diff --git "a/questions/CLF-C02-v1.json" "b/questions/CLF-C02-v1.json" deleted file mode 100644--- "a/questions/CLF-C02-v1.json" +++ /dev/null @@ -1,5562 +0,0 @@ -[ - { - "question": "AWS allows users to manage their resources using a web based user interface. What is the name of this interface?", - "options": [ - "AWS CLI.", - "AWS API.", - "AWS SDK.", - "AWS Management Console." - ], - "correct": "AWS Management Console." - }, - { - "question": "Which of the following is an example of horizontal scaling in the AWS Cloud?", - "options": [ - "Replacing an existing EC2 instance with a larger, more powerful one.", - "Increasing the compute capacity of a single EC< instance to address the growing demands of an application.", - "Adding more RAM capacity to an EC2 instance.", - "Adding more EC2 instances of the same size to handle an increase in traffic." - ], - "correct": "Adding more EC2 instances of the same size to handle an increase in traffic." - }, - { - "question": "You have noticed that several critical Amazon EC2 instances have been terminated. Which of the following AWS services would help you determine who took this action?", - "options": [ - "Amazon Inspector.", - "AWS CloudTrail.", - "AWS Trusted Advisor.", - "EC2 Instance Usage Report." - ], - "correct": "AWS CloudTrail." - }, - { - "question": "Which of the below options are related to the reliability of AWS? (Choose TWO)", - "options": [ - "Applying the principle of least privilege to all AWS resources.", - "Automatically provisioning new resources to meet demand.", - "All AWS services are considered Global Services, and this design helps customers serve their international users.", - "Providing compensation to customers if issues occur.", - "Ability to recover quickly from failures." - ], - "correct": "Automatically provisioning new resources to meet demand." - }, - { - "question": "Which statement is true regarding the AWS Shared Responsibility Model?", - "options": [ - "Responsibilities vary depending on the services used.", - "Security of the IaaS services is the responsibility of AWS.", - "Patching the guest OS is always the responsibility of AWS.", - "Security of the managed services is the responsibility of the customer." - ], - "correct": "Responsibilities vary depending on the services used." - }, - { - "question": "What does AWS Snowball provide? (Choose TWO)", - "options": [ - "Built-in computing capabilities that allow customers to process data locally.", - "A catalog of third-party software solutions that customers need to build solutions and run their businesses.", - "A hybrid cloud storage between on-premises environments and the AWS Cloud.", - "An Exabyte-scale data transfer service that allows you to move extremely large amounts of data to AWS.", - "Secure transfer of large amounts of data into and out of the AWS." - ], - "correct": "Built-in computing capabilities that allow customers to process data locally." - }, - { - "question": "Which of the following must an IAM user provide to interact with AWS services using the AWS Command Line Interface (AWS CLI)?", - "options": [ - "Access keys.", - "Secret token.", - "UserID.", - "User name and password." - ], - "correct": "Access keys." - }, - { - "question": "What does the AWS Health Dashboard provide? (Choose TWO)", - "options": [ - "Detailed troubleshooting guidance to address AWS events impacting your resources.", - "Network and Connectivity.", - "Recommendations for Cost Optimization.", - "A dashboard detailing vulnerabilities in your applications.", - "Personalized view of AWS service health." - ], - "correct": "Detailed troubleshooting guidance to address AWS events impacting your resources." - }, - { - "question": "A company is concerned that they are spending money on underutilized compute resources in AWS. Which AWS feature will help ensure that their applications are automatically adding/removing EC2 compute capacity to closely match the required demand?", - "options": [ - "AWS Elastic Load Balancer.", - "AWS Budgets.", - "AWS Auto Scaling.", - "AWS Cost Explorer." - ], - "correct": "AWS Auto Scaling." - }, - { - "question": "What is the AWS service that provides a virtual network dedicated to your AWS account?", - "options": [ - "AWS VPN.", - "AWS Subnets.", - "AWS Dedicated Hosts.", - "Amazon VPC." - ], - "correct": "Amazon VPC." - }, - { - "question": "A customer spent a lot of time configuring a newly deployed Amazon EC2 instance. After the workload increases, the customer decides to provision another EC2 instance with an identical configuration. How can the customer achieve this?", - "options": [ - "By creating an AWS Config template from the old instance and launching a new instance from it.", - "By creating an EBS Snapshot of the old instance.", - "By installing Aurora on EC2 and launching a new instance from it.", - "By creating an AMI from the old instance and launching a new instance from it." - ], - "correct": "By creating an AMI from the old instance and launching a new instance from it." - }, - { - "question": "What is the AWS tool that can help a company visualize their AWS spending in the last few months?", - "options": [ - "AWS Cost Explorer.", - "AWS Pricing Calculator.", - "AWS Budgets.", - "AWS Consolidated Billing." - ], - "correct": "AWS Cost Explorer." - }, - { - "question": "Which of the below options is true of Amazon Cloud Directory?", - "options": [ - "Amazon Cloud Directory allows the organization of hierarchies of data across multiple dimensions.", - "Amazon Cloud Directory enables the analysis of video and data streams in real time.", - "Amazon Cloud Directory allows users to access AWS with their existing Active Directory credentials.", - "Amazon Cloud Directory allows for registration and management of domain names." - ], - "correct": "Amazon Cloud Directory allows the organization of hierarchies of data across multiple dimensions." - }, - { - "question": "Which of the following can be used to enable the Virtual Multi-Factor Authentication? (Choose TWO)", - "options": [ - "Amazon Connect.", - "AWS CLI.", - "AWS Identity and Access Management (IAM).", - "Amazon SNS.", - "Amazon Virtual Private Cloud." - ], - "correct": "AWS CLI." - }, - { - "question": "A company is developing an application that will leverage facial recognition to automate photo tagging. Which AWS Service should the company use for facial recognition?", - "options": [ - "Amazon Comprehend.", - "AWS IAM.", - "Amazon Polly.", - "Amazon Rekognition." - ], - "correct": "Amazon Rekognition." - }, - { - "question": "What does the Amazon CloudFront service provide? (Choose TWO)", - "options": [ - "Tracks user activity and APl usage.", - "Increases application availability by caching at the edge.", - "Enables faster disaster recovery.", - "Stores archived data at very low costs.", - "Delivers content to end users with low latency." - ], - "correct": "Increases application availability by caching at the edge." - }, - { - "question": "For some services, AWS automatically replicates data across multiple Availability Zones to provide fault tolerance in the event of a server failure or Availability Zone outage. Select TWO services that automatically replicate data across Availability Zones.", - "options": [ - "Instance Store.", - "S3.", - "DynamoDB.", - "EC2 instances.", - "AWS VPN." - ], - "correct": "S3." - }, - { - "question": "You are working as a web app developer. You are currently facing issues in media playback for mobile devices because your media format is not supported. Which of the following AWS services can help you convert your media into another format?", - "options": [ - "Amazon Elastic Transcoder.", - "Amazon Pinpoint.", - "Amazon S3.", - "Amazon Rekognition." - ], - "correct": "Amazon Elastic Transcoder." - }, - { - "question": "Amazon EC2 instances are conceptually very similar to traditional servers. However, using Amazon EC2 server instances in the same manner as traditional hardware server instances is only a starting point. What are the main benefits of using the AWS EC2 instances instead of traditional servers? (Choose TWO)", - "options": [ - "Improves Fault-Tolerance.", - "Provides your business with a seamless remote accessibility.", - "Prevents unauthorized users from getting into your network.", - "Provides automatic data backups." - ], - "correct": "Improves Fault-Tolerance." - }, - { - "question": "Which of the following Cloud Computing deployment models eliminates the need to run and maintain physical data centers?", - "options": [ - "On-premises.", - "IaaS.", - "PaaS.", - "Cloud." - ], - "correct": "Cloud." - }, - { - "question": "Which AWS Cost Management tool allows you to view the most granular data about your AWS bill?", - "options": [ - "AWS Cost Explorer.", - "AWS Budgets.", - "AWS Cost and Usage report.", - "AWS Billing dashboard." - ], - "correct": "AWS Cost Explorer." - }, - { - "question": "The AWS Cloud\u2019s multiple Regions are an example of:", - "options": [ - "Agility.", - "Global infrastructure.", - "Elasticity.", - "Pay-as-you-go pricing." - ], - "correct": "Global infrastructure." - }, - { - "question": "Which AWS feature will reduce the customer\u2019s total cost of ownership (TCO)?", - "options": [ - "Shared responsibility security model.", - "Single tenancy.", - "Direct Connect.", - "Encryption." - ], - "correct": "Shared responsibility security model." - }, - { - "question": "Which of the following BEST describe the AWS pricing model? (Select TWO)", - "options": [ - "Fixed-term.", - "Pay-as-you-go.", - "Colocation.", - "Planned.", - "Variable cost." - ], - "correct": "Pay-as-you-go." - }, - { - "question": "If a customer needs to audit the change management of AWS resources, which of the following AWS services should the customer use?", - "options": [ - "AWS Config.", - "AWS Trusted Advisor.", - "Amazon CloudWatch.", - "Amazon Inspector." - ], - "correct": "AWS Config." - }, - { - "question": "Which of the following is an AWS Cloud architecture design principle?", - "options": [ - "Implement single points of failure.", - "Implement loose coupling.", - "Implement monolithic design.", - "Implement vertical scaling." - ], - "correct": "Implement loose coupling." - }, - { - "question": "Which is the MINIMUM AWS Support plan that provides technical support through phone calls?", - "options": [ - "Enterprise.", - "Business.", - "Developer.", - "Basic." - ], - "correct": "Business." - }, - { - "question": "A company is planning to migrate from on-premises to the AWS Cloud. Which AWS tool or service provides detailed reports on estimated cost savings after migration?", - "options": [ - "AWS Total Cost of Ownership (TCO) Calculator.", - "Cost Explorer.", - "AWS Budgets.", - "AWS Migration Hub." - ], - "correct": "" - }, - { - "question": "Which AWS service provides alerts when an AWS event may impact a company\u2019s AWS resources?", - "options": [ - "AWS Health Dashboard.", - "AWS Config.", - "AWS Trusted Advisor.", - "AWS Infrastructure Event Management." - ], - "correct": "AWS Health Dashboard." - }, - { - "question": "Which of the following can limit Amazon Simple Storage Service (Amazon S3) bucket access to specific users?", - "options": [ - "A public and private key-pair.", - "Amazon Inspector.", - "AWS Identity and Access Management (IAM) policies.", - "Security Groups." - ], - "correct": "AWS Identity and Access Management (IAM) policies." - }, - { - "question": "How should a customer forecast the future costs for running a new web application?", - "options": [ - "Amazon Aurora Backtrack.", - "Amazon CloudWatch Billing Alarms.", - "AWS Pricing Calculator.", - "AWS Cost and Usage report." - ], - "correct": "AWS Pricing Calculator." - }, - { - "question": "What are the advantages of the AWS Cloud (Select TWO)", - "options": [ - "Fixed rate monthly cost.", - "No need to guess capacity requirements.", - "Increased speed to market.", - "Increased upfront capital expenditure.", - "Physical access to cloud data centers." - ], - "correct": "No need to guess capacity requirements." - }, - { - "question": "You have set up consolidated billing for several AWS accounts. One of the accounts has purchased a number of reserved instances for 3 years. Which of the following is true regarding this scenario?", - "options": [ - "The Reserved Instance discounts can only be shared with the master account.", - "All accounts can receive the hourly cost benefit of the Reserved Instances.", - "The purchased instances will have better performance than On-demand instances.", - "There are no cost benefits from using consolidated billing; It is for informational purposes only." - ], - "correct": "All accounts can receive the hourly cost benefit of the Reserved Instances." - }, - { - "question": "A company has developed an eCommerce web application in AWS. What should they do to ensure that the application has the highest level of availability?", - "options": [ - "Deploy the application across multiple Availability Zones and Edge locations.", - "Deploy the application across multiple Availability Zones and subnets.", - "Deploy the application across multiple Regions and Availability Zones.", - "Deploy the application across multiple VPC\u2019s and subnets." - ], - "correct": "Deploy the application across multiple Regions and Availability Zones." - }, - { - "question": "A company has an AWS Enterprise Support plan. They want quick and efficient guidance with their billing and account inquiries. Which of the following should the company use?", - "options": [ - "AWS Health Dashboard.", - "AWS Support Concierge.", - "AWS Customer Service.", - "AWS Operations Support." - ], - "correct": "AWS Support Concierge." - }, - { - "question": "A Japanese company hosts their applications on Amazon EC2 instances in the Tokyo Region. The company has opened new branches in the United States, and the US users are complaining of high latency. What can the company do to reduce latency for the users in the US while minimizing costs?", - "options": [ - "Applying the Amazon Connect latency-based routing policy.", - "Registering a new US domain name to serve the users in the US.", - "Building a new data center in the US and implementing a hybrid model.", - "Deploying new Amazon EC2 instances in a Region located in the US." - ], - "correct": "Deploying new Amazon EC2 instances in a Region located in the US." - }, - { - "question": "An organization has a large number of technical employees who operate their AWS Cloud infrastructure. What does AWS provide to help organize them into teams and then assign the appropriate permissions for each team?", - "options": [ - "IAM roles.", - "IAM users.", - "IAM user groups.", - "AWS Organizations." - ], - "correct": "IAM user groups." - }, - { - "question": "A company has decided to migrate its Oracle database to AWS. Which AWS service can help achieve this without negatively impacting the functionality of the source database?", - "options": [ - "AWS OpsWorks.", - "AWS Database Migration Service.", - "AWS Server Migration Service.", - "AWS Application Discovery Service." - ], - "correct": "AWS Database Migration Service." - }, - { - "question": "Adjusting compute capacity dynamically to reduce cost is an implementation of which AWS cloud best practice?", - "options": [ - "Build security in every layer.", - "Parallelize tasks.", - "Implement elasticity.", - "Adopt monolithic architecture." - ], - "correct": "Implement elasticity." - }, - { - "question": "What are the benefits of having infrastructure hosted in AWS? (Choose TWO)", - "options": [ - "Increasing speed and agility.", - "There is no need to worry about security.", - "Gaining complete control over the physical infrastructure.", - "AWS is will apply patching on all running guest OSes.", - "All of the physical security and most of the data/network security are taken care of for you." - ], - "correct": "Increasing speed and agility." - }, - { - "question": "What is the advantage of the AWS-recommended practice of \"decoupling\" applications?", - "options": [ - "Allows treating an application as a single, cohesive unit.", - "Reduces inter-dependencies so that failures do not impact other components of the application.", - "Allows updates of any monolithic application quickly and easily.", - "Allows tracking of any API call made to any AWS service." - ], - "correct": "Reduces inter-dependencies so that failures do not impact other components of the application." - }, - { - "question": "Which of the following helps a customer view the Amazon EC2 billing activity for the past month?", - "options": [ - "AWS Budgets.", - "AWS Pricing Calculator.", - "AWS Systems Manager.", - "AWS Cost & Usage Reports." - ], - "correct": "AWS Cost & Usage Reports." - }, - { - "question": "What do you gain from setting up consolidated billing for five different AWS accounts under another master account?", - "options": [ - "AWS services\u2019 costs will be reduced to half the original price.", - "The consolidated billing feature is just for organizational purpose.", - "Each AWS account gets volume discounts.", - "Each AWS account gets five times the free-tier services capacity." - ], - "correct": "Each AWS account gets volume discounts." - }, - { - "question": "What should you do in order to keep the data on EBS volumes safe? (Choose TWO)", - "options": [ - "Regularly update firmware on EBS devices.", - "Create EBS snapshots.", - "Ensure that EBS data is encrypted at rest.", - "Store a backup daily in an external drive.", - "Prevent any unauthorized access to AWS data centers." - ], - "correct": "Create EBS snapshots." - }, - { - "question": "One of the most important AWS best-practices to follow is the cloud architecture principle of elasticity. How does this principle improve your architecture\u2019s design?", - "options": [ - "By automatically scaling your on-premises resources based on changes in demand.", - "By automatically scaling your AWS resources using an Elastic Load Balancer.", - "By reducing interdependencies between application components wherever possible.", - "By automatically provisioning the required AWS resources based on changes in demand." - ], - "correct": "By automatically provisioning the required AWS resources based on changes in demand." - }, - { - "question": "A startup company is operating on limited funds and is extremely concerned about cost overruns. Which of the below options can be used to notify the company when their monthly AWS bill exceeds $2000? (Choose TWO)", - "options": [ - "Setup a CloudWatch billing alarm that triggers an SNS notification when the threshold is exceeded.", - "Configure the Amazon Simple Email Service to send billing alerts to their email address on a daily basis.", - "Configure the AWS Budgets Service to alert the company when the threshold is exceeded.", - "Configure AWS CloudTrail to automatically delete all AWS resources when the threshold is exceeded.", - "Configure the Amazon Connect Service to alert the company when the threshold is exceeded." - ], - "correct": "Setup a CloudWatch billing alarm that triggers an SNS notification when the threshold is exceeded." - }, - { - "question": "What does Amazon CloudFront use to distribute content to global users with low latency?", - "options": [ - "AWS Global Accelerator.", - "AWS Regions.", - "AWS Edge Locations.", - "AWS Availability Zones." - ], - "correct": "AWS Edge Locations." - }, - { - "question": "What does the \"Principle of Least Privilege\" refer to?", - "options": [ - "You should grant your users only the permissions they need when they need them and nothing more.", - "AllIAM users should have at least the necessary permissions to access the core AWS services.", - "All trusted IAM users should have access to any AWS service in the respective AWS account.", - "IAM users should not be granted any permissions; to keep your account safe." - ], - "correct": "You should grant your users only the permissions they need when they need them and nothing more." - }, - { - "question": "Which of the following does NOT belong to the AWS Cloud Computing models?", - "options": [ - "Platform as a Service (PaaS).", - "Infrastructure as a Service (IaaS).", - "Software as a Service (SaaS).", - "Agriculture as a Service (AgriaaS)." - ], - "correct": "Agriculture as a Service (AgriaaS)." - }, - { - "question": "The identification process of an online financial services company requires that new users must complete an online interview with their security team. The completed recorded interviews are only required in the event of a legal issue or a regulatory compliance breach. What is the most cost-effective service to store the recorded videos?", - "options": [ - "S3 Intelligent-Tiering.", - "AWS Marketplace.", - "Amazon S3 Glacier Deep Archive.", - "Amazon EBS." - ], - "correct": "Amazon S3 Glacier Deep Archive." - }, - { - "question": "Which service provides DNS in the AWS cloud?", - "options": [ - "Route 53.", - "AWS Config.", - "Amazon CloudFront.", - "Amazon EMR." - ], - "correct": "Route 53." - }, - { - "question": "Hundreds of thousands of DDoS attacks are recorded every month worldwide. What service does AWS provide to help protect AWS Customers from these attacks? (Choose TWO)", - "options": [ - "AWS Shield.", - "AWS Config.", - "Amazon Cognito.", - "AWS WAF.", - "AWS KMS." - ], - "correct": "AWS Shield." - }, - { - "question": "A company is deploying a new two-tier web application in AWS. Where should the most frequently accessed data be stored so that the application\u2019s response time is optimal?", - "options": [ - "AWS OpsWorks.", - "AWS Storage Gateway.", - "Amazon EBS volume.", - "Amazon ElastiCache." - ], - "correct": "Amazon ElastiCache." - }, - { - "question": "You want to run a questionnaire application for only one day (without interruption), which Amazon EC2 purchase option should you use?", - "options": [ - "Reserved instances.", - "Spot instances.", - "Dedicated instances.", - "On-demand instances." - ], - "correct": "On-demand instances." - }, - { - "question": "You are working on a project that involves creating thumbnails of millions of images. Consistent uptime is not an issue, and continuous processing is not required. Which EC2 buying option would be the most cost-effective?", - "options": [ - "Reserved Instances.", - "On-demand Instances.", - "Dedicated Instances.", - "Spot Instances." - ], - "correct": "Spot Instances." - }, - { - "question": "Which of the following can be described as a global content delivery network (CDN) service?", - "options": [ - "AWS VPN.", - "AWS Direct Connect.", - "AWS Regions.", - "Amazon CloudFront." - ], - "correct": "Amazon CloudFront." - }, - { - "question": "Which of the following services allows customers to manage their agreements with AWS?", - "options": [ - "AWS Artifact.", - "AWS Certificate Manager.", - "AWS Systems Manager.", - "AWS Organizations." - ], - "correct": "AWS Artifact." - }, - { - "question": "Which of the following are examples of AWS-Managed Services, where AWS is responsible for the operational and maintenance burdens of running the service? (Choose TWO)", - "options": [ - "Amazon VPC.", - "Amazon DynamoDB.", - "Amazon Elastic MapReduce.", - "AWS IAM.", - "Amazon Elastic Compute Cloud." - ], - "correct": "Amazon DynamoDB." - }, - { - "question": "Your company has a data store application that requires access to a NoSQL database. Which AWS database offering would meet this requirement?", - "options": [ - "Amazon Aurora.", - "Amazon DynamoDB.", - "Amazon Elastic Block Store.", - "Amazon Redshift." - ], - "correct": "Amazon DynamoDB." - }, - { - "question": "As part of the Enterprise support plan, who is the primary point of contact for ongoing support needs?", - "options": [ - "AWS Identity and Access Management (IAM) user.", - "Infrastructure Event Management (IEM) engineer.", - "AWS Consulting Partners.", - "Technical Account Manager (TAM)." - ], - "correct": "Technical Account Manager (TAM)." - }, - { - "question": "How can you view the distribution of AWS spending in one of your AWS accounts?", - "options": [ - "By using Amazon VPC console.", - "By contacting the AWS Support team.", - "By using AWS Cost Explorer.", - "By contacting the AWS Finance team." - ], - "correct": "By using AWS Cost Explorer." - }, - { - "question": "You have AWS Basic support, and you have discovered that some AWS resources are being used maliciously, and those resources could potentially compromise your data. What should you do?", - "options": [ - "Contact the AWS Customer Service team.", - "Contact the AWS Trust & Safety team.", - "Contact the AWS Concierge team.", - "Contact the AWS Security team." - ], - "correct": "Contact the AWS Trust & Safety team." - }, - { - "question": "Select TWO examples of the AWS shared controls.", - "options": [ - "Patch Management.", - "IAM Management.", - "VPC Management.", - "Configuration Management.", - "Data Center operations." - ], - "correct": "Patch Management." - }, - { - "question": "In order to implement best practices when dealing with a \u201cSingle Point of Failure,\u201d you should attempt to build as much automation as possible in both detecting and reacting to failure. Which of the following AWS services would help? (Choose TWO)", - "options": [ - "ELB.", - "Auto Scaling.", - "Amazon Athena.", - "Amazon Redshift.", - "Amazon EC2." - ], - "correct": "ELB." - }, - { - "question": "A company is planning to host an educational website on AWS. Their video courses will be streamed all around the world. Which of the following AWS services will help achieve high transfer speeds?", - "options": [ - "Amazon SNS.", - "Amazon Kinesis Video Streams.", - "AWS CloudFormation.", - "Amazon CloudFront." - ], - "correct": "Amazon CloudFront." - }, - { - "question": "A developer is planning to build a two-tier web application that has a MySQL database layer. Which of the following AWS database services would provide automated backups for the application?", - "options": [ - "A MySQL database installed on an EC2 instance.", - "Amazon Aurora.", - "Amazon DynamoDB.", - "Amazon Neptune." - ], - "correct": "Amazon Aurora." - }, - { - "question": "What is the AWS service that enables AWS architects to manage infrastructure as code?", - "options": [ - "AWS CloudFormation.", - "AWS Config.", - "Amazon SES.", - "Amazon EMR." - ], - "correct": "AWS CloudFormation." - }, - { - "question": "Under the shared responsibility model, which of the following is the responsibility of AWS?", - "options": [ - "Client-side encryption.", - "Configuring infrastructure devices.", - "Server-side encryption.", - "Filtering traffic with Security Groups." - ], - "correct": "Configuring infrastructure devices." - }, - { - "question": "You have deployed your application on multiple Amazon EC2 instances. Your customers complain that sometimes they can\u2019t reach your application. Which AWS service allows you to monitor the performance of your EC2 instances to assist in troubleshooting these issues?", - "options": [ - "AWS Lambda.", - "AWS Config.", - "Amazon CloudWatch.", - "AWS CloudTrail." - ], - "correct": "Amazon CloudWatch." - }, - { - "question": "Your company is developing a critical web application in AWS, and the security of the application is a top priority. Which of the following AWS services will provide infrastructure security optimization recommendations?", - "options": [ - "AWS Shield.", - "AWS Management Console.", - "AWS Secrets Manager.", - "AWS Trusted Advisor." - ], - "correct": "AWS Trusted Advisor." - }, - { - "question": "Which of the following is not a benefit of Amazon S3? (Choose TWO)", - "options": [ - "Amazon S3 provides unlimited storage for any type of data.", - "Amazon S3 can run any type of application or backend system.", - "Amazon S3 stores any number of objects, but with object size limits.", - "Amazon S3 can be scaled manually to store and retrieve any amount of data from anywhere.", - "Amazon S3 provides 99.999999999% (11 9\u2019s) of data durability." - ], - "correct": "Amazon S3 can run any type of application or backend system." - }, - { - "question": "In the AWS Shared responsibility Model, which of the following are the responsibility of the customer? (Choose TWO)", - "options": [ - "Disk disposal.", - "Controlling physical access to compute resources.", - "Patching the Network infrastructure.", - "Setting password complexity rules.", - "Configuring network access rules." - ], - "correct": "Setting password complexity rules." - }, - { - "question": "What does AWS provide to deploy popular technologies such as IBM MQ on AWS with the least amount of effort and time?", - "options": [ - "Amazon Aurora.", - "Amazon CloudWatch.", - "Amazon MQ.", - "Amazon Elastic Beanstalk." - ], - "correct": "Amazon MQ." - }, - { - "question": "An organization has decided to purchase an Amazon EC2 Reserved Instance (RI) for three years in order to reduce costs. It is possible that the application workloads could change during the reservation period. What is the EC2 Reserved Instance (RI) type that will allow the company to exchange the purchased reserved instance for another reserved instance with higher computing power if they need to?", - "options": [ - "Elastic RI.", - "Premium RI.", - "Standard RI.", - "Convertible RI." - ], - "correct": "Convertible RI." - }, - { - "question": "A global company with a large number of AWS accounts is seeking a way in which they can centrally manage billing and security policies across all accounts. Which AWS Service will assist them in meeting these goals?", - "options": [ - "AWS Organizations.", - "AWS Trusted Advisor.", - "IAM User Groups.", - "AWS Config." - ], - "correct": "AWS Organizations." - }, - { - "question": "Which service provides object-level storage in AWS?", - "options": [ - "Amazon EBS.", - "Amazon Instance Store.", - "Amazon EFS.", - "Amazon S3." - ], - "correct": "Amazon S3." - }, - { - "question": "Which S3 storage class is best for data with unpredictable access patterns?", - "options": [ - "Amazon S3 Intelligent-Tiering.", - "Amazon S3 Glacier Flexible Retrieval.", - "Amazon S3 Standard.", - "Amazon S3 Standard-Infrequent Access." - ], - "correct": "Amazon S3 Intelligent-Tiering." - }, - { - "question": "What is the AWS database service that allows you to upload data structured in key-value format?", - "options": [ - "Amazon DynamoDB.", - "Amazon Aurora.", - "Amazon Redshift.", - "Amazon RDS." - ], - "correct": "Amazon DynamoDB." - }, - { - "question": "Which of the following is NOT correct regarding Amazon EC2 On-demand instances?", - "options": [ - "You have to pay a start-up fee when launching a new instance for the first time.", - "The on-demand instances follow the AWS pay-as-you-go pricing model.", - "With on-demand instances, no longer-term commitments or upfront payments are needed.", - "When using on-demand Linux instances, you are charged per second based on an hourly rate." - ], - "correct": "You have to pay a start-up fee when launching a new instance for the first time." - }, - { - "question": "A company has moved to AWS recently. Which of the following AWS Services will help ensure that they have the proper security settings? (Choose TWO)", - "options": [ - "AWS Trusted Advisor.", - "Amazon Inspector.", - "Amazon SNS.", - "Amazon CloudWatch.", - "Concierge Support Team." - ], - "correct": "AWS Trusted Advisor." - }, - { - "question": "What is the AWS feature that provides an additional level of security above the default authentication mechanism of usernames and passwords?", - "options": [ - "Encrypted keys.", - "Email verification.", - "AWS KMS.", - "AWS MFA." - ], - "correct": "AWS MFA." - }, - { - "question": "A company is introducing a new product to their customers, and is expecting a surge in traffic to their web application. As part of their Enterprise Support plan, which of the following provides the company with architectural and scaling guidance?", - "options": [ - "AWS Knowledge Center.", - "AWS Health Dashboard.", - "Infrastructure Event Management.", - "AWS Support Concierge Service." - ], - "correct": "Infrastructure Event Management." - }, - { - "question": "You work as an on-premises MySQL DBA. The work of database configuration, backups, patching, and DR can be time-consuming and repetitive. Your company has decided to migrate to the AWS Cloud. Which of the following can help save time on database maintenance so you can focus on data architecture and performance?", - "options": [ - "Amazon RDS.", - "Amazon Redshift.", - "Amazon DynamoDB.", - "Amazon CloudWatch." - ], - "correct": "Amazon RDS." - }, - { - "question": "According to the AWS Acceptable Use Policy, which of the following statements is true regarding penetration testing of EC2 instances?", - "options": [ - "Penetration testing is not allowed in AWS.", - "Penetration testing is performed automatically by AWS to determine vulnerabilities in your AWS infrastructure.", - "Penetration testing can be performed by the customer on their own instances without prior authorization from AWS.", - "The AWS customers are only allowed to perform penetration testing on services managed by AWS." - ], - "correct": "Penetration testing can be performed by the customer on their own instances without prior authorization from AWS." - }, - { - "question": "Which service is used to ensure that messages between software components are not lost if one or more components fail?", - "options": [ - "Amazon SQS.", - "Amazon SES.", - "AWS Direct Connect.", - "Amazon Connect." - ], - "correct": "Amazon SQS." - }, - { - "question": "The principle \u201cdesign for failure and nothing will fail\u201d is very important when designing your AWS Cloud architecture. Which of the following would help adhere to this principle? (Choose TWO)", - "options": [ - "Multi-factor authentication.", - "Availability Zones.", - "Elastic Load Balancing.", - "Penetration testing.", - "Vertical Scaling." - ], - "correct": "Availability Zones." - }, - { - "question": "According to the AWS Shared responsibility model, which of the following are the responsibility of the customer? (Choose TWO)", - "options": [ - "Managing environmental events of AWS data centers.", - "Protecting the confidentiality of data in transit in Amazon S3.", - "Controlling physical access to AWS Regions.", - "Patching applications installed on Amazon EC2." - ], - "correct": "Protecting the confidentiality of data in transit in Amazon S3." - }, - { - "question": "Which of the following AWS services can be used as a compute resource? (Choose TWO)", - "options": [ - "Amazon VPC.", - "Amazon CloudWatch.", - "Amazon S3.", - "Amazon EC2.", - "AWS Lambda." - ], - "correct": "Amazon EC2." - }, - { - "question": "Your company is designing a new application that will store and retrieve photos and videos. Which of the following services should you recommend as the underlying storage mechanism?", - "options": [ - "Amazon EBS.", - "Amazon SQS.", - "Amazon S3.", - "Amazon Instance store." - ], - "correct": "Amazon S3." - }, - { - "question": "Which of the following is equivalent to a user name and password and is used to authenticate your programmatic access to AWS services and APIs?", - "options": [ - "Instance Password.", - "Key pairs.", - "Access Keys.", - "MFA." - ], - "correct": "Access Keys." - }, - { - "question": "What does Amazon ElastiCache provide?", - "options": [ - "In-memory caching for read-heavy applications.", - "An Ehcache compatible in-memory data store.", - "An online software store that allows Customers to launch pre-configured software with just few clicks.", - "A domain name system in the cloud." - ], - "correct": "In-memory caching for read-heavy applications." - }, - { - "question": "What is the AWS service that enables you to manage all of your AWS accounts from a single master account?", - "options": [ - "AWS WAF.", - "AWS Trusted Advisor.", - "AWS Organizations.", - "Amazon Config." - ], - "correct": "AWS Organizations." - }, - { - "question": "Which of the following EC2 instance purchasing options supports the Bring Your Own License (BYOL) model for almost every BYOL scenario?", - "options": [ - "Dedicated Instances.", - "Dedicated Hosts.", - "On-demand Instances.", - "Reserved Instances." - ], - "correct": "Dedicated Hosts." - }, - { - "question": "Which of the following is one of the benefits of moving infrastructure from an on-premises data center to AWS?", - "options": [ - "Free support for all enterprise customers.", - "Automatic data protection.", - "Reduced Capital Expenditure (CapEx).", - "AWS holds responsibility for managing customer applications." - ], - "correct": "Reduced Capital Expenditure (CapEx)." - }, - { - "question": "Which of the following are important design principles you should adopt when designing systems on AWS? (Choose TWO)", - "options": [ - "Always use Global Services in your architecture rather than Regional Services.", - "Always choose to pay as you go.", - "Treat servers as fixed resources.", - "Automate wherever possible.", - "Remove single points of failure." - ], - "correct": "Automate wherever possible." - }, - { - "question": "Which AWS Service can be used to establish a dedicated, private network connection between AWS and your datacenter?", - "options": [ - "AWS Direct Connect.", - "Amazon CloudFront.", - "AWS Snowball.", - "Amazon Route 53." - ], - "correct": "AWS Direct Connect." - }, - { - "question": "You are working on two projects that require completely different network configurations. Which AWS service or feature will allow you to isolate resources and network configurations?", - "options": [ - "Internet gateways.", - "Virtual Private Cloud.", - "Security Groups.", - "Amazon CloudFront." - ], - "correct": "Virtual Private Cloud." - }, - { - "question": "Which of the following services can help protect your web applications from SQL injection and other vulnerabilities in your application code?", - "options": [ - "Amazon Cognito.", - "AWS IAM.", - "Amazon Aurora.", - "AWS WAF." - ], - "correct": "AWS WAF." - }, - { - "question": "An organization needs to analyze and process a large number of data sets. Which AWS service should they use?", - "options": [ - "Amazon EMR.", - "Amazon MQ.", - "Amazon SNS.", - "Amazon SQS." - ], - "correct": "Amazon EMR." - }, - { - "question": "Based on the AWS Shared Responsibility Model, which of the following are the sole responsibility of AWS? (Choose TWO)", - "options": [ - "Monitoring network performance.", - "Installing software on EC2 instances.", - "Creating hypervisors.", - "Configuring Access Control Lists (ACLs).", - "Hardware maintenance." - ], - "correct": "Creating hypervisors." - }, - { - "question": "What is the AWS service that provides you the highest level of control over the underlying virtual infrastructure?", - "options": [ - "Amazon Redshift.", - "Amazon DynamoDB.", - "Amazon EC2.", - "Amazon RDS." - ], - "correct": "Amazon EC2." - }, - { - "question": "What are the default security credentials that are required to access the AWS management console for an IAM user account?", - "options": [ - "MFA.", - "Security tokens.", - "A user name and password.", - "Access keys." - ], - "correct": "A user name and password." - }, - { - "question": "In your on-premises environment, you can create as many virtual servers as you need from a single template. What can you use to perform the same in AWS?", - "options": [ - "IAM.", - "An internet gateway.", - "EBS Snapshot.", - "AMI." - ], - "correct": "AMI." - }, - { - "question": "What are two advantages of using Cloud Computing over using traditional data centers? (Choose TWO)", - "options": [ - "Reserved Compute capacity.", - "Eliminating Single Points of Failure (SPOFs).", - "Distributed infrastructure.", - "Full control and total ownership over the security of resources.", - "Dedicated hosting." - ], - "correct": "Eliminating Single Points of Failure (SPOFs)." - }, - { - "question": "Which of the following aspects of security are managed by AWS? (Choose TWO)", - "options": [ - "Encryption of EBS volumes.", - "VPC security.", - "Access permissions.", - "Hardware patching.", - "Securing global physical infrastructure." - ], - "correct": "Hardware patching." - }, - { - "question": "AWS has created a large number of Edge Locations as part of its Global Infrastructure. Which of the following is NOT a benefit of using Edge Locations?", - "options": [ - "Edge locations are used by CloudFront to cache the most recent responses.", - "Edge locations are used by CloudFront to improve your end users\u2019 experience when uploading files.", - "Edge locations are used by CloudFront to distribute traffic across multiple instances to reduce latency.", - "Edge locations are used by CloudFront to distribute content to global users with low latency." - ], - "correct": "Edge locations are used by CloudFront to improve your end users\u2019 experience when uploading files." - }, - { - "question": "What are the change management tools that helps AWS customers audit and monitor all resource changes in their AWS environment? (Choose TWO)", - "options": [ - "AWS CloudTrail.", - "Amazon Comprehend.", - "AWS Transit Gateway.", - "AWS X-Ray.", - "AWS Config." - ], - "correct": "AWS CloudTrail." - }, - { - "question": "Which of the following services allows you to run containerized applications on a cluster of EC2 instances?", - "options": [ - "Amazon ECS.", - "AWS Data Pipeline.", - "AWS Cloud9.", - "AWS Personal Health Dashboard." - ], - "correct": "Amazon ECS." - }, - { - "question": "Which of the following services will help businesses ensure compliance in AWS?", - "options": [ - "CloudFront.", - "CloudEndure Migration.", - "CloudWatch.", - "CloudTrail." - ], - "correct": "CloudTrail." - }, - { - "question": "Which of the following procedures will help reduce your Amazon S3 costs?", - "options": [ - "Use the Import/Export feature to move old files automatically to Amazon Glacier.", - "Use the right combination of storage classes based on different use cases.", - "Pick the right Availability Zone for your S3 bucket.", - "Move all the data stored in S3 standard to EBS." - ], - "correct": "Use the right combination of storage classes based on different use cases." - }, - { - "question": "What are the AWS services/features that can help you maintain a highly available and fault-tolerant architecture in AWS? (Choose TWO)", - "options": [ - "AWS Direct Connect.", - "Amazon EC2 Auto Scaling.", - "Elastic Load Balancer.", - "CloudFormation.", - "Network ACLs." - ], - "correct": "Amazon EC2 Auto Scaling." - }, - { - "question": "Which of the following activities may help reduce your AWS monthly costs?", - "options": [ - "Enabling Amazon EC2 Auto Scaling for all of your workloads.", - "Using the AWS Network Load Balancer (NLB) to load balance the incoming HTTP requests.", - "Removing all of your Cost Allocation Tags.", - "Deploying your AWS resources across multiple Availability Zones." - ], - "correct": "Enabling Amazon EC2 Auto Scaling for all of your workloads." - }, - { - "question": "What is the AWS service/feature that takes advantage of Amazon CloudFront\u2019s globally distributed edge locations to transfer files to S3 with higher upload speeds?", - "options": [ - "S3 Transfer Acceleration.", - "AWS WAF.", - "AWS Snowmobile.", - "AWS Snowball." - ], - "correct": "S3 Transfer Acceleration." - }, - { - "question": "Which of the following AWS security features is associated with an EC2 instance and functions to filter incoming traffic requests?", - "options": [ - "AWS X-Ray.", - "Amazon Inspector.", - "Security Groups.", - "VPC Flow logs." - ], - "correct": "Security Groups." - }, - { - "question": "Which AWS services can be used to improve the performance of a global application and reduce latency for its users? (Choose TWO)", - "options": [ - "AWS KMS.", - "AWS Global accelerator.", - "AWS Direct Connect.", - "AWS Glue.", - "Amazon CloudFront." - ], - "correct": "AWS Global accelerator." - }, - { - "question": "Using Amazon RDS falls under the shared responsibility model. Which of the following are customer responsibilities? (Choose TWO)", - "options": [ - "Building the relational database schema.", - "Scaling and Performance.", - "Managing the database settings.", - "Patching the database software.", - "Installing the database software." - ], - "correct": "Building the relational database schema." - }, - { - "question": "A company has a large amount of structured data stored in their on-premises data center. They are planning to migrate all the data to AWS, what is the most appropriate AWS database option?", - "options": [ - "Amazon DynamoDB.", - "Amazon SNS.", - "Amazon RDS.", - "Amazon ElastiCache." - ], - "correct": "Amazon RDS." - }, - { - "question": "A company has created a solution that helps AWS customers improve their architectures on AWS. Which AWS program may support this company?", - "options": [ - "AWS Marketplace.", - "AWS TAM.", - "APN Partners.", - "AWS Professional Services." - ], - "correct": "APN Partners." - }, - { - "question": "What is the AWS serverless service that allows you to run your applications without any administrative burden?", - "options": [ - "Amazon LightSail.", - "AWS Lambda.", - "Amazon RDS instances.", - "Amazon EC2 instances." - ], - "correct": "AWS Lambda." - }, - { - "question": "Jessica is managing an e-commerce web application in AWS. The application is hosted on six EC2 instances. One day, three of the instances crashed; but none of her customers were affected. What has Jessica done correctly in this scenario?", - "options": [ - "She has properly built an elastic system.", - "She has properly built a fault tolerant system.", - "She has properly built an encrypted system.", - "She has properly built a scalable system." - ], - "correct": "She has properly built a fault tolerant system." - }, - { - "question": "Where can you store files in AWS? (Choose TWO)", - "options": [ - "Amazon EFS.", - "Amazon SNS.", - "Amazon EBS.", - "Amazon ECS.", - "Amazon EMR." - ], - "correct": "Amazon EFS." - }, - { - "question": "Which AWS service can be used to store and reliably deliver messages across distributed systems?", - "options": [ - "Amazon Simple Queue Service.", - "AWS Storage Gateway.", - "Amazon Simple Email Service.", - "Amazon Simple Storage Service." - ], - "correct": "Amazon Simple Queue Service." - }, - { - "question": "Which of the following describes the payment model that AWS makes available for customers that can commit to using Amazon EC2 over a one or 3-year term to reduce their total computing costs?", - "options": [ - "Pay less as AWS grows.", - "Pay as you go.", - "Pay less by using more.", - "Save when you reserve." - ], - "correct": "Save when you reserve." - }, - { - "question": "A company is migrating its on-premises database to Amazon RDS. What should the company do to ensure Amazon RDS costs are kept to a minimum?", - "options": [ - "Right-size before and after migration.", - "Use a Multi-Region Active-Passive architecture.", - "Combine On-demand Capacity Reservations with Saving Plans.", - "Use a Multi-Region Active-Active architecture." - ], - "correct": "Right-size before and after migration." - }, - { - "question": "What is the primary storage service used by Amazon RDS database instances?", - "options": [ - "Amazon Glacier.", - "Amazon EBS.", - "Amazon EFS.", - "Amazon S3." - ], - "correct": "Amazon EBS." - }, - { - "question": "A company is developing a new application using a microservices framework. The new application is having performance and latency issues. Which AWS Service should be used to troubleshoot these issues?", - "options": [ - "AWS CodePipeline.", - "AWS X-Ray.", - "Amazon Inspector.", - "AWS CloudTrail." - ], - "correct": "AWS X-Ray." - }, - { - "question": "Which of the following AWS services is designed with native Multi-AZ fault tolerance in mind? (Choose TWO)", - "options": [ - "Amazon Redshift.", - "AWS Snowball.", - "Amazon Simple Storage Service.", - "Amazon EBS.", - "Amazon DynamoDB." - ], - "correct": "Amazon Simple Storage Service." - }, - { - "question": "What are the Amazon RDS features that can be used to improve the availability of your database? (Choose TWO)", - "options": [ - "AWS Regions.", - "Multi-AZ Deployment.", - "Automatic patching.", - "Read Replicas.", - "Edge Locations." - ], - "correct": "Multi-AZ Deployment." - }, - { - "question": "Sarah has deployed an application in the Northern California (us-west-1) region. After examining the application\u2019s traffic, she notices that about 30% of the traffic is coming from Asia. What can she do to reduce latency for the users in Asia?", - "options": [ - "Replicate the current resources across multiple Availability Zones within the same region.", - "Migrate the application to a hosting provider in Asia.", - "Recreate the website content.", - "Create a CDN using CloudFront, so that content is cached at Edge Locations close to and in Asia." - ], - "correct": "Create a CDN using CloudFront, so that content is cached at Edge Locations close to and in Asia." - }, - { - "question": "An organization runs many systems and uses many AWS products. Which of the following services enables them to control how each developer interacts with these products?", - "options": [ - "AWS Identity and Access Management.", - "Amazon RDS.", - "Network Access Control Lists.", - "Amazon EMR." - ], - "correct": "AWS Identity and Access Management." - }, - { - "question": "Using Amazon EC2 falls under which of the following cloud computing models?", - "options": [ - "Iaas & SaaS.", - "IaaS.", - "SaaS.", - "PaaS." - ], - "correct": "IaaS." - }, - { - "question": "Which of the below is a best-practice when building applications on AWS?", - "options": [ - "Strengthen physical security by applying the principle of least privilege.", - "Ensure that the application runs on hardware from trusted vendors.", - "Use IAM policies to maintain performance.", - "Decouple the components of the application so that they run independently." - ], - "correct": "Decouple the components of the application so that they run independently." - }, - { - "question": "Your company is designing a new application that will store and retrieve photos and videos. Which of the following services should you recommend as the underlying storage mechanism?", - "options": [ - "Amazon EBS.", - "Amazon SQS.", - "Amazon Instance store.", - "Amazon S3." - ], - "correct": "Amazon S3." - }, - { - "question": "Amazon Glacier is an Amazon S3 storage class that is suitable for storing [...] & [...]. (Choose TWO)", - "options": [ - "Active archives.", - "Dynamic websites\u2019 assets.", - "Long-term analytic data.", - "Active databases.", - "Cached data." - ], - "correct": "Active archives." - }, - { - "question": "What does Amazon Elastic Beanstalk provide?", - "options": [ - "A PaaS solution to automate application deployment.", - "A compute engine for Amazon ECS.", - "A scalable file storage solution for use with AWS and on-premises servers.", - "A NoSQL database service." - ], - "correct": "A PaaS solution to automate application deployment." - }, - { - "question": "What is the AWS service that performs automated network assessments of Amazon EC2 instances to check for vulnerabilities?", - "options": [ - "Amazon Kinesis.", - "Security groups.", - "Amazon Inspector.", - "AWS Network Access Control Lists." - ], - "correct": "Amazon Inspector." - }, - { - "question": "Under the Shared Responsibility Model, which of the following controls do customers fully inherit from AWS? (Choose TWO)", - "options": [ - "Patch management controls.", - "Database controls.", - "Awareness & Training.", - "Environmental controls.", - "Physical controls." - ], - "correct": "Environmental controls." - }, - { - "question": "A company needs to host a database in Amazon RDS for at least three years. Which of the following options would be the most cost-effective solution?", - "options": [ - "Reserved instances - No Upfront.", - "Reserved instances - Partial Upfront.", - "On-Demand instances.", - "Spot Instances." - ], - "correct": "Reserved instances - Partial Upfront." - }, - { - "question": "Your application has recently experienced significant global growth, and international users are complaining of high latency. What is the AWS characteristic that can help improve your international users\u2019 experience?", - "options": [ - "Elasticity.", - "Global reach.", - "Data durability.", - "High availability." - ], - "correct": "Global reach." - }, - { - "question": "Savings Plans are available for which of the following AWS compute services? (Choose TWO)", - "options": [ - "AWS Batch.", - "AWS Outposts.", - "Amazon Lightsail.", - "Amazon EC2.", - "AWS Lambda." - ], - "correct": "Amazon EC2." - }, - { - "question": "A company has business critical workloads hosted on AWS and they are unwilling to accept any downtime. Which of the following is a recommended best practice to protect their workloads in the event of an unexpected natural disaster?", - "options": [ - "Replicate data across multiple Edge Locations worldwide and use Amazon CloudFront to perform automatic failover in the event of an outage.", - "Deploy AWS resources across multiple Availability Zones within the same AWS Region.", - "Create point-in-time backups in another subnet and recover this data when a disaster occurs.", - "Deploy AWS resources to another AWS Region and implement an Active-Active disaster recovery strategy." - ], - "correct": "Deploy AWS resources to another AWS Region and implement an Active-Active disaster recovery strategy." - }, - { - "question": "Which statement is correct with regards to AWS service limits? (Choose TWO)", - "options": [ - "You can contact AWS support to increase the service limits.", - "Each IAM user has the same service limit.", - "There are no service limits on AWS.", - "You can use the AWS Trusted Advisor to monitor your service limits.", - "The Amazon Simple Email Service is responsible for sending email notifications when usage approaches a service limit." - ], - "correct": "You can contact AWS support to increase the service limits." - }, - { - "question": "What is the AWS tool that enables you to use scripts to manage all AWS services and resources?", - "options": [ - "AWS Console.", - "AWS Service Catalog.", - "AWS OpsWorks.", - "AWS CLI." - ], - "correct": "AWS CLI." - }, - { - "question": "What are the connectivity options that can be used to build hybrid cloud architectures? (Choose TWO)", - "options": [ - "AWS Artifact.", - "AWS Cloud9.", - "AWS Direct Connect.", - "AWS CloudTrail.", - "AWS VPN." - ], - "correct": "AWS Direct Connect." - }, - { - "question": "A company has deployed a new web application on multiple Amazon EC2 instances. Which of the following should they use to ensure that the incoming HTTP traffic is distributed evenly across the instances?", - "options": [ - "AWS EC2 Auto Recovery.", - "AWS Auto Scaling.", - "AWS Network Load Balancer.", - "AWS Application Load Balancer." - ], - "correct": "AWS Application Load Balancer." - }, - { - "question": "Which of the following AWS offerings is a MySQL-compatible relational database service that can scale capacity automatically based on demand?", - "options": [ - "Amazon Neptune.", - "Amazon Aurora.", - "Amazon RDS for SQL Server.", - "Amazon RDS for PostgreSQL." - ], - "correct": "Amazon Aurora." - }, - { - "question": "Which of the following can help protect your EC2 instances from DDoS attacks? (Choose TWO)", - "options": [ - "AWS CloudHSM.", - "Security Groups.", - "AWS Batch.", - "AWS IAM.", - "Network Access Control Lists (Network ACLs)." - ], - "correct": "Security Groups." - }, - { - "question": "What is the AWS data warehouse service that supports a high level of query performance on large amounts of datasets?", - "options": [ - "Amazon Redshift.", - "Amazon Kinesis.", - "Amazon DynamoDB.", - " Amazon RDS." - ], - "correct": "Amazon Redshift." - }, - { - "question": "Which of the following should be considered when performing a TCO analysis to compare the costs of running an application on AWS instead of on-premises?", - "options": [ - "Application development.", - "Market research.", - "Business analysis.", - "Physical hardware." - ], - "correct": "Physical hardware." - }, - { - "question": "How are AWS customers billed for Linux-based Amazon EC2 usage?", - "options": [ - "EC2 instances will be billed on one second increments, with a minimum of one minute.", - "EC2 instances will be billed on one hour increments, with a minimum of one day.", - "EC2 instances will be billed on one minute increments, with a minimum of one hour.", - "EC2 instances will be billed on one day increments, with a minimum of one month." - ], - "correct": "EC2 instances will be billed on one second increments, with a minimum of one minute." - }, - { - "question": "Which of the following will impact the price paid for an EC2 instance? (Choose TWO)", - "options": [ - "Instance type.", - "The Availability Zone where the instance is provisioned.", - "Load balancing.", - "Number of buckets.", - "Number of private IPs." - ], - "correct": "Instance type." - }, - { - "question": "A company uses AWS Organizations to manage all of its AWS accounts. Which of the following allows the company to restrict what services and actions are allowed in each individual account?", - "options": [ - "IAM Principals.", - "AWS Service Control Policies (SCPs).", - "IAM policies.", - "AWS Fargate." - ], - "correct": "AWS Service Control Policies (SCPs)." - }, - { - "question": "Which of the following statements describes the AWS Cloud\u2019s agility?", - "options": [ - "AWS allows you to host your applications in multiple regions around the world.", - "AWS provides customizable hardware at the lowest possible cost.", - "AWS allows you to provision resources in minutes.", - "AWS allows you to pay upfront to reduce costs." - ], - "correct": "AWS allows you to provision resources in minutes." - }, - { - "question": "What are the benefits of using the Amazon Relational Database Service? (Choose TWO)", - "options": [ - "Lower administrative burden.", - "Complete control over the underlying host.", - "Resizable compute capacity.", - "Scales automatically to larger or smaller instance types.", - "Supports the document and key-value data structure." - ], - "correct": "Lower administrative burden." - }, - { - "question": "What is the connectivity option that uses Internet Protocol Security (IPSec) to establish encrypted connectivity between an on-premises network and the AWS Cloud?", - "options": [ - "Internet Gateway.", - "AWS IQ.", - "AWS Direct Connect.", - "AWS Site-to-Site VPN." - ], - "correct": "AWS Site-to-Site VPN." - }, - { - "question": "What is the minimum level of AWS support that provides 24x7 access to technical support engineers via phone and chat?", - "options": [ - "Enterprise Support.", - "Developer Support.", - "Basic Support.", - "Business Support." - ], - "correct": "Business Support." - }, - { - "question": "Which of the following is used to control network traffic in AWS? (Choose TWO)", - "options": [ - "Network Access Control Lists (NACLs).", - "Key Pairs.", - "Access Keys.", - "IAM Policies.", - "Security Groups." - ], - "correct": "Network Access Control Lists (NACLs)." - }, - { - "question": "A company has developed a media transcoding application in AWS. The application is designed deal with interruptions. Which one of the following types of instance would be the most cost-effective choice to use?", - "options": [ - "Reserved instances.", - "Spot Instances.", - "On-Demand instances.", - "Dedicated instances." - ], - "correct": "Spot Instances." - }, - { - "question": "Which AWS Service provides the current status of all AWS Services in all AWS Regions?", - "options": [ - "AWS Service Health Dashboard.", - "AWS Management Console.", - "Amazon CloudWatch.", - "AWS Personal Health Dashboard." - ], - "correct": "AWS Service Health Dashboard." - }, - { - "question": "Which AWS service or feature can be used to call AWS Services from different programming languages?", - "options": [ - "AWS Software Development Kit.", - "AWS Command Line Interface.", - "AWS CodeDeploy.", - "AWS Management Console." - ], - "correct": "AWS Software Development Kit." - }, - { - "question": "Which AWS Service can be used to register a new domain name?", - "options": [ - "Amazon Personalize.", - "Amazon Route 53.", - "AWS KMS.", - "AWS Config." - ], - "correct": "Amazon Route 53." - }, - { - "question": "App development companies move their business to AWS to reduce time-to-market and improve customer satisfaction, what are the AWS automation tools that help them deploy their applications faster? (Choose TWO)", - "options": [ - "AWS CloudFormation.", - "AWS Migration Hub.", - "AWS IAM.", - "AWS Elastic Beanstalk.", - "Amazon Macie." - ], - "correct": "AWS CloudFormation." - }, - { - "question": "Which AWS service provides cost-optimization recommendations?", - "options": [ - "AWS Trusted Advisor.", - "AWS Pricing Calculator.", - "Amazon QuickSight.", - "AWS X-Ray." - ], - "correct": "AWS Trusted Advisor." - }, - { - "question": "A company has hundreds of VPCs in multiple AWS Regions worldwide. What service does AWS offer to simplify the connection management among the VPCs?", - "options": [ - "VPC Peering.", - "AWS Transit Gateway.", - "Amazon Connect.", - "Security Groups." - ], - "correct": "AWS Transit Gateway." - }, - { - "question": "What is one benefit and one drawback of buying a reserved EC2 instance? (Select TWO)", - "options": [ - "Instances can be shut down by AWS at any time with no notification.", - "Reserved instances require at least a one-year pricing commitment.", - "There is no additional charge for using dedicated instances.", - "Reserved instances provide a significant discount compared to on-demand instances.", - "- [ ]Reserved instances are best suited for periodic workloads." - ], - "correct": "Reserved instances require at least a one-year pricing commitment." - }, - { - "question": "Why does every AWS Region contain multiple Availability Zones?", - "options": [ - "Multiple Availability Zones allows you to build resilient and highly available architectures.", - "Multiple Availability Zones results in lower total cost compared to deploying in a single Availability Zone.", - "Multiple Availability Zones allows for data replication and global reach.", - "Multiple Availability Zones within a region increases the storage capacity available in that region." - ], - "correct": "Multiple Availability Zones allows you to build resilient and highly available architectures." - }, - { - "question": "What is the most cost-effective purchasing option for running a set of EC2 instances that must always be available for a period of two months?", - "options": [ - "On-Demand Instances.", - "Spot Instances.", - "Reserved Instances - All Upfront.", - "Reserved Instances - No Upfront." - ], - "correct": "On-Demand Instances." - }, - { - "question": "Which of the following is a benefit of running an application in multiple Availability Zones?", - "options": [ - "Allows you to exceed AWS service limits.", - "Reduces application response time between servers and global users.", - "Increases available compute capacity.", - "Increases the availability of your application." - ], - "correct": "Increases the availability of your application." - }, - { - "question": "Data security is one of the top priorities of AWS. How does AWS deal with old storage devices that have reached the end of their useful life?", - "options": [ - "AWS sells the old devices to other hosting providers.", - "AWS destroys the old devices in accordance with industry-standard practices.", - "AWS sends the old devices for remanufacturing.", - "AWS stores the old devices in a secure place." - ], - "correct": "AWS destroys the old devices in accordance with industry-standard practices." - }, - { - "question": "A developer needs to set up an SSL security certificate for a client's eCommerce website in order to use the HTTPS protocol. Which of the following AWS services can be used to deploy the required SSL server certificates? (Choose TWO)", - "options": [ - "Amazon Route 53.", - "AWS ACM.", - "AWS Directory Service.", - "AWS Identity & Access Management.", - "AWS Data Pipeline." - ], - "correct": "AWS ACM." - }, - { - "question": "Which of the following AWS services scale automatically without your intervention? (Choose TWO)", - "options": [ - "Amazon EC2.", - "Amazon S3.", - "AWS Lambda.", - "Amazon EMR.", - "Amazon EBS." - ], - "correct": "Amazon S3." - }, - { - "question": "A company is planning to migrate an application from Amazon EC2 to AWS Lambda to use a serverless architecture. Which of the following will be the responsibility of AWS after migration? (Choose TWO)", - "options": [ - "Application management.", - "Capacity management.", - "Access control.", - "Operating system maintenance.", - "Data management." - ], - "correct": "Capacity management." - }, - { - "question": "How do ELBs improve the reliability of your application?", - "options": [ - "By distributing traffic across multiple S3 buckets.", - "By replicating data to multiple availability zones.", - "By creating database Read Replicas.", - "By ensuring that only healthy targets receive traffic." - ], - "correct": "By ensuring that only healthy targets receive traffic." - }, - { - "question": "A company needs to migrate their website from on-premises to AWS. Security is a major concern for them, so they need to host their website on hardware that is NOT shared with other AWS customers. Which of the following EC2 instance options meets this requirement?", - "options": [ - "On-demand instances.", - "Spot instances.", - "Dedicated instances.", - "Reserved instances." - ], - "correct": "Dedicated instances." - }, - { - "question": "A customer is planning to move billions of images and videos to be stored on Amazon S3. The customer has approximately 60 Petabytes of data to move. Which of the following AWS Services is the best choice to transfer the data to AWS?", - "options": [ - "Snowball.", - "S3 Transfer Acceleration.", - "AWS Direct Connect.", - "Amazon VPC." - ], - "correct": "S3 Transfer Acceleration." - }, - { - "question": "A company plans to migrate a large amount of archived data to AWS. The archived data must be maintained for a period of 5 years and must be retrievable within 5 hours of a request. What is the most cost-effective AWS storage service to use?", - "options": [ - "Amazon S3 Glacier.", - "Amazon EFS.", - "Amazon S3 Standard.", - "Amazon EBS." - ], - "correct": "Amazon S3 Glacier." - }, - { - "question": "Which AWS Service is used to manage user permissions?", - "options": [ - "Security Groups.", - "Amazon ECS.", - "AWS IAM.", - "AWS Support." - ], - "correct": "AWS IAM." - }, - { - "question": "Which support plan includes AWS Support Concierge Service?", - "options": [ - "Premium Support.", - "Business Support.", - "Enterprise Support.", - "Standard Support." - ], - "correct": "Enterprise Support." - }, - { - "question": "A company needs to track resource changes using the API call history. Which AWS service can help the company achieve this goal?", - "options": [ - "AWS Config.", - "AWs CloudWatch.", - "AWS Trusted Advisor.", - "AWS CloudFormation." - ], - "correct": "AWs CloudWatch." - }, - { - "question": "What are the benefits of using an AWS-managed service? (Choose TWO)", - "options": [ - "Provides complete control over the virtual infrastructure.", - "Allows customers to deliver new solutions faster.", - "Lowers operational complexity.", - "Eliminates the need to encrypt data.", - "Allows developers to control all patching related activities." - ], - "correct": "Allows customers to deliver new solutions faster." - }, - { - "question": "Which of the following are use cases for Amazon S3? (Choose TWO)", - "options": [ - "Hosting static websites.", - "Hosting websites that require sustained high CPU utilization.", - "Cost-effective database and log storage.", - "A media store for the CloudFront service.", - "Processing data streams at any scale." - ], - "correct": "Hosting static websites." - }, - { - "question": "What is the AWS\u2019 recommendation regarding access keys?", - "options": [ - "Delete all access keys and use passwords instead.", - "Only share them with trusted people.", - "Rotate them regularly.", - "Save them within your application code." - ], - "correct": "Rotate them regularly." - }, - { - "question": "What is the AWS IAM feature that provides an additional layer of security on top of user-name and password authentication?", - "options": [ - "Key Pair.", - "Access Keys.", - "SDK.", - "MFA." - ], - "correct": "MFA." - }, - { - "question": "What is the benefit of using an API to access AWS Services?", - "options": [ - "It improves the performance of AWS resources.", - "It reduces the time needed to provision AWS resources.", - "It reduces the number of developers necessary.", - "It allows for programmatic management of AWS resources." - ], - "correct": "It allows for programmatic management of AWS resources." - }, - { - "question": "A company is planning to migrate a database with high read/write activity to AWS. What is the best storage option to use?", - "options": [ - "AWS Storage Gateway.", - "Amazon S3.", - "Amazon EBS.", - "Amazon Glacier." - ], - "correct": "Amazon EBS." - }, - { - "question": "How can AWS customers track and avoid over-spending on underutilized reserved instances?", - "options": [ - "Customers can add all AWS accounts to an AWS Organization, enable Consolidated Billing, and turn off Reserved Instance sharing.", - "Customers can use Amazon Neptune to track and analyze their usage patterns, detect underutilized reserved instances, and then sell them on the Amazon EC2 Reserved Instance Marketplace.", - "Customers can use the AWS Budgets service to track the reserved instances usage and set up alert notifications when their utilization drops below the threshold that they define.", - "Customers can use Amazon CloudTrail to automatically check for unused reservations and get recommendations to reduce their bill." - ], - "correct": "Customers can use the AWS Budgets service to track the reserved instances usage and set up alert notifications when their utilization drops below the threshold that they define." - }, - { - "question": "What is the AWS service that provides five times the performance of a standard MySQL database?", - "options": [ - "Amazon Aurora.", - "Amazon Redshift.", - "Amazon DynamoDB.", - "Amazon Neptune." - ], - "correct": "Amazon Aurora." - }, - { - "question": "What does AWS Service Catalog provide?", - "options": [ - "It enables customers to quickly find descriptions and use cases for AWS services.", - "It enables customers to explore the different catalogs of AWS services.", - "It simplifies organizing and governing commonly deployed IT services.", - "It allows developers to deploy infrastructure on AWS using familiar programming languages." - ], - "correct": "It simplifies organizing and governing commonly deployed IT services." - }, - { - "question": "For managed services like Amazon DynamoDB, which of the below is AWS responsible for? (Choose TWO)", - "options": [ - "Protecting credentials.", - "Logging access activity.", - "Patching the database software.", - "Operating system maintenance.", - "Creating access policies." - ], - "correct": "Patching the database software." - }, - { - "question": "Which of the following AWS Services helps with planning application migration to the AWS Cloud?", - "options": [ - "AWS Snowball Migration Service.", - "AWS Application Discovery Service.", - "AWS DMS.", - "AWS Migration Hub." - ], - "correct": "AWS Application Discovery Service." - }, - { - "question": "A company is trying to analyze the costs applied to their AWS account recently. Which of the following provides them the most granular data about their AWS costs and usage?", - "options": [ - "Amazon Machine Image.", - "AWS Cost Explorer.", - "AWS CloudTrail.", - "Amazon CloudWatch." - ], - "correct": "AWS Cost Explorer." - }, - { - "question": "Which statement best describes the concept of an AWS region?", - "options": [ - "An AWS Region is a geographical location with a collection of Edge locations.", - "An AWS Region is a virtual network dedicated only to a single AWS customer.", - "An AWS Region is a geographical location with a collection of Availability Zones.", - "An AWS Region represents the country where the AWS infrastructure exist." - ], - "correct": "An AWS Region is a geographical location with a collection of Availability Zones." - }, - { - "question": "A company has discovered that multiple S3 buckets were deleted, but it is unclear who deleted the buckets. Which of the following can the company use to determine the identity that deleted the buckets?", - "options": [ - "SNS logs.", - "SQS logs.", - "CloudWatch Logs.", - "CloudTrail logs." - ], - "correct": "CloudTrail logs." - }, - { - "question": "Which of the following are factors in determining the appropriate database technology to use for a specific workload? (Choose TWO)", - "options": [ - "Availability Zones.", - "Data sovereignty.", - "The number of reads and writes per second.", - "The nature of the queries.", - "Software bugs." - ], - "correct": "The number of reads and writes per second." - }, - { - "question": "What are the benefits of implementing a tagging strategy for AWS resources? (Choose TWO)", - "options": [ - "Quickly identify resources that belong to a specific project.", - "Quickly identify software solutions on AWS.", - "Quickly identify deleted resources and their metadata.", - "Track AWS spending across multiple resources." - ], - "correct": "Quickly identify resources that belong to a specific project." - }, - { - "question": "What are AWS shared controls?", - "options": [ - "Controls that are solely the responsibility of the customer based on the application they are deploying within AWS services.", - "Controls that a customer inherits from AWS.", - "Controls that apply to both the infrastructure layer and customer layers.", - "Controls that the customer and AWS collaborate together upon to secure the infrastructure." - ], - "correct": "Controls that apply to both the infrastructure layer and customer layers." - }, - { - "question": "Which design principles relate to performance efficiency in AWS? (Choose TWO)", - "options": [ - "Build multi-region architectures to better serve global customers.", - "Apply security at all layers.", - "Implement strong Identity and Access controls.", - "Use serverless architectures.", - "Enable audit logging." - ], - "correct": "Build multi-region architectures to better serve global customers." - }, - { - "question": "Which of the below are responsibilities of the customer when using Amazon EC2? (Choose TWO)", - "options": [ - "Protecting sensitive data.", - "Patching of the underlying infrastructure.", - "Setup and operation of managed databases.", - "Maintaining consistent hardware components.", - "Installing and configuring third-party software." - ], - "correct": "Protecting sensitive data." - }, - { - "question": "Why would an organization decide to use AWS over an on-premises data center? (Choose TWO)", - "options": [ - "Free commercial software licenses.", - "Free technical support.", - "Elastic resources.", - "On-site visits for auditing.", - "Cost Savings." - ], - "correct": "Elastic resources." - }, - { - "question": "Which of the following AWS services can help you perform security analysis and regulatory compliance auditing? (Choose TWO)", - "options": [ - "Amazon Inspector.", - "AWS Virtual Private Gateway.", - "AWS Batch.", - "Amazon ECS.", - "AWS Config." - ], - "correct": "Amazon Inspector." - }, - { - "question": "Which of the following is NOT a characteristic of Amazon Elastic Compute Cloud (Amazon EC2)?", - "options": [ - "Amazon EC2 is considered a Serverless Web Service.", - "Amazon EC2 eliminates the need to invest in hardware upfront.", - "Amazon EC2 can launch as many or as few virtual servers as needed.", - "Amazon EC2 offers scalable computing." - ], - "correct": "Amazon EC2 eliminates the need to invest in hardware upfront." - }, - { - "question": "What is the AWS Compute service that executes code only when triggered by events?", - "options": [ - "AWS Lambda.", - "Amazon CloudWatch.", - "AWS Transit Gateway.", - "Amazon EC2." - ], - "correct": "AWS Lambda." - }, - { - "question": "Both AWS and traditional IT distributors provide a wide range of virtual servers to meet their customers\u2019 requirements. What is the name of these virtual servers in AWS?", - "options": [ - "Amazon EBS Snapshots.", - "Amazon VPC.", - "AWS Managed Servers.", - "Amazon EC2 Instances." - ], - "correct": "" - }, - { - "question": "What is the framework created by AWS Professional Services that helps organizations design a road map to successful cloud adoption?", - "options": [ - "AWS Secrets Manager.", - "AWS WAF.", - "AWS CAF.", - "Amazon EFS." - ], - "correct": "AWS CAF." - }, - { - "question": "TYMO Cloud Corp is looking forward to migrating their entire on-premises data center to AWS. What tool can they use to perform a cost-benefit analysis of moving to the AWS Cloud?", - "options": [ - "AWS Cost Explorer.", - "AWS Billing Console.", - "AWS Budgets.", - "AWS Pricing Calculator." - ], - "correct": "AWS Pricing Calculator." - }, - { - "question": "Which of the following activities supports the Operational Excellence pillar of the AWS Well-Architected Framework?", - "options": [ - "Using AWS Trusted Advisor to find underutilized resources.", - "Using AWS CloudTrail to record user activities.", - "Using AWS CloudFormation to manage infrastructure as code.", - "Deploying an application in multiple Availability Zones." - ], - "correct": "Using AWS CloudFormation to manage infrastructure as code." - }, - { - "question": "Why do many startup companies prefer AWS over traditional on-premises solutions? (Choose TWO)", - "options": [ - "AWS allows them to pay later when their business succeed.", - "AWS can build complete data centers faster than any other Cloud provider.", - "Using AWS, they can reduce time-to-market by focusing on business activities rather than on building and managing data centers.", - "AWS removes the need to invest in operational expenditure.", - "Using AWS allows companies to replace large capital expenditure with low variable costs." - ], - "correct": "Using AWS, they can reduce time-to-market by focusing on business activities rather than on building and managing data centers." - }, - { - "question": "What are the benefits of using DynamoDB? (Choose TWO)", - "options": [ - "Automatically scales to meet required throughput capacity.", - "Provides resizable instances to match the current demand.", - "Supports both relational and non-relational data models.", - "Offers extremely low (single-digit millisecond) latency.", - "Supports the most popular NoSQL database engines such as CouchDB and MongoDB." - ], - "correct": "Automatically scales to meet required throughput capacity." - }, - { - "question": "Which of the following can be used to protect data at rest on Amazon S3? (Choose TWO)", - "options": [ - "Versioning.", - "Deduplication.", - "Permissions.", - "Decryption.", - "Conversion." - ], - "correct": "Versioning." - }, - { - "question": "As part of the AWS Migration Acceleration Program (MAP), what does AWS provide to accelerate Enterprise adoption of AWS? (Choose TWO)", - "options": [ - "AWS Partners.", - "AWS Artifact.", - "AWS Professional Services.", - "Amazon Athena.", - "Amazon PinPoint." - ], - "correct": "AWS Partners." - }, - { - "question": "When running a workload in AWS, the customer is NOT responsible for: (Select TWO)", - "options": [ - "Running penetration tests.", - "Reserving capacity.", - "Data center operations.", - "Auditing and regulatory compliance.", - "Infrastructure security." - ], - "correct": "Data center operations." - }, - { - "question": "Which AWS service can be used to send promotional text messages (SMS) to more than 200 countries worldwide?", - "options": [ - "Amazon Simple Email Service (Amazon SES).", - "Amazon Simple Storage Service (Amazon S3).", - "Amazon Simple Notification Service (Amazon SNS).", - "Amazon Simple Queue Service (Amazon SQS)." - ], - "correct": "Amazon Simple Notification Service (Amazon SNS)." - }, - { - "question": "Which of the following allows you to create new RDS instances? (Choose TWO)", - "options": [ - "AWS CodeDeploy.", - "AWS Quick Starts.", - "AWS CloudFormation.", - "AWS CodePipeline.", - "AWS Management Console." - ], - "correct": "AWS CloudFormation." - }, - { - "question": "One of the major advantages of using AWS is cost savings. What does AWS provide to reduce the cost of running Amazon EC2 instances?", - "options": [ - "Low monthly instance maintenance costs.", - "Low-cost instance tagging.", - "Per-second instance billing.", - "Low instance start-up fees." - ], - "correct": "Per-second instance billing." - }, - { - "question": "Which AWS Group assists customers in achieving their desired business outcomes?", - "options": [ - "AWS Security Team.", - "AWS Professional Services.", - "AWS Trusted Advisor.", - "AWS Concierge Support Team." - ], - "correct": "AWS Professional Services." - }, - { - "question": "Which AWS service or feature is used to manage the keys used to encrypt customer data?", - "options": [ - "AWS KMS.", - "AWS Service Control Policies (SCPs).", - "Multi-Factor Authentication (MFA).", - "Amazon Macie." - ], - "correct": "AWS KMS." - }, - { - "question": "Which AWS Service allows customers to download AWS SOC & PCI reports?", - "options": [ - "AWS Well-Architected Tool.", - "AWS Artifact.", - "AWS Glue.", - "Amazon Chime." - ], - "correct": "AWS Artifact." - }, - { - "question": "A company is using EC2 Instances to run their e-commerce site on the AWS platform. If the site becomes unavailable, the company will lose a significant amount of money for each minute the site is unavailable. Which design principle should the company use to minimize the risk of an outage?", - "options": [ - "Least Privilege.", - "Pilot Light.", - "Fault Tolerance.", - "Multi-threading." - ], - "correct": "Fault Tolerance." - }, - { - "question": "You decide to buy a reserved instance for a term of one year. Which option provides the largest total discount?", - "options": [ - "All up-front reservation.", - "All reserved instance payment options provide the same discount level.", - "Partial up-front reservation.", - "No up-front reservation." - ], - "correct": "All up-front reservation." - }, - { - "question": "What features does AWS offer to help protect your data in the Cloud? (Choose TWO)", - "options": [ - "Access control.", - "Physical MFA devices.", - "Data encryption.", - "Unlimited storage.", - "Load balancing." - ], - "correct": "Access control." - }, - { - "question": "An AWS customer has used one Amazon Linux instance for 2 hours, 5 minutes and 9 seconds, and one CentOS instance for 4 hours, 23 minutes and 7 seconds. How much time will the customer be billed for?", - "options": [ - "3 hours for the Linux instance and 5 hours for the CentOS instance.", - "2 hours, 5 minutes and 9 seconds for the Linux instance and 4 hours, 23 minutes and 7 seconds for the CentOS instance.", - "2 hours, 5 minutes and 9 seconds for the Linux instance and 5 hours for the CentOS instance.", - "3 hours for the Linux instance and 4 hours, 23 minutes and 7 seconds for the CentOS instance." - ], - "correct": "2 hours, 5 minutes and 9 seconds for the Linux instance and 5 hours for the CentOS instance." - }, - { - "question": "What is the AWS Support feature that allows customers to manage support cases programmatically?", - "options": [ - "AWS Trusted Advisor.", - "AWS Operations Support.", - "AWS Support API.", - "AWS Personal Health Dashboard." - ], - "correct": "AWS Support API." - }, - { - "question": "Which methods can be used by customers to interact with AWS Identity and Access Management (IAM)? (Choose TWO)", - "options": [ - "AWS CLI.", - "AWS Security Groups.", - "AWS SDKs.", - "AWS Network Access Control Lists.", - "AWS CodeCommit." - ], - "correct": "AWS CLI." - }, - { - "question": "Which of the following are types of AWS Identity and Access Management (IAM) identities? (Choose TWO)", - "options": [ - "AWS Resource Groups.", - "IAM Policies.", - "IAM Roles.", - "IAM Users.", - "AWS Organizations." - ], - "correct": "IAM Roles." - }, - { - "question": "Which of the following Amazon RDS features facilitates offloading of database read activity?", - "options": [ - "Database Snapshots.", - "Multi-AZ Deployments.", - "Automated Backups.", - "Read Replicas." - ], - "correct": "Read Replicas." - }, - { - "question": "How does AWS notify customers about security and privacy events pertaining to AWS services?", - "options": [ - "Using the AWS ACM service.", - "Using Security Bulletins.", - "Using the AWS Management Console.", - "Using Compliance Resources." - ], - "correct": "Using Security Bulletins." - }, - { - "question": "Which IAM entity can best be used to grant temporary access to your AWS resources?", - "options": [ - "IAM Users.", - "Key Pair.", - "IAM Roles.", - "IAM Groups." - ], - "correct": "IAM Roles." - }, - { - "question": "A company has a web application that is hosted on a single EC2 instance and is approaching 100 percent CPU Utilization during peak loads. Rather than scaling the server vertically, the company has decided to deploy three Amazon EC2 instances in parallel and to distribute traffic across the three servers. What AWS Service should the company use to distribute the traffic evenly?", - "options": [ - "AWS Global Accelerator.", - "AWS Application Load Balancer (ALB).", - "Amazon CloudFront.", - "Transit VPC." - ], - "correct": "AWS Application Load Balancer (ALB)." - }, - { - "question": "Which of the following approaches will help you eliminate human error and automate the process of creating and updating your AWS environment? (Choose TWO)", - "options": [ - "AWS Cloud Development Kit (AWS CDK).", - "AWS CodeDeploy.", - "AWS CloudFormation.", - "AWS CodeWhisperer.", - "AWS Cloud9." - ], - "correct": "AWS Cloud Development Kit (AWS CDK)." - }, - { - "question": "A company is seeking to better secure its AWS account from unauthorized access. Which of the below options can the customer use to achieve this goal?", - "options": [ - "Restrict any API call made through SDKs or CLI.", - "Create one IAM account for each department in the company (Development, QA, Production), and share it across all staff in that department.", - "Require Multi-Factor Authentication (MFA) for all IAM User access.", - "Set up two login passwords." - ], - "correct": "Require Multi-Factor Authentication (MFA) for all IAM User access." - }, - { - "question": "Which AWS Service offers volume discounts based on usage?", - "options": [ - "Amazon VPC.", - "Amazon S3.", - "Amazon Lightsail.", - "AWS Cost Explorer." - ], - "correct": "Amazon S3." - }, - { - "question": "Which of the following factors should be considered when determining the region in which AWS Resources will be deployed? (Choose TWO)", - "options": [ - "The AWS Region\u2019s security level.", - "Data sovereignty.", - "Temporary promotions offered by Amazon.", - "The planned number of VPCs.", - "Low latency and optimal performance for your target audience." - ], - "correct": "Data sovereignty." - }, - { - "question": "You are running a financial services web application on AWS. The application uses a MySQL database to store the data. Which of the following AWS services would improve the performance of your application by allowing you to retrieve information from fast in-memory caches?", - "options": [ - "Amazon EFS.", - "Amazon Neptune.", - "Amazon ElastiCache.", - "DAX." - ], - "correct": "Amazon ElastiCache." - }, - { - "question": "What are the advantages of using Auto Scaling Groups for EC2 instances?", - "options": [ - "Auto Scaling Groups caches the most recent responses at global edge locations to reduce latency and improve performance.", - "Auto Scaling Groups scales EC2 instances in multiple Availability Zones to increase application availability and fault tolerance.", - "Auto Scaling Groups scales EC2 instances across multiple regions to reduce latency for global users.", - "Auto Scaling Groups distributes application traffic across multiple Availability Zones to enhance performance." - ], - "correct": "Auto Scaling Groups scales EC2 instances in multiple Availability Zones to increase application availability and fault tolerance." - }, - { - "question": "Which of the following are examples of the customer\u2019s responsibility to implement \u201csecurity IN the cloud\u201d? (Choose TWO)", - "options": [ - "Building a schema for an application.", - "Replacing physical hardware.", - "Creating a new hypervisor.", - "Patch management of the underlying infrastructure.", - "File system encryption." - ], - "correct": "Building a schema for an application." - }, - { - "question": "Which of the following is a type of MFA device that customers can use to protect their AWS resources?", - "options": [ - "AWS CloudHSM.", - "U2F Security Key.", - "AWS Access Keys.", - "AWS Key Pair." - ], - "correct": "U2F Security Key." - }, - { - "question": "A company is seeking to deploy an existing .NET application onto AWS as quickly as possible. Which AWS Service should the customer use to achieve this goal?", - "options": [ - "Amazon SNS.", - "AWS Elastic Beanstalk.", - "AWS Systems Manager.", - "AWS Trusted Advisor." - ], - "correct": "AWS Elastic Beanstalk." - }, - { - "question": "Which of the following is NOT a factor when estimating the costs of Amazon EC2?", - "options": [ - "The amount of time the instances will be running.", - "Number of security groups.", - "Allocated Elastic IP Addresses.", - "Number of instances." - ], - "correct": "Number of security groups." - }, - { - "question": "Which AWS Service helps enterprises extend their on-premises storage to AWS in a cost-effective manner?", - "options": [ - "AWS Data Pipeline.", - "AWS Storage Gateway.", - "Amazon Aurora.", - "Amazon EFS." - ], - "correct": "AWS Storage Gateway." - }, - { - "question": "A company is building an online cloud storage platform. They need a storage service that can scale capacity automatically, while minimizing cost. Which AWS storage service should the company use to meet these requirements?", - "options": [ - "Amazon Simple Storage Service.", - "Amazon Elastic Block Store.", - "Amazon Elastic Container Service.", - "AWS Storage Gateway." - ], - "correct": "Amazon Simple Storage Service." - }, - { - "question": "You have just hired a skilled sys-admin to join your team. As usual, you have created a new IAM user for him to interact with AWS services. On his first day, you ask him to create snapshots of all existing Amazon EBS volumes and save them in a new Amazon S3 bucket. However, the new member reports back that he is unable to create neither EBS snapshots nor S3 buckets. What might prevent him from doing this simple task?", - "options": [ - "EBS and S3 are accessible only to the root account owner.", - "The systems administrator must contact AWS Support first to activate his new IAM account.", - "There is not enough space in S3 to store the snapshots.", - "There is a non-explicit deny to all new users." - ], - "correct": "There is a non-explicit deny to all new users." - }, - { - "question": "An external auditor is requesting a log of all accesses to the AWS resources in the company\u2019s account. Which of the following services will provide the auditor with the requested information?", - "options": [ - "AWS CloudTrail.", - "Amazon CloudFront.", - "AWS CloudFormation.", - "Amazon CloudWatch." - ], - "correct": "AWS CloudTrail." - }, - { - "question": "A Business Plan user has opened a \"Production System Down\" support case to get help from AWS Support after a production system disruption. What is the expected response time for this type of support case?", - "options": [ - "12 hours.", - "15 minutes.", - "24 hours.", - "One hour." - ], - "correct": "One hour." - }, - { - "question": "Which of the below options is a best practice for making your application on AWS highly available?", - "options": [ - "Deploy the application to at least two Availability Zones.", - "Use Elastic Load Balancing (ELB) across multiple AWS Regions.", - "Deploy the application code on at least two servers in the same Availability Zone.", - "Rewrite the application code to handle all incoming requests." - ], - "correct": "Deploy the application to at least two Availability Zones." - }, - { - "question": "Which of the following should be taken into account when performing a TCO analysis regarding the costs of running an application on AWS VS on-premises? (Choose TWO)", - "options": [ - "Labor and IT costs.", - "Migration cost.", - "Amazon EBS computing power.", - "Antivirus software licensing.", - "No need to develop a cloud migration strategy." - ], - "correct": "Labor and IT costs." - }, - { - "question": "Your company requires a response time of less than 15 minutes from support interactions about their business-critical systems that are hosted on AWS if those systems go down. Which AWS Support Plan should this company use?", - "options": [ - "AWS Basic Support.", - "AWS Developer Support.", - "AWS Business Support.", - "AWS Enterprise Support." - ], - "correct": "AWS Enterprise Support." - }, - { - "question": "Which of the following AWS offerings are FULLY serverless services? (Choose TWO)", - "options": [ - "Amazon EC2.", - "AWS Lambda.", - "Amazon DynamoDB.", - "Amazon Redshift.", - "Amazon RDS." - ], - "correct": "AWS Lambda." - }, - { - "question": "Which AWS service enables you to quickly purchase and deploy SSL/TLS certificates?", - "options": [ - "Amazon GuardDuty.", - "AWS ACM.", - "Amazon Detective.", - "AWS WAF." - ], - "correct": "AWS ACM." - }, - { - "question": "Which AWS Service provides integration with Chef to automate the configuration of EC2 instances?", - "options": [ - "AWS Config.", - "AWS OpsWorks.", - "AutoScaling.", - "AWS CloudFormation." - ], - "correct": "AWS OpsWorks." - }, - { - "question": "A customer is seeking to store objects in their AWS environment and to make those objects downloadable over the internet. Which AWS Service can be used to accomplish this?", - "options": [ - "Amazon EBS.", - "Amazon EFS.", - "Amazon S3.", - "Amazon Instance Store." - ], - "correct": "Amazon S3." - }, - { - "question": "Which of the following services can be used to monitor the HTTP and HTTPS requests that are forwarded to Amazon CloudFront?", - "options": [ - "AWS WAF.", - "Amazon CloudWatch.", - "AWS Cloud9.", - "AWS CloudTrail." - ], - "correct": "AWS WAF." - }, - { - "question": "A company is migrating a web application to AWS. The application\u2019s compute capacity is continually utilized throughout the year. Which of the below options offers the company the most cost-effective solution?", - "options": [ - "On-demand Instances.", - "Dedicated Hosts.", - "Spot Instances.", - "Reserved Instances." - ], - "correct": "Reserved Instances." - }, - { - "question": "A company wants to grant a new employee long-term access to manage Amazon DynamoDB databases. Which of the following is a recommended best-practice when granting these permissions?", - "options": [ - "Create an IAM role and attach a policy with Amazon DynamoDB access permissions.", - "Create an IAM role and attach a policy with Administrator access permissions.", - "Create an IAM user and attach a policy with Amazon DynamoDB access permissions.", - "Create an IAM user and attach a policy with Administrator access permissions." - ], - "correct": "Create an IAM user and attach a policy with Amazon DynamoDB access permissions." - }, - { - "question": "When granting permissions to applications running on Amazon EC2 instances, which of the following is considered best practice?", - "options": [ - "Generate new IAM access keys every time you delegate permissions.", - "Store the required AWS credentials directly within the application code.", - "Use temporary security credentials (IAM roles) instead of long-term access keys.", - "Do nothing; Applications that run on Amazon EC2 instances do not need permission to interact with other AWS services or resources." - ], - "correct": "Use temporary security credentials (IAM roles) instead of long-term access keys." - }, - { - "question": "An organization has a legacy application designed using monolithic-based architecture. Which AWS Service can be used to decouple the components of the application?", - "options": [ - "Amazon SQS.", - "Virtual Private Gateway.", - "AWS Artifact.", - "Amazon CloudFront." - ], - "correct": "Amazon SQS." - }, - { - "question": "A company is planning to use Amazon S3 and Amazon CloudFront to distribute its video courses globally. What tool can the company use to estimate the costs of these services?", - "options": [ - "AWS Cost Explorer.", - "AWS Pricing Calculator.", - "AWS Budgets.", - "AWS Cost & Usage Report." - ], - "correct": "AWS Pricing Calculator." - }, - { - "question": "A key practice when designing solutions on AWS is to minimize dependencies between components so that the failure of a single component does not impact other components. What is this practice called?", - "options": [ - "Elastic coupling.", - "Loosely coupling.", - "Scalable coupling.", - "Tightly coupling." - ], - "correct": "Loosely coupling." - }, - { - "question": "Which AWS Service offers an NFS file system that can be mounted concurrently from multiple EC2 instances?", - "options": [ - "Amazon Elastic File System.", - "Amazon Simple Storage Service.", - "Amazon Elastic Block Store.", - "AWS Storage Gateway." - ], - "correct": "Amazon Elastic File System." - }, - { - "question": "Availability Zones within a Region are connected over low-latency links. Which of the following is a benefit of these links?", - "options": [ - "Create private connection to your data center.", - "Achieve global high availability.", - "Automate the process of provisioning new compute resources.", - "Make synchronous replication of your data possible." - ], - "correct": "Make synchronous replication of your data possible." - }, - { - "question": "Which of the following are true regarding the languages that are supported on AWS Lambda? (Choose TWO)", - "options": [ - "Lambda only supports Python and Node.js, but third party plugins are available to convert code in other languages to these formats.", - "Lambda natively supports a number of programming languages such as Node.js, Python, and Java.", - "Lambda is AWS\u2019 proprietary programming language for microservices.", - "Lambda doesn\u2019t support programming languages; it is a serverless compute service.", - "Lambda can support any programming language using an API." - ], - "correct": "Lambda natively supports a number of programming languages such as Node.js, Python, and Java." - }, - { - "question": "What are the capabilities of AWS X-Ray? (Choose TWO)", - "options": [ - "Automatically decouples application components.", - "Facilitates tracking of user requests to identify application issues.", - "Helps improve application performance.", - "Deploys applications to Amazon EC2 instances.", - "Deploys applications to on-premises servers." - ], - "correct": "Facilitates tracking of user requests to identify application issues." - }, - { - "question": "Which of the following is true regarding the AWS availability zones and edge locations?", - "options": [ - "Edge Locations privide fault tolerance and high availability, Availability Zones are used for global content distribution.", - "An availability zone exists within an edge location to distribute content globally with low latency.", - "An Availability Zone is a geographic location where AWS provides multiple, physically separated and isolated edge locations.", - "An AWS Availability Zone is an isolated location within an AWS Region, however edge locations are located in multiple cities worldwide." - ], - "correct": "An AWS Availability Zone is an isolated location within an AWS Region, however edge locations are located in multiple cities worldwide." - }, - { - "question": "Which features are included in the AWS Business Support Plan? (Choose TWO)", - "options": [ - "24x7 access to customer service.", - "Access to Cloud Support Engineers via email only during business hours.", - "Access to the Infrastructure Event Management (IEM) feature for additional fee.", - "24x7 access to the TAM feature.", - "Partial access to the core Trusted Advisor checks." - ], - "correct": "24x7 access to customer service." - }, - { - "question": "A company is developing a mobile application and wants to allow users to use their Amazon, Apple, Facebook, or Google identities to authenticate to the application. Which AWS Service should the company use for this purpose?", - "options": [ - "Amazon GuardDuty.", - "Amazon Personalize.", - "Amazon Cognito.", - "AWS IAM." - ], - "correct": "Amazon Cognito." - }, - { - "question": "Which AWS Service allows customers to create a template that programmatically defines policies and configurations of all AWS resources as code and so that the same template can be reused among multiple projects?", - "options": [ - "AWS CloudFormation.", - "AWS Config.", - "AWS CloudTrail.", - "AWS Auto Scaling." - ], - "correct": "AWS CloudFormation." - }, - { - "question": "Which of the following are advantages of using AWS as a cloud computing provider? (Choose TWO)", - "options": [ - "Eliminates the need to monitor servers and applications.", - "Manages all the compliance and auditing tasks.", - "Provides custom hardware to meet any specification.", - "Eliminates the need to guess on infrastructure capacity needs.", - "Enables customers to trade their capital expenses for operational expenses." - ], - "correct": "Eliminates the need to guess on infrastructure capacity needs." - }, - { - "question": "A customer is planning to migrate their Microsoft SQL Server databases to AWS. Which AWS Services can the customer use to run their Microsoft SQL Server database on AWS? (Choose TWO)", - "options": [ - "AWS Fargate.", - "Amazon Elastic Compute Cloud.", - "Amazon RDS.", - "AWS Database Migration service (DMS).", - "AWS Lambda." - ], - "correct": "Amazon Elastic Compute Cloud." - }, - { - "question": "Which AWS Service can perform health checks on Amazon EC2 instances?", - "options": [ - "AWS CloudFormation.", - "Amazon Route 53.", - "Amazon Chime.", - "Amazon Aurora." - ], - "correct": "Amazon Route 53." - }, - { - "question": "Which of the following are examples of AWS-managed databases? (Choose TWO)", - "options": [ - "Amazon Neptune.", - "Amazon CloudSearch.", - "Microsoft SQL Server on Amazon EC2.", - "MySQL on Amazon EC2.", - "Amazon RDS for MySQL." - ], - "correct": "Amazon Neptune." - }, - { - "question": "A company\u2019s AWS workflow requires that it periodically perform large-scale image and video processing jobs. The customer is seeking to minimize cost and has stated that the amount of time it takes to process these jobs is not critical, but that cost minimization is the most important factor in designing the solution. Which EC2 instance class is best suited for this processing?", - "options": [ - "EC2 On-Demand Instances.", - "EC2 Reserved Instances - No Upfront.", - "EC2 Spot Instances.", - "EC2 Reserved Instances - All Upfront." - ], - "correct": "EC2 Spot Instances." - }, - { - "question": "There is a requirement to grant a DevOps team full administrative access to all resources in an AWS account. Who can grant them these permissions?", - "options": [ - "AWS account owner.", - "AWS technical account manager.", - "AWS security team.", - "AWS cloud support engineers." - ], - "correct": "AWS account owner." - }, - { - "question": "You need to migrate a large number of on-premises workloads to AWS. Which AWS service is the most appropriate?", - "options": [ - "AWS File Transfer Acceleration.", - "AWS Application Migration Service.", - "Amazon DirectConnect.", - "AWS Application Discovery Service." - ], - "correct": "AWS Application Migration Service." - }, - { - "question": "What are some key benefits of using AWS CloudFormation? (Choose TWO)", - "options": [ - "It helps AWS customers deploy their applications without worrying about the underlying infrastructure.", - "It applies advanced IAM security features automatically.", - "It automates the provisioning and updating of your infrastructure in a safe and controlled manner.", - "It allows you to model your entire infrastructure in just a text file.", - "It compiles and builds application code in a timely manner." - ], - "correct": "It automates the provisioning and updating of your infrastructure in a safe and controlled manner." - }, - { - "question": "Which of the following is a cloud computing deployment model that connects infrastructure and applications between cloud-based resources and existing resources not located in the cloud?", - "options": [ - "On-premises.", - "Mixed.", - "Hybrid.", - "Cloud." - ], - "correct": "Hybrid." - }, - { - "question": "A company is hosting business critical workloads in an AWS Region. To protect against data loss and ensure business continuity, a mirror image of the current AWS environment should be created in another AWS Region. Company policy requires that the standby environment must be available in minutes in case of an outage in the primary AWS Region. Which AWS service can be used to meet these requirements?", - "options": [ - "CloudEndure Disaster Recovery.", - "CloudEndure Migration.", - "AWS Backup.", - "AWS Glue." - ], - "correct": "CloudEndure Disaster Recovery." - }, - { - "question": "Which of the following S3 storage classes is most appropriate to host static assets for a popular e-commerce website with stable access patterns?", - "options": [ - "S3 Standard-IA.", - "S3 Intelligent-Tiering.", - "S3 Glacier Deep Archive.", - "S3 Standard." - ], - "correct": "S3 Standard." - }, - { - "question": "You want to create a backup of your data in another geographical location. Where should you create this backup?", - "options": [ - "In another Edge location.", - "In another Region.", - "In another VPC.", - "In another Availability Zone." - ], - "correct": "In another Region." - }, - { - "question": "Which statement is true in relation to the security of Amazon EC2?", - "options": [ - "You should use instance store volumes to store login data.", - "You should regularly patch the operating system and applications on your EC2 instances.", - "You should deploy critical components of your application in the Availability Zone that you trust.", - "You can track all API calls using Amazon Athena." - ], - "correct": "You should regularly patch the operating system and applications on your EC2 instances." - }, - { - "question": "What does AWS Cost Explorer provide to help manage your AWS spend?", - "options": [ - "Cost comparisons between AWS Cloud environments and on-premises environments.", - "Analyze and manage the performance metrics of your EC2 instances.", - "Consolidated billing.", - "Highly accurate cost forecasts for up to 12 months ahead." - ], - "correct": "Highly accurate cost forecasts for up to 12 months ahead." - }, - { - "question": "Which of the following is a feature of Amazon RDS that performs automatic failover when the primary database fails to respond?", - "options": [ - "RDS Single-AZ.", - "RDS Parameter groups.", - "RDS Snapshots.", - "RDS Multi-AZ Deployments." - ], - "correct": "RDS Multi-AZ Deployments." - }, - { - "question": "You are using several on-demand EC2 Instances to run your development environment. What is the best way to reduce your charges when these instances are not in use?", - "options": [ - "Deleting all EBS volumes attached to the instances.", - "You cannot minimize charges for on-demand instances.", - "Terminating the instances.", - "Stopping the instances." - ], - "correct": "Stopping the instances." - }, - { - "question": "Which of the following strategies helps protect your AWS root account?", - "options": [ - "Disabling IAM policies for the root account.", - "Apply MFA for the root account.", - "Access the root account only from your personal Mobile Phone.", - "Only share your AWS account password or access keys with trusted persons." - ], - "correct": "Apply MFA for the root account." - }, - { - "question": "Which of the following are factors should be considered for Amazon EBS pricing? (Choose TWO)", - "options": [ - "The size of volumes provisioned per month.", - "The compute capacity you consume.", - "The amount of data you have stored in snapshots.", - "The compute time you consume.", - "The number of Snowball storage devices you request." - ], - "correct": "The size of volumes provisioned per month." - }, - { - "question": "You have just set up your AWS environment and have created six IAM user accounts for the DevOps team. What is the AWS recommendation when granting permissions to these IAM accounts?", - "options": [ - "Attach a separate IAM policy for each individual account.", - "Apply the Principle of Least Privilege.", - "For security purposes, you should not grant any permission to the DevOps team.", - "Create six different IAM passwords." - ], - "correct": "Apply the Principle of Least Privilege." - }, - { - "question": "Which of the following has the greatest impact on cost? (Choose TWO)", - "options": [ - "Compute charges.", - "Elastic IP Addresses.", - "Data Transfer Out.", - "Data Transfer In.", - "The number of IAM roles provisioned." - ], - "correct": "Compute charges." - }, - { - "question": "Who from the following will get the largest discount?", - "options": [ - "A user who chooses to buy On-demand, Convertible, Partial upfront instances.", - "A user who chooses to buy Reserved, Convertible, All upfront instances.", - "A user who chooses to buy Reserved, Standard, No upfront instances.", - "A user who chooses to buy Reserved, Standard, All upfront instances." - ], - "correct": "A user who chooses to buy Reserved, Standard, All upfront instances." - }, - { - "question": "Which of the following is an available option when purchasing Amazon EC2 instances?", - "options": [ - "The ability to bid to get the lowest possible prices.", - "The ability to register EC2 instances to get volume discounts on every hour the instances are running.", - "The ability to buy Dedicated Instances for up to 90% discount.", - "The ability to pay upfront to get lower hourly costs." - ], - "correct": "The ability to pay upfront to get lower hourly costs." - }, - { - "question": "What does the term \u201cEconomies of scale\u201d mean?", - "options": [ - "It means that higher usage leads to higher costs.", - "It means as more time passes using AWS, you pay more for its services.", - "It meand you have cost advantages as usage increases.", - "It means that you have the ability to pay as you go." - ], - "correct": "It meand you have cost advantages as usage increases." - }, - { - "question": "A company experiences fluctuations in traffic patterns to their e-commerce website when running flash sales. What service can help the company dynamically match the required compute capacity to handle spikes in traffic during flash sales?", - "options": [ - "AWS Auto Scaling.", - "Amazon Elastic Compute Cloud.", - "Amazon Elastic File System.", - "Amazon ElastiCache." - ], - "correct": "AWS Auto Scaling." - }, - { - "question": "Which of the below options is true of Amazon VPC?", - "options": [ - "Amazon VPC allows customers to control user interactions with all other AWS resources.", - "AWS Customers have complete control over their Amazon VPC virtual networking environment.", - "AWS is responsible for all the management and configuration details of Amazon VPC.", - "Amazon VPC helps customers to review their AWS architecture and adopt best practices." - ], - "correct": "AWS Customers have complete control over their Amazon VPC virtual networking environment." - }, - { - "question": "Which tool can a non-AWS customer use to compare the cost of on-premises environment resources to AWS?", - "options": [ - "AWS Cost Explorer.", - "AWS Pricing Calculator.", - "AWS Budgets.", - "AWS Billing." - ], - "correct": "AWS Pricing Calculator." - }, - { - "question": "Which of the following services provide real-time auditing for compliance and vulnerabilities? (Choose TWO)", - "options": [ - "AWS Config.", - "Amazon Redshift.", - "Amazon MQ.", - "AWS Trusted Advisor.", - "Amazon Cognito." - ], - "correct": "AWS Config." - }, - { - "question": "Which of the following AWS services uses Puppet to automate how EC2 instances are configured?", - "options": [ - "AWS OpsWorks.", - "AWS CloudFormation.", - "AWS Quick Starts.", - "AWS CloudTrail." - ], - "correct": "AWS OpsWorks." - }, - { - "question": "An organization uses a hybrid cloud architecture to run their business. Which AWS service enables them to deploy their applications to any AWS or on-premises server?", - "options": [ - "Amazon Kinesis.", - "Amazon QuickSight.", - "AWS CodeDeploy.", - "Amazon Athena." - ], - "correct": "AWS CodeDeploy." - }, - { - "question": "Select the services that are server-based: (Choose TWO)", - "options": [ - "Amazon RDS.", - "Amazon DynamoDB.", - "AWS Lambda.", - "AWS Fargate.", - "Amazon EMR." - ], - "correct": "Amazon RDS." - }, - { - "question": "What best describes penetration testing?", - "options": [ - "Testing your application\u2019s response time from different locations.", - "Testing your network to find security vulnerabilities that an attacker could exploit.", - "Testing your instances to check for the unhealthy ones.", - "Testing your software for bugs and errors." - ], - "correct": "Testing your network to find security vulnerabilities that an attacker could exploit." - }, - { - "question": "Which of the following are use cases for Amazon EMR? (Choose TWO)", - "options": [ - "Enables you to backup extremely large amounts of data at very low costs.", - "Enables you to move Exabyte-scale data from on-premises datacenters into AWS.", - "Enables you to analyze and process extremely large amounts of data in a timely manner.", - "Enables you to easily run and scale Apache Spark, Hadoop,and other Big Data frameworks.", - "Enables you to easily run and manage Docker containers." - ], - "correct": "Enables you to analyze and process extremely large amounts of data in a timely manner." - }, - { - "question": "Your CTO has asked you to contact AWS support using the chat feature to ask for guidance related to EBS. However, when you open the AWS support center you can't see a way to contact support via Chat. What should you do?", - "options": [ - "There is no chat feature in AWS support.", - "The chat feature is available for all plans for an additional fee, but you have to request it first.", - "At a minimum, upgrade to Business support plan.", - "Upgrade from the Basic Support plan to Developer Support." - ], - "correct": "At a minimum, upgrade to Business support plan." - }, - { - "question": "A developer wants to quickly deploy and manage his application in the AWS Cloud, but he doesn\u2019t have any experience with cloud computing. Which of the following AWS services would help the developer achieve his goal?", - "options": [ - "AWS Fargate.", - "AWS Batch.", - "Amazon Personalize.", - "AWS Elastic Beanstalk." - ], - "correct": "AWS Elastic Beanstalk." - }, - { - "question": "Which statement best describes the AWS Pay-As-You-Go pricing model?", - "options": [ - "With AWS, you replace low upfront expenses with large variable payments.", - "With AWS, you replace low upfront expenses with large fixed payments.", - "With AWS, you replace large upfront expenses with low fixed payments.", - "With AWS, you replace large capital expenses with low variable payments." - ], - "correct": "With AWS, you replace large capital expenses with low variable payments." - }, - { - "question": "For Amazon RDS databases, what does AWS perform on your behalf? (Choose TWO)", - "options": [ - "Database setup.", - "Network traffic protection.", - "Management of the operating system.", - "Access management.", - "Management of firewall rules." - ], - "correct": "Database setup." - }, - { - "question": "Which of the following strategies help analyze costs in AWS?", - "options": [ - "Using tags to group resources.", - "Using AWS CloudFormation to automate the deployment of resources.", - "Deploying resources of the same type in different regions.", - "Configuring Amazon Inspector to automatically analyze costs and email reports." - ], - "correct": "Using tags to group resources." - }, - { - "question": "A media company has an application that requires the transfer of large data sets to and from AWS every day. This data is business critical and should be transferred over a consistent connection. Which AWS service should the company use?", - "options": [ - "AWS Direct Connect.", - "Amazon Comprehend.", - "AWS Snowmobile.", - "AWS VPN." - ], - "correct": "AWS Direct Connect." - }, - { - "question": "What is the main benefit of the AWS Storage Gateway service?", - "options": [ - "It automates the process of building, maintaining, and running ETL jobs.", - "It provides physical devices to migrate data from on premises to AWS.", - "It allows integration of on-premises IT environments with Cloud Storage.", - "It provides hardware-based key storage for regulatory compliance." - ], - "correct": "It allows integration of on-premises IT environments with Cloud Storage." - }, - { - "question": "To protect against data loss, you need to backup your database regularly. What is the most cost-effective storage option that provides immediate retrieval of your backups?", - "options": [ - "Amazon S3 Glacier Deep Archive.", - "Amazon S3 Standard-Infrequent Access.", - "Amazon S3 Glacier.", - "Instance Store." - ], - "correct": "Amazon S3 Standard-Infrequent Access." - }, - { - "question": "Which service can you use to route traffic to the endpoint that provides the best application performance for your users worldwide?", - "options": [ - "AWS Global Accelerator.", - "AWS Data Pipeline.", - "AWS DAX Accelerator.", - "AWS Transfer Acceleration." - ], - "correct": "AWS Global Accelerator." - }, - { - "question": "Why are Serverless Architectures more economical than Server-based Architectures?", - "options": [ - "Serverless Architectures use new powerful computing devices.", - "With the Server-based Architectures, compute resources continue to run all the time but with serverless architecture, compute resources are only used when code is being executed.", - "When you reserve serverless capacity, you will get large discounts compared to server reservation.", - "With Serverless Architectures you have a predictable fixed pricing." - ], - "correct": "With the Server-based Architectures, compute resources continue to run all the time but with serverless architecture, compute resources are only used when code is being executed." - }, - { - "question": "Which of the below options are use cases of the Amazon Route 53 service? (Choose TWO)", - "options": [ - "Point-to-point connectivity between an on-premises data center and AWS.", - "Detects configuration changes in the AWS environment.", - "DNS configuration and management.", - "Manages global application traffic through a variety of routing types.", - "Provides infrastructure security optimization recommendations." - ], - "correct": "DNS configuration and management." - }, - { - "question": "You want to transfer 200 Terabytes of data from on-premises locations to the AWS Cloud, which of the following can do the job in a cost-effective way?", - "options": [ - "AWS Snowmobile.", - "AWS Import/Export.", - "AWS DMS.", - "AWS Snowball." - ], - "correct": "AWS Snowball." - }, - { - "question": "You have a real-time IoT application that requires sub-millisecond latency. Which of the following services should you use?", - "options": [ - "Amazon Redshift.", - "Amazon Athena.", - "AWS Cloud9.", - "Amazon ElastiCache for Redis." - ], - "correct": "Amazon ElastiCache for Redis." - }, - { - "question": "Which of the following can help secure your sensitive data in Amazon S3? (Choose TWO)", - "options": [ - "Delete the encryption keys once your data is encrypted.", - "With AWS you do not need to worry about encryption.", - "Enable S3 Encryption.", - "Encrypt the data prior to uploading it.", - "Delete all IAM users that have access to S3." - ], - "correct": "Enable S3 Encryption." - }, - { - "question": "Which AWS service helps developers compile and test their code?", - "options": [ - "AWS CodeDeploy.", - "AWS CodeCommit.", - "CloudEndure.", - "AWS CodeBuild." - ], - "correct": "AWS CodeBuild." - }, - { - "question": "Which of the following will affect how much you are charged for storing objects in S3? (Choose TWO)", - "options": [ - "Using default encryption for any number of S3 buckets.", - "The number of EBS volumes attached to your instances.", - "The storage class used for the objects stored.", - "Creating and deleting S3 buckets.", - "The total size in gigabytes of all objects stored." - ], - "correct": "The storage class used for the objects stored." - }, - { - "question": "You are facing a lot of problems with your current contact center. Which service provides a cloud-based contact center that can deliver a better service for your customers?", - "options": [ - "Amazon Lightsail.", - "Amazon Connect.", - "AWS Direct Connect.", - "AWS Elastic Beanstalk." - ], - "correct": "Amazon Connect." - }, - { - "question": "You have migrated your application to AWS recently. How can you view the AWS costs applied to your account?", - "options": [ - "Using the AWS Cost & Usage Report.", - "Using the AWS Total Cost of Ownership (TCO) dashboard.", - "Using the AWS CloudWatch logs dashboard.", - "Using the Amazon VPC dashboard." - ], - "correct": "Using the AWS Cost & Usage Report." - }, - { - "question": "Which of the following are valid Amazon EC2 Reserved Instance types? (Choose TWO)", - "options": [ - "Convertible.", - "Expedited.", - "Bulk.", - "Spot.", - "Standard." - ], - "correct": "Convertible." - }, - { - "question": "Which of the following services gives you access to all AWS auditor-issued reports and certifications?", - "options": [ - "AWS Artifact.", - "AWS Config.", - "Amazon CloudWatch.", - "AWS CloudTrail." - ], - "correct": "AWS Artifact." - }, - { - "question": "You manage a blog on AWS that has different environments: development, testing, and production. What can you use to create a custom console for each environment to view and manage your resources easily?", - "options": [ - "AWS Resource Groups.", - "AWS Placement Groups.", - "AWS Management Console.", - "AWS Tag Editor." - ], - "correct": "AWS Resource Groups." - }, - { - "question": "Which AWS service collects metrics from running EC2 instances?", - "options": [ - "Amazon Inspector.", - "Amazon CloudWatch.", - "AWS CloudFormation.", - "AWS CloudTrail." - ], - "correct": "Amazon CloudWatch." - }, - { - "question": "Your web application currently faces performance issues and suffers from long load times. Which of the following AWS services could help fix these issues and improve performance?", - "options": [ - "Amazon Detective.", - "AWS X-Ray.", - "AWS Security Hub.", - "AWS Shield." - ], - "correct": "AWS X-Ray." - }, - { - "question": "Which of the following compute resources are serverless? (Choose TWO)", - "options": [ - "Amazon EC2.", - "AWS Fargate.", - "AWS Lambda.", - "Amazon ECS.", - "Amazon EMR." - ], - "correct": "AWS Fargate." - }, - { - "question": "For compliance and regulatory purposes, a government agency requires that their applications must run on hardware that is dedicated to them only. How can you meet this requirement?", - "options": [ - "Use EC2 Dedicated Hosts.", - "Use EC2 Reserved Instances.", - "Use EC2 Spot Instances.", - "Use EC2 On-demand Instances." - ], - "correct": "Use EC2 Dedicated Hosts." - }, - { - "question": "An organization needs to build a financial application that requires support for ACID transactions. Which AWS database service is most appropriate in this case?", - "options": [ - "RedShift.", - "RDS.", - "CloudHSM.", - "DMS." - ], - "correct": "RDS." - }, - { - "question": "What can you use to assign permissions directly to an IAM user?", - "options": [ - "IAM Identity.", - "IAM Group.", - "IAM Role.", - "IAM Policy." - ], - "correct": "IAM Policy." - }, - { - "question": "The owner of an E-Commerce application notices that the compute capacity requirements vary heavily from time to time. What makes AWS more economical than traditional data centers for this type of application?", - "options": [ - "AWS allows customers to launch powerful EC2 instances to handle spikes in load.", - "AWS allows customers to pay upfront to get bigger discounts.", - "AWS allows customers to launch and terminate EC2 instances based on demand.", - "AWS allows customers to choose cheaper types of EC2 instances that best fit their needs." - ], - "correct": "AWS allows customers to launch and terminate EC2 instances based on demand." - }, - { - "question": "Amazon RDS supports multiple database engines to choose from. Which of the following is not one of them?", - "options": [ - "PostgreSQL.", - "Oracle.", - "Microsoft SQL Server.", - "Teradata." - ], - "correct": "Teradata." - }, - { - "question": "Which of the following AWS services would help you migrate on-premise databases to AWS?", - "options": [ - "AWS DMS.", - "Amazon S3 Transfer Acceleration.", - "AWS Directory Service.", - "AWS Transit Gateway." - ], - "correct": "AWS DMS." - }, - { - "question": "For new AWS customers, what is the EASIEST way to launch a simple WordPress website on AWS?", - "options": [ - "Run WordPress on an Amazon Lightsail instance.", - "Install WordPress on an Amazon EC2 instance.", - "Use the Amazon S3 Web hosting feature.", - "Host the website directly on AWS Cloud Development Kit (AWS CDK)." - ], - "correct": "Run WordPress on an Amazon Lightsail instance." - }, - { - "question": "Which of the following would you use to manage your encryption keys in the AWS Cloud? (Choose TWO)", - "options": [ - "AWS KMS.", - "AWS Certificate Manager.", - "AWS CodeDeploy.", - "AWS CodeCommit.", - "AWS CloudHSM." - ], - "correct": "AWS KMS." - }, - { - "question": "Which of the following services allows you to install and run ANY custom relational database software?", - "options": [ - "Amazon EC2.", - "Amazon Cognito.", - "Amazon RDS.", - "Amazon Inspector." - ], - "correct": "Amazon EC2." - }, - { - "question": "Your application requirements for CPU and RAM are changing in an unpredictable way. Which service can be used to dynamically adjust these resources based on load?", - "options": [ - "Auto Scaling.", - "ELB.", - "Amazon Route53.", - "Amazon Elastic Container Service." - ], - "correct": "Auto Scaling." - }, - { - "question": "A company has infrastructure hosted in an on-premises data center. They currently have an operations team that takes care of identity management. If they decide to migrate to the AWS cloud, which of the following services would help them perform the same role in AWS?", - "options": [ - "AWS IAM.", - "AWS Outposts.", - "AWS Federation.", - "Amazon Redshift." - ], - "correct": "AWS IAM." - }, - { - "question": "What are some key design principles for designing public cloud systems? (Choose TWO)", - "options": [ - "Reserved capacity instead of on demand.", - "Loose coupling over tight coupling.", - "Servers instead of managed services.", - "Disposable resources instead of fixed servers.", - "Multi-AZ deployments instead of multi-region deployments." - ], - "correct": "Loose coupling over tight coupling." - }, - { - "question": "Where can AWS account owners get a list of all users in their account, including the status of their AWS credentials?", - "options": [ - "AWS CloudTrail Trails.", - "IAM Credential Report.", - "AWS Artifact reports.", - "AWS Cost and Usage Report." - ], - "correct": "IAM Credential Report." - }, - { - "question": "Which of the following services enables you to easily generate and use your own encryption keys in the AWS Cloud?", - "options": [ - "AWS Shield.", - "AWS Certificate Manager.", - "AWS CloudHSM.", - "AWS WAF." - ], - "correct": "AWS CloudHSM." - }, - { - "question": "You have developed a web application targeting a global audience. Which of the following will help you achieve the highest redundancy and fault tolerance from an infrastructure perspective?", - "options": [ - "There is no need to architect for these capabilities in AWS, as AWS is redundant by default.", - "Deploy the application in a single Availability Zone.", - "Deploy the application in multiple Availability Zones in a single AWS region.", - "Deploy the application in muitiple Availability Zones in multiple AWS regions." - ], - "correct": "Deploy the application in muitiple Availability Zones in multiple AWS regions." - }, - { - "question": "Which of the following factors affect Amazon CloudFront cost? (Choose TWO)", - "options": [ - "Number of Requests.", - "Traffic Distribution.", - "Number of Volumes.", - "Instance type.", - "Storage Class." - ], - "correct": "Number of Requests." - }, - { - "question": "Which of the following resources can an AWS customer use to learn more about prohibited uses of the services offered by AWS?", - "options": [ - "AWS Service Control Policies (SCPs).", - "AWS Artifact.", - "AWS Budgets.", - "AWS Acceptable Use Policy." - ], - "correct": "AWS Acceptable Use Policy." - }, - { - "question": "Which of the following security resources are available to any user for free? (Choose TWO)", - "options": [ - "AWS Bulletins.", - "AWS TAM.", - "AWS Support APl.", - "AWS Security Blog.", - "AWS Classroom Training." - ], - "correct": "AWS Bulletins." - }, - { - "question": "How can you protect data stored on Amazon S3 from accidental deletion?", - "options": [ - "By enabling S3 Versioning.", - "By configuring S3 Bucket Policies.", - "By configuring S3 Lifecycle Policies.", - "By disabling S3 Cross-Region Replication (CRR)." - ], - "correct": "By enabling S3 Versioning." - }, - { - "question": "Which of the following is the responsibility of AWS according to the AWS Shared Responsibility Model?", - "options": [ - "Securing regions and edge locations.", - "Performing auditing tasks.", - "Monitoring AWS resources usage.", - "Securing access to AWS resources." - ], - "correct": "Securing regions and edge locations." - }, - { - "question": "Which of the following AWS support plans provides access to only the seven core AWS Trusted Advisor checks?", - "options": [ - "Business & Enterprise Support.", - "Basic & Developer Support.", - "Developer & Enterprise Support.", - "Developer & Business Support." - ], - "correct": "Basic & Developer Support." - }, - { - "question": "Which of the following is NOT a benefit of using AWS Lambda?", - "options": [ - "AWS Lambda runs code without provisioning or managing servers.", - "AWS Lambda provides resizable compute capacity in the cloud.", - "There is no charge when your AWS Lambda code is not running.", - "AWS Lambda can be called directly from any mobile app." - ], - "correct": "AWS Lambda provides resizable compute capacity in the cloud." - }, - { - "question": "Who is responsible for scaling a DynamoDB database in the AWS Shared Responsibility Model?", - "options": [ - "Your security team.", - "Your development team.", - "AWS.", - "Your internal DevOps team." - ], - "correct": "AWS." - }, - { - "question": "What are the benefits of the AWS Organizations service? (Choose TWO)", - "options": [ - "Control access to AWS services.", - "Help organizations design and maintain an accelerated path to successful cloud adoption.", - "Manage your organization\u2019s security settings", - "Help organization achieve their desired business outcomes with AWS.", - "Consolidate billing across multiple AWS accounts." - ], - "correct": "Control access to AWS services." - }, - { - "question": "Which AWS service allows you to build a data warehouse in the cloud?", - "options": [ - "AWS Shield.", - "Amazon Redshift.", - "Amazon RDS.", - "Amazon Comprehend." - ], - "correct": "Amazon Redshift." - }, - { - "question": "What AWS service allows you to buy third-party software solutions and services that run on AWS resources?", - "options": [ - "AWS Application Discovery service.", - "Amazon DevPay.", - "AWS Marketplace.", - "Resource Groups." - ], - "correct": "AWS Marketplace." - }, - { - "question": "Which of the following services is an AWS repository management system that allows for storing, versioning, and managing your application code?", - "options": [ - "AWS CodePipeline.", - "AWS CodeCommit.", - "AWS X-Ray.", - "Amazon Inspector." - ], - "correct": "AWS CodeCommit." - }, - { - "question": "Which AWS service can be used to route end users to the nearest AWS Region to reduce latency?", - "options": [ - "Amazon Cognito.", - "AWS Systems Manager.", - "AWS Cloud9.", - "Amazon Route 53." - ], - "correct": "Amazon Route 53." - }, - { - "question": "Which feature enables users to sign into their AWS accounts with their existing corporate credentials?", - "options": [ - "Federation.", - "Access keys.", - "IAM Permissions.", - "WAF rules." - ], - "correct": "Federation." - }, - { - "question": "In the AWS shared responsibility model, which controls are AWS responsibility? (Select TWO)", - "options": [ - "Awareness and Training.", - "Communications controls.", - "Data center security controls.", - "Environmental controls.", - "Resource Configuration Management." - ], - "correct": "Data center security controls." - }, - { - "question": "What can you access by visiting the URL: http://status.aws.amazon.com?", - "options": [ - "AWS Billing Dashboard.", - "AWS Cost Dashboard.", - "AWS Service Health Dashboard.", - "AWS Security Dashboard." - ], - "correct": "AWS Service Health Dashboard." - }, - { - "question": "Which of the following procedures can reduce latency when your end users are retrieving media? (Choose TWO)", - "options": [ - "Store media assets in the region closest to your end users.", - "Store media assets on an additional EBS volume and increase the capacity of your server.", - "Replicate media assets to at least two availability zones.", - "Reduce the size of media assets using the Amazon Elastic Transcoder.", - "Store media assets in S3 and use CloudFront to distribute these assets." - ], - "correct": "Store media assets in the region closest to your end users." - }, - { - "question": "Which of the following are part of the seven design principles for security in the cloud? (Choose TWO)", - "options": [ - "Use manual monitoring techniques to protect your AWS resources.", - "Use IAM roles to grant temporary access instead of long-term credentials.", - "Scale horizontally to protect from failures.", - "Enable real-time traceability.", - "Never store sensitive data in the cloud." - ], - "correct": "Use IAM roles to grant temporary access instead of long-term credentials." - }, - { - "question": "A company is migrating production workloads to AWS, and they are concerned about cost management across different departments. Which option should the company implement to categorize and track AWS spending?", - "options": [ - "Use the AWS Pricing Calculator service to monitor the costs incurred by each department.", - "Use Amazon Aurora to forecast AWS spending based on usage.", - "Apply cost allocation tags to segment AWS costs by different e projects and departments.", - "Configure AWS Price List API to receive billing updates for each department automatically." - ], - "correct": "Apply cost allocation tags to segment AWS costs by different e projects and departments." - }, - { - "question": "What is the main benefit of attaching security groups to an Amazon RDS instance?", - "options": [ - "Data encryption.", - "Controls what IP address ranges can connect to your database instance.", - "Deploys SSL/TLS certificates for use with your database instance.", - "Distributes incoming traffic across multiple targets." - ], - "correct": "Controls what IP address ranges can connect to your database instance." - }, - { - "question": "A company wants to use Amazon Elastic Container Service (Amazon ECS) to run its containerized applications. For compliance reasons, the company wants to retain complete visibility and control over the underlying server cluster. Which Amazon ECS launch type will satisfy these requirements?", - "options": [ - "EC2 launch type.", - "Fargate launch type.", - "Lightsail launch type.", - "Lambda launch type." - ], - "correct": "EC2 launch type." - }, - { - "question": "You have multiple standalone AWS accounts and you want to decrease your AWS monthly charges. What should you do?", - "options": [ - "Try to remove unnecessary AWS accounts.", - "Add the accounts to an AWS Organization and use Consolidated Billing.", - "Track the AWS charges that are incurred by the member accounts.", - "Enable AWS tiered-pricing before provisioning resources." - ], - "correct": "Add the accounts to an AWS Organization and use Consolidated Billing." - }, - { - "question": "You have been tasked with auditing the security of your VPC. As part of this process, you need to start by analyzing what inbound and outbound traffic is allowed on your EC2 instances. What two parts of the VPC do you need to check to accomplish this task?", - "options": [ - "Network ACLs and Traffic Manager.", - "Network ACLs and Subnets.", - "Security Groups and Internet Gateways.", - "Security Groups and Network ACLs." - ], - "correct": "Security Groups and Network ACLs." - }, - { - "question": "What does the AWS \"Business\" support plan provide? (Choose TWO)", - "options": [ - "Access to the full set of Trusted Advisor checks.", - "Support Concierge Service.", - "Less than 15 minutes response-time support if your business critical system goes down.", - "AWS Support API.", - "Proactive Technical Account Management." - ], - "correct": "Access to the full set of Trusted Advisor checks." - }, - { - "question": "You have just finished writing your application code. Which service can be used to automate the deployment and scaling of your application?", - "options": [ - "Amazon Simple Storage Service.", - "AWS Elastic Beanstalk.", - "AWS CodeCommit.", - "Amazon Elastic File System." - ], - "correct": "AWS Elastic Beanstalk." - }, - { - "question": "Which statement is true in relation to security in AWS?", - "options": [ - "AWS manages everything related to EC2 operating systems.", - "AWS customers are responsible for patching any database software running on Amazon EC2.", - "Server side encryption is the responsibility of AWS.", - "AWS is responsible for the security of your application." - ], - "correct": "AWS customers are responsible for patching any database software running on Amazon EC2." - }, - { - "question": "Which statement is true regarding AWS pricing? (Choose TWO)", - "options": [ - "With the AWS pay-as-you-go pricing model, you don't have to pay any upfront fee.", - "You have no responsibility for third-party software license costs.", - "You only pay for the individual services that you need with no long-term contracts.", - "You have to pay a startup fee in order to get the service running.", - "There are no reservations on AWS, you only pay for what you use." - ], - "correct": "With the AWS pay-as-you-go pricing model, you don't have to pay any upfront fee." - }, - { - "question": "Which AWS service provides the EASIEST way to set up and manage a secure, well-architected, multi-account AWS environment?", - "options": [ - "AWS Control Tower.", - "Amazon Macie.", - "AWS Systems Manager Patch Manager.", - "AWS Systems Manager Patch Manager AWS Security Hub." - ], - "correct": "AWS Control Tower." - }, - { - "question": "A company is running a large web application that needs to always be available. The application tends to slow down when CPU usage is greater than 60%. How can they track when CPU usage goes above 60% for any of the EC2 Instances in their account?", - "options": [ - "Use CloudFront to monitor the CPU usage.", - "Set the AWS Config CPU threshold to 60% to receive a notification when EC2 usage exceeds that value.", - "Use CloudWatch Alarms to monitor the CPUand alert when the CPU usage is >= 60%.", - "Use SNS to menitor the utilization of the server." - ], - "correct": "Use CloudWatch Alarms to monitor the CPUand alert when the CPU usage is >= 60%." - }, - { - "question": "What is the recommended storage option when hosting an often-changing database on an Amazon EC2 instance?", - "options": [ - "Amazon EBS.", - "Amazon RDS.", - "You can't run a database inside an Amazon EC2 instance.", - "Amazon DynamoDB." - ], - "correct": "Amazon EBS." - }, - { - "question": "You are working as a site reliability engineer (SRE) in an AWS environment, which of the following services helps monitor your applications?", - "options": [ - "Amazon CloudWatch.", - "Amazon CloudSearch.", - "Amazon Elastic MapReduce.", - "Amazon CloudHSM." - ], - "correct": "Amazon CloudWatch." - }, - { - "question": "What factors determine how you are charged when using AWS Lambda? (Choose TWO)", - "options": [ - "Storage consumed.", - "Number of requests to your functions.", - "Number of volumes.", - "Placement groups.", - "Compute time consumed." - ], - "correct": "Number of requests to your functions." - }, - { - "question": "What are the main differences between an IAM user and an IAM role in AWS? (Choose TWO)", - "options": [ - "An IAM user is uniquely associated with only one person, however a role is intended to be assumable by anyone who needs it.", - "An IAM user has permanent credentials associated with it, however a role has temporary credentials associated with it.", - "IAM users are more cost effective than IAM roles.", - "Arole is uniquely associated with only one person, however an IAM user is intended to be assumable by anyone who needs it.", - "An IAM user has temporary credentials associated withit, however a role has permanent credentials associated with it." - ], - "correct": "An IAM user is uniquely associated with only one person, however a role is intended to be assumable by anyone who needs it." - }, - { - "question": "Which of the following actions may reduce Amazon EBS costs? (Choose TWO)", - "options": [ - "Deleting unused buckets.", - "Using reservations.", - "Deleting unnecessary snapshots.", - "Changing the type of the volume.", - "Distributing requests to multiple volumes." - ], - "correct": "Deleting unnecessary snapshots." - }, - { - "question": "What does Amazon GuardDuty do to protect AWS accounts and workloads?", - "options": [ - "Notifies AWS customers about abuse events once they are reported.", - "Continuously monitors AWS infrastructure and helps detect threats such as attacker reconnaissance or account compromise.", - "Helps AWS customers identify the root cause of potential security issues.", - "Checks security groups for rules that allow unrestricted access to AWS. resources." - ], - "correct": "Continuously monitors AWS infrastructure and helps detect threats such as attacker reconnaissance or account compromise." - }, - { - "question": "Which database service should you use if your application and data schema require \"joins\" or complex transactions?", - "options": [ - "Amazon RDS.", - "AWS Outposts.", - "Amazon DocumentDB.", - "Amazon DynamoDB." - ], - "correct": "Amazon RDS." - }, - { - "question": "Which of the following makes it easier for you to categorize, manage and filter your resources?", - "options": [ - "Amazon CloudWatch.", - "AWS Service Catalog.", - "AWS Directory Service.", - "AWS Tagging." - ], - "correct": "AWS Tagging." - }, - { - "question": "What should you consider when storing data in Amazon Glacier?", - "options": [ - "Amazon Glacier only accepts data in a compressed format.", - "Glacier can only be used to store frequently accessed data and data archives.", - "Amazon Glacier does not provide immediate retrieval of data.", - "Attach Glacier to an EC2 Instance to be able to store data." - ], - "correct": "Amazon Glacier does not provide immediate retrieval of data." - }, - { - "question": "Engineers are wasting a lot of time and effort managing batch computing software in traditional data centers. Which of the following AWS services allows them to easily run thousands of batch computing jobs?", - "options": [ - "Amazon EC2.", - "AWS Batch.", - "Lambda@Edge.", - "AWS Fargate." - ], - "correct": "AWS Batch." - }, - { - "question": "How can you increase your application\u2019s fault-tolerance while it is being hosted in AWS?", - "options": [ - "Deploy your application across multiple EC2 instances.", - "Deploy your application across multiple Availability Zones.", - "Host your application on one powerful EC2 instance type instead of multiple smaller instances.", - "Deploy the underlying application resources across multiple subnets." - ], - "correct": "Deploy your application across multiple Availability Zones." - }, - { - "question": "Which of the following AWS Support Plans gives you 24/7 access to Cloud Support Engineers via email & phone? (Choose TWO)", - "options": [ - "Developer.", - "Premium.", - "Enterprise.", - "Standard.", - "Business." - ], - "correct": "Enterprise." - }, - { - "question": "Which of the following requires an access key ID and a secret access key to get long-lived programmatic access to AWS resources? (Choose TWO)", - "options": [ - "IAM group.", - "IAM user.", - "IAM role.", - "AWS account root user.", - "TAM." - ], - "correct": "IAM user." - }, - { - "question": "Which of the following is a benefit of the \"Loose Coupling\" architecture principle?", - "options": [ - "It eliminates the need for change management.", - "It allows for Cross-Region Replication.", - "It helps AWS customers reduce Privileged Access to AWS resources.", - "It allows individual application compenents or services to be modified without affecting other components." - ], - "correct": "It allows individual application compenents or services to be modified without affecting other components." - }, - { - "question": "A company needs to host a big data application on AWS using EC2 instances. Which of the following AWS Storage services would they choose to automatically get high throughput to multiple compute nodes?", - "options": [ - "Amazon Elastic Block Store.", - "AWS Storage Gateway.", - "Amazon Elastic File System.", - "S3." - ], - "correct": "Amazon Elastic File System." - }, - { - "question": "What are the benefits of the AWS Marketplace service? (Choose TWO)", - "options": [ - "Protects customers by performing periodic security checks on listed products.", - "Per-second billing.", - "Provides cheaper options for purchasing Amazon EC2 on-demand instances.", - "Provides flexible pricing options that suit most customer needs.", - "Provides software solutions that run on AWS or any other Cloud vendor." - ], - "correct": "Protects customers by performing periodic security checks on listed products." - }, - { - "question": "You are planning to launch an advertising campaign over the coming weekend to promote a new digital product. It is expected that there will be heavy spikes in load during the campaign period, and you can\u2019t afford any downtime. You need additional compute resources to handle the additional load. What is the most cost-effective EC2 instance purchasing option for this job?", - "options": [ - "Savings Plans.", - "Spot Instances.", - "Reserved Instances.", - "On-Demand Instances." - ], - "correct": "On-Demand Instances." - }, - { - "question": "Which of the following AWS services integrates with AWS Shield and AWS Web Application Firewall (AWS WAF) to protect against network and application layer DDoS attacks?", - "options": [ - "Amazon EFS.", - "AWS Secrets Manager.", - "AWS Systems Manager.", - "Amazon CloudFront." - ], - "correct": "Amazon CloudFront." - }, - { - "question": "Which of the following services is used when encrypting EBS volumes?", - "options": [ - "AWS WAF.", - "AWS KMS.", - "Amazon Macie.", - "Amazon GuardDuty." - ], - "correct": "AWS KMS." - }, - { - "question": "The AWS account administrator of your company has been fired. With the permissions granted to him as an administrator, he was able to create multiple IAM user accounts and access keys. Additionally, you are not sure whether he has access to the AWS root account or not. What should you do immediately to protect your AWS infrastructure? (Choose TWO)", - "options": [ - "Download all the attached policies in a safe place.", - "Delete all IAM accounts and recreate them.", - "Use the CloudWatch service to check all API calls that have been made in your account since the administrator was fired.", - "Rotate all access keys.", - "Change the email address and password of the root user account and enable MFA." - ], - "correct": "Rotate all access keys." - }, - { - "question": "What is the Amazon ElastiCache service used for? (Choose TWO)", - "options": [ - "Provide an in-memory data storage service.", - "Reduce delivery costs using Edge Locations.", - "Improve web application performance.", - "Provide a Chef-compatible cache to speed up application response.", - "Distribute requests to multiple instances." - ], - "correct": "Provide an in-memory data storage service." - }, - { - "question": "The elasticity of the AWS Cloud enables customers to save costs when compared to traditional hosting providers. What can AWS customers do to benefit from the elasticity of the AWS Cloud? (Choose TWO)", - "options": [ - "Deploy your resources across multiple Availability Zones.", - "Use Amazon EC2 Auto Scaling.", - "Deploy your resources in another region.", - "Use AWS CloudFront.", - "Use Serverless Computing whenever possible." - ], - "correct": "Use Amazon EC2 Auto Scaling." - }, - { - "question": "What are some of the benefits of using On-Demand EC2 instances? (Choose TWO)", - "options": [ - "They are usually the cheapest choice among EC2 instance types.", - "They are cheaper than all other EC2 options.", - "They remove the need to buy \u201csafety net\u201d capacity to handle periodic traffic spikes.", - "They only require 1-2 days for setup and configuration.", - "You can increase or decrease your compute capacity depending on the demands of your application." - ], - "correct": "They remove the need to buy \u201csafety net\u201d capacity to handle periodic traffic spikes." - }, - { - "question": "Each AWS Region is composed of multiple Availability Zones. Which of the following best describes what an Availability Zone is?", - "options": [ - "It is a region designed to be completely isolated from other data centers in the same location.", - "It is a collection of data centers distributed in multiple countries.", - "It is a logically isolated network of the AWS Cloud.", - "It is a distinct location within a region that is insulated from \u00ab failures in other Availability Zones." - ], - "correct": "It is a distinct location within a region that is insulated from \u00ab failures in other Availability Zones." - }, - { - "question": "AWS provides disaster recovery capability by allowing customers to deploy infrastructure into multiple [...].", - "options": [ - "Regions.", - "Transportation devices.", - "Support plans.", - "Edge locations." - ], - "correct": "Regions." - }, - { - "question": "A financial services company decides to migrate one of its applications to AWS. The application deals with sensitive data, such as credit card information, and must run on a PCI-compliant environment. Which of the following is the company\u2019s responsibility when building a PCI-compliant environment in AWS? (Choose TWO)", - "options": [ - "Start the migration process immediately as all AWS services are PCI compliant.", - "Ensure that AWS services are configured properly to meetall PCI DSS standards.", - "Restrict any access to cardholder data and create a policy that addresses information security for all personnel.", - "Configure the underlying infrastructure of AWS services to meet all PCI DSS requirements.", - "Ensure that all PCI DSS physical security requirements are met." - ], - "correct": "Ensure that AWS services are configured properly to meetall PCI DSS standards." - }, - { - "question": "What is the maximum amount of data that can be stored in S3 in a single AWS account?", - "options": [ - "100 PetaBytes.", - "Virtually unlimited storage.", - "5TeraBytes.", - "10 Exabytes." - ], - "correct": "Virtually unlimited storage." - }, - { - "question": "Which pillar of the AWS Well-Architected Framework provides recommendations to help customers select the right compute resources based on workload requirements?", - "options": [ - "Operational Excellence.", - "Security.", - "Performance Efficiency.", - "Reliability." - ], - "correct": "Performance Efficiency." - }, - { - "question": "Which AWS service delivers data, videos, applications, and APIs to users globally with low latency and high transfer speeds?", - "options": [ - "Amazon Route 53.", - "Amazon Direct Connect.", - "Amazon CloudFront.", - "Amazon RDS." - ], - "correct": "Amazon CloudFront." - }, - { - "question": "Which of the following steps should be taken by a customer when conducting penetration testing on AWS?", - "options": [ - "Conduct penetration testing using Amazon Inspector, and then notify AWS support.", - "Check if testing without prior approval of desired services if allowed on Customer Service Policy for Penetration Testing.", - "Notify AWS support, and then conduct testing immediately.", - "Request and wait for approval from AWS support, and then conduct testing." - ], - "correct": "Check if testing without prior approval of desired services if allowed on Customer Service Policy for Penetration Testing." - }, - { - "question": "Which element of the AWS global infrastructure consists of one or more discrete data centers each with redundant power networking and connectivity which are housed in separate facilities?", - "options": [ - "AWS Regions.", - "Availability Zones.", - "Edge locations.", - "Amazon CloudFront." - ], - "correct": "Availability Zones." - }, - { - "question": "How many Availability Zones should compute resources be provisioned across to achieve high availability?", - "options": [ - "A minimum of one.", - "A minimum of two.", - "A minimum of three.", - "A minimum of four or more." - ], - "correct": "A minimum of two." - }, - { - "question": "Which AWS service can be used to manually launch instances based on resource requirements?", - "options": [ - "Amazon EBS.", - "Amazon S3.", - "Amazon EC2.", - "Amazon ECS." - ], - "correct": "Amazon EC2." - }, - { - "question": "Which is a recommended pattern for designing a highly available architecture on AWS?", - "options": [ - "Ensure that components have low-latency network connectivity.", - "Run enough Amazon EC2 instances to operate at peak load.", - "Ensure that the application is designed to accommodate failure of any single component.", - "Use a monolithic application that handles all operations." - ], - "correct": "Ensure that the application is designed to accommodate failure of any single component." - }, - { - "question": "Which AWS characteristics make AWS cost effective for a workload with dynamic user demand? (Select TWO)", - "options": [ - "High availability.", - "Shared security model.", - "Elasticity.", - "Pay-as-you-go pricing.", - "Reliability." - ], - "correct": "Elasticity." - }, - { - "question": "An administrator needs to rapidly deploy a popular IT solution and start using it immediately. Where can the administrator find assistance?", - "options": [ - "AWS Well-Architected Framework documentation.", - "Amazon CloudFront.", - "AWS CodeCommit.", - "AWS Quick Start reference deployments." - ], - "correct": "AWS Quick Start reference deployments." - }, - { - "question": "What is one of the advantages of the Amazon Relational Database Service (Amazon RDS)?", - "options": [ - "It simplifies relational database administration tasks.", - "It provides 99.99999999999% reliability and durability.", - "It automatically scales databases for loads.", - "It enabled users to dynamically adjust CPU and RAM resources." - ], - "correct": "It simplifies relational database administration tasks." - }, - { - "question": "Which of the following AWS Cloud services can be used to run a customer-managed relational database?", - "options": [ - "Amazon EC2.", - "Amazon Route 53.", - "Amazon ElastiCache.", - "Amazon DynamoDB." - ], - "correct": "Amazon EC2." - }, - { - "question": "A user is planning to launch two additional Amazon EC2 instances to increase availability. Which action should the user take?", - "options": [ - "Launch the instances across multiple Availability Zones in a single AWS Region.", - "Launch the instances as EC2 Reserved Instances in the same AWS Region and the same Availability Zone.", - "Launch the instances in multiple AWS Regions but in the same Availability Zone.", - "Launch the instances as EC2 Spot Instances in the same AWS Region but in different Availability Zones." - ], - "correct": "Launch the instances across multiple Availability Zones in a single AWS Region." - }, - { - "question": "Which of the following can limit Amazon Storage Service (Amazon S3) bucket access to specific users?", - "options": [ - "A public and private key-pair.", - "Amazon Inspector.", - "AWS Identity and Access Management (IAM) policies.", - "Security Groups." - ], - "correct": "AWS Identity and Access Management (IAM) policies." - }, - { - "question": "Which AWS service allows companies to connect an Amazon VPC to an on-premises data center?", - "options": [ - "Amazon Virtual Private Cloud.", - "Amazon Redshift.", - "Amazon API Gateway.", - "Amazon Connect." - ], - "correct": "Amazon Virtual Private Cloud." - }, - { - "question": "Which AWS service of feature can be used to monitor CPU usage?", - "options": [ - "AWS CloudTrail.", - "VPC Flow Logs.", - "Amazon CloudWatch.", - "AWS CloudFront." - ], - "correct": "Amazon CloudWatch." - }, - { - "question": "Which task is AWS responsible for in the shared responsibility model for security and compliance?", - "options": [ - "Granting access to individuals and services.", - "Encrypting data in transit.", - "Updating Amazon EC2 host firmware.", - "Updating operating systems." - ], - "correct": "Updating Amazon EC2 host firmware." - }, - { - "question": "Which of the following security-related actions are available at no cost?", - "options": [ - "Calling AWS Support.", - "Contacting AWS Professional Services to request a workshop.", - "Accessing forums, blogs, and whitepapers.", - "Attending AWS classes at a local university." - ], - "correct": "Accessing forums, blogs, and whitepapers." - }, - { - "question": "Which storage service can be used as a low-cost option for hosting static websites?", - "options": [ - "Amazon Glacier.", - "Amazon DynamoDB.", - "Amazon Elastic File System (Amazon EFS).", - "Amazon Simple Storage Service (Amazon S3)." - ], - "correct": "Amazon Simple Storage Service (Amazon S3)." - }, - { - "question": "According to the AWS shared responsibility model what is the sole responsibility of AWS?", - "options": [ - "Application security.", - "Edge location management.", - "Patch management.", - "Client-side data." - ], - "correct": "Edge location management." - }, - { - "question": "Which of the following are pillars of the AWS Well-Architected Framework? (Select TWO)", - "options": [ - "Multiple Availability Pillar.", - "Performance Efficiency Pillar.", - "Security Pillar.", - "Encryption Pillar.", - "Availability Pillar." - ], - "correct": "Performance Efficiency Pillar." - }, - { - "question": "Which AWS service identifies security groups that allow unrestricted access to a user\u2019s AWS resources?", - "options": [ - "Amazon Route 53.", - "Amazon Inspector.", - "Amazon CloudWatch.", - "Amazon CloudTrail." - ], - "correct": "Amazon Inspector." - }, - { - "question": "Which design principles for cloud architecture are recommended when re-architecting a large monolithic application? (Select TWO)", - "options": [ - "Use manual monitoring.", - "Use fixed servers.", - "Implement loose coupling.", - "Rely on individual components.", - "Design for scalability." - ], - "correct": "Implement loose coupling." - }, - { - "question": "When architecting cloud applications, which of the following are a key design principle?", - "options": [ - "Use the largest instance possible.", - "Provision capacity for peak load.", - "Use the Scrum development process.", - "Implement elasticity." - ], - "correct": "Implement elasticity." - }, - { - "question": "A company has deployed several relational databases on Amazon EC2 instances Every month the database software vendor releases new security patches that need to be applied to the databases. What is the MOST efficient way to apply the security patches?", - "options": [ - "Connect to each database instance on a monthly basis and download and apply the necessary security patches from the vendor.", - "Enable automate patching for the instances using the Amazon RDS console.", - "In AWS Config. configure a rule for the instances and the required patch level.", - "Use AWS Systems Manager to automate database patching according to a schedule." - ], - "correct": "Use AWS Systems Manager to automate database patching according to a schedule." - }, - { - "question": "Which of the following is a benefit of using the AWS Cloud?", - "options": [ - "Permissive security removes the administrative burden.", - "Ability to focus on revenue-generating activities.", - "Business credit lines for startups.", - "Choice of specific cloud hardware vendors." - ], - "correct": "Ability to focus on revenue-generating activities." - }, - { - "question": "Which of the following are categories of AWS Trusted Advisor? (Select TWO)", - "options": [ - "Fault Tolerance.", - "Instance Usage.", - "Infrastructure.", - "Performance.", - "Storage Capacity." - ], - "correct": "Fault Tolerance." - }, - { - "question": "What is Amazon CloudWatch?", - "options": [ - "A code repository with customizable build and team commit features.", - "A metrics repository with customizable notification thresholds and channels.", - "A security configuration repository with threat analytics.", - "A rule repository of a web application firewall with automated vulnerability prevention features." - ], - "correct": "A metrics repository with customizable notification thresholds and channels." - }, - { - "question": "Under the AWS shared responsibility model, which of the following activities are the customer\u2019s responsibility? (Select TWO)", - "options": [ - "Patching operating system components for Amazon Relational Database Server (Amazon RDS).", - "Encrypting data on the client-side.", - "Training the data center staff.", - "Configuring Network Access Control Lists (ACL).", - "Maintaining environmental controls within a data center." - ], - "correct": "Encrypting data on the client-side." - }, - { - "question": "Under the shared responsibility model, which of the following is a shared control between a customer and AWS?", - "options": [ - "Physical controls.", - "Patch management.", - "Zone security.", - "Data center auditing." - ], - "correct": "Patch management." - }, - { - "question": "Which AWS service is used to pay AWS bills, and monitor usage and budget costs?", - "options": [ - "AWS Billing Console.", - "AWS Budgets.", - "AWS CloudWatch.", - "AWS Pricing Calculator." - ], - "correct": "AWS Billing Console." - }, - { - "question": "Which AWS feature allows a company to take advantage of usage tiers for services across multiple member accounts?", - "options": [ - "Service control policies (SCPs).", - "Consolidated billing.", - "All Upfront Reserved Instances.", - "AWS Cost Explorer." - ], - "correct": "Consolidated billing." - }, - { - "question": "Which AWS services provide a way to extend an on-premises architecture to the aws cloud? (Select TWO)", - "options": [ - "Amazon EBS.", - "Amazon Connect.", - "Amazon Virtual Private Cloud (VPC).", - "Amazon CloudFront.", - "AWS Direct Connect." - ], - "correct": "Amazon Virtual Private Cloud (VPC)." - }, - { - "question": "Which of the following services will automatically scale with an expected increase in web traffic?", - "options": [ - "AWS CodePipeline.", - "Elastic Load Balancing.", - "Amazon EBS.", - "AWS Direct Connect." - ], - "correct": "Elastic Load Balancing." - }, - { - "question": "Which service provides a virtually unlimited amount of online highly durable object storage?", - "options": [ - "Amazon Redshift.", - "Amazon Elastic File System (Amazon EFS).", - "Amazon Elastic Container Service (Amazon ECS).", - "Amazon S3." - ], - "correct": "Amazon S3." - }, - { - "question": "Which AWS feature should a customer leverage to achieve high availability of an application?", - "options": [ - "AWS Direct Connect.", - "Availability Zones.", - "Data centers.", - "Amazon Virtual Private Cloud (Amazon VPC)." - ], - "correct": "Availability Zones." - }, - { - "question": "Which AWS service or feature can enhance network security by blocking requests from a particular network for a WEB Application on AWS?", - "options": [ - "AWS WAF.", - "AWS Trusted Advisor.", - "AWS Organizations.", - "Network ACLs." - ], - "correct": "AWS WAF." - }, - { - "question": "Which of the following is a cloud architectural design principle?", - "options": [ - "Scale up not out.", - "Loosely couple components.", - "Build monolithic systems.", - "Use commercial database software." - ], - "correct": "Loosely couple components." - }, - { - "question": "Which service enables risk auditing by continuously monitoring and logging account activity, including user actions in the AWS Management Console and AWS SDKs?", - "options": [ - "Amazon CloudWatch.", - "AWS CloudTrail.", - "AWS Config.", - "AWS Health." - ], - "correct": "AWS CloudTrail." - }, - { - "question": "Where can AWS compliance and certification reports be downloaded?", - "options": [ - "AWS Artifact.", - "AWS Concierge.", - "AWS Certificate Manager.", - "AWS Trusted Advisor." - ], - "correct": "AWS Artifact." - }, - { - "question": "Which AWS service can serve a static website?", - "options": [ - "Amazon S3.", - "Amazon Route 53.", - "Amazon QuickSight.", - "AWS X-Ray." - ], - "correct": "Amazon S3." - }, - { - "question": "What are the benefits of using the AWS Cloud for companies with customers in many countries around the world (Select TWO)", - "options": [ - "Companies can deploy applications in multiple AWS Regions to reduce latency.", - "Amazon Translate automatically translates third-party website interfaces into multiple languages.", - "Amazon CloudFront has multiple edge locations around the world to reduce latency.", - "Amazon Comprehend allows users to build applications that can respond to user requests in many languages.", - "Elastic Load Balancing can distribute application web traffic to multiple AWS Regions around the world which reduces latency." - ], - "correct": "Companies can deploy applications in multiple AWS Regions to reduce latency." - }, - { - "question": "What is the AWS customer responsible for according to the AWS shared responsibility model?", - "options": [ - "Physical access controls.", - "Data encryption.", - "Secure disposal of storage devices.", - "Environmental risk management." - ], - "correct": "Data encryption." - }, - { - "question": "If each department within a company has its own AWS account, what is one way to enable consolidated billing?", - "options": [ - "Use AWS Budgets on each account to pay only to budget.", - "Contact AWS Support for a monthly bill.", - "Create an AWS Organization from the payer account and invite the other accounts to join.", - "Put all invoices into one Amazon Simple Storage Service (Amazon S3) bucket, load data into Amazon Redshift, and then run a billing report." - ], - "correct": "Create an AWS Organization from the payer account and invite the other accounts to join." - }, - { - "question": "What is the benefit of using AWS managed services, such as Amazon ElastiCache and Amazon Relational Database Service (Amazon RDS)?", - "options": [ - "They require the customer to monitor and replace failing instances.", - "They have better performance than customer-managed services.", - "They simplify patching and updating underlying OSs.", - "They do not require the customer to optimize instance type or size selections." - ], - "correct": "They simplify patching and updating underlying OSs." - }, - { - "question": "Which services can be used across hybrid AWS Cloud architectures? (Select TWO)", - "options": [ - "Amazon Route 53.", - "Virtual Private Gateway.", - "Classic Load Balancer.", - "Auto Scaling.", - "Amazon CloudWatch default metrics." - ], - "correct": "Amazon Route 53." - }, - { - "question": "Which statement best describes Elastic Load Balancing?", - "options": [ - "It translates a domain name into an IP address using DNC.", - "It distributes incoming application traffic across one or more Amazon EC2 instances.", - "It collects metrics on connected Amazon EC2 instances.", - "It automatically adjusts the number of Amazon EC2 instances to support incoming traffic." - ], - "correct": "It distributes incoming application traffic across one or more Amazon EC2 instances." - }, - { - "question": "Which of the following is a fast and reliable NoSQL database service?", - "options": [ - "Amazon Redshift.", - "Amazon RDS.", - "Amazon DynamoDB.", - "Amazon S3." - ], - "correct": "Amazon DynamoDB." - }, - { - "question": "Which AWS service would you use to obtain compliance reports and certificates?", - "options": [ - "AWS Artifact.", - "AWS Lambda.", - "Amazon Inspector.", - "AWS Certificate Manager." - ], - "correct": "AWS Artifact." - }, - { - "question": "Which AWS services are defined as global instead of regional? (Select TWO)", - "options": [ - "Amazon Route 53.", - "Amazon EC2.", - "Amazon S3.", - "Amazon CloudFront.", - "Amazon DynamoDB." - ], - "correct": "Amazon Route 53." - }, - { - "question": "How would an AWS customer easily apply common access controls to a large set of users?", - "options": [ - "Apply an IAM policy to an IAM group.", - "Apply an IAM policy to an IAM role.", - "Apply the same IAM policy to all IAM users with access to the same workload.", - "Apply an IAM policy to an Amazon Cognito user pool." - ], - "correct": "Apply an IAM policy to an IAM group." - }, - { - "question": "Which of the following is an important architectural design principle when designing cloud applications?", - "options": [ - "Use multiple Availability Zones.", - "Use tightly coupled components.", - "Use open source software.", - "Provision extra capacity." - ], - "correct": "Use multiple Availability Zones." - }, - { - "question": "Which service allows a company with multiple AWS accounts to combine its usage to obtain volume discounts?", - "options": [ - "AWS Server Migration Service.", - "AWS Organizations.", - "AWS Budgets.", - "AWS Trusted Advisor." - ], - "correct": "AWS Organizations." - }, - { - "question": "Which of the following can an AWS customer use to launch a new Amazon Relational Database Service (Amazon RDS) cluster? (Select TWO)", - "options": [ - "AWS Concierge.", - "AWS CloudFormation.", - "Amazon Simple Storage Service (Amazon S3).", - "Amazon EC2 Auto Scaling.", - "AWS Management Console." - ], - "correct": "AWS CloudFormation." - }, - { - "question": "Which of the following Reserved Instance (RI) pricing models provides the highest average savings compared to On-Demand pricing?", - "options": [ - "One-year, No Upfront, Standard RI pricing.", - "One-year, All Upfront, Convertible RI pricing.", - "Three-year, All Upfront, Standard RI pricing.", - "Three-year, No Upfront, Convertible RI pricing." - ], - "correct": "Three-year, All Upfront, Standard RI pricing." - }, - { - "question": "Which of the following are features of Amazon CloudWatch Logs?", - "options": [ - "Defined as global (same pricing worldwide).", - "Free Amazon Elasticsearch Service analytics.", - "Provided at no charge.", - "Real-time monitoring." - ], - "correct": "Real-time monitoring." - }, - { - "question": "Which of the following is an AWS Serverless Compute Service?", - "options": [ - "Amazon SWF.", - "Amazon EC2.", - "AWS Lambda.", - "Amazon Aurora." - ], - "correct": "AWS Lambda." - }, - { - "question": "A company wants to reduce the physical compute footprint that developers use to run code. Which service would meet that need by enabling serverless architectures?", - "options": [ - "Amazon Elastic Compute Cloud (Amazon EC2).", - "AWS Lambda.", - "Amazon DynamoDB.", - "AWS CodeCommit." - ], - "correct": "AWS Lambda." - }, - { - "question": "Which of the following is the customer\u2019s responsibility under the AWS shared responsibility model?", - "options": [ - "Patching underlying infrastructure", - "Physical security", - "Patching Amazon EC2 instances", - "Patching network infrastructure" - ], - "correct": "Patching Amazon EC2 instances" - }, - { - "question": "According to the AWS shared responsibility model who is responsible for configuration management?", - "options": [ - "It is solely the responsibility of the customer.", - "It is solely the responsibility of AWS.", - "It is shared between AWS and the customer.", - "It is not part of the AWS shared responsibility model." - ], - "correct": "It is shared between AWS and the customer." - }, - { - "question": "Which security service automatically recognizes and classifies sensitive data or intellectual property on AWS?", - "options": [ - "Amazon GuardDuty.", - "Amazon Macie.", - "Amazon Inspector.", - "AWS Shield." - ], - "correct": "Amazon Macie." - }, - { - "question": "Under the shared responsibility model, which of the following tasks are the responsibility of the AWS customer? (Select TWO)", - "options": [ - "Ensuring that application data is encrypted at rest.", - "Ensuring that AWS NTP servers are set to the correct time.", - "Ensuring that users have received security training in the use of AWS services.", - "Ensuring that access to data centers is restricted.", - "Ensuring that hardware is disposed of properly." - ], - "correct": "Ensuring that application data is encrypted at rest." - }, - { - "question": "A customer is using multiple AWS accounts with separate billing. How can the customer take advantage of volume discounts with minimal impact to the AWS resources?", - "options": [ - "Create one global AWS account and move all AWS resources to tha account.", - "Sign up for three years of Reserved Instance pricing up front.", - "Use the consolidated billing feature from AWS Organizations.", - "Sign up for the AWS Enterprise support plan to get volume discounts." - ], - "correct": "Use the consolidated billing feature from AWS Organizations." - }, - { - "question": "Which Amazon EC2 pricing model offers the MOST significant discount when compared to OnDemand Instances?", - "options": [ - "A Partial Upfront Reserved Instances for a 1-year term.", - "All Upfront Reserved instances for a 1 year form.", - "All Upfront Reserved Instances for a 3 year term.", - "No Upfront Reserved Instances for a 3 year term." - ], - "correct": "All Upfront Reserved Instances for a 3 year term." - }, - { - "question": "Which AWS services should be used for read/write of constantly changing data? (Select TWO)", - "options": [ - "Amazon Glacier.", - "Amazon RDS.", - "AWS Snowball.", - "Amazon Redshift.", - "Amazon EFS." - ], - "correct": "Amazon RDS." - }, - { - "question": "Which AWS service allows users to identify the changes made to a resource over time?", - "options": [ - "Amazon Inspector.", - "AWS Config.", - "AWS Service Catalog.", - "AWS IAM." - ], - "correct": "AWS Config." - }, - { - "question": "According to best practices, how should an application be designed to run in the AWS Cloud?", - "options": [ - "Use tighly coupled components.", - "Use loosely coupled components.", - "Use infrequently coupled components.", - "Use frequently coupled components." - ], - "correct": "Use loosely coupled components." - }, - { - "question": "Which benefits are included with the AWS Business Support plan? (Select TWO)", - "options": [ - "24/7 assistance by way of live chat or a telephone call.", - "Support from a dedicated AWS Technical Account Manager.", - "An unlimited number of cases and contacts.", - "15-minute response time for production system interruption cases.", - "Annual operational reviews with AWS Solutions Architects." - ], - "correct": "24/7 assistance by way of live chat or a telephone call." - }, - { - "question": "Which of the following is an AWS managed Domain Name System (DNS) web service?", - "options": [ - "Amazon Route 53.", - "Amazon Neptune.", - "Amazon SageMaker.", - "Amazon Lightsail." - ], - "correct": "Amazon Route 53." - }, - { - "question": "A user must meet compliance and software licensing requirements that state a workload must be hosted on a physical server. When Amazon EC2 instance pricing option will meet these requirements?", - "options": [ - "Dedicated Hosts.", - "Dedicated Instances.", - "Spot Instances.", - "Reserved Instances." - ], - "correct": "Dedicated Hosts." - }, - { - "question": "Which of the Reserved Instance (RI) pricing models can change the attributes of the RI as long as the exchange results in the creation of RIs of equal or greater value?", - "options": [ - "Dedicated RIs.", - "Scheduled RIs.", - "Convertible RIs.", - "Standard RIs." - ], - "correct": "Convertible RIs." - }, - { - "question": "Which service is best for storing common database query results, which helps to alleviate database access load?", - "options": [ - "Amazon Machine Learning.", - "Amazon SQS.", - "Amazon ElastiCache.", - "Amazon EC2 Instance Store." - ], - "correct": "Amazon ElastiCache." - }, - { - "question": "When should a company consider using Amazon EC2 Spot Instances? (Select TWO)", - "options": [ - "For non-production applications.", - "For stateful workloads.", - "For applications that cannot have interruptions.", - "For fault-tolerant flexible applications.", - "For sensitive database applications." - ], - "correct": "For non-production applications." - }, - { - "question": "Which AWS tools assist with estimating costs? (Select TWO)", - "options": [ - "Detailed billing report.", - "Cost allocation tags.", - "AWS Pricing Calculator.", - "AWS CloudWatch.", - "AWS Billing." - ], - "correct": "Cost allocation tags." - }, - { - "question": "A company wants to focus on business activities instead of managing compute and capacity. Which AWS service can be used to automatically add or remove Amazon EC2 instances based on demand?", - "options": [ - "Elastic Load Balancer.", - "Amazon EC2 Auto Scaling.", - "Amazon Route 53.", - "Amazon CloudFront." - ], - "correct": "Amazon EC2 Auto Scaling." - }, - { - "question": "Which is the minimum AWS Support plan that includes Infrastructure Event Management without additional costs?", - "options": [ - "Enterprise.", - "Business.", - "Developer.", - "Basic." - ], - "correct": "Enterprise." - }, - { - "question": "Access keys in AWS Identity and Access Management are used to:", - "options": [ - "Log in to the AWS Management Console.", - "Make programmatic calls to AWS from AWS APIs.", - "Log in to Amazon EC2 instances.", - "Authenticate to AWS CodeCommit repositories." - ], - "correct": "Make programmatic calls to AWS from AWS APIs." - }, - { - "question": "Which AWS service can be used to query stored datasets directly from Amazon S3 using standard SQL?", - "options": [ - "AWS Glue.", - "AWS Data Pipeline.", - "Amazon CloudSearch.", - "Amazon Athena." - ], - "correct": "Amazon Athena." - }, - { - "question": "How does AWS shorten the time to provision IT resources?", - "options": [ - "It supplies an online IT ticketing platform for resource requests.", - "It supports automatic code validation services.", - "It provides the ability to programmatically provision existing resources.", - "It automates the resource request process from a company\u2019s IT vendor list." - ], - "correct": "It provides the ability to programmatically provision existing resources." - }, - { - "question": "Which AWS services can be used to gather information about AWS account activity? (Select TWO)", - "options": [ - "Amazon CloudFront.", - "AWS Cloud9.", - "AWS CloudTrail.", - "AWS CloudHSM.", - "Amazon CloudWatch." - ], - "correct": "AWS CloudTrail." - }, - { - "question": "Which of the following are characteristics of Amazon S3? (Select TWO)", - "options": [ - "Automatically scales to handle large amounts of data.", - "It's glogal and region can don't have impact on it's pricing.", - "Stores data as objects.", - "Attached to EC2 instances within the same region.", - "Allows snapshots for backup and recovery." - ], - "correct": "Automatically scales to handle large amounts of data." - }, - { - "question": "A user wants guidance on possible savings when migrating from on-premises to AWS. Which tool is suitable for this scenario?", - "options": [ - "AWS Budgets.", - "AWS Cost Explorer.", - "AWS Pricing Calculator.", - "AWS Well-Architected Tool." - ], - "correct": "AWS Pricing Calculator." - }, - { - "question": "Which of the following services is in the category of AWS serverless platform?", - "options": [ - "Amazon EMR.", - "Elastic Load Balancing.", - "AWS Lambda.", - "AWS Mobile Hub." - ], - "correct": "AWS Lambda." - }, - { - "question": "The use of what AWS feature or service allows companies to track and categorize spending on a detailed level?", - "options": [ - "Cost allocation tags.", - "Consolidated billing.", - "AWS Budgets.", - "AWS Marketplace." - ], - "correct": "Cost allocation tags." - }, - { - "question": "Which of the following inspects AWS environments to find opportunities that can save money for users and also improve system performance?", - "options": [ - "AWS Cost Explorer.", - "AWS Trusted Advisor.", - "Consolidated billing.", - "Detailed billing." - ], - "correct": "AWS Trusted Advisor." - }, - { - "question": "Web servers running on Amazon EC2 access a legacy application running in a corporate data center. What term would describe this model?", - "options": [ - "Cloud-native.", - "Partner network.", - "Hybrid architecture.", - "Infrastructure as a service." - ], - "correct": "Hybrid architecture." - }, - { - "question": "What technology enables compute capacity to adjust as loads change?", - "options": [ - "Load balancing.", - "Automatic failover.", - "Round robin.", - "Auto Scaling." - ], - "correct": "Auto Scaling." - }, - { - "question": "Which AWS service is a managed NoSQL database?", - "options": [ - "Amazon Redshift.", - "Amazon DynamoDB.", - "Amazon Aurora.", - "Amazon RDS for ManaDB." - ], - "correct": "Amazon DynamoDB." - }, - { - "question": "Which of the following is a correct relationship between regions, Availability Zones, and edge locations?", - "options": [ - "Data centers contain regions.", - "Regions contain Availability Zones.", - "Availability Zones contain edge locations.", - "Edge locations contain regions." - ], - "correct": "Regions contain Availability Zones." - }, - { - "question": "What approach to transcoding a large number of individual video files adheres to AWS architecture principles?", - "options": [ - "Using many instances in parallel.", - "Using a single large instance during off-peak hours.", - "Using dedicated hardware.", - "Using a large GPU instance type." - ], - "correct": "Using many instances in parallel." - }, - { - "question": "Which AWS services can host a Microsoft SQL Server database? (Select TWO)", - "options": [ - "Amazon EC2.", - "Amazon Relational Database Service (Amazon RDS).", - "Amazon Aurora.", - "Amazon Redshift.", - "Amazon S3." - ], - "correct": "Amazon EC2." - }, - { - "question": "Which AWS IAM feature allows developers to access AWS services through the AWS CLI?", - "options": [ - "API keys.", - "Access keys.", - "User names/Passwords.", - "SSH keys." - ], - "correct": "Access keys." - }, - { - "question": "The user is fully responsible for which action when running workloads on AWS?", - "options": [ - "Patching the infrastructure components.", - "Maintaining the underlying infrastructure components.", - "Maintaining physical and environmental controls.", - "Implementing controls to route application traffic." - ], - "correct": "Implementing controls to route application traffic." - }, - { - "question": "Which AWS support plan includes a dedicated Technical Account Manager?", - "options": [ - "Developer.", - "Enterprise.", - "Business.", - "Basic." - ], - "correct": "Enterprise." - }, - { - "question": "What time-savings advantage is offered with the use of Amazon Rekognition?", - "options": [ - "Amazon Rekognition provides automatic watermarking of images.", - "Amazon Rekognition provides automatic detection of objects appearing in pictures.", - "Amazon Recognition provides the ability to resize millions of images automatically.", - "Amazon Rekognition uses Amazon Mechanical Turk to allow humans to bid on object detection jobs." - ], - "correct": "Amazon Rekognition provides automatic detection of objects appearing in pictures." - }, - { - "question": "Which AWS service can be used to automatically scale an application up and down without making capacity planning decisions?", - "options": [ - "Amazon EBS.", - "Amazon Redshift.", - "AWS CloudTrail.", - "AWS Lambda." - ], - "correct": "AWS Lambda." - }, - { - "question": "Amazon Relational Database Service (Amazon RDS) offers which of the following benefits over traditional database management?", - "options": [ - "AWS manages the data stored in Amazon RDS tables.", - "AWS manages the maintenance of the operating system.", - "AWS region do not have impact Amazon RDS pricing.", - "AWS manages the database type." - ], - "correct": "AWS manages the maintenance of the operating system." - }, - { - "question": "A company\u2019s web application currently has light dependencies on underlying components so when one component fails the entire web application fails. Applying which AWS Cloud design principle will address the current design issue?", - "options": [ - "Implementing elasticity enabling the application to scale up or scale down as demand changes.", - "Enabling several EC2 instances to run in parallel to achieve better performance.", - "Focusing on decoupling components by isolating them and ensuring individual components can function when other components.", - "Doubling EC2 computing resources to increase system fault tolerance." - ], - "correct": "Focusing on decoupling components by isolating them and ensuring individual components can function when other components." - }, - { - "question": "A customer would like to design and build a new workload on AWS Cloud but does not have the AWS-related software technical expertise in-house. Which of the following AWS programs can a customer take advantage of to achieve that outcome?", - "options": [ - "AWS Technical Account Manager (TAM).", - "AWS Marketplace.", - "AWS Partner Network (APN).", - "AWS Service Catalog." - ], - "correct": "AWS Partner Network (APN)." - }, - { - "question": "Which service stores objects, provides real-time access to those objects, and offers versioning and lifecycle capabilities?", - "options": [ - "Amazon Glacier.", - "AWS Storage Gateway.", - "Amazon S3.", - "Amazon EBS." - ], - "correct": "Amazon S3." - }, - { - "question": "Distributing workloads across multiple Availability Zones supports which cloud architecture design principle?", - "options": [ - "Implement automation.", - "Design for agility.", - "Design for failure.", - "Implement elasticity." - ], - "correct": "Design for failure." - }, - { - "question": "Which service should a customer use to consolidate and centrally manage multiple AWS accounts?", - "options": [ - "AWS IAM.", - "AWS Organizations.", - "AWS Schema Conversion Tool.", - "AWS Config." - ], - "correct": "AWS Organizations." - }, - { - "question": "How can a company reduce its Total Cost of Ownership (TCO) using AWS?", - "options": [ - "By minimizing large capital expenditures.", - "By having no responsibility for third-party license costs.", - "By having no operational expenditures.", - "By having AWS manage applications." - ], - "correct": "By minimizing large capital expenditures." - }, - { - "question": "Which options does AWS make available for customers who want to learn about security in the cloud in an instructor-led setting? (Select TWO)", - "options": [ - "AWS Trusted Advisor.", - "AWS Online Tech Talks.", - "AWS Blog.", - "AWS Forums.", - "AWS Classroom Training." - ], - "correct": "AWS Online Tech Talks." - }, - { - "question": "Which of the following will enhance the security of access to the AWS Management Console\u2019? (Select TWO)", - "options": [ - "AWS Secrets Manager.", - "AWS Certificate Manager.", - "AWS Multi-Factor Authentication (AWS MFA).", - "Security groups.", - "Password policies." - ], - "correct": "AWS Multi-Factor Authentication (AWS MFA)." - }, - { - "question": "Which of the following features can be configured through the Amazon Virtual Private Cloud (Amazon VPC) Dashboard? (Select TWO)", - "options": [ - "Amazon CloudFront.", - "Amazon S3.", - "Security Groups.", - "Subnets.", - "Amazon DynamoDB." - ], - "correct": "Security Groups." - }, - { - "question": "For which auditing process does AWS have sole responsibility?", - "options": [ - "AWS IAM policies.", - "Physical security.", - "Amazon S3 bucket policies.", - "AWS CloudTrail Logs." - ], - "correct": "Physical security." - }, - { - "question": "Which of the following are advantages of AWS consolidated billing? (Select TWO)", - "options": [ - "The ability to receive one bill for multiple accounts.", - "More isolation between accounts.", - "A fixed discount on the monthly bill.", - "Potential volume discounts, as usage in all accounts is combined.", - "The automatic extension of the master account\u2019s AWS support plan to all accounts." - ], - "correct": "The ability to receive one bill for multiple accounts." - }, - { - "question": "Which of the following common IT tasks can AWS cover to free up company IT resources? (Select TWO)", - "options": [ - "Patching databases software.", - "Testing application releases.", - "Backing up databases.", - "Creating database schema.", - "Running penetration tests." - ], - "correct": "Patching databases software." - }, - { - "question": "A company wants to expand from one AWS Region into a second AWS Region. What does the company need to do to start supporting the new Region?", - "options": [ - "Contact an AWS Account Manager to sign a new contract.", - "Move an Availability Zone to the new Region.", - "Set up resources (like EC2 instances, RDS databases) in the new Region.", - "Download the AWS Management Console for the new Region." - ], - "correct": "Set up resources (like EC2 instances, RDS databases) in the new Region." - }, - { - "question": "Why is it beneficial to use Elastic Load Balancers with applications?", - "options": [ - "They allow for the conversion from application load.", - "They allow traffic distribution across multiple instances, improving application availability and reducing downtime.", - "They are capable of handling constant changes in network traffic patterns.", - "They automatically adjust capacity. They are provided at no charge to users." - ], - "correct": "They allow traffic distribution across multiple instances, improving application availability and reducing downtime." - }, - { - "question": "Which is the minimum AWS Support plan that allows for < 1 hour target response time for production system down cases?", - "options": [ - "Enterprise.", - "Business.", - "Developer", - "Basic" - ], - "correct": "Business." - }, - { - "question": "What is the lowest-cost, durable storage option for retaining database backups for immediate retrieval?", - "options": [ - "Amazon S3.", - "Amazon Glacier.", - "Amazon EBS.", - "Amazon EC2 Instance Store." - ], - "correct": "Amazon S3." - }, - { - "question": "A company needs 24/7 phone email and chat access with a response time of less than 1 hour if a production system has a service interruption Which AWS Support plan meets these requirements at the LOWEST cost?", - "options": [ - "Basic.", - "Developer.", - "Business.", - "Enterprise." - ], - "correct": "Business." - }, - { - "question": "How does AWS Trusted Advisor provide guidance to users of the AWS Cloud? (Select TWO)", - "options": [ - "It identifies software vulnerabilities in applications running on AWS.", - "It provides a list of cost optimization recommendations based on current AWS usage.", - "It detects potential security vulnerabilities caused by permissions settings on account resources.", - "It automatically corrects potential security issues caused by permissions settings on account resources.", - "It provides proactive alerting whenever an Amazon EC2 instance has been compromised." - ], - "correct": "It provides a list of cost optimization recommendations based on current AWS usage." - }, - { - "question": "Which AWS managed service is used to host databases?", - "options": [ - "AWS Batch.", - "AWS Artifact.", - "AWS Data Pipeline.", - "Amazon RDS." - ], - "correct": "Amazon RDS." - }, - { - "question": "Which of the following Identity and Access Management (IAM) entities is associated with an access key ID and secret access key when using AWS Command Line Interface (AWS CLI)?", - "options": [ - "IAM group.", - "IAM user.", - "IAM role.", - "IAM policy." - ], - "correct": "IAM user." - }, - { - "question": "Under the shared responsibility model, which of the following is the customer responsible for?", - "options": [ - "Ensuring that disk drives are wiped after use.", - "Ensuring that firmware is updated on hardware devices.", - "Ensuring that data is encrypted at rest.", - "Ensuring that network cables are category six or higher." - ], - "correct": "Ensuring that data is encrypted at rest." - }, - { - "question": "Which AWS service provides a simple and scalable shared file storage solution for use with Linux-based AWS and on-premises servers?", - "options": [ - "Amazon S3.", - "Amazon Glacier.", - "Amazon EBS.", - "Amazon EFS." - ], - "correct": "Amazon EFS." - }, - { - "question": "What credential components are required to gain programmatic access to an AWS account? (Select TWO)", - "options": [ - "An access key ID.", - "A primary key.", - "A secret access key.", - "A user ID.", - "A secondary key." - ], - "correct": "An access key ID." - }, - { - "question": "Which of the following is a shared control between the customer and AWS?", - "options": [ - "Providing a key for Amazon S3 client-side encryption.", - "Configuration of an Amazon EC2 instance.", - "Environmental controls of physical AWS data centers.", - "Awareness." - ], - "correct": "Awareness." - }, - { - "question": "Which type of AWS storage is ephemeral and is deleted when an instance is stopped Of terminated?", - "options": [ - "Amazon EBS.", - "Amazon EC2 instance store.", - "Amazon EFS.", - "Amazon S3." - ], - "correct": "Amazon EC2 instance store." - }, - { - "question": "Which of the following is an advantage of consolidated billing on AWS?", - "options": [ - "Volume pricing qualification.", - "Shared access permissions.", - "Multiple bills per account.", - "Eliminates the need for tagging." - ], - "correct": "Volume pricing qualification." - }, - { - "question": "Which of the following Amazon EC2 pricing models allow customers to use existing server-bound software licenses?", - "options": [ - "Spot Instances.", - "Reserved Instances.", - "Dedicated Hosts.", - "On-Demand Instances." - ], - "correct": "Dedicated Hosts." - }, - { - "question": "Which of the following security measures protect access to an AWS account? (Select TWO)", - "options": [ - "Enable AWS CloudTrail.", - "Grant least privilege access to IAM users.", - "Create one IAM user and share with many developers and users.", - "Enable Amazon CloudFront.", - "Activate multi-factor authentication (MFA) for privileged users." - ], - "correct": "Grant least privilege access to IAM users." - }, - { - "question": "Which AWS service provides the ability to manage infrastructure as code?", - "options": [ - "AWS CodePipeline.", - "AWS CodeDeploy.", - "AWS Direct Connect.", - "AWS CloudFormation." - ], - "correct": "AWS CloudFormation." - }, - { - "question": "What is an advantage of deploying an application across multiple Availability Zones?", - "options": [ - "There is a lower risk of service failure if a natural disaster causes a service disruption in a given AWS Region.", - "The application will have higher availability because it can withstand a service disruption in one Availability Zone.", - "There will be better coverage as Availability Zones are geographical^ distant and can serve a wider area.", - "There will be decreased application latency that will improve the user experience." - ], - "correct": "The application will have higher availability because it can withstand a service disruption in one Availability Zone." - }, - { - "question": "A customer needs to run a MySQL database that easily scales. Which AWS service should they use?", - "options": [ - "Amazon Aurora.", - "Amazon Redshift.", - "Amazon DynamoDB.", - "Amazon ElastiCache." - ], - "correct": "Amazon Aurora." - }, - { - "question": "AWS Enterprise Support users have access to which service or feature that is not available to users with other AWS Support plans?", - "options": [ - "AWS Trusted Advisor.", - "AWS Support case.", - "Concierge team.", - "Amazon Connect." - ], - "correct": "Concierge team." - }, - { - "question": "A company will be moving from an on-premises data center to the AWS Cloud. What would be one financial difference after the move?", - "options": [ - "Moving from variable operational expense ( opex ) to upfront capital expense (capex).", - "Moving from upfront capital expense (capex) to variable capital expense (capex).", - "Moving from upfront capital expense (capex) to variable operational expense ( opex ).", - "Elimination of upfront capital expense (capex) and elimination of variable operational expense ( opex )." - ], - "correct": "Moving from upfront capital expense (capex) to variable operational expense ( opex )." - }, - { - "question": "When performing a cost analysis that supports physical isolation of a customer workload, which compute hosting model should be accounted for in the Total Cost of Ownership (TCO)?", - "options": [ - "Dedicated Hosts", - "Reserved Instances", - "On-Demand Instances", - "No Upfront Reserved Instances" - ], - "correct": "Dedicated Hosts" - }, - { - "question": "Which AWS service should be used for long-term, low-cost storage of data backups?", - "options": [ - "Amazon RDS.", - "Amazon Glacier.", - "AWS Snowball.", - "AWS EBS." - ], - "correct": "Amazon Glacier." - }, - { - "question": "Which Amazon EC2 instance pricing model can provide discounts of up to 90%?", - "options": [ - "Reserved Instances.", - "On-Demand.", - "Dedicated Hosts.", - "Spot Instances." - ], - "correct": "Spot Instances." - }, - { - "question": "Which of the following AWS services can be used to serve large amounts of online video content with the lowest possible latency? (Select TWO)", - "options": [ - "appGateway.", - "Amazon S3.", - "Amazon Elastic File System (EFS).", - "Amazon Glacier.", - "Amazom CloudFront." - ], - "correct": "Amazon S3." - }, - { - "question": "What can AWS edge locations be used for? (Select TWO)", - "options": [ - "Hosting applications.", - "Delivering content closer to users.", - "Running NoSQL database caching services.", - "Reducing traffic on the server by caching responses.", - "Sending notification messages to end users." - ], - "correct": "Delivering content closer to users." - }, - { - "question": "One of the advantages to moving infrastructure from an on-premises data center to the AWS Cloud is:", - "options": [ - "It allows the business to eliminate IT bills.", - "It allows the business to put a server in each customer\u2019s data center.", - "It allows the business to focus on business activities.", - "It allows the business to leave servers unpatched." - ], - "correct": "It allows the business to focus on business activities." - }, - { - "question": "How can a user protect against AWS service disruptions if a natural disaster affects an entire geographic area?", - "options": [ - "Deploy applications across multiple Availability Zones within an AWS Region.", - "Use a hybrid cloud computing deployment model within the geographic area.", - "Deploy applications across multiple AWS Regions.", - "Store application artifacts using AWS Artifact and replicate them across multiple AWS Regions." - ], - "correct": "Deploy applications across multiple AWS Regions." - }, - { - "question": "Which activity is a customer responsibility in the AWS Cloud according to the AWS shared responsibility model?", - "options": [ - "Ensuring network connectivity from AWS to the internet.", - "Patching and fixing flaws within the AWS Cloud infrastructure.", - "Ensuring the physical security of cloud data centers.", - "Ensuring Amazon EBS volumes are backed up." - ], - "correct": "Ensuring Amazon EBS volumes are backed up." - }, - { - "question": "In which scenario should Amazon EC2 Spot Instances be used?", - "options": [ - "A company wants to move its main website to AWS from an on-premises web server.", - "A company has a number of application services whose Service Level Agreement (SLA) requires 99.999% uptime.", - "A company\u2019s heavily used legacy database is currently running on-premises.", - "A company has a number of infrequent, interruptible jobs that are currently using On-Demand Instances." - ], - "correct": "A company has a number of infrequent, interruptible jobs that are currently using On-Demand Instances." - }, - { - "question": "A customer is deploying a new application and needs to choose an AWS Region. Which of the following factors could influence the customer\u2019s decision? (Select TWO)", - "options": [ - "Reduced latency to users.", - "The application\u2019s presentation in the local language.", - "Data sovereignty compliance.", - "Cooling costs in hotter climates.", - "Proximity to the customer\u2019s office for on-site visits." - ], - "correct": "Reduced latency to users." - }, - { - "question": "Which disaster recovery scenario offers the lowest probability of down time?", - "options": [ - "Backup and restore.", - "Pilot light.", - "Warm standby.", - "Multi-site active-active." - ], - "correct": "Multi-site active-active." - }, - { - "question": "Which service\u2019s PRIMARY purpose is software version control?", - "options": [ - "Amazon CodeStar.", - "AWS Command Line Interface (AWS CLI).", - "Amazon Cognito.", - "AWS CodeCommit." - ], - "correct": "AWS CodeCommit." - }, - { - "question": "How can a customer increase security to AWS account logons? (Select TWO)", - "options": [ - "Configure AWS Certificate Manager", - "Enable Multi-Factor Authentication (MFA)", - "Use Amazon Cognito to manage access", - "Configure a strong password policy", - "Enable AWS Organizations" - ], - "correct": "Enable Multi-Factor Authentication (MFA)" - }, - { - "question": "Which of the following components of the AWS Global Infrastructure consists of one or more discrete data centers interconnected through low latency links?", - "options": [ - "Availability Zone", - "Edge location", - "Region", - "Private networking" - ], - "correct": "Availability Zone" - }, - { - "question": "One benefit of On-Demand Amazon Elastic Compute Cloud (Amazon EC2) pricing is:", - "options": [ - "The ability to bid for a lower hourly cost.", - "Paying a daily rate regardless of time used.", - "Paying only for time used.", - "Pre-paying for instances and paying a lower hourly rate." - ], - "correct": "Paying only for time used." - }, - { - "question": "What can assist in evaluating an application for migration to the cloud? (Select TWO)", - "options": [ - "AWS Trusted Advisor.", - "AWS Professional Services.", - "AWS Systems Manager.", - "AWS Partner Network (APN).", - "AWS Secrets Manager." - ], - "correct": "AWS Professional Services." - }, - { - "question": "Select TWO options the highlith Edge Locations main features:", - "options": [ - "Host Amazon EC2 instances closer to users.", - "Cache frequently accessed content close to users.", - "Refresh data changes daily.", - "Best suited for frequently changing data.", - "Improve user experience in geographically distributed environments." - ], - "correct": "Cache frequently accessed content close to users." - }, - { - "question": "Which of the following are valid ways for a customer to interact with AWS services? (Select TWO)", - "options": [ - "Command line interface.", - "On-premises.", - "Software Development Kits.", - "Software-as-a-service.", - "Hybrid." - ], - "correct": "Command line interface." - }, - { - "question": "What are advantages of AWS Cloud over on-premises servers (Select TWO)?", - "options": [ - "Scalability.", - "Direct control over hardware and infrastructure.", - "No upfront investments.", - "Dedicated resources potentially providing more consistent performance.", - "Upfront investment with more predictable long-term costs." - ], - "correct": "Scalability." - }, - { - "question": "A company is migrating an application that is running non-interruptible workloads for a three-year time frame. Which pricing construct would provide the MOST cost-effective solution?", - "options": [ - "Amazon EC2 Spot Instances.", - "Amazon EC2 Dedicated Instances.", - "Amazon EC2 On-Demand Instances.", - "Amazon EC2 Reserved Instances." - ], - "correct": "Amazon EC2 Reserved Instances." - }, - { - "question": "Which AWS service is used to track record, and audit configuration changes made to AWS resources?", - "options": [ - "AWS Shield.", - "AWS Config.", - "AWS IAM.", - "Amazon Inspector." - ], - "correct": "AWS Config." - } -] \ No newline at end of file