Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

AWS developer > 91-120 > Flashcards

91-120 Flashcards

1
Q

QUESTION 91
A user has created a blank EBS volume in the US-East-1 region. The user is unable to attach the volume to a running instance in the same region. What could be the possible reason for this?
A. The instance must be in a running state. It is required to stop the instance to attach volume
B. The AZ for the instance and volume are different
C. The instance is from an instance store backed AMI
D. The instance has enabled the volume attach protection

A

B. The AZ for the instance and volume are different

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

QUESTION 92
In DynamoDB, could you use 1AM to grant access to Amazon DynamoDB resources and API actions?
A. Yes
B. Depended to the type of access
C. In DynamoDB there is no need to grant access
D. No

A

A. Yes

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q 
QUESTION 93
A user is planning to host a mobile game on EC2 which sends notifications to active users on either high score or the addition of new features. The user should get this notification when he is online on his mobile device. Which of the below mentioned AWS services can help achieve this functionality?
A.	AWS Simple Notification Service.
B.	AWS Simple Queue Service.
C.	AWS Mobile Communication Service.
D.	AWS Simple Email Service.
A

A. AWS Simple Notification Service.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

QUESTION 94
An orgAMzation is setting up their website on AWS. The orgAMzation is working on various security measures to be performed on the AWS EC2 instances. Which of the below mentioned security mechAMsms will not help the orgAMzation to avoid future data leaks and identify security weaknesses?
A. Perform SQL injection for application testing.
B. Run penetration testing on AWS with prior approval from Amazon.
C. Perform a hardening test on the AWS instance.
D. Perform a Code Check for any memory leaks.

A

D. Perform a Code Check for any memory leaks.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

QUESTION 95
A root account owner is trying to setup an additional level of security for all his 1AM users. Which of the below mentioned options is a recommended solution for the account owner?
A. Enable access key and secret access key for all the 1AM users
B. Enable MFA for all 1AM users
C. Enable the password for all the 1AM users
D. Enable MFA for the root account

A

B. Enable MFA for all 1AM users

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q 
QUESTION 96
Regarding Amazon SQS, what happens if there is no activity against a queue for more than 30 consecutive days?
A.	Your account will be suspended
B.	The queue may be deleted
C.	Nothing
D.	The queue will be deleted
A

B. The queue may be deleted

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q 
QUESTION 97
Which of the below mentioned options is a must to have an element as a part of the 1AM policy?
A.	Condition
B.	ID
C.	Statement
D.	Version
A

C. Statement

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q 
QUESTION 98
Which of the below mentioned commands allows the user to share the AMI with his peers using the AWS EC2 CLI?
A.	ec2-share-image-public
B.	ec2-share-image-account
C.	ec2-share-image
D.	ec2-modify-image-attribute
A

D. ec2-modify-image-attribute

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

QUESTION 99
ExamKiller (with AWS account ID H1122223333) has created 50 1AM users for its orgAMzation’s employees. ExamKil|er wants to make the AWS console login URL for all 1AM users like: https://examkiHer.signin.aws.amazon.com/console/. How can this be configured?
A. The user needs to use Route 53 to map the examkiller domain and 1AM URL
B. Create an 1AM AWS account alias with the name examkiller
C. It is not possible to have a personalized 1AM login URL
D. Create an 1AM hosted zone Identity for the domain examkiller

A

B. Create an 1AM AWS account alias with the name examkiller

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

QUESTION 100
A user has created a new EBS volume from an existing snapshot. The user mounts the volume on the instance to which it is attached. Which of the below mentioned options is a required step before the user can mount the volume?
A. Run a cyclic check on the device for data consistency
B. Create the file system of the volume
C. Resize the volume as per the original snapshot size
D. No step is required. The user can directly mount the device

A

D. No step is required. The user can directly mount the device

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

QUESTION 101
A user is creating multiple 1AM users. What advice should be given to him to enhance the security?
A. Grant least prMleges to the indMdual user
B. Grant all higher prMleges to the group
C. Grant less prMleges for user, but higher prMleges for the group
D. Grant more prMleges to the user, but least prMleges to the group

A

A. Grant least prMleges to the indMdual user

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q 
QUESTION 102
In regards to Amazon SQS how many times will you receive each message?
A.	At least twice
B.	Exactly once
C.	As many times as you want
D.	At least once
A

D. At least once

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

QUESTION 103
A user has set an 1AM policy where it allows all requests if a request from IP 10.10.10.1/32. Another policy allows all the requests between 5 PM to 7 PM. What will happen when a user is requesting access from IP 10.10.10.1/32 at 6 PM?
A. 1AM will throw an error for policy conflict
B. It is not possible to set a policy based on the time or IP
C. It will deny access
D. It will allow access

A

D. It will allow access

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

QUESTION 104
A user is enabling logging on a particular bucket. Which of the below mentioned options may be best suitable to allow access to the log bucket?
A. Create an 1AM policy and allow log access
B. It is not possible to enable logging on the S3 bucket
C. Create an 1AM Role which has access to the log bucket
D. Provide ACL for the logging group

A

D. Provide ACL for the logging group

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q 
QUESTION 105
A user is running a Webserver on EC2. The user wants to receive the SMS when the EC2 instance utilization is above the threshold limit. Which AWS services should the user configure in this case?
A.	AWS CloudWatch + AWS SES.
B.	AWS CloudWatch + AWS SNS.
C.	AWS CloudWatch + AWS SQS.
D.	AWS EC2 + AWS Cloudwatch.
A

B. AWS CloudWatch + AWS SNS.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q 
QUESTION 106
A user has setup Multi AZ with the MS SQL RDS instance. Which of the below mentioned functionalities can be achieved by the user?
A.	High availability
B.	Scalability
C.	MS SQL does not support Multi AZ
D.	Disaster recovery
A

C. MS SQL does not support Multi AZ

17
Q

QUESTION 107
An orgAMzation is having an application which can start and stop an EC2 instance as per schedule. The orgAMzation needs the MAC address of the instance to be registered with its software. The instance is launched in EC2-CLASSIC. How can the orgAMzation update the MAC registration every time an instance is booted?
A. The instance MAC address never changes. Thus, it is not required to register the MAC address every time.
B. The orgAMzation should write a boot strapping script which will get the MAC address from the instance metadata and use that script to register with the application.
C. AWS never provides a MAC address to an instance; instead the instance ID is used for identifying the instance for any software registration.
D. The orgAMzation should provide a MAC address as a part of the user data. Thus, whenever the instance is booted the script assigns the fixed MAC address to that instance.

A

B. The orgAMzation should write a boot strapping script which will get the MAC address from the instance metadata and use that script to register with the application.

18
Q 
QUESTION 108
A user is trying to share a video file with all his friends. Which of the below mentioned AWS services will be cheapest and easy to use?
A.	AWS S3
B.	AWS EC2
C.	AWS RRS
D.	AWS Glacier
A

C. AWS RRS

19
Q 
QUESTION 109
A user has configured ELB. Which of the below mentioned protocols the user can configure for ELB health checks while setting up ELB?
A.	All of the options
B.	TCP
C.	HTTPS
D.	SSL
A

A. All of the options

20
Q

QUESTION 110
Is it possible to create an S3 bucket accessible only by a certain 1AM user, using policies in a C|oudFormation template?
A. No, you can only create the S3 bucket but not the 1AM user.
B. S3 is not supported by CloudFormation.
C. Yes, all these resources can be created using a CloudFormation template
D. No, in the same template you can only create the S3 bucket and the realtive policy.

A

C. Yes, all these resources can be created using a CloudFormation template

21
Q

QUESTION 111
A user has created an EBS instance in the US-East-la AZ. The user has a volume of 30 GB in the US-East-1 b zone. How can the user attach the volume to an instance?
A. Since both the volume and the instance are in the same region, the user can attach the volume
B. Use the volume migrate function to move the volume from one AZ to another and attach to the instance
C. Take a snapshot of the volume. Create a new volume in the USEast-la and attach that to the instance
D. Use the volume replicate function to create a new volume in the US-East-la and attach that to the volume

A

C. Take a snapshot of the volume. Create a new volume in the USEast-la and attach that to the instance

22
Q

QUESTION 112
A user is part of a group which has a policy allowing him just read only access to EC2. The user is part of another group which has full access to EC2. What happens when the user tries to launch an instance?
A. It will allow the user to launch the instance
B. It will fail since the user has just read only access
C. It will allow or deny based on the group under which the user has logged into EC2
D. It will not allow the user to add to the conflicting groups

A

A. It will allow the user to launch the instance

23
Q

QUESTION 113
A user has launched an RDS instance. The user has created 3 databases on the same server. What can the maximum size be for each database?
A. The size of each DB cannot be more than 3 TB
B. It is not possible to have more than one DB on a single instance
C. The total instance storage size cannot be more than 3 TB
D. The size of each DB cannot be more than 1 TB

A

C. The total instance storage size cannot be more than 3 TB

24
Q

QUESTION 114
A user has created an RDS instance with MySQL. The user is using the HeidiSQL client to connect with the RDS DB. The client is unable to connect to DB from his home machine. What is a possible reason for the failure?
A. The user has to open port 80 in the RDS security group to connect with RDS DNS
B. The security group is not configured to allow a request from the user’s IP on port 3306
C. You can never connect to RDS from your desktop
D. The user has to open port 22 in the RDS security group to connect with RDS DNS

A

B. The security group is not configured to allow a request from the user’s IP on port 3306

25
Q

QUESTION 115
A user is creating a new EBS volume from an existing snapshot. The snapshot size shows 10 GB. Can the user create a volume of 30 GB from that snapshot?
A. Provided the original volume has set the change size attribute to true
B. Yes
C. Provided the snapshot has the modify size attribute set as true
D. No

A

B. Yes

26
Q

QUESTION 116
An orgAMzation has 10000 employees. The orgAMzation wants to give restricted AWS access to each employee. How can the orgAMzation achieve this?
A. Create an 1AM user for each employee and make them a part of the group
B. It is not recommended to support 10000 users with 1AM
C. Use STS and create the users’ run time
D. Use Identity federation with SSO

A

D. Use Identity federation with SSO

27
Q

QUESTION 117
Can a user associate and use his own DNS with ELB instead ofthe DNS provided by AWS ELB?
A. Yes, by creating a CNAME with the existing domain name provider
B. Yes, by configuring DNS in the AWS Console
C. No
D. Yes, only through Route 53 by mapping ELB and DNS

A

A. Yes, by creating a CNAME with the existing domain name provider

28
Q 
QUESTION 118
can be used to bootstrap both the Chef Server and Chef Client software on your EC2 instances.
A.	AWS CloudFormation
B.	AWS Elastic Beanstalk
C.	AWS OpsWorks
D.	Amazon Glacier
A

A. AWS CloudFormation

29
Q

QUESTION 119
In relation to Amazon Simple Workflow Service (Amazon SWF),what is an “activity Worker”?
A. An individual task undertaken by a workflow
B. The automation of a business process
C. A piece of software that implements tasks
D. All answers listed are correct

A

C. A piece of software that implements tasks

30
Q 
QUESTION 120
A user has launched a MySQL RDS. The user wants to plan for the DR and automate the snapshot. Which of the below mentioned functionality offers this option with RDS?
A.	Copy snapshot
B.	Automated synchronization
C.	Snapshot
D.	Automated backup
A

D. Automated backup

AWS developer (5 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions