Aireddy Questions

Question 1

How many cloudformation stacks can a single cloudformation template create?

Answer 1

unlimited

Question 2

8.7 hours downtime per year is

Answer 2

99.9% uptime

Question 3

5.26 minutes downtime per year is

Answer 3

99.999% uptime

Question 4

What is more expensive and complicated, high availability or fault tolerance?

Question 5

The effect of an IAM statement is to either ___ or ___?

Answer 5

ALLOW or DENY

Question 6

What type of IAM policy grants access and is assigned on each account individually?

Answer 6

Inline policy

Question 7

What type of IAM policy is applied to all users at once?

Answer 7

managed policy

Question 8

What is the max amount of IAM users per account?

Answer 8

5000

Question 9

An IAM user can be a member of how many groups?

Answer 9

10

Question 10

TRUE OR FALSE: GROUPS ARE NOT A TRUE IDENTITY THEY CAN’T BE REFERENCED AS A PRINCIPAL IN A POLICY

Answer 10

TRUE

Question 11

____ limit what the account, including root can do inside that account. They don’t grant permissions themselves, just act as a barrier.

Answer 11

SCP’s

Question 12

CloudTrail is enabled by default to retain for ___ days without cost or the need of S3?

Answer 12

90 days

Question 13

Is CloudTrail real time?

Answer 13

No

Question 14

in S3, use a ____ policy when you want to manage permissions in one place (IAM) and have access to the accounts accessing the bucket

Answer 14

Identity Policy

Question 15

in S3, use a _____ policy if you need to grant anonymous or cross-account access to the bucket

Answer 15

bucket (or resource) policy

Question 16

Question concerning web hosting and providing a maintenance or status page out of band

Answer 16

Use R53 and a different S3 bucket

Question 17

EBS volumes are created in the ___ and isolated to the __ they were created in

Answer 17

AZ and isolated

Question 18

EBS volumes are resilient to an AZ failure?

Answer 18

No

Question 19

Can you create a presigned URL for an object you have do not have access too?

Answer 19

Yes

Question 20

If use case mentions Legacy software licensed using a mac address, you can:

Answer 20

associate the mac address to a secondary ENI

Question 21

What is the most performant EC2 Placement Group?

Answer 21

Cluster

Question 22

What type of placement group Provides the highest level of availability and resilience?

Answer 22

Spread

Question 23

Are spread placement groups supported for dedicated hosts?

Answer 23

No

Question 24

What supports EC2, EKS, Lambda, HTTPS, HTTP/2 and websockets, ALB or ELB?

Answer 24

ALB

Question 25

What AWS service automatically discover, classify, and protect your sensitive data?

Answer 25

Macie

Question 26

What does SWF stand for?

Answer 26

Simple Workflow Service

Question 27

SCPs do not affect any _______ role. these type of roles enable other AWS services to integrate with AWS Organizations and can’t be restricted by SCPs.

Answer 27

service-linked

Question 28

Is RedShift OLTP or OLAP based DB?

Answer 28

OLAP

Question 29

What is a petabyte scale data warehouse service?

Answer 29

RedShift

Question 30

True/False: RedShift is serverless

Answer 30

False

Question 31

EBS volume type for infrequent access?

Answer 31

Cold HDD (sc1)

Question 32

EBS volume type that provides the highest performance SSD volume for mission-critical low-latency or high-throughput workloads?

Answer 32

Provisioned IOPS (io1)

Question 33

EBS volume type that provides low-cost magnetic storage that defines performance in terms of throughput rather than IOPS.

Answer 33

Throughput Optimized HDD ( st1 )

Question 34

________ is a natural language processing (NLP) service that uses machine learning to find insights and relationships in text.

Answer 34

Amazon Comprehend

Question 35

______ is a service for building conversational interfaces using voice and text

Answer 35

Amazon Lex

Question 36

Alexa is powered by

Answer 36

Lex

Question 37

________ is a service that turns text into lifelike speech, enabling you to create applications that talk and build entirely new categories of speech-enabled products.

Answer 37

Amazon Polly

Question 38

What allows you to Quickly build custom machine learning models to detect objects and scenes unique to your business?

Answer 38

Rekognition

Question 39

______ provides high-quality and affordable speech-to-text transcription for a wide range of use cases.

Answer 39

Amazon Transcribe

Question 40

______ users are users (or applications) who do not have AWS accounts.

Answer 40

Federated

Question 41

Does Storage Gateway stored volume mode extend the on-premises capacity into AWS?

Answer 41

No, Stored Gateway mode ALL stored on-premises

Question 42

What protocols does storage gateway volume stored present to clients?

Answer 42

iSCSI, NFS and SMB

Question 43

Where does the data live when using storage gateway volume cached mode?

Answer 43

in AWS

Question 44

Does using storage gateway volume cached mode utilize a Storage Gateway Endpoint?

Answer 44

Yes

Question 45

Does using storage gateway volume stored mode utilize a Storage Gateway Endpoint?

Answer 45

Yes

Question 46

If you want to extend your on-premises storage capacity, which storage gateway mode would you use, volume cached or volume stored?

Answer 46

volume cached

Question 47

_____ bridges on-premises file storage and s3

Answer 47

storage gateway file gateway

Question 48

What types of protocols can you mount a storage gateway file gateway?

Answer 48

NFS or SMB

Question 49

Does file gateway allow for file locking?

Answer 49

No

Question 50

What virtualization platforms are supported by SMS?

Answer 50

VMWare, Hyper-V and AzureVM

Question 51

Is SMS agent based or agentless?

Answer 51

Agentless

Question 52

What is a hardware VPN connection from your on-premises network equipment on a remote network to AWS managed network equipment attached to your Amazon Virtual Private Cloud (Amazon VPC)?

Answer 52

AWS Managed VPN

Question 53

What is a hub-and-spoke model for connecting multiple remote branch offices to an Amazon VPC?

Answer 53

AWS VPN Cloudhub

Question 54

What is a VPN connection from your equipment on a remote network to a user-managed software VPN appliance running inside your Amazon VPC?

Answer 54

Software VPN

Question 55

An _______ endpoint is an elastic network interface with a private IP address that serves as an entry point for traffic destined to services powered by AWS PrivateLink.

Answer 55

interface

Question 56

A _____ endpoint is a gateway that is a target for a specified route in your route table. This type of endpoint is used for traffic destined to a supported AWS service, such as Amazon S3 or Amazon DynamoDB.

Answer 56

gateway

Question 57

Which Kinesis service is zero admin and provides latency of 60 seconds or higher?

Answer 57

Firehose

Question 58

Which Kinesis service is sub 1 second latency?

Answer 58

Streams

Question 59

Which Kinesis service allows for choice of stream processing frameworks?

Answer 59

Streams

Question 60

Which Kinesis service allows for use of existing AWS analytics tools like S3, redshift, and ES (elasticsearch)?

Answer 60

Firehose

Question 61

Which Elisticache service allows for backup/restore, scaling via read replicas, persitence and advanced data structures?

Answer 61

Redis

Question 62

Which Elisticache service is a simple key value storage, is non-persistant, supports multi-threaded ops but does not support backup/restore?

Answer 62

memcached

Question 63

What feature of cloudformation would you use to extend its functionality or integrate it with other system?

Answer 63

Custom resources

Question 64

_____ helps developers analyze and debug production, distributed applications, such as those built using a microservices architecture.

Answer 64

AWS X-Ray

Question 65

______ is a serverless, interactive query service to query data and analyze big data in Amazon S3 using standard SQL

Answer 65

Amazon Athena