Brainscape's Knowledge GenomeTM


Top Flashcards (Certified)
All Flashcards

AWS_Cloud Cert > 201-299 > Flashcards

201-299 Flashcards

1
Q

Users are reporting latency when connecting to a website with a global customer base.
Which AWS service will improve the customer experience by reducing latency?

  • Amazon CloudFront
  • AWS Direct Connect
  • Amazon EC2 Auto Scaling
  • AWS Transit Gateway
A

Amazon CloudFront

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What does the AWS Simple Monthly Calculator do?

  • Compares on-premises costs to colocation environments
  • Estimates monthly billing based on projected usage
  • Estimates power consumption at existing data centers
  • Estimates CPU utilization
A

Estimates monthly billing based on projected usage

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

A company has different AWS accounts for production and development resources
Which AWS service provides billing for all AWS accounts consolidated into a single payment method?

  • Amazon Connect
  • Cost Explorer
  • AWS Trusted Advisor
  • AWS Organizations
A

AWS Organizations

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

When a company provisions web servers in multiple AWS Regions, what is being increased?

  • Coupling
  • Availability
  • Security
  • Durability
A

Availability

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Which AWS service is used to provide encryption for Amazon EBS?

  • AWS Certificate Manager
  • AWS Systems Manager
  • AWS KMS
  • AWS Config
A

AWS KMS

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

A Cloud Practitioner needs a consistent and dedicated connection between AWS resources and an on premises system
Which AWS service can fulfill this requirement?

AWS Direct Connect
AWS VPN

Amazon Connect
AWS Data Pipeline

A

Amazon Connect

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Which Amazon S3 storage class is optimized to provide access to data with lower resiliency requirements, but rapid access when needed, such as duplicate backups?

  • Amazon S3 Standard
  • Amazon S3 Glacier Deep Archive
  • Amazon S3 One Zone Infrequent Access
  • Amazon S3 Glacier
A

Amazon S3 Standard

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

As part of the AWS shared responsibility model, which of the following operational controls do users fully inherit from AWS?

  • Security management of data center
  • Patch management
  • Configuration management
  • User and access management
A

User and access management

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

How can a company isolate the costs of production and non-production workloads on AWS?

  • Create identity and Access Management (IAM) roles for production and non-production workloads
  • Use different accounts for production and non-production expenses.
  • Use Amazon EC2 for non-production workloads and other services for production workloads.
  • Use Amazon CloudWatch to monitor the use of services
A

Use different accounts for production and non-production expenses.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

A company is releasing a business-critical application

Before the release, the company needs strategic planning assistance from AWS. During the release, it needs infrastructure event management and real-time Support

How can these requirements be met?

  • Access AWS Trusted Advisor
  • Contact the AWS Partner Network (APN).
  • Sign up for AWS Enterprise Support
  • Contact AWS Professional Services
A

Contact AWS Professional Services

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Which components are required to build a successful site-to-site VPN connection on AWS?
(Select TWO.)

  • Internet gateway
  • NAT gateway
  • Customer gateway
  • Transit gateway
  • Virtual private gateway
A

Customer gateway

Virtual private gateway

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Which AWS services can be used to provide network connectivity between an on-premises network and a VPC?

  • Amazon Route 53
  • AWS Direct Connect
  • AWS Data Pipeline AWS VPN
  • Amazon Connect
A

AWS Direct Connect

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

An application runs on multiple Amazon EC2 instances that access a shared file system simultaneously
Which AWS storage service should be used?

  • Amazon EBS
  • Amazon EFS
  • Amazon S3
  • AWS Artifact
A

Amazon EFS

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Which AWS services can be used to move data from on-premises data centers to AWS? (Select TWO.)

  • AWS Snowball
  • AWS Lambda
  • Amazon ElastiCache
  • AWS Database Migration Service (AWS DMS)
  • Amazon API Gateway
A

AWS Snowball

Amazon ElastiCache

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

A company is running an eCommerce application hosted in Europe. To decrease latency for users who access the website from other parts of the world, the company would like to cache frequently accessed static content closer to the users
Which AWS service will support these requirements?

  • Amazon ElastiCache
  • Amazon CloudFront
  • Amazon Elastic File System (Amazon EFS)
  • Amazon Elastic Block Store (Amazon EBS)
A

Amazon Elastic File System (Amazon EFS)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

A company’s application running on Amazon EC2 is designed to use an Auto Scaling group to dynamically add or remove instances as demand increases or decreases. This is an example of which AWS Cloud architectural principle?

  1. Loose coupling
  2. Elasticity
  3. Design for failure
  4. Parallelism
A

Elasticity

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

The AWS Trusted Advisor checks include recommendations regarding which of the following?

(Select TWO.)

  1. Information on Amazon S3 bucket permissions
  2. AWS service outages
  3. Multi-factor authentication enabled on the AWS account root user
  4. Available software patches
  5. Number of users in the account
A

Information on Amazon S3 bucket permissions

Available software patches

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

What is the total amount of storage offered by Amazon S3

  • 100 MB
  • 5 GB OC
  • 5 TB
  • Unlimited
A

5 TB

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
19
Q

Which AWS service provides on-demand downloads of AWS security and compliance documentation?

  • AWS Directory Service
  • AWS Artifact
  • AWS Trusted Advisor
  • Amazon Inspector
A

AWS Artifact

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
20
Q

Which of the following are benefits of using AWS Trusted Advisor?

  • Providing high-performance container orchestration
  • Creating and rotating encryption keys
  • Detecting underutilized resources to save costs
  • Improving security by proactively monitoring the AWS environment

-Implementing enforced tagging across AWS resources

A

Detecting underutilized resources to save costs

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
21
Q

After migrating a workload to AWS, which associated costs must a user still manage?

  • 364 of 65 Flag for Review
  • Staff to manage the hardware assets
  • Physical access control
  • Software licenses
  • Power and cooling
A

Staff to manage the hardware assets

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
22
Q

When is it beneficial for a company to use a Spot Instance?

  • When there is flexibility in when an application needs to run.
  • When there are mission-critical workloads.
  • When dedicated capacity is needed.
  • When an instance should not be stopped.
A

When there is flexibility in when an application needs to run.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
23
Q

Which security service automatically recognizes and classifies sensitive data or intellectual property on AWS?

  • Amazon GuardDuty
  • Amazon Macie
  • Amazon Inspector
  • AWS Shield
A

Amazon Inspector

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
24
Q

Which AWS service provides inbound and outbound network ACLs to harden external connectivity to Amazon EC2?

  • AWS IAM
  • Amazon Connect
  • Amazon VPC
  • Amazon API Gateway
A

Amazon VPC

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
25
A company has a **500 TB image** **repository** that needs to be transported to AWS for processing. Which AWS service can import this data MOST cost-effectively? - AWS Snowball - AWS Direct Connect - AWS VPN - Amazon S3
AWS Snowball
26
Which AWS services provide a user with **connectivity** between the AWS Cloud and on-premises resources? **(Select TWO)** - AWS VPN - Amazon Connect - Amazon Cognito - AWS Direct Connect - AWS Managed Services
AWS VPN AWS Direct Connect
27
Under the AWS shared responsibility model, **AWS is responsible** for what combination of the following? **(Select TWO)** - Configuring network ACLS - Managing physical access to AWS data centers - Setting and maintaining Amazon S3 access permissions. - Updating Amazon EC2 security groups - Maintaining the hardware that constitutes the cloud
Managing **physical access** to AWS data centers **Maintaining the hardware** that constitutes the cloud
28
What is an Availability Zone in AWS? - One or more physical data centers - A completely isolated geographic location - One or more edge locations based around the world - A data center location with a single source of power and networking
One or more physical data centers
29
How can an AWS user with an AWS **Basic Support** plan obtain technical assistance from AWS? - AWS Senior Support Engineers - AWSTechnical Account Managers - AWS Trusted Advisor - AWS Discussion Forums
AWS Trusted Advisor
30
Which AWS service or feature provides an **additional layer of protection** for user name and password authentication to the AWS Management Console? - Amazon Cloud Directory - AWS KMS AWS Multi-Factor - Authentication (AWS MFA) - Amazon Cognito
Authentication (AWS MFA)
31
Which of the following are **benefits** of the AWS Cloud? **(Choose two.)** - Unlimited uptime - Elasticity - Agility - Colocation - Capital expenses
Elasticity Agility
32
Which AWS service helps **identify malicious** or **unauthorized** activities in AWS accounts and workloads? - Amazon Rekognition - AWS Trusted Advisor - Amazon GuardDuty - Amazon CloudWatch
Amazon GuardDuty
33
Under the shared responsibility model, which of the following tasks are the **responsibility of the customer**? **(Choose two.)** - Maintaining the underlying Amazon EC2 hardware. - Managing the VPC network access control lists. - Encrypting data in transit and at rest. - Replacing failed hard disk drives. - Deploying hardware in different Availability Zones
Managing the VPC network access control lists. Encrypting data in transit and at rest
34
When comparing AWS Cloud with on-premises Total Cost of Ownership, which expenses must be considered? **(Choose two.)** - Software development - Projectmanagement - Storage hardware - Physical servers - Antivirus software license
Storage hardware Physical servers
35
The ability to horizontally **scale** Amazon EC2 instances **based on demand** is an example of which concept in the AWS Cloud value proposition? - Economy of scale - Elasticity - High availability - Agility
Economy of scale
36
Which of the following **benefits** does the AWS **Compliance program** provide **to AWS customers**? **(Choose two.)** - It verifies that hosted workloads are automatically compliant with the controls of supported compliance frameworks. - AWS is responsible for the maintenance of common compliance framework documentation. - It assures customers that AWS is maintaining physical security and data protection. - It ensures the use of compliance frameworks that are being used by other cloud providers. - It will adopt new compliance frameworks as they become relevant to customer workloads
It **verifies** that hosted **workloads** are automatically **compliant** with the controls of supported compliance frameworks. **AWS is responsible** for the maintenance of common compliance framework documentation
37
A company must ensure that its endpoint for a database instance remains the same after a single Availability Zone service interruption The application needs to resume database operations without the need for manual administrative intervention How can these requirements be met? -Use multiple Amazon Route 53 routes to the standby database instance endpoint hosted on AWS Storage Gateway -Configure Amazon RDS Multi-Availability Zone deployments with automatic failover to the standby -Add multiple Application Load Balancers and deploy the database instance with AWS ElasticBeanstalk. -Deploy a single Network Load Balancer to distribute incoming traffic across multiple Amazon CloudFront origins
Configure Amazon RDS Multi-Availability Zone deployments with automatic failover to the standby
38
Which AWS IAM feature is used to associate a set of permissions with multiple users? Multi-factor authentication Groups Password policies Access keys
Groups
39
A user is planning to migrate an application workload to the AWS Cloud Which control becomes the responsibility of AWS once the migration is complete? Patching the guest operating system Maintaining physical and environmental controls Protecting communications and maintaining zone security Patching specific applications
Maintaining physical and environmental controls
40
Which of the following describes the relationships among AWS Regions, Availability Zones, and edge locations? **(Select TWO)** There are more AWS Regions than Availability Zones There are more edge locations than AWS Regions An edge location is an Availability Zone There are more AWS Regions than edge locations There are more availability Zones than AWS Regions
There are **more edge locations** than AWS Regions There are **more** availability **Zones** than AWS Regions
41
Which AWS service offers persistent storage for a file system? Amazon S3 Amazon EC2 instance store Amazon Elastic Block Store (Amazon EBS) Amazon ElastiCache
Amazon Elastic Block Store (Amazon EBS)
42
Within the AWS Shared responsibility model, who is responsible for **security and compliance**? The customer is responsible AWS is responsible AWS and the customer share responsibility AWS shares responsibility with the relevant governing body
**AWS and** the **customer** share responsibility
43
which AWS tools automatically forecast future AWS costs? AWS Support Center AWS Total Cost of Ownership (TCO) Calculator AWS Simple Monthly Calculator Cost Explorer
AWS Simple Monthly Calculator
44
Which AWS services can be used as infrastructure automation tools? **(Select TWO.)** AWS CloudFormation Amazon CloudFront AWS Batch AWS OpsWorks Amazon QuickSight
AWS CloudFormation AWS OpsWorks
45
Which AWS service **allows users to download security** and compliance reports about the AWS infrastructure on demand? AmazonGuardDuty AWS Security Hub AWS Artifact AWS Shield
AWS Security Hub
46
Which method helps to optimize costs for users moving to the AWS Cloud? Paying only for what is used Purchasing hardware before it is needed Manually provisioning cloud resources Purchasing for the maximum possible load
Paying only for what is used
47
When building a cloud Total Cost of Ownership (TCO) model, which cost elements should be considered for **workloads** running on AWS? **(Select Two.)** Compute costs Facilities costs Storage costs Data transfer costs Network infrastructure costs Hardware lifecycle costs
Compute costs Network infrastructure costs
48
Which of the following can a customer use to enable single sign-on (SSO) to the AWS Console? Amazon Connect AWS Directory Service Amazon Pinpoint Amazon Rekognition
AWS Directory Service
49
What is the purpose of the AWS Storage Gateway? it ensures on-premises data storage is 99.999999999% durable. It transports petabytes of data to and from AWS. It connects to multiple Amazon EC2 instances. it connects on-premises data storage to the AWS Cloud
it connects on-premises data storage to the AWS Cloud
50
What are the benefits of using the AWS Cloud for companies with customers in many countries around the world? **(Select TWO.)** - Companies can deploy applications in multiple AWS Regions to reduce latency. - Amazon Translate automatically translates third-party website interfaces into multiple languages - Amazon CloudFront has multiple edge locations around the world to reduce latency - Amazon Comprehend allows users to build applications that can respond to user requests in many languages. - Elastic Load Balancing can distribute application web traffic to multiple AWS Regions around the world, which reduces latency
Companies can deploy applications in multiple AWS Regions to reduce latency. Elastic Load Balancing can distribute application web traffic to multiple AWS Regions around the world, which reduces latency
51
A company operating in the AWS Cloud requires **separate invoices** for specific environments, such as development, testing, and production How can this be achieved? - Use multiple AWS accounts. - Use resource tagging - Use multiple VPCs. - Use Cost Explorer
Use resource tagging
52
A company is planning to launch a new steady-state workload on AWS that must be accessible 24 hours a day, 7 days a week. What is the MOST cost-effective Amazon EC2 pricing option? - On-Demand Instances - Spot Instances - Reserved Instances - Dedicated Hosts
On-Demand Instances
53
Which AWS tool is used to **compare the cost** of running an application on-premises to running the application in the AWS Cloud? A) AWS Trusted Advisor B) AWS Simple Monthly Calculator C) AWS Total Cost of Ownership (TCO)Calculator D) Cost Explorer
**AWS Total Cost of Ownership (TCO)Calculator**
54
Which of the following services provides on-demand access to AWS **compliance reports**? - AWS IAM - AWS Artifact - Amazon GuardDuty -AWS KMS
AWS Artifact
55
To use the AWS CLI, **users** are required **to generate**: - a password policy. - an access/secret key. - a managed policy. - an API key
an access/secret key.
56
Which service is an AWS-managed Hadoop framework that makes it easy, fast, and cost-effective to **process large amounts** of data across dynamically scalable Amazon EC2 instances? - Amazon EMR - Amazon EC2 - AWS Elastic Beanstalk - Amazon Redshift
Amazon EMR
57
How does AWS charge for AWS **Lambda** **usage** once the free tier has been exceeded? (**Select TWO)** - By the time it takes for the Lambda function to execute. - By the number of versions of a specific Lambda function. - By the number of requests made for a given Lambda function. - By the programming language that is used for the Lambda function - By the total number of Lambda functions in an AWS account
By the time it takes for the Lambda function to **execute**. By the number of **requests** made for a given **Lambda function**
58
Which of the following automatically distributes application **traffic across multiple targets**, such as Amazon EC2 instances or containers? - AWS Application Discovery Service - AWS Resource Groups - AWS Auto Scaling - Elastic LoadBalancing
Elastic LoadBalancing
59
Which AWS service or feature **allows** the **user** to manage **cross-region application** traffic? - Amazon AppStream 2.0 - Amazon VPC - Elastic Load Balancer - AmazonRoute 53
Amazon VPC
60
A company has multiple AWS accounts within AWS Organizations and wants to apply the Amazon EC2 Reserved instances benefit to a single account only Which action should be taken? ## Footnote - Purchase the Reserved Instances from master payer account and turn off Reserved Instance sharing. - Enable billing alerts in the AWS Billing and Cost Management console - Purchase the Reserved instances in individual linked accounts and turn off Reserved Instance sharing from the payer level - Enable Reserved Instance sharing in the AWS Billing and Cost Management console
Purchase the Reserved instances **in individual linked accounts** and **turn off Reserved** Instance sharing from the payer level
61
Which of the following acts as a virtual firewall at the Amazon EC2 instance level to **control traffic** for one or **more** instances? - Access keys - Virtual private gateways - Security groups - Access Control Lists (ACL)
Security groups
62
Which of the following are benefits of AWS Global Accelerator? **(SelectTWO)** - Reduced cost to run services on AWS - Improved availability of applications deployed on AWS - Higher durability of data stored on AWS - Decreased latency to reach applications deployed on AWS -Higher security of data stored on AWS
**Improved availability** of applications deployed on AWS **Decreased latency** to reach applications deployed on AWS
63
An ecommerce company **anticipates** a huge **increase** in **web traffic** for two very popular upcoming shopping holidays Which AWS service or feature can be configured to dynamically adjust resources to meet this change in demand? - AWS Cloud Trail - Amazon EC2 Auto Scaling - Amazon Forecast - AWS Config
Amazon EC2 Auto Scaling
64
What does the Amazon S3 Intelligent-Tiering storage class offer? -Paymentflexibility by reserving storage capacity -Long-term retention of data by copying the data to an encrypted Amazon Elastic Block Store (Amazon EBS) volume -Automatic cost savings by moving objects between tiers based on access pattern changes -Secure, durable, and lowest cost storage for data archival
**Automatic cost savings** by moving objects between tiers based on access pattern changes
65
Which of the following can be used a **second factor** within the AWS Management Console for AWS Multi-Factor Authentication (AWS MFA)? -AWS IAM password - AWS Certificate Manager certificate - U2F security key token - Access key or secret key
**U2F** security key token
66
AWS CloudFormation is designed to help the user: - model and provision resources - update application code, - set up data lakes - create reports for billing
**model** and provision resources
67
The **pay-as-you-go pricing** model for AWS services: - reduces capital expenditures. - requires payment up front for AWS services - is relevant only for Amazon EC2, Amazon S3, and Amazon RDS. - reduces operational expenditures.
**reduces operational** expenditures.
68
Which AWS dashboard displays relevant and timely information to **help users** manage events in progress, and provides **proactive notifications** to help plan for scheduled activities? - AWS Service Health Dashboard - AWS Personal Health Dashboard - AWS Trusted Advisor dashboard - Amazon CloudWatch dashboard
AWS **Personal** Health Dashboard
69
Amazon Route 53 enables users to: - encrypt data in transit. - register DNS domain names - generate and manage SSL certificates OD. - establish a dedicated network connection to AWS
register **DNS** domain names
70
Which AWS **tools** or services can be used to list all AWS **Lambda functions** running in an account? **(Select TWO)** - AWS CLI - AWS CloudFormation - AWS CloudTrail - Amazon Cloud Directory
AWS CLI AWS CloudTrail
71
Which AWS service can run a managed **PostgreSQL** database that provides online transaction processing (OLTP)? - Amazon DynamoDB - Amazon Athena - Amazon RDS - Amazon EMR
Amazon RDS
72
What are the **multiple**, isolated locations **within** an AWS **Region** that are connected by low-latency networks called? - AWS Direct Connects - Amazon VPCs - Edge locations - Availability Zones
Availability Zones
73
A company wants to **expand** its **content delivery** network infrastructure Which AWS service should be used? - Amazon S3 - Amazon CloudFront - AWS Global Accelerator - Amazon Route 53
Amazon **CloudFront**
74
A Cloud Practitioner must determine if any security groups in an AW account have been provisioned to allow unrestricted access for specific ports What is the SIMPLEST way to do this? - Review the inbound rules for each security group in the Amazon EC2 management console to check for port 0.0.0.0/0. - Run AWS Trusted Advisor and review the findings - Open the AWS IAM console and check the inbound rule filters for open access - In AWS Config, create a custom rule that invokes an AWS Lambda function to review firewall rules for inbound access
**Run** AWS **Trusted Advisor** and review the findings
75
A company is planning to launch an **eCommerce** site in a single AWS Region to a worldwide user base Which AWS services will allow the company to reach users and provide **low latency** and **high transfer speeds**? **(Select TWO)** - Application Load Balancer - AWS Global Accelerator - AWS Direct Connect - Amazon CloudFront - AWS Lambda
Amazon CloudFront AWS Lambda
76
A company must **store** critical business data in Amazon **S3** with a backup to another AWS Region How can this be achieved? - Use an Amazon CloudFront Content Delivery Network (CDN) to cache data globally - Set up Amazon S3 cross-region replication to another AWS Region - Configure the AWS Backup service to back up the data to another AWS Region - Take Amazon S3 bucket snapshots and copy that data to another AWS Region
**Set up** Amazon **S3** cross-region replication to another AWS Region
77
Which service can be used to monitor and receive **alerts** for AWS account root **user** AWS Management **Console** sign-in events? - Amazon CloudWatch - AWS Config - AWS Trusted Advisor - AWS IAM
Amazon **CloudWatch**
78
Which AWS service handles the deployment **details** of **capacity provisioning**, **load** balancing, Auto **Scaling**, and application health monitoring? AWS Config AWS Elastic Beanstalk Amazon Route 53 Amazon CloudFront
AWS Elastic Beanstalk
79
What is the **MOST cost-effective** instance type for an application with a steady, consistent workload that is hosted on an Amazon EC2 instance, which needs to operate for at **least one year**? - Spot Instances - Reserved Instances - On-Demand Instances - Dedicated Host
Reserved Instances
80
Which AWS service **helps users** meet **contractual** and regulatory compliance requirements for data security by using dedicated **hardware appliances** within the AWS Cloud? - AWS SecretsManager - AWS CloudHSM - AWS Key Management Service (AWS KMS), - AWS Directory Service
AWS **CloudHSM**
81
IT systems should be designed to reduce interdependencies, so that a change or failure in one component **does not cascade** to other components This is an example of which principle of cloud architecture design? - ScalabilityAWSCLOUD PRACTITIONER DUMPS - Loose coupling - Automation - Automatic scaling
**Loose coupling**
82
Which scenarios represent the **concept of elasticity** on AWS? **(Choose two.)** - Scaling the number of Amazon EC2 instances based on traffic. - Resizing Amazon RDS instances as business needs change. - Automatically directing traffic to less-utilized Amazon EC2 instances. - Using AWS compliance documents to accelerate the compliance process. - Having the ability to create and govern environments using code.
**Scaling** the number of Amazon EC2 **instances** based on traffic. **Resizing** Amazon RDS **instances** as business needs change.
83
Which AWS service or feature can be used to **monitor CPU usage**? - AWS CloudTrail - VPC Flow Logs - Amazon CloudWatch - AWS Config
Amazon CloudWatch
84
Where can users **find** a **catalog** of AWS-recognized **providers** of third-party security solutions? - AWS Service Catalog - AWS Marketplace - AWS Quick Start - AWS CodeDeploy
AWS Service Catalog
85
Which of the following allows an application **running on** an Amazon **EC2** instance to securely **write data** to an Amazon S3 bucket without using long term credentials? - Amazon Cognito - AWS Shield - AWS IAM role - AWS IAM user access key
AWS **IAM** role
86
What should users do if they want to install an application in geographically **isolated locations**? - Install the application using multiple internet gateways. - Deploy the application to an Amazon VPC. - Deploy the application to multiple AWS Regions - Configure the application using multiple NAT gateways
Deploy the application to **multiple** AWS **Regions**
87
Which AWS service makes it easy to create and **manage** AWS **users** and groups, and provide them with **secure access** to AWS **resources** at no charge? - AWS Direct Connect - Amazon Connect - AWS Identity and Access Management (IAM) - AWS Firewall Manager
AWS Identity and Access Management (**IAM**)
88
Where can users **find** a **catalog** of AWS-recognized **providers** of **third-party** security solutions? - AWS Service Catalog - AWS Marketplace - AWS Quick Start OD - AWS CodeDeploy
AWS Service Catalog
89
What is a characteristic of Amazon **S3 cross-region** replication? - Both source and destination S3 buckets must have versioning disabled - The source and destination S3 buckets cannot be in different AWS Regions - S3 buckets configured for cross-region replication can be owned by a single AWS account or by different accounts - The source S3 bucket owner must have the source and destination AWS Regions disabled for their account
S3 buckets configured for **cross-region** replication can be owned by a **single AWS account** or by different accounts
90
A company wants to integrate conversational **natural language** chatbots into its existing application using voice and **text**. Which managed AWS service can be used for this use case? - Amazon Lex - Amazon Polly - Amazon Textract - Amazon Comprehend
Amazon Textract
91
A user needs to launch a workload in multiple AWS environments. **Each copy** of the workload must have the **same configuration** What is the MOST efficient way to accomplish this task? - Launch the resources using the AWS Management Console - Use AWS CloudFormation to launch a stack. - Execute a custom PowerShell script to launch the workloads. - Use AWS OpsWorks to provision the workloads.
Use AWS **OpsWorks** to provision the workloads.
92
A company wants to **try** a **third-party** e-commerce solution before deciding to use it long term Which AWS Service or tool will support this effort? - AWS Marketplace - AWS Partner Network (APN) - AWS Managed Services - AWS Service Catalog
**AWS Marketplace**
93
A company with a Developer-level AWS Support plan provisioned an Amazon RDS database and cannot connect to it. Who should the developer contact for this level of support? - AWS Support using a support case - AWS Professional Services - AWS Technical Account Manager AWS consulting partners
AWS Support using a support case
94
Which AWS service provides a quick and automated way to create and **manage** AWS **accounts**? - AWS QuickSight - Amazon Lightsail - AWS Organizations - Amazon Connect
AWS **Organizations**
95
Why is it **beneficial** to use **Elastic Load Balancers** with applications? They allow for the conversion from Application Load Balancers toClassic Load Balancers. - They are capable of handling constant changes in network traffic patterns. - They automatically adjust capacity - They are provided at no charge to
They are **capable** of handling **constant changes** in network traffic patterns
96
What is the purpose of a policy in AWS Identity Access Management (IAM)? To define the run schedule of an Amazon EC2 instance To assign permissions to a role, group, or user To manage ports within a VPN To manage the access keys for an IAM user
To assign permissions to a role, group, or user
97
Which AWS Support plan offers access to **self-paced labs**? Business Support Enterprise Support Basic Support Developer Support
**Enterprise** Support
98
A company needs an Amazon S3 bucket that **cannot** have any **public** objects due to compliance requirements How can this be accomplished? Enable S3 Block Public Access from the AWS Management Console Hold a team meeting to discuss the importance of only uploading private S3 objects Require all S3 objects to be manually approved before uploading Create a service to monitor all S3 uploads and remove any public uploads
Enable **S3 Block** Public Access from the AWS Management Console
99
Under the AWS **shared responsibility** model, which of the following is a **customer** **responsibility**? - Installing security patches for the Xen and KVM hypervisors - Installing operating system patches for Amazon DynamoDB - Installing operating system security patches for Amazon EC2 database - instances Installing operating system security patches for Amazon RDS database instances
Installing **operating system** security **patches** for Amazon EC2 database

AWS_Cloud Cert (4 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2025 Bold Learning Solutions. Terms and Conditions