpose SSD (gp2)

Answer 167

A

Cold HDD (sc1) Volumes
Throughput Optimized HDD (st1) Volumes
Provisioned IOPS SSD (io1)
General Purpose SSD (gp2)

Answer 168

A

Cold HDD (sc1) Volumes
Throughput Optimized HDD (st1) Volumes
Provisioned IOPS SSD (io1)
General Purpose SSD (gp2)

Answer 169

A

You will have to create IAM user for each employee and attach only ‘upload’ permission for the user to that bucket.
Create a presigned url to upload an object to the bucket and share it with employees.
Make the bucket public and as soon as employees have uploaded the document change it to be private.
You will have to create IAM role for each employee and attach only ‘upload’ permission for the user to that bucket.

Answer 170

A

Standard – Designed for frequently accessed data.
Standard-IA – Designed for long-lived, infrequently accessed data.
One Zone-IA – Designed for long-lived, infrequently accessed, non-critical data.
Glacier – Designed for long-lived, infrequent accessed, archived critical data.
Standard – Designed for long-lived, infrequently accessed data.
Glacier Deep Archive - Lowest cost storage class designed for long-term retention of data that will be retained for 7-10 years and Retrieval time within 12 hours
One Zone-IA – Designed for long-lived, infrequently accessed, critical data.

Answer 171

A

Use Intelligent-Tiering storage class for your transaction record objects.
Use Standard storage class for your transaction record objects and create a lifecycle policy to movie it to Standard-IA after 30 days.
Use Standard storage class for your transaction record objects and write a custom program which moves objects to Standard-IA if not accessed in last 30 days.
Use Standard storage class for your transaction record objects and create a lifecycle policy to movie it to OneZone-IA after 30 days.

Answer 172

A

Data is stored in Amazon S3 Glacier in “archives.”
A single archive can be as large as 40 terabytes. You can store an unlimited number of archives and an unlimited amount of data in Amazon S3 Glacier.
Data stored in Amazon S3 Glacier is mutable, meaning that after an archive is created it can be updated.
Amazon S3 Glacier uses “vaults” as containers to store archives. You can also set access policies for each vault to grant or deny specific activities to users.
You can specify controls such as “Write Once Read Many” (WORM) in a Vault Lock policy and lock the policy from future edits.
Data stored in Amazon S3 Glacier is immutable, meaning that after an archive is created it cannot be updated.

Answer 173

A

Use File Gateway after migrating files to Amazon S3, File gateway supports Amazon S3 Standard, S3 Standard - Infrequent Access (S3 Standard - IA) and S3 One Zone – IA, access files using Network File System (NFS)
Use EFS which supports the Network File System. Migrate documents to EFS. Amazon EFS oﬀers two storage classes, Standard and Infrequent Access. Create and Mount a File System On-Premises with AWS Direct Connect and VPN
Migrate documents to S3 and make use of Standard and Infrequent Access storage class.
Use Volume Gateway after migrating files to Amazon S3, Volume gateway supports Amazon S3 Standard, S3 Standard - Infrequent Access (S3 Standard - IA) and S3 One Zone – IA, access files using Network File System (NFS)

Answer 174

A

0 bytes
1 bytes
1 KB
100 KB

Answer 175

A

HTTP 100
HTTP 200
HTTP 300
HTTP 400

Answer 176

A

Overwrite PUTs of existing object
PUTs of new object
GET
DELETEs

Answer 177

A

Overwrite PUTs of existing object
PUTs of new object
GET
DELETEs

Answer 178

A

To Create a new object
To Update object ACL
To Change the versioning state of your bucket
To Permanently delete an object version

Answer 179

A

S3
EBS
EMR
EFS
RDS MySQL

Answer 180

A

SSL endpoints using the HTTP protocol
SSL endpoints using the HTTPS protocol
VPC endpoints using the HTTP protocol
VPC endpoints using the HTTPS protocol

Answer 181

A

Test the impact of geographical distance between the client and the S3 bucket.
There might be latency introduced in your application or how your host that’s making the requests is handling the requests sent and responses received.
Check the storage class for the object.
Supported request rate per prefix may be exceeded.

Answer 182

A

Using Caching for Frequently Accessed Content with Amazon CloudFront, Amazon ElastiCache, or Amazon S3 Transfer Acceleration
Using Caching for Frequently Accessed Content with Amazon CloudFront, Amazon ElastiCache, or AWS Elemental MediaStore
Timeouts and Retries for Latency-Sensitive Applications
Horizontal Scaling and Request Parallelization for High Throughput
Using Amazon S3 Transfer Acceleration to Accelerate Geographically Disparate Data Transfers
Using Amazon CloudFront to Accelerate Geographically Disparate Data Transfers

Answer 183

A

Combine Amazon S3 (Storage) and Amazon EC2 (Compute) in the Same AWS Region
Use Amazon S3 Transfer Acceleration to Minimize Latency Caused by Distance
Randomizing prefix naming with hashed characters to optimize performance for frequent data retrievals
Using the Range HTTP header in a GET Object request, fetch a byte-range from an object, transferring only the specified portion.

Answer 184

A

Use enhanced networking on the EC2 instance.
Use parallel workloads for the data transfer.
EC2 and S3 bucket should be in different region.
Use an Amazon Virtual Private Cloud (Amazon VPC) endpoint for Amazon S3.
Use S3 Transfer Acceleration between geographically distant AWS Regions.
Use EC2 in cluster placement group.
Upgrade your EC2 instance type.
Use chunked transfers.

Answer 185

A

To perform large-scale batch operations on Amazon S3 objects and can execute a single operation on lists of Amazon S3 objects that you specify.
Can be used to copy objects and set object tags or access control lists (ACLs).
You can also initiate object restores from Amazon S3 Glacier or invoke an AWS Lambda function to perform custom actions using your objects.
To perform ETL jobs on data stored in S3.

Answer 186

A

Security Group and NACL setting
Ownership of the prefix or object
Restrictions in the bucket policy
Restrictions in your AWS Identity and Access Management (IAM) user policy
Permissions to object encrypted by AWS Key Management Service (AWS KMS)

Answer 187

A

Enabling default encryption doesn’t change the encryption of objects that are already in the bucket, the encryption that you set applies only to future uploads.
Enabling default encryption will change the encryption of existing objects as well as future uploads.
Any objects already encrypted using Amazon S3-managed keys (SSE-S3) they are re-encrypted with KMS.
Any unencrypted objects already in the bucket remain unencrypted or any objects already encrypted using Amazon S3-managed keys (SSE-S3) remain encrypted with SSE-S3.

Answer 188

A

REST API Endpoint Supports both public and private content, Website Endpoint Supports only publicly readable content.
REST API Endpoint Supports only publicly readable content, Website Endpoint Supports both public and private content.
REST API Endpoint Supports SSL connections. Website Endpoint Does not support SSL connections.
REST API Endpoint does not Support SSL connections. Website Endpoint support SSL connections
REST API Endpoint Supports all bucket and object operations, Website Endpoint Supports only GET and HEAD requests on objects.

Answer 189

A

EFS: Data is stored redundantly across multiple AZs. EBS: Data is stored redundantly in a single AZ.
EBS: Data is stored redundantly across multiple AZs. EFS: Data is stored redundantly in a single AZ.
EBS: Up to thousands of Amazon EC2 instances, from multiple AZs, can connect concurrently to an EBS volume. EFS: A single Amazon EC2 instance in a single AZ can connect to a file system.
EFS Use cases: Big data and analytics, media processing workflows, content management, web serving, and home directories. EBS use cases: Boot volumes, transactional and NoSQL databases, data warehousing, and ETL.
EFS: Up to thousands of Amazon EC2 instances, from multiple AZs, can connect concurrently to a file system. EBS: A single Amazon EC2 instance in a single AZ can connect to an EBS volume.

Answer 190

A

Default Performance Mode
Max IOPS performance Mode
General Purpose Performance Mode
Max I/O Performance Mode

Answer 191

A

Default Performance Mode
Max IOPS performance Mode
General Purpose Performance Mode
Max I/O Performance Mode

Answer 192

A

IOPS Mode
Bursting Mode
Provisioned Mode
I/O Mode

Answer 193

A

You can’t use Amazon EFS with Microsoft Windows–based Amazon EC2 instances.
You can’t use Amazon EFS with Linux–based Amazon EC2 instances.
You can use Amazon EFS with Microsoft Windows–based Amazon EC2 instances.
You can use Amazon EFS with Linux–based Amazon EC2 instances.

Answer 194

A

Lambda
EFS
EBS
EC2
FSx for Windows File Server

Answer 195

A

For Windows-based applications, Amazon FSx provides fully managed Windows file servers with features and performance optimized for “lift-and-shift” business-critical application workloads including home directories (user shares), media workflows, and ERP applications via SMB protocol.
If you have Linux-based applications, Amazon EFS is a cloud-native fully managed file system that provides simple, scalable, elastic file storage accessible from Linux instances via the NFS protocol.
For compute-intensive and fast processing workloads, like high performance computing (HPC), machine learning, EDA, and media processing, Amazon FSx for Lustre, provides a file system that’s optimized for performance, with input and output stored on Amazon S3.
If you have Windows-based applications, Amazon EFS is a cloud-native fully managed file system that provides simple, scalable, elastic file storage accessible from EC2 windows instances via the NFS protocol

Answer 196

A

IBM I, MacOS, OS 400
Amazon EC2, VMware Cloud on AWS,
Amazon WorkSpaces, and Amazon AppStream 2.0 instances
Windows Server 2008 and Windows 7, and current versions of Linux

Answer 197

A

Amazon FSx automatically replicates your data within an Availability Zone (AZ) to protect it from component failure, continuously monitors for hardware failures, and automatically replaces infrastructure components in the event of a failure.
Create a Read Replica file system, which provides performance and redundancy across multiple AZs.
Create a Multi-AZ file system, which provides redundancy across multiple AZs.
Amazon FSx also takes highly durable backups (stored in S3) of your file system daily using Windows’s Volume Shadow Copy Service, and allows you to take additional backups at any point.

Answer 198

A

Automatically replicates your data within an Availability Zone (AZ) to protect it from component failure, continuously monitors for hardware failures, and automatically replaces infrastructure components in the event of a failure.
Automatically provisions and maintains a standby file server in a different Availability Zone.
Any changes written to disk in your file system are synchronously replicated across AZs to the standby.
In the event of planned file system maintenance or unplanned service disruption, Amazon FSx automatically fails over to the secondary file server
Any changes written to disk in your file system are asynchronously replicated across AZs to the standby.

Answer 199

A

File Server EC2 instance client goes down.
An Availability Zone outage occurs.
The preferred file server becomes unavailable.
The preferred file server undergoes planned maintenance.

Answer 200

A

For windows client there will be automatic failover without manual intervention from the preferred file server to the standby file server.
Linux clients do not support automatic DNS-based failover. Therefore, they don’t automatically connect to the standby file server during a failover.
For Linux client there will be automatic failover without manual intervention from the preferred file server to the standby file server.
For windows client after the resources in the preferred subnet are available, Amazon FSx automatically fails back to the preferred file server in the preferred subnet.

Answer 201

A

Using Amazon FSx with AWS AD Connector
Using Amazon FSx with AWS Directory Service for Microsoft Active Directory
Using Amazon FSx with Your Self-Managed Microsoft Active Directory.
Using Amazon FSx with AWS Simple AD

Answer 202

A

Turning on data deduplication
Turning on data compression
Turning on data intelligent tie
Turning on FSx Analysis

Answer 203

A

10 TB
16 TB
32 TB
64 TB

Answer 204

A

Delete and merge all separate file systems in single file system.
Use DFS Namespaces to group file shares on multiple file systems into one common folder structure (a namespace)
Use Multi-AZ deployment in all the file systems.
Use Read Replicas in all the files systems.

Answer 205

A

Your data can be used on-premises and stored durably in AWS Cloud storage services, including Amazon S3, Amazon S3 Glacier, Amazon S3 Glacier Deep Archive, and Amazon EBS.
Easy for you to move data over the network between on-premises storage and AWS.
Transfer data rapidly over the network into AWS, up to 10 times faster than is common with open-source tooling.
A single device can transport multiple terabytes of data and multiple devices can be used in parallel to transfer petabytes of data into or out of an Amazon S3 bucket

Answer 206

A

Data migration – Move active datasets rapidly over the network into Amazon S3, Amazon EFS, or Amazon FSx for Windows File Server.
Data movement for timely in-cloud processing – Move data into or out of AWS for processing when working with systems that generate data on-premises.
Data archiving – Move cold data from expensive on-premises storage systems directly to durable and secure long-term storage such as Amazon S3 Glacier or S3 Glacier Deep Archive.
Hybrid cloud workloads: manage hybrid file and object workloads that run across both your organization and the AWS Cloud.

Answer 207

A

AWS Snowball
AWS Snowball Edge
AWS Snowmobile
AWS DataSync
AWS AppSync

Answer 208

A

Utilize public service endpoints in their respective AWS Regions (such as datasync.us-east-1.amazonaws.com)
Use VPC Internet Gateway
Use VPC Endpoints
From on-premise have Direct Connect or VPN to your VPC

Answer 209

A

AWS DataSync is ideal for online data transfers.
AWS Snowball Edge is suitable for offline data transfers
AWS Snowball Edge is ideal for online data transfers.
AWS DataSync is suitable for offline data transfers

Answer 210

A

If you want to transfer data from existing storage systems (e.g. Network Attached Storage), If you want to transfer data from instruments that cannot be changed (e.g. DNA sequencers, video cameras)
If your applications are already integrated with the Amazon S3 API, and you want higher throughput for transferring large files to S3.
If you want to automate moving data to multiple destinations with built-in retry and network resiliency mechanisms, data integrity verification

Answer 211

A

1 operation
16 operations
32 operations
4 operations

Answer 212

A

Integrates with Amazon RDS, making it easy to process data sets with the Lustre file system.
As a fully managed service, Amazon FSx for Lustre enables you to launch and run the world’s most popular high-performance file system. Lustre file systems for any workload where storage speed matters.
Integrates with Amazon S3, making it easy to process data sets with the Lustre file system.
It is POSIX-compliant, so you can use your current Linux-based applications without having to make any changes.
It is POSIX-compliant, so you can use your current Windows-based applications without having to make any changes.

Answer 213

A

Media processing and transcoding
Machine learning
Click stream analysis
ETL Jobs
High performance computing
Autonomous Vehicles
Electronic Design Automation (EDA)

Answer 214

A

Use EFS, for Windows Applications and Windows instances when you need simple, scalable, fully managed elastic NFS file.
Use FSx for Windows File Server, for Linux based application when you need centralized storage having native support for POSIX file system features and support for network access through industry-standard Server Message Block (SMB) protocol.
Use EFS, for Linux Applications and Linux instances when you need simple, scalable, fully managed elastic NFS file.
Use FSx for Windows File Server, for Windows based application when you need centralized storage having native support for Windows file system features and support for network access through industry-standard Server Message Block (SMB) protocol.
Use FSx for Lustre, when you need to launch and run the popular, high-performance Lustre file system for workloads where speed matters, such as machine learning, high performance computing (HPC), video processing, and financial modeling.

Brainscape's Knowledge GenomeTM

Chapter 3 - Storage: Amazon Simple Storage Services (S3), EBS, EFS, Storage Gateway, Snoball, FSX, DATASYNC Flashcards

Brainscape's Knowledge Genome^TM