Re Test AWS TA

Which Amazon Virtual Private Cloud (Amazon VPC) feature enables users to connect two VPCs together?
a. Amazon VPC peering
b. Amazon VPC endpoints
c. AWS Direct Connect
d. Amazon Elastic Compute Cloud (Amazon EC2) ClassicLink

Distributing workloads across multiple Availability Zones supports which cloud architecture design principle?

a. Implement automation.
b. Design for failure.
c. Implement elasticity.
d. Design for agility.

Which AWS service should be used for long-term, low-cost storage of data backups?

a. Amazon RDS
b. AWS EBS
c. AWS Snowball
d. Amazon Glacier

An Elastic IP address (EIP) is a static IP address designed for dynamic cloud computing. With an EIP, you can mask the failure of an instance or software by rapidly remapping the address to another instance in your account. Your EIP is associated with your AWS account, not a particular EC2 instance, and it remains associated with your account until you choose to explicitly release it. By default how many EIPs is each AWS account limited to on a per region basis?

a. Unlimited

b. 10

c. 1

d. 5

Which service provides object-level storage in AWS?

a. Amazon Instance Store.
b. Amazon S3.
c. Amazon EFS.
d. Amazon EBS.

A cloud practitioner has a data analysis workload that is infrequently executed and can be interrupted without harm. To optimize for cost, which Amazon EC2 purchasing option should be used?

a. Spot Instances
b. Dedicated Hosts
c. On-Demand Instances
d. Reserved Instances

What is the most efficient way to establish network connectivity from on-premises to multiple VPCs in different AWS Regions?

a. Use an AWS Transit Gateway
b. Use AWS Direct Connect
c. Use AWS VPN
d. Use AWS Client VPN

A startup is looking for 24x7 phone based technical support for its AWS account. Which of the following is the MOST cost-effective AWS support plan for this use-case?

a. AWS Enterprise On-Ramp Support
b. AWS Developer Support
c. AWS Enterprise Support
d. AWS Business Support

You need to change some settings on Amazon Relational Database Service but you do not want the database to reboot immediately which you know might happen depending on the setting that you change. Which of the following will cause an immediate DB instance reboot to occur?

a. You change a static parameter in a DB parameter group.
b. You change the backup retention period for a DB instance from 0 to a nonzero value or from a nonzero value to 0, and Apply Immediately is set to false.
c. You change storage type from standard to PIOPS, and Apply Immediately is set to true.
d. You change the DB instance class, and Apply Immediately is set to false.

Why is it beneficial to use Elastic Load Balancers with applications?

a. They allow for the conversion from Application Load Balancers to Classic Load Balancers.
b. They automatically adjust capacity.
c. They are capable of handling constant changes in network traffic patterns.
d. They are provided at no charge to users.

Which of the following AWS services are global in scope? (Select two)

a. Amazon Elastic Compute Cloud (Amazon EC2)
b. Amazon Simple Storage Service (Amazon S3)
c. Amazon CloudFront
d. AWS Identity and Access Management (AWS IAM)

Which of the following does NOT belong to the AWS Cloud Computing models?

a. Infrastructure as a Service (IaaS).
b. Networking as a Service (NaaS).
c. Software as a Service (SaaS).
d. Platform as a Service (PaaS).

What is an Availability Zone in AWS?

a. One or more edge locations based around the world
b. One or more physical data centers
c. A data center location with a single source of power and networking
d. A completely isolated geographic location

You have set up consolidated billing for several AWS accounts. One of the accounts has purchased a number of reserved instances for 3 years. Which of the following is true regarding this scenario?

a. The Reserved Instance discounts can only be shared with the master account.
b. All accounts can receive the hourly cost benefit of the Reserved Instances.
c. There are no cost benefits from using consolidated billing; It is for informational purposes only.
d. The purchased instances will have better performance than On-demand instances.

You have set up an S3 bucket with a number of images in it and you have decided that you want anybody to be able to access these images, even anonymous users. To accomplish this you create a bucket policy. You will need to use an Amazon S3 bucket policy that specifies a __________ in the principal element, which means anyone can access the bucket.

a. Wildcard (*)
b. Anonymous user
c. IAM user
d. S3 user

When is it beneficial for a company to use a Spot Instance?

a. When there is flexibility in when an application needs to run
b. When an instance should not be stopped.
c. When dedicated capacity is needed.
d. When there are mission-critical workloads.

Which of the following is equivalent to a user name and password and is used to authenticate your programmatic access to AWS services and APIs?

a. Instance Password.
b. Access Keys.
c. Key pairs.
d. MFA.

An organization has a large number of technical employees who operate their AWS Cloud infrastructure. What does AWS provide to help organize them into teams and then assign the appropriate permissions for each team?

a. IAM users.
b. IAM roles.
c. IAM user groups.
d. AWS Organizations.

Fault tolerance refers to:

a. how well and how quickly an application's environment can have lost data restored
b. the built-in redundancy of an application's components
c. how secure your application is
d. the ability of an application to accommodate growth without changing design

Which AWS service is used to provide encryption for Amazon EBS?

a. AWS Systems Manager
b. AWS Config
c. AWS KMS
d. AWS Certificate Manager

A company is migrating an application that is running non-interruptible workloads for a three-year time frame. Which pricing construct would provide the MOST cost-effective solution?

a. Amazon EC2 Dedicated Instances
b. Amazon EC2 On-Demand Instances
c. Amazon EC2 Reserved Instances
d. Amazon EC2 Spot Instances

a. AWS Organizations.
b. IAM roles.
c. IAM user groups.
d. IAM users.

A user needs to quickly deploy a non-relational database on AWS. The user does not want to manage the underlying hardware or the database software. Which AWS service can be used to accomplish this?

a. Amazon Redshift
b. Amazon DynamoDB
c. Amazon Aurora
d. Amazon RDS

A director has been tasked with investigating hybrid cloud architecture. The company currently accesses AWS over the public internet. Which service will facilitate private hybrid connectivity?

a. AWS Web Application Firewall (AWS WAF)
b. Amazon Simple Storage Service (Amazon S3) Transfer Acceleration
c. AWS Direct Connect
d. Amazon Virtual Private Cloud (Amazon VPC) NAT Gateway

Why should a company choose AWS instead of a traditional data center?

a. AWS has no limits on the number of resources that can be created.
b. AWS offers edge locations in every country, supporting global reach.
c. AWS provides users with full control over the underlying resources.
d. AWS does not require long-term contracts and provides a pay-as-you-go model.

What are the fundamental drivers of cost with AWS Cloud?

a. Compute, Storage and Inbound Data Transfer
b. Compute, Databases and Outbound Data Transfer
c. Compute, Databases and Inbound Data Transfer
d. Compute, Storage and Outbound Data Transfer

Which service provides object-level storage in AWS?

a. Amazon Instance Store.
b. Amazon EFS.
c. Amazon EBS.
d. Amazon S3.

A startup is looking for 24x7 phone based technical support for its AWS account. Which of the following is the MOST cost-effective AWS support plan for this use-case?

a. AWS Enterprise Support
b. AWS Enterprise On-Ramp Support
c. AWS Business Support
d. AWS Developer Support

Which of the following Identity and Access Management (IAM) entities is associated with an access key ID and secret access key when using AWS Command Line Interface (AWS CLI)?

a. IAM group
b. IAM user
c. IAM policy
d. IAM role

You have been given a scope to deploy some AWS infrastructure for a large organisation. The requirements are that you will have a lot of EC2 instances but may need to add more when the average utilization of your Amazon EC2 fleet is high and conversely remove them when CPU utilization is low. Which AWS services would be best to use to accomplish this?

a. Amazon CloudFront, Amazon CloudWatch and Elastic Load Balancing.
b. Auto Scaling, Amazon CloudWatch and AWS CloudTrail.
c. AWS Elastic Beanstalk , Amazon CloudWatch and Elastic Load Balancing.
d. Auto Scaling, Elastic Load Balancing.

Which of the following AWS services are global in scope? (Select two)

a. Amazon Simple Storage Service (Amazon S3)
b. Amazon CloudFront
c. Amazon Elastic Compute Cloud (Amazon EC2)
d. AWS Identity and Access Management (AWS IAM)

A company has developed an eCommerce web application in AWS. What should they do to ensure that the application has the highest level of availability?

a. Deploy the application across multiple VPC’s and subnets.
b. Deploy the application across multiple Regions and Availability Zones.
c. Deploy the application across multiple Availability Zones and subnets.
d. Deploy the application across multiple Availability Zones and Edge locations.

You are architecting a highly-scalable and reliable web application which will have a huge amount of content . You have decided to use Cloudfront as you know it will speed up distribution of your static and dynamic web content and know that Amazon CloudFront integrates with Amazon CloudWatch metrics so that you can monitor your web application. Because you live in Sydney you have chosen the the Asia Pacific (Sydney) region in the AWS console. However you have set it up but no CloudFront metrics seem to be appearing in the CloudWatch console. What is the most likely reason from the possible choices below for this?

a. Metrics for CloudWatch are available only when you choose the US East (N. Virginia)
b. Metrics for CloudWatch are not available for the Asia Pacific region as yet.
c. You need to pay for CloudWatch for it to become active.
d. Metrics for CloudWatch are available only when you choose the same region as the application you are monitoring.

A company wants to monitor the CPU usage of its Amazon EC2 resources. Which AWS service should the company use?

a. AWS CloudTrail
b. Amazon CloudWatch
c. AWS Cost and Usage report
d. Amazon Simple Notification Service (Amazon SNS)

What is Amazon CloudWatch?

a. A security configuration repository with threat analytics.
b. A code repository with customizable build and team commit features.
c. A metrics repository with customizable notification thresholds and channels.
d. A rule repository of a web application firewall with automated vulnerability prevention features.

Which of the following is equivalent to a user name and password and is used to authenticate your programmatic access to AWS services and APIs?

a. Access Keys.
b. MFA.
c. Key pairs.
d. Instance Password.

Why is it beneficial to use Elastic Load Balancers with applications?

a. They allow for the conversion from Application Load Balancers to Classic Load Balancers.
b. They are provided at no charge to users.
c. They automatically adjust capacity.
d. They are capable of handling constant changes in network traffic patterns.

Which AWS service is used to provide encryption for Amazon EBS?

a. AWS Systems Manager
b. AWS Certificate Manager
c. AWS Config
d. AWS KMS

A customer enquires about whether all his data is secure on AWS and is especially concerned about Relational Database Service (RDS) so you need to inform him of some of the security features in place for AWS. Which of the below statements would be an incorrect response to your customers enquiry?

a. Amazon RDS customers can choose to encrypt their RDS DB instances
b. Every packet sent in the AWS network uses Internet Protocol Security (IPsec)
c. Amazon RDS customers can use SSL/TLS to encrypt connections to database
d. Customers may encrypt the input data before they upload it to Amazon S3

a. Amazon S3, Amazon SNS, Amazon SQS, KMS
b. Amazon SNS, and Amazon SQS and AWS Direct Connect.
c. Amazon Glacier, Amazon SNS, and Amazon CloudWatch
d. Amazon S3 and Amazon SQS and Amazon ElastiCache.

Which of the following does NOT belong to the AWS Cloud Computing models?
a. Software as a Service (SaaS).
b. Infrastructure as a Service (IaaS).
c. Networking as a Service (NaaS).
d. Platform as a Service (PaaS).

What is an Availability Zone in AWS?

a. One or more edge locations based around the world
b. A data center location with a single source of power and networking
c. One or more physical data centers
d. A completely isolated geographic location

Which AWS service makes it easy to create and manage AWS users and groups, and provide them with secure access to AWS resources at no charge?

a. AWS Direct Connect
b. AWS Firewall Manager
c. AWS Identity and Access Management (IAM)
d. Amazon Connect

Which architectural principle is used when deploying an Amazon Relational Database Service (Amazon RDS) instance in Multiple Availability Zone mode?

a. Automate everything that can be automated.
b. Implement loose coupling.
c. Use services, not servers.
d. Design for failure.

Which of the following is an example of horizontal scaling in the AWS Cloud?

a. Increasing the compute capacity of a single EC2 instance to address the growing demands of an application.
b. Replacing an existing EC2 instance with a larger, more powerful one.
c. Adding more RAM capacity to an EC2 instance.
d. Adding more EC2 instances of the same size to handle an increase in traffic.

Distributing workloads across multiple Availability Zones supports which cloud architecture design principle?

a. Design for failure.
b. Implement elasticity.
c. Design for agility.
d. Implement automation.

A startup is looking for 24x7 phone based technical support for its AWS account. Which of the following is the MOST cost-effective AWS support plan for this use-case?

a. AWS Developer Support
b. AWS Enterprise On-Ramp Support
c. AWS Business Support
d. AWS Enterprise Support

A company wants to monitor the CPU usage of its Amazon EC2 resources. Which AWS service should the company use?

a. Amazon Simple Notification Service (Amazon SNS)
b. AWS Cost and Usage report
c. AWS CloudTrail
d. Amazon CloudWatch

Fault tolerance refers to:

a. the ability of an application to accommodate growth without changing design
b. how well and how quickly an application's environment can have lost data restored
c. how secure your application is
d. the built-in redundancy of an application's components

a. Anonymous user
b. S3 user
c. Wildcard (*)
d. IAM user

Which of the following Identity and Access Management (IAM) entities is associated with an access key ID and secret access key when using AWS Command Line Interface (AWS CLI)?

a. IAM role
b. IAM group
c. IAM user
d. IAM policy

Which of the following acts as a virtual firewall at the Amazon EC2 instance level to control traffic for one or more instances?

a. Security groups
b. Virtual private gateways
c. Access keys
d. Access Control Lists (ACL)

Your company is designing a new application that will store and retrieve photos and videos. Which of the following services should you recommend as the underlying storage mechanism?

a. Amazon SQS.
b. Amazon Instance store.
c. Amazon S3.
d. Amazon EBS.

How can a company isolate the costs of production and non-production workloads on AWS?

a. Use different accounts for production and non-production expenses.
b. Use Amazon EC2 for non-production workloads and other services for production workloads.
c. Create Identity and Access Management (IAM) roles for production and non-production workloads.
d. Use Amazon CloudWatch to monitor the use of services.

Which of the following AWS services are global in scope? (Select two)

a. Amazon Simple Storage Service (Amazon S3)
b. AWS Identity and Access Management (AWS IAM)
c. Amazon Elastic Compute Cloud (Amazon EC2)
d. Amazon CloudFront

a.
IAM user groups.

b.
IAM roles.

c.
AWS Organizations.

d.
IAM users.
A customer enquires about whether all his data is secure on AWS and is especially concerned about Relational Database Service (RDS) so you need to inform him of some of the security features in place for AWS. Which of the below statements would be an incorrect response to your customers enquiry?

a. Amazon RDS customers can use SSL/TLS to encrypt connections to database
b. Customers may encrypt the input data before they upload it to Amazon S3
c. Amazon RDS customers can choose to encrypt their RDS DB instances
d. Every packet sent in the AWS network uses Internet Protocol Security (IPsec)

You have been asked to set up a database in AWS that will require frequent and granular updates. You know that you will require a reasonable amount of storage space but are not sure of the best option. What is the recommended storage option when you run a database on an instance with the above criteria?

a. Amazon EC2 Instance Store
b. Amazon Glacier
c. Amazon S3
d. Amazon EBS

What are the fundamental drivers of cost with AWS Cloud?
a. Compute, Storage and Inbound Data Transfer
b. Compute, Databases and Inbound Data Transfer
c. Compute, Storage and Outbound Data Transfer
d. Compute, Databases and Outbound Data Transfer

What is Amazon CloudWatch?
a. A security configuration repository with threat analytics.
b. A code repository with customizable build and team commit features.
c. A rule repository of a web application firewall with automated vulnerability prevention features.
d. A metrics repository with customizable notification thresholds and channels.

You receive the following request from a client to quickly deploy a static website for them, specifically on AWS. The requirements are low-cost, reliable, online storage and a reliable and cost-effective way to route customers to the website and a way to deliver content with low latency and high data transfer speeds so that visitors to his website don't experience unnecessary delays. What do you think would be the minimum AWS services that could fulfil the client's request

a. Amazon S3, Amazon Route 53 and Amazon RDS
b. Amazon S3, Amazon Route 53 and Amazon CloudFront
c. Amazon S3 and Amazon Route 53.
d. Amazon Route 53, Amazon CloudFront and Amazon VPC.

A user needs to quickly deploy a non-relational database on AWS. The user does not want to manage the underlying hardware or the database software. Which AWS service can be used to accomplish this?

a. Amazon Aurora
b. Amazon RDS
c. Amazon DynamoDB
d. Amazon Redshift

Which AWS service enables users to securely connect to AWS resources over the public internet?

a. AWS Direct Connect
b. Amazon Pinpoint
c. AWS VPN
d. Amazon VPC peering

A company has developed an eCommerce web application in AWS. What should they do to ensure that the application has the highest level of availability?

a. Deploy the application across multiple Availability Zones and subnets.
b. Deploy the application across multiple Regions and Availability Zones.
c. Deploy the application across multiple Availability Zones and Edge locations.
d. Deploy the application across multiple VPC’s and subnets.

Which Amazon EC2 pricing model is the MOST cost efficient for an uninterruptible workload that runs once a year for 24 hours?
a. Reserved Instances
b. Dedicated Instances
c. Spot Instances
d. On-Demand Instances

Which Amazon Virtual Private Cloud (Amazon VPC) feature enables users to connect two VPCs together?

a. Amazon Elastic Compute Cloud (Amazon EC2) ClassicLink
b. AWS Direct Connect
c. Amazon VPC endpoints
d. Amazon VPC peering

AWS Identity and Access Management is a web service that enables Amazon Web Services (AWS) customers to manage users and user permissions in AWS. In addition to supporting IAM user policies, some services support resource-based permissions. Which of the following services are supported by resource-based permissions?
a. Amazon S3 and Amazon SQS and Amazon ElastiCache.
b. Amazon SNS, and Amazon SQS and AWS Direct Connect.
c. Amazon S3, Amazon SNS, Amazon SQS, KMS
d. Amazon Glacier, Amazon SNS, and Amazon CloudWatch

Which service provides object-level storage in AWS?

a.
Amazon S3.

b.
Amazon EBS.

c.
Amazon Instance Store.

d.
Amazon EFS.

Which Amazon S3 storage class is optimized to provide access to data with lower resiliency requirements, but rapid access when needed such as duplicate backups?

a.
Amazon S3 Glacier

b.
Amazon S3 One Zone-Infrequent Access

c.
Amazon S3 Standard

d.
Amazon S3 Glacier Deep Archive

Question text
Which Amazon EC2 pricing model offers the MOST significant discount when compared to On-Demand Instances?

a.
All Upfront Reserved Instances for a 3-year term

b.
All Upfront Reserved Instances for a 1-year term

c.
Partial Upfront Reserved Instances for a 1-year term

d.
No Upfront Reserved Instances for a 3-year term

Which CIDR block below is not recommended for VPC?

a.
10. 0. 0. 0/8

b.
172. 16. 0. 0/12

c.
192. 168. 0. 0/16

d.
129. 186. 0. 0/16

You need to set up a complex Network Infrastructure for your organisation that will be reasonably easy to deploy, replicate, control and track changes on. Which AWS service would be best to use to help you accomplish this?

a.
Amazon CloudWatch

b.
Elastic Load Balancing

c.
Amazon Route 53

d.
AWS CloudFormation

Which AWS service should be used for long-term, low-cost storage of data backups?

a.
AWS Snowball

b.
Amazon RDS

c.
AWS EBS

d.
Amazon Glacier