AWSTA

avatar
unknown
plain_text
a year ago
47 kB
4
Indexable
Question 11
Which Amazon Virtual Private Cloud (Amazon VPC) feature enables users to connect two VPCs together?

a.	Amazon VPC peering

b.
Amazon VPC endpoints

c.
AWS Direct Connect

d.
Amazon Elastic Compute Cloud (Amazon EC2) ClassicLink

Question 12

Question text
Distributing workloads across multiple Availability Zones supports which cloud architecture design principle?

a.
Implement automation.

b.
Design for failure.

c.
Implement elasticity.

d.
Design for agility.

Question 13
Which AWS service should be used for long-term, low-cost storage of data backups?

a.
Amazon RDS

b.
AWS EBS

c.
AWS Snowball

d.
Amazon Glacier

Question 14
An Elastic IP address (EIP) is a static IP address designed for dynamic cloud computing. With an EIP, you can mask the failure of an instance or software by rapidly remapping the address to another instance in your account. Your EIP is associated with your AWS account, not a particular EC2 instance, and it remains associated with your account until you choose to explicitly release it. By default how many EIPs is each AWS account limited to on a per region basis?

a.
Unlimited

b.
10

c.
1

d.
5

Question 15
Which service provides object-level storage in AWS?

a.
Amazon Instance Store.

b.
Amazon S3.

c.
Amazon EFS.

d.
Amazon EBS.

Question 16
A cloud practitioner has a data analysis workload that is infrequently executed and can be interrupted without harm. To optimize for cost, which Amazon EC2 purchasing option should be used?

a.
Spot Instances

b.
Dedicated Hosts

c.
On-Demand Instances

d.
Reserved Instances

Question 17
What is the most efficient way to establish network connectivity from on-premises to multiple VPCs in different AWS Regions?

a.
Use an AWS Transit Gateway

b.
Use AWS Direct Connect

c.
Use AWS VPN

d.
Use AWS Client VPN

Question 18
A startup is looking for 24x7 phone based technical support for its AWS account. Which of the following is the MOST cost-effective AWS support plan for this use-case?

a.
AWS Enterprise On-Ramp Support

b.
AWS Developer Support

c.
AWS Enterprise Support

d.
AWS Business Support

Question 19
You need to change some settings on Amazon Relational Database Service but you do not want the database to reboot immediately which you know might happen depending on the setting that you change. Which of the following will cause an immediate DB instance reboot to occur?

a.
You change a static parameter in a DB parameter group.

b.
You change the backup retention period for a DB instance from 0 to a nonzero value or from a nonzero value to 0, and Apply Immediately is set to false.

c.
You change storage type from standard to PIOPS, and Apply Immediately is set to true.

d.
You change the DB instance class, and Apply Immediately is set to false.

Question 20
Why is it beneficial to use Elastic Load Balancers with applications?

a.
They allow for the conversion from Application Load Balancers to Classic Load Balancers.

b.
They automatically adjust capacity.

c.
They are capable of handling constant changes in network traffic patterns.

d.
They are provided at no charge to users.

Question 21
Which of the following AWS services are global in scope? (Select two)

a.
Amazon Elastic Compute Cloud (Amazon EC2)

b.
Amazon Simple Storage Service (Amazon S3)

c.
Amazon CloudFront

d.
AWS Identity and Access Management (AWS IAM)
Question 22
Which of the following does NOT belong to the AWS Cloud Computing models?

a.
Infrastructure as a Service (IaaS).

b.
Networking as a Service (NaaS).

c.
Software as a Service (SaaS).

d.
Platform as a Service (PaaS).

Question 23
What is an Availability Zone in AWS?

a.
One or more edge locations based around the world

b.
One or more physical data centers

c.
A data center location with a single source of power and networking

d.
A completely isolated geographic location

Question 24
You have set up consolidated billing for several AWS accounts. One of the accounts has purchased a number of reserved instances for 3 years. Which of the following is true regarding this scenario?

a.
The Reserved Instance discounts can only be shared with the master account.

b.
All accounts can receive the hourly cost benefit of the Reserved Instances.

c.
There are no cost benefits from using consolidated billing; It is for informational purposes only.

d.
The purchased instances will have better performance than On-demand instances.

Question 25
You have set up an S3 bucket with a number of images in it and you have decided that you want anybody to be able to access these images, even anonymous users. To accomplish this you create a bucket policy. You will need to use an Amazon S3 bucket policy that specifies a __________ in the principal element, which means anyone can access the bucket.

a.
Wildcard (*)

b.
Anonymous user

c.
IAM user

d.
S3 user

Question 26
When is it beneficial for a company to use a Spot Instance?

a.
When there is flexibility in when an application needs to run

b.
When an instance should not be stopped.

c.
When dedicated capacity is needed.

d.
When there are mission-critical workloads.

Question 27
Which of the following is equivalent to a user name and password and is used to authenticate your programmatic access to AWS services and APIs?

a.
Instance Password.

b.
Access Keys.

c.
Key pairs.

d.
MFA.

Question 28
An organization has a large number of technical employees who operate their AWS Cloud infrastructure. What does AWS provide to help organize them into teams and then assign the appropriate permissions for each team?

a.
IAM users.

b.
IAM roles.

c.
IAM user groups.

d.
AWS Organizations.

Question 29
Fault tolerance refers to:

a.
how well and how quickly an application's environment can have lost data restored

b.
the built-in redundancy of an application's components

c.
how secure your application is

d.
the ability of an application to accommodate growth without changing design

Question 30
Which AWS service is used to provide encryption for Amazon EBS?

a.
AWS Systems Manager

b.
AWS Config

c.
AWS KMS

d.
AWS Certificate Manager

A company is migrating an application that is running non-interruptible workloads for a three-year time frame. Which pricing construct would provide the MOST cost-effective solution?

a.
Amazon EC2 Dedicated Instances

b.
Amazon EC2 On-Demand Instances

c.
Amazon EC2 Reserved Instances

d.
Amazon EC2 Spot Instances

Question 12
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
An organization has a large number of technical employees who operate their AWS Cloud infrastructure. What does AWS provide to help organize them into teams and then assign the appropriate permissions for each team?

a.
AWS Organizations.

b.
IAM roles.

c.
IAM user groups.

d.
IAM users.

Question 13
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
A user needs to quickly deploy a non-relational database on AWS. The user does not want to manage the underlying hardware or the database software. Which AWS service can be used to accomplish this?

a.
Amazon Redshift

b.
Amazon DynamoDB

c.
Amazon Aurora

d.
Amazon RDS

Question 14
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
A director has been tasked with investigating hybrid cloud architecture. The company currently accesses AWS over the public internet. Which service will facilitate private hybrid connectivity?

a.
AWS Web Application Firewall (AWS WAF)

b.
Amazon Simple Storage Service (Amazon S3) Transfer Acceleration

c.
AWS Direct Connect

d.
Amazon Virtual Private Cloud (Amazon VPC) NAT Gateway

Question 15
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
Why should a company choose AWS instead of a traditional data center?

a.
AWS has no limits on the number of resources that can be created.

b.
AWS offers edge locations in every country, supporting global reach.

c.
AWS provides users with full control over the underlying resources.

d.
AWS does not require long-term contracts and provides a pay-as-you-go model.

Question 16
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
What are the fundamental drivers of cost with AWS Cloud?

a.
Compute, Storage and Inbound Data Transfer

b.
Compute, Databases and Outbound Data Transfer

c.
Compute, Databases and Inbound Data Transfer

d.
Compute, Storage and Outbound Data Transfer

Question 17
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
Which service provides object-level storage in AWS?

a.
Amazon Instance Store.

b.
Amazon EFS.

c.
Amazon EBS.

d.
Amazon S3.

Question 18
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
A startup is looking for 24x7 phone based technical support for its AWS account. Which of the following is the MOST cost-effective AWS support plan for this use-case?

a.
AWS Enterprise Support

b.
AWS Enterprise On-Ramp Support

c.
AWS Business Support

d.
AWS Developer Support

Question 19
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
Which of the following Identity and Access Management (IAM) entities is associated with an access key ID and secret access key when using AWS Command Line Interface (AWS CLI)?

a.
IAM group

b.
IAM user

c.
IAM policy

d.
IAM role

Question 20
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
Which architectural princip

[Trần Minh Ngọc] 07-30-2024 15:32
You have been given a scope to deploy some AWS infrastructure for a large organisation. The requirements are that you will have a lot of EC2 instances but may need to add more when the average utilization of your Amazon EC2 fleet is high and conversely remove them when CPU utilization is low. Which AWS services would be best to use to accomplish this?

a.
Amazon CloudFront, Amazon CloudWatch and Elastic Load Balancing.

b.
Auto Scaling, Amazon CloudWatch and AWS CloudTrail.

c.
AWS Elastic Beanstalk , Amazon CloudWatch and Elastic Load Balancing.

d.
Auto Scaling, Elastic Load Balancing.

Question 2
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
Which of the following AWS services are global in scope? (Select two)

a.
Amazon Simple Storage Service (Amazon S3)

b.
Amazon CloudFront

c.
Amazon Elastic Compute Cloud (Amazon EC2)

d.
AWS Identity and Access Management (AWS IAM)
Question 3
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
A company has developed an eCommerce web application in AWS. What should they do to ensure that the application has the highest level of availability?

a.
Deploy the application across multiple VPC’s and subnets.

b.
Deploy the application across multiple Regions and Availability Zones.

c.
Deploy the application across multiple Availability Zones and subnets.

d.
Deploy the application across multiple Availability Zones and Edge locations.

Question 4
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
You are architecting a highly-scalable and reliable web application which will have a huge amount of content .You have decided to use Cloudfront as you know it will speed up distribution of your static and dynamic web content and know that Amazon CloudFront integrates with Amazon CloudWatch metrics so that you can monitor your web application. Because you live in Sydney you have chosen the the Asia Pacific (Sydney) region in the AWS console. However you have set it up but no CloudFront metrics seem to be appearing in the CloudWatch console. What is the most likely reason from the possible choices below for this?

a.
Metrics for CloudWatch are available only when you choose the US East (N. Virginia)

b.
Metrics for CloudWatch are not available for the Asia Pacific region as yet.

c.
You need to pay for CloudWatch for it to become active.

d.
Metrics for CloudWatch are available only when you choose the same region as the application you are monitoring.

Question 5
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
A company wants to monitor the CPU usage of its Amazon EC2 resources. Which AWS service should the company use?

a.
AWS CloudTrail

b.
Amazon CloudWatch

c.
AWS Cost and Usage report

d.
Amazon Simple Notification Service (Amazon SNS)

Question 6
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
What is Amazon CloudWatch?

a.
A security configuration repository with threat analytics.

b.
A code repository with customizable build and team commit features.

c.
A metrics repository with customizable notification thresholds and channels.

d.
A rule repository of a web application firewall with automated vulnerability prevention features.

Question 7
Answer saved
Marked out of 1.00
Not flaggedFlag questio

[Trần Minh Ngọc] 07-30-2024 15:32
Which of the following is equivalent to a user name and password and is used to authenticate your programmatic access to AWS services and APIs?

a.
Access Keys.

b.
MFA.

c.
Key pairs.

d.
Instance Password.

Question 32
Not yet answered
Marked out of 1.00
Not flaggedFlag question
Question text
Why is it beneficial to use Elastic Load Balancers with applications?

a.
They allow for the conversion from Application Load Balancers to Classic Load Balancers.

b.
They are provided at no charge to users.

c.
They automatically adjust capacity.

d.
They are capable of handling constant changes in network traffic patterns.

Question 33
Not yet answered
Marked out of 1.00
Not flaggedFlag question
Question text
Which AWS service is used to provide encryption for Amazon EBS?

a.
AWS Systems Manager

b.
AWS Certificate Manager

c.
AWS Config

d.
AWS KMS

Question 34
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
A customer enquires about whether all his data is secure on AWS and is especially concerned about Relational Database Service (RDS) so you need to inform him of some of the security features in place for AWS. Which of the below statements would be an incorrect response to your customers enquiry?

a.
Amazon RDS customers can choose to encrypt their RDS DB instances

b.
Every packet sent in the AWS network uses Internet Protocol Security (IPsec)

c.
Amazon RDS customers can use SSL/TLS to encrypt connections to database

d.
Customers may encrypt the input data before they upload it to Amazon S3

Question 35
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
AWS Identity and Access Management is a web service that enables Amazon Web Services (AWS) customers to manage users and user permissions in AWS. In addition to supporting IAM user policies, some services support resource-based permissions. Which of the following services are supported by resource-based permissions?

a.
Amazon S3, Amazon SNS, Amazon SQS, KMS

b.
Amazon SNS, and Amazon SQS and AWS Direct Connect.

c.
Amazon Glacier, Amazon SNS, and Amazon CloudWatch

d.
Amazon S3 and Amazon SQS and Amazon ElastiCache.

Question 36
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
Which of the following does NOT belong to the AWS Cloud Computing models?

a.
Software as a Service (SaaS).

b.
Infrastructure as a Service (IaaS).

c.
Networking as a Service (NaaS).

d.
Platform as a Service (PaaS).

Question 37
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
What is an Availability Zone in AWS?

a.
One or more edge locations based around the world

b.
A data center location with a single source of power and networking

c.
One or more physical data centers

d.
A completely isolated geographic location

Question 38
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
Which AWS service makes it easy to create and manage AWS users and groups, and provide them with secure access to AWS resources at no charge?

a.
AWS Direct Connect

b.
AWS Firewall Manager

c.
AWS Identity and Access Management (IAM)

d.
Amazon Connect

Which architectural principle is used when deploying an Amazon Relational Database Service (Amazon RDS) instance in Multiple Availability Zone mode?

a.
Automate everything that can be automated.

b.
Implement loose coupling.

c.
Use services, not servers.

d.
Design for failure.

Question 32
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
Which of the following is an example of horizontal scaling in the AWS Cloud?

a.
Increasing the compute capacity of a single EC2 instance to address the growing demands of an application.

b.
Replacing an existing EC2 instance with a larger, more powerful one.

c.
Adding more RAM capacity to an EC2 instance.

d.
Adding more EC2 instances of the same size to handle an increase in traffic.

Question 33
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
Distributing workloads across multiple Availability Zones supports which cloud architecture design principle?

a.
Design for failure.

b.
Implement elasticity.

c.
Design for agility.

d.
Implement automation.

Question 34
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
A startup is looking for 24x7 phone based technical support for its AWS account. Which of the following is the MOST cost-effective AWS support plan for this use-case?

a.
AWS Developer Support

b.
AWS Enterprise On-Ramp Support

c.
AWS Business Support

d.
AWS Enterprise Support

Question 35
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
A company wants to monitor the CPU usage of its Amazon EC2 resources. Which AWS service should the company use?

a.
Amazon Simple Notification Service (Amazon SNS)

b.
AWS Cost and Usage report

c.
AWS CloudTrail

d.
Amazon CloudWatch

Question 36
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
Fault tolerance refers to:

a.
the ability of an application to accommodate growth without changing design

b.
how well and how quickly an application's environment can have lost data restored

c.
how secure your application is

d.
the built-in redundancy of an application's components

Question 37
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
You have set up an S3 bucket with a number of images in it and you have decided that you want anybody to be able to access these images, even anonymous users. To accomplish this you create a bucket policy. You will need to use an Amazon S3 bucket policy that specifies a __________ in the principal element, which means anyone can access the bucket.

a.
Anonymous user

b.
S3 user

c.
Wildcard (*)

d.
IAM user

Question 38
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
Which of the following Identity and Access Management (IAM) entities is associated with an access key ID and secret access key when using AWS Command Line Interface (AWS CLI)?

a.
IAM role

b.
IAM group

c.
IAM user

d.
IAM policy

Question 39
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
Which of the following acts as a virtual firewall at the Amazon EC2 instance level to control traffic for one or more instances?

a.
Security groups

b.
Virtual private gateways

c.
Access keys

d.
Access Control Lists (ACL)

Question 40
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
Your company is designing a new application that will store and retrieve photos and videos. Which of the following services should you recommend as the underlying storage mechanism?

a.
Amazon SQS.

b.
Amazon Instance store.

c.
Amazon S3.

d.
Amazon EBS.

How can a company isolate the costs of production and non-production workloads on AWS?

a.
Use different accounts for production and non-production expenses.

b.
Use Amazon EC2 for non-production workloads and other services for production workloads.

c.
Create Identity and Access Management (IAM) roles for production and non-production workloads.

d.
Use Amazon CloudWatch to monitor the use of services.

Question 12
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
Which of the following AWS services are global in scope? (Select two)

a.
Amazon Simple Storage Service (Amazon S3)

b.
AWS Identity and Access Management (AWS IAM)

c.
Amazon Elastic Compute Cloud (Amazon EC2)

d.
Amazon CloudFront
Question 13
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
An organization has a large number of technical employees who operate their AWS Cloud infrastructure. What does AWS provide to help organize them into teams and then assign the appropriate permissions for each team?

a.
IAM user groups.

b.
IAM roles.

c.
AWS Organizations.

d.
IAM users.

Question 14
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
A customer enquires about whether all his data is secure on AWS and is especially concerned about Relational Database Service (RDS) so you need to inform him of some of the security features in place for AWS. Which of the below statements would be an incorrect response to your customers enquiry?

a.
Amazon RDS customers can use SSL/TLS to encrypt connections to database

b.
Customers may encrypt the input data before they upload it to Amazon S3

c.
Amazon RDS customers can choose to encrypt their RDS DB instances

d.
Every packet sent in the AWS network uses Internet Protocol Security (IPsec)

Question 15
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
You have been asked to set up a database in AWS that will require frequent and granular updates. You know that you will require a reasonable amount of storage space but are not sure of the best option. What is the recommended storage option when you run a database on an instance with the above criteria?

a.
Amazon EC2 Instance Store

b.
Amazon Glacier

c.
Amazon S3

d.
Amazon EBS

Question 16
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
What are the fundamental drivers of cost with AWS Cloud?

a.
Compute, Storage and Inbound Data Transfer

b.
Compute, Databases and Inbound Data Transfer

c.
Compute, Storage and Outbound Data Transfer

d.
Compute, Databases and Outbound Data Transfer

Question 17
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
What is Amazon CloudWatch?

a.
A security configuration repository with threat analytics.

b.
A code repository with customizable build and team commit features.

c.
A rule repository of a web application firewall with automated vulnerability prevention features.

d.
A metrics repository with customizable notification thresholds and channels.

Question 18
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
You receive the following request from a client to quickly deploy a static website for them, specifically on AWS. The requirements are low-cost, reliable, online storage and a reliable and cost-effective way to route customers to the website and a way to deliver content with low latency and high data transfer speeds so that visitors to his website don't experience unnecessary delays. What do you think would be the minimum AWS services that could fulfil the client's request

a.
Amazon S3, Amazon Route 53 and Amazon RDS

b.
Amazon S3, Amazon Route 53 and Amazon CloudFront

c.
Amazon S3 and Amazon Route 53.

d.
Amazon Route 53, Amazon CloudFront and Amazon VPC.

Question 19
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
A user needs to quickly deploy a non-relational database on AWS. The user does not want to manage the underlying hardware or the database software. Which AWS service can be used to accomplish this?

a.
Amazon Aurora

b.
Amazon RDS

c.
Amazon DynamoDB

d.
Amazon Redshift

Question 20
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
Which AWS service enables users to securely connect to AWS resources over the public internet?

a.
AWS Direct Connect

b.
Amazon Pinpoint

c.
AWS VPN

d.
Amazon VPC peering

A company has developed an eCommerce web application in AWS. What should they do to ensure that the application has the highest level of availability?

a.
Deploy the application across multiple Availability Zones and subnets.

b.
Deploy the application across multiple Regions and Availability Zones.

c.
Deploy the application across multiple Availability Zones and Edge locations.

d.
Deploy the application across multiple VPC’s and subnets.

Question 2
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
Which Amazon EC2 pricing model is the MOST cost efficient for an uninterruptible workload that runs once a year for 24 hours?

a.
Reserved Instances

b.
Dedicated Instances

c.
Spot Instances

d.
On-Demand Instances

Question 3
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
Which Amazon Virtual Private Cloud (Amazon VPC) feature enables users to connect two VPCs together?

a.
Amazon Elastic Compute Cloud (Amazon EC2) ClassicLink

b.
AWS Direct Connect

c.
Amazon VPC endpoints

d.
Amazon VPC peering

Question 4
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
AWS Identity and Access Management is a web service that enables Amazon Web Services (AWS) customers to manage users and user permissions in AWS. In addition to supporting IAM user policies, some services support resource-based permissions. Which of the following services are supported by resource-based permissions?

a.
Amazon S3 and Amazon SQS and Amazon ElastiCache.

b.
Amazon SNS, and Amazon SQS and AWS Direct Connect.

c.
Amazon S3, Amazon SNS, Amazon SQS, KMS

d.
Amazon Glacier, Amazon SNS, and Amazon CloudWatch

Question 5
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
Which service provides object-level storage in AWS?

a.
Amazon S3.

b.
Amazon EBS.

c.
Amazon Instance Store.

d.
Amazon EFS.

Question 6
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
Which Amazon S3 storage class is optimized to provide access to data with lower resiliency requirements, but rapid access when needed such as duplicate backups?

a.
Amazon S3 Glacier

b.
Amazon S3 One Zone-Infrequent Access

c.
Amazon S3 Standard

d.
Amazon S3 Glacier Deep Archive

Question 7
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
Which Amazon EC2 pricing model offers the MOST significant discount when compared to On-Demand Instances?

a.
All Upfront Reserved Instances for a 3-year term

b.
All Upfront Reserved Instances for a 1-year term

c.
Partial Upfront Reserved Instances for a 1-year term

d.
No Upfront Reserved Instances for a 3-year term

Question 8
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
Which CIDR block below is not recommended for VPC?

a.
10.0.0.0/8

b.
172.16.0.0/12

c.
192.168.0.0/16

d.
129.186.0.0/16

Question 9
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
You need to set up a complex Network Infrastructure for your organisation that will be reasonably easy to deploy, replicate, control and track changes on. Which AWS service would be best to use to help you accomplish this?

a.
Amazon CloudWatch

b.
Elastic Load Balancing

c.
Amazon Route 53

d.
AWS CloudFormation

Question 10
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
Which AWS service should be used for long-term, low-cost storage of data backups?

a.
AWS Snowball

b.
Amazon RDS

c.
AWS EBS

d.
Amazon Glacier

Which architectural principle is used when deploying an Amazon Relational Database Service (Amazon RDS) instance in Multiple Availability Zone mode?

a.
Automate everything that can be automated.

b.
Implement loose coupling.

c.
Use services, not servers.

d.
Design for failure.

Question 32
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
Which of the following is an example of horizontal scaling in the AWS Cloud?

a.
Increasing the compute capacity of a single EC2 instance to address the growing demands of an application.

b.
Replacing an existing EC2 instance with a larger, more powerful one.

c.
Adding more RAM capacity to an EC2 instance.

d.
Adding more EC2 instances of the same size to handle an increase in traffic.

Question 33
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
Distributing workloads across multiple Availability Zones supports which cloud architecture design principle?

a.
Design for failure.

b.
Implement elasticity.

c.
Design for agility.

d.
Implement automation.

Question 34
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
A startup is looking for 24x7 phone based technical support for its AWS account. Which of the following is the MOST cost-effective AWS support plan for this use-case?

a.
AWS Developer Support

b.
AWS Enterprise On-Ramp Support

c.
AWS Business Support

d.
AWS Enterprise Support

Question 35
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
A company wants to monitor the CPU usage of its Amazon EC2 resources. Which AWS service should the company use?

a.
Amazon Simple Notification Service (Amazon SNS)

b.
AWS Cost and Usage report

c.
AWS CloudTrail

d.
Amazon CloudWatch

Question 36
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
Fault tolerance refers to:

a.
the ability of an application to accommodate growth without changing design

b.
how well and how quickly an application's environment can have lost data restored

c.
how secure your application is

d.
the built-in redundancy of an application's components

Question 37
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
You have set up an S3 bucket with a number of images in it and you have decided that you want anybody to be able to access these images, even anonymous users. To accomplish this you create a bucket policy. You will need to use an Amazon S3 bucket policy that specifies a __________ in the principal element, which means anyone can access the bucket.

a.
Anonymous user

b.
S3 user

c.
Wildcard (*)

d.
IAM user

Question 38
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
Which of the following Identity and Access Management (IAM) entities is associated with an access key ID and secret access key when using AWS Command Line Interface (AWS CLI)?

a.
IAM role

b.
IAM group

c.
IAM user

d.
IAM policy

Question 39
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
Which of the following acts as a virtual firewall at the Amazon EC2 instance level to control traffic for one or more instances?

a.
Security groups

b.
Virtual private gateways

c.
Access keys

d.
Access Control Lists (ACL)

Question 40
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
Your company is designing a new application that will store and retrieve photos and videos. Which of the following services should you recommend as the underlying storage mechanism?

a.
Amazon SQS.

b.
Amazon Instance store.

c.
Amazon S3.

d.
Amazon EBS.

A Cloud Practitioner needs to store data for 7 years to meet regulatory requirements. Which AWS service will meet this requirement at the LOWEST cost?

a.
AWS Snowball

b.
Amazon S3 Glacier

c.
Amazon Redshift

d.
Amazon S3

Question 22
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
Which of the following is equivalent to a user name and password and is used to authenticate your programmatic access to AWS services and APIs?

a.
Key pairs.

b.
MFA.

c.
Instance Password.

d.
Access Keys.

Question 23
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
What is an Availability Zone in AWS?

a.
A data center location with a single source of power and networking

b.
One or more physical data centers

c.
A completely isolated geographic location

d.
One or more edge locations based around the world

Question 24
Not yet answered
Marked out of 1.00
Not flaggedFlag question
Question text
What is the most efficient way to establish network connectivity from on-premises to multiple VPCs in different AWS Regions?

a.
Use AWS VPN

b.
Use AWS Client VPN

c.
Use AWS Direct Connect

d.
Use an AWS Transit Gateway

Question 25
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
You are setting up a very complex financial services grid and so far it has 5 Elastic IP (EIP) addresses. You go to assign another EIP address however you can't as by default, all accounts are limited to 5 Elastic IP addresses per region. What is the reason for this?

a.
There are only 5 network interfaces per instance

b.
Hardware restrictions

c.
Public (IPV4) internet addresses are a scarce resource

d.
For security reasons

Question 26
Not yet answered
Marked out of 1.00
Not flaggedFlag question
Question text
A startup is looking for 24x7 phone based technical support for its AWS account. Which of the following is the MOST cost-effective AWS support plan for this use-case?

a.
AWS Developer Support

b.
AWS Enterprise On-Ramp Support

c.
AWS Business Support

d.
AWS Enterprise Support

Question 27
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
An organization has a large number of technical employees who operate their AWS Cloud infrastructure. What does AWS provide to help organize them into teams and then assign the appropriate permissions for each team?

a.
IAM roles.

b.
AWS Organizations.

c.
IAM users.

d.
IAM user groups.

Question 28
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
A user needs to quickly deploy a non-relational database on AWS. The user does not want to manage the underlying hardware or the database software. Which AWS service can be used to accomplish this?

a.
Amazon RDS

b.
Amazon Redshift

c.
Amazon DynamoDB

d.
Amazon Aurora

Question 29
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
An Elastic IP address (EIP) is a static IP address designed for dynamic cloud computing. With an EIP, you can mask the failure of an instance or software by rapidly remapping the address to another instance in your account. Your EIP is associated with your AWS account, not a particular EC2 instance, and it remains associated with your account until you choose to explicitly release it. By default how many EIPs is each AWS account limited to on

Which AWS service is used to provide encryption for Amazon EBS?

a.
AWS Config

b.
AWS KMS

c.
AWS Certificate Manager

d.
AWS Systems Manager

Question 12
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
Your company is designing a new application that will store and retrieve photos and videos. Which of the following services should you recommend as the underlying storage mechanism?

a.
Amazon SQS.

b.
Amazon Instance store.

c.
Amazon S3.

d.
Amazon EBS.

Question 13
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
A customer enquires about whether all his data is secure on AWS and is especially concerned about Relational Database Service (RDS) so you need to inform him of some of the security features in place for AWS. Which of the below statements would be an incorrect response to your customers enquiry?

a.
Every packet sent in the AWS network uses Internet Protocol Security (IPsec)

b.
Amazon RDS customers can use SSL/TLS to encrypt connections to database

c.
Customers may encrypt the input data before they upload it to Amazon S3

d.
Amazon RDS customers can choose to encrypt their RDS DB instances

Question 14
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
You have set up an S3 bucket with a number of images in it and you have decided that you want anybody to be able to access these images, even anonymous users. To accomplish this you create a bucket policy. You will need to use an Amazon S3 bucket policy that specifies a __________ in the principal element, which means anyone can access the bucket.

a.
S3 user

b.
Wildcard (*)

c.
Anonymous user

d.
IAM user

Question 15
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
A connection is made up of two parts, REQUEST and RESPONSE, when we use security group to control access, if we allow REQUEST direction, the RESPONSE direction is automatically allowed, it’s because security group is a _____ firewall

a.
Subnet-based

b.
Stateful

c.
Host-based

d.
Stateless

Question 16
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
A company is migrating an application that is running non-interruptible workloads for a three-year time frame. Which pricing construct would provide the MOST cost-effective solution?

a.
Amazon EC2 Reserved Instances

b.
Amazon EC2 Dedicated Instances

c.
Amazon EC2 On-Demand Instances

d.
Amazon EC2 Spot Instances

Question 17
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
You receive the following request from a client to quickly deploy a static website for them, specifically on AWS. The requirements are low-cost, reliable, online storage and a reliable and cost-effective way to route customers to the website and a way to deliver content with low latency and high data transfer speeds so that visitors to his website don't experience unnecessary delays. What do you think would be the minimum AWS services that could fulfil the client's request

a.
Amazon S3 and Amazon Route 53.

b.
Amazon Route 53, Amazon CloudFront and Amazon VPC.

c.
Amazon S3, Amazon Route 53 and Amazon CloudFront

d.
Amazon S3, Amazon Route 53 and Amazon RDS

Question 18
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
A company has developed a

[Nguyễn Minh Quân (Quân Minh Nguyễn)] 07-30-2024 15:35
Which Amazon Virtual Private Cloud (Amazon VPC) feature enables users to connect two VPCs together?

a.
Amazon Elastic Compute Cloud (Amazon EC2) ClassicLink

b.
Amazon VPC peering

c.
AWS Direct Connect

d.
Amazon VPC endpoints

Question 2
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
What are the fundamental drivers of cost with AWS Cloud?

a.
Compute, Storage and Outbound Data Transfer

b.
Compute, Databases and Inbound Data Transfer

c.
Compute, Storage and Inbound Data Transfer

d.
Compute, Databases and Outbound Data Transfer

Question 3
Not yet answered
Marked out of 1.00
Not flaggedFlag question
Question text
Which of the following Identity and Access Management (IAM) entities is associated with an access key ID and secret access key when using AWS Command Line Interface (AWS CLI)?

a.
IAM group

b.
IAM user

c.
IAM role

d.
IAM policy

Question 4
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
Which AWS service makes it easy to create and manage AWS users and groups, and provide them with secure access to AWS resources at no charge?

a.
AWS Direct Connect

b.
Amazon Connect

c.
AWS Identity and Access Management (IAM)

d.
AWS Firewall Manager

Question 5
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
Which of the following is an example of horizontal scaling in the AWS Cloud?

a.
Adding more EC2 instances of the same size to handle an increase in traffic.

b.
Adding more RAM capacity to an EC2 instance.

c.
Increasing the compute capacity of a single EC2 instance to address the growing demands of an application.

d.
Replacing an existing EC2 instance with a larger, more powerful one.

Question 6
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
You have been asked to set up a database in AWS that will require frequent and granular updates. You know that you will require a reasonable amount of storage space but are not sure of the best option. What is the recommended storage option when you run a database on an instance with the above criteria?

a.
Amazon S3

b.
Amazon EBS

c.
Amazon Glacier

d.
Amazon EC2 Instance Store

Question 7
Answer saved
Marked out of 1.00
Not flaggedFlag question
Question text
What function do security groups serve related Amazon Elastic Compute Cloud (Amazon EC2) instance security?

a.
Use Amazon CloudFront to protect the Amazon EC2 instance.

b.
Act as a virtual firewall for the Amazon EC2 instance.

c.
Provide DDoS protection with AWS Shield.

d.
Secure AWS user accounts with AWS identity and Access Management (IAM) policies.

Question 8
Not yet answered
Marked out of 1.00
Not flaggedFlag question
Question text
You are architecting a highly-scalable and reliable web application which will have a huge amount of content .You have decided to use Cloudfront as you know it will speed up distribution of your static and dynamic web content and know that Amazon CloudFront integrates with Amazon CloudWatch metrics so that you can monitor your web application. Because you live in Sydney you have chosen the the Asia Pacific (Sydney) region in the AWS console. However you have set it up but no CloudFront metrics seem to be appearing in the CloudWatch console. What is the most likely reason from the possible choices below for

[Nguyễn Minh Quân (Quân Minh Nguyễn)] 07-30-2024 15:35
Which of the following AWS services are global in scope? (Select two)

a.
Amazon Elastic Compute Cloud (Amazon EC2)

b.
Amazon Simple Storage Service (Amazon S3)

c.
Amazon CloudFront

d.
AWS Identity and Access Management (AWS IAM)
Question 32
Not yet answered
Marked out of 1.00
Not flaggedFlag question
Question text
Which AWS service should be used for long-term, low-cost storage of data backups?

a.
AWS EBS

b.
AWS Snowball

c.
Amazon RDS

d.
Amazon Glacier

Question 33
Not yet answered
Marked out of 1.00
Not flaggedFlag question
Question text
A director has been tasked with investigating hybrid cloud architecture. The company currently accesses AWS over the public internet. Which service will facilitate private hybrid connectivity?

a.
Amazon Simple Storage Service (Amazon S3) Transfer Acceleration

b.
AWS Direct Connect

c.
AWS Web Application Firewall (AWS WAF)

d.
Amazon Virtual Private Cloud (Amazon VPC) NAT Gateway

Question 34
Not yet answered
Marked out of 1.00
Not flaggedFlag question
Question text
Which Amazon S3 storage class is optimized to provide access to data with lower resiliency requirements, but rapid access when needed such as duplicate backups?

a.
Amazon S3 One Zone-Infrequent Access

b.
Amazon S3 Standard

c.
Amazon S3 Glacier Deep Archive

d.
Amazon S3 Glacier

Question 35
Not yet answered
Marked out of 1.00
Not flaggedFlag question
Question text
Which Amazon EC2 pricing model is the MOST cost efficient for an uninterruptible workload that runs once a year for 24 hours?

a.
Reserved Instances

b.
Dedicated Instances

c.
On-Demand Instances

d.
Spot Instances

Question 36
Not yet answered
Marked out of 1.00
Not flaggedFlag question
Question text
AWS CloudFormation is a service that helps you model and set up your Amazon Web Services resources so that you can spend less time managing those resources and more time focusing on your applications that run in AWS. You create a template that describes all the AWS resources that you want (like Amazon EC2 instances or Amazon RDS DB instances), and AWS CloudFormation takes care of provisioning and configuring those resources for you. What format is required for this template?

a.
CSV-formatted document

b.
JSON-formatted document

c.
HTML5-formatted document

d.
CSS-formatted document

Question 37
Not yet answered
Marked out of 1.00
Not flaggedFlag question
Question text
An application runs on multiple Amazon EC2 instances that access a shared file system simultaneously. Which AWS storage service should be used?

a.
Amazon EBS

b.
AWS Artifact

c.
Amazon S3

d.
Amazon EFS

e.
Amazon EC2 instance store

Question 38
Not yet answered
Marked out of 1.00
Not flaggedFlag question
Question text
Which AWS service can serve a static website?

a.
Amazon QuickSight

b.
Amazon S3

c.
Amazon Route 53

d.
AWS X-Ray

Question 39
Not yet answered
Marked out of 1.00
Not flaggedFlag question
Question text
Distributing workloads across multiple Availability Zones supports which cloud architecture design principle?

a.
Implement elasticity.

b.
Design for failure.

c.
Design for agility.

d.
Implement automation.

Question 40
Not yet answered
Marked out of 1.00
Not flaggedFlag question
Question text
Why should a company choose AWS instead of a traditional data center?

a.
AWS offers edge locati

[Vũ Minh Quang] 07-30-2024 16:40
Question 8
AWS Identity and Access Management is a web service that enables Amazon Web Services (AWS) customers to manage users and user permissions in AWS. In addition to supporting IAM user policies, some services support resource-based permissions. Which of the following services are supported by resource-based permissions?

a.
Amazon Glacier, Amazon SNS, and Amazon CloudWatch

b. *
Amazon S3, Amazon SNS, Amazon SQS, KMS

c.
Amazon SNS, and Amazon SQS and AWS Direct Connect.

d.
Amazon S3 and Amazon SQS and Amazon ElastiCache.
Editor is loading...
Leave a Comment