AWIT Flashcards
6 Benefits of Cloud Computing
Trade capital expense for variable expense
Benefit from massive economies of scale
Stop guessing capacity
Increase speed and agility
Stop spending money running and maintaining data centers
Go global in minutes
Horizontal
Scaling
Adding more things. Example: when an EC2 micro instance gets overloaded, auto-scale 3
more to handle the load. AWS excels at this.
Vertical Scaling
Replacing with a larger thing. Example: when an EC2 micro instance gets overloaded,
replace it with an EC2 large instance. This generally requires a reboot that disrupts
workloads.
Which AWS service provides the ability to detect inadvertent data leaks of personally identifiable information (PII) and user credential data?
Amazon Macie
AWS Shield
Amazon Inspector
Amazon GuardDuty
Amazon Macie
Amazon Macie is the correct answer. Amazon Macie is a fully managed data security and data privacy service that uses machine learning and pattern matching to discover and protect your sensitive data in Amazon S3, including PII and user credential data.
Which pricing model will interrupt a running Amazon EC2 instance if capacity becomes temporarily unavailable?
Convertible Reserved Instances
On-Demand Instances
Standard Reserved Instances
Spot Instances
Spot Instances is the correct answer. Amazon EC2 Spot Instances let you take advantage of unused EC2 capacity in the AWS cloud. Spot Instances are available at up to a 90% discount compared to On-Demand prices. When AWS need to reclaim the capacity you get a 2 minute warning and then your instances are terminated. With all other pricing models your instances will not be terminated by AWS once they are running.
Which of the following are NOT features of AWS IAM? (Select TWO)
Identity federation
PCI DSS compliance
Charged for what you use
Logon using local user accounts
Shared access to your AWS account
Charged for what you use is the correct answer. You are also not charged for what you use because IAM is free to use.
Logon using local user accounts
Question 4
Which of the authentication options below can be used to authenticate using AWS APIs? (Select TWO)
Security groups
Server Passwords
Key Pairs
Server Certificates
Access Keys
Server Certificates
Access Keys
Server certificates are SSL/TLS certificates that you can use to authenticate with some AWS services.
Access keys are long-term credentials for an IAM user or the AWS account root user. You can use access keys to sign programmatic requests to the AWS CLI or AWS API (directly or using the AWS SDK).
What is the name for the top-level container used to hold objects within Amazon S3?
Bucket
Folder
Directory
Instance Store
Bucket
Amazon S3 is an object-based storage system. You upload your objects into buckets.
In which ways does AWS’ pricing model benefit organizations?
Eliminates licensing costs
Reduce the cost of maintaining idle resources
Focus spend on capital expenditure, rather than operational expenditure
Reduces the people cost of application development
Reduce the cost of maintaining idle resources
Using AWS you can provision only what you need and adjust resources automatically and elastically. This reduces the amount of resources that are sitting idle which reduces cost.
Which of the statements below does NOT characterize cloud computing?
Cloud computing is the on-demand delivery of compute power
With cloud computing you can increase your speed and agility
With cloud computing you get to benefit from massive economies of scale
Cloud computing allows you to swap variable expense for capital expense
Cloud computing allows you to swap variable expense for capital expense
Cloud computing is not a one-off capital expense, it is an ongoing operating expense. The caveat to this is that if you purchase reserved capacity you have an option to partially or fully pay upfront. However, it is still an operating cost as you do not own and depreciate the assets.
Which type of AWS data warehouse is ideally suited to analytics using SQL queries?
Amazon RedShift
Amazon RDS
Amazon DynamoDB
Amazon S3
Amazon RedShift
What do you need to log into the AWS console? ?
User name and password
Access key and secret ID
Certificate
Key pair
User name and password is the correct answer. You can log into the AWS console using a user name and password. You cannot log in to the AWS console using a key pair, access key & secret ID or certificate.
How can a systems administrator specify a script to be run on an EC2 instance during launch?
User Data
AWS Config
Metadata
Run Command
AWS Config
Which type of AWS data warehouse is ideally suited to analytics using SQL queries?
Amazon RedShift
Amazon RDS
Amazon DynamoDB
Amazon S3
Amazon RedShift
Your company has recently migrated to AWS. How can your CTO monitor the organization’s costs?
AWS Cost Explorer
AWS CloudTrail
AWS Simple Monthly calculator
AWS Consolidated Billing
AWS Cost Explorer – enables you to visualize your usage patterns over time and to identify your underlying cost drivers.
Your organization has offices around the world and some employees travel between offices. How should their accounts be setup?
Create a separate account in IAM within each region in which they will travel
IAM is a global service, just create the users in one place
Set the user account as a “global” account when created
Enable MFA for the accounts
IAM is a global service, just create the users in one place is the correct answer. IAM is a global service and all users that are created are able to login to the AWS Management Console from any location.
What is an example of scaling vertically?
AWS Lambda adding concurrently executing functions
Increasing the instance size with Amazon RDS
Adding read replicas to an Amazon RDS database
AWS Auto Scaling adding more EC2 instances
Increasing the instance size with Amazon RDS is the correct answer. A good example of vertical scaling is changing the instance size of an EC2 instance or RDS database to one with more CPU and RAM. All of the other options are examples of scaling horizontally.
You are evaluating AWS services that can assist with creating scalable application environments. Which of the statements below best describes the Elastic Load Balancer service?
A highly available and scalable Domain Name System (DNS) service
Helps you ensure that you have the correct number of Amazon EC2 instances available to handle the load for your application
A network service that provides an alternative to using the Internet to connect customers’ on-premise sites to AWS
Automatically distributes incoming application traffic across multiple targets, such as Amazon EC2 instances, containers, and IP addresses
Automatically distributes incoming application traffic across multiple targets, such as Amazon EC2 instances, containers, and IP addresses is the correct answer. Elastic Load Balancing automatically distributes incoming application traffic across multiple targets, such as Amazon EC2 instances, containers, and IP addresses.
What are the advantages of running a database service such as Amazon RDS in the cloud versus deploying on-premise? (Select TWO)
ou have full control of the operating system and can install your own operational tools
High availability is easier to implement due to built-in functionality for deploying read replicas and multi-AZ
Scalability is improved as it is quicker to implement and there is an abundance of capacity
You can use any database engine or software you like, allowing greater flexibility
There are no costs for replicating data between DBs in different data centers or regions
High availability is easier to implement due to built-in functionality for deploying read replicas and multi-AZ is also a correct answer. Amazon RDS allows you to replicate data between AZs and regions so this must be taken into account in any cost analysis.
Scalability is improved as it is quicker to implement and there is an abundance of capacity is a correct answer. The advantages of using Amazon RDS include being able to easily scale by increasing your instance type without having to go through a long procurement cycle for getting new hardware or worrying about whether capacity exists on your existing private cloud infrastructure. You can also implement fault tolerance and scalability features through multi-AZ and read replicas easily
Based on the shared responsibility model, which of the following security and compliance tasks is AWS responsible for?
Updating Amazon EC2 host firmware
Updating operating systems
Granting access to individuals and services
Encrypting data in transit
Updating Amazon EC2 host firmware is the correct answer. AWS are responsible for updating Amazon EC2 host firmware. This is considered “security of the cloud”. All other tasks are the responsibility of the customer.
Which AWS service or feature helps restrict the AWS service, resources, and individual API actions the users and roles in each member account can access?
Amazon Cognito
AWS Organizations
AWS Firewall Manager
AWS Shield
tbd I think it is AWS Organizations
Under the shared responsibility model, which of the following tasks are the responsibility of the AWS customer? (Select TWO)
Ensuring that access to data centers is restricted
Ensuring that AWS Network Time Protocol (NTP) servers are set to the correct time
Ensuring that application data is encrypted at rest
Ensuring that data center hardware is disposed of properly
Ensuring that users have received security training in the use of AWS services
Ensuring that application data is encrypted at rest is a correct answer. As a customer on AWS you take responsibility for encrypting data. This includes encrypting data at rest and data in transit
Ensuring that users have received security training in the use of AWS services is also a correct answer. It’s also a customer’s responsibility to properly train their staff in security best practices and procedures for the AWS services they use.
Under the AWS shared responsibility model, which of the following are customer responsibilities? (Select TWO)
Physical security of data center facilities
Compute capacity availability
Network and firewall configurations
Setting up server-side encryption on an Amazon S3 bucket
Amazon RDS instance patching
Network and firewall configurations is also a correct answer. Another security responsibility the customer owns is setting network and firewall configurations. For instance, you must configure Network ACLs and Security Groups, and any operating system-level firewalls on your EC2 instances.
Setting up server-side encryption on an Amazon S3 bucket is a correct answer. As a customer on AWS you take responsibility for encrypting data. This includes encrypting data at rest and data in transit.
Which AWS service is designed to be used for operational analytics?
Amazon Elasticsearch Service(OpenSearch)
Amazon EMR
Amazon QuickSight
Amazon Athena
Amazon QuickSight
Where do Amazon Identity and Access Management (IAM) accounts need to be created for a global organization?
Create them globally, and then replicate them regionally
In each region where the users are located
Just create them once, as IAM is a global service
In each geographical area where the users are located
Just create them once, as IAM is a global service is the correct answer. IAM is a global service so you only need to create your users once and can then use those user accounts anywhere globally. The other options are all incorrect. as you do not create IAM accounts regionally, replicate them regionally, or create them within geographical areas.
Which resource should you use to access AWS security and compliance reports?
AWS IAM
AWS Artifact
AWS Organizations
AWS Business Associate Addendum (BAA)
AWS Artifact is the correct answer. AWS Artifact, available in the console, is a self-service audit artifact retrieval portal that provides our customers with on-demand access to AWS’ compliance documentation and AWS agreements.
You need to connect your company’s on-premise network into AWS and would like to establish an AWS managed VPN service. Which of the following configuration items needs to be setup on the Amazon VPC side of the connection?
A Virtual Private Gateway
A Customer Gateway
A Firewall
A Network Address Translation device
A Virtual Private Gateway is the correct answer. A virtual private gateway is the VPN concentrator on the Amazon side of the VPN connection. You create a virtual private gateway and attach it to the VPC from which you want to create the VPN connection.
Which AWS service makes it easy to coordinate the components of distributed applications as a series of steps in a visual workflow?
AWS Step Functions
Amazon SNS
Amazon SWF
Amazon SES
AWS Step Functions is the correct answer. AWS Step Functions lets you coordinate multiple AWS services into serverless workflows so you can build and update apps quickly. AWS Step Functions lets you build visual workflows that enable fast translation of business requirements into technical requirements.
Which AWS service can serve a static website?
AWS X-ray
Amazon S3
Amazon Route 53
Amazon QuickSight
Amazon S3 is the correct answer. You can use Amazon S3 to host a static website. On a static website, individual webpages include static content. They might also contain client-side scripts.
A startup eCommerce company needs to quickly deliver new website features in an iterative manner, minimizing the time to market. Which AWS Cloud feature allows this?
Agility
High Availability
Elasticity
Reliability
Agility is the correct answer. In a cloud computing environment, new IT resources are only a click away, which means that you reduce the time to make those resources available to your developers from weeks to just minutes.
Which of the following is NOT a best practice for protecting the root user of an AWS account?
Remove Administrative permissions
Enable MFA
Don’t share the root user credentials
Lock away the AWS root user access keys
Remove administrative permissions is the correct answer. You cannot remove administrative permissions from the root user of an AWS account. Therefore, you must protect the account through creating a complex password, enabling MFA, locking away access keys (assuming they’re even required), and not sharing the account details.
What methods are available for scaling an Amazon RDS database? (Select TWO)
You can scale out automatically with EC2 Auto Scaling
You can scale up by increasing storage capacity
You can scale up automatically using AWS Auto Scaling
You can scale out by implementing Elastic Load Balancing
You can scale up by moving to a larger instance size is a correct answer. To handle a higher load in your database, you can vertically scale up your master database with a simple push of a button. There are currently over 18 instance sizes that you can choose from when resizing your RDS MySQL, PostgreSQL, MariaDB, Oracle, or Microsoft SQL Server instance.
Which service allows you to monitor and troubleshoot systems using system and application log files generated by those systems?
CloudTrail Logs
CloudWatch Metrics
CloudWatch Logs
CloudTrail Metrics
CloudWatch Log is the correct answer. Amazon CloudWatch Logs lets you monitor and troubleshoot your systems and applications using your existing system, application and custom log files. CloudWatch Logs can be used for real time application and system monitoring as well as long term log retention.
Which AWS support plans provide 24×7 access to customer service?
Developer
Basic
Business
All plans
All plans is the correct answer. All support plans provide 24×7 access to customer service, documentation, whitepapers, and support forums.
Which AWS security tool uses an agent installed in EC2 instances and assesses applications for vulnerabilities and deviations from best practices?
AWS TCO Calculator
AWS Trusted Advisor
AWS Personal health Dashboard
AWS Inspector
AWS Inspector is the correct answer. Inspector is an automated security assessment service that helps improve the security and compliance of applications deployed on AWS. Inspector automatically assesses applications for vulnerabilities or deviations from best practices. Inspector uses an agent installed on EC2 instances.
According to the AWS Shared Responsibility Model, which of the following is a shared control?
Operating system patching
Awareness and training
Protection of infrastructure
Client-side data encryption
Awareness and training is the correct answer. Shared Controls are controls which apply to both the infrastructure layer and customer layers, but in completely separate contexts or perspectives. In a shared control, AWS provides the requirements for the infrastructure and the customer must provide their own control implementation within their use of AWS services. Examples include patch management, configuration management, and awareness and training.
Your manager has asked you to explain the benefits of using IAM groups. Which of the below statements are valid benefits? (Select TWO)
Provide the ability to create custom permission policies
Enables you to attach IAM permission policies to more than one user at a time
You can restrict access to the subnets in your VPC
Groups let you specify permissions for multiple users, which can make it easier to manage the permissions for those users
Groups let you specify permissions for multiple users, which can make it easier to manage the permissions for those users is a correct answer. Groups are collections of users and have policies attached to them. This enables you to organize groups of users by job function or role and apply relevant policies to the group.
Which AWS technology can be referred to as a “virtual hard disk in the cloud”?
Amazon ENI
Amazon S3 bucket
Amazon EBS volume
Amazon EFS Filesystem
Amazon EBS volume is the correct answer. An Amazon Elastic Block Store (EBS) volume is often described as a “virtual hard disk in the cloud”. EBS volumes are block-level storage volumes that are attached to EC2 instances much as you would attach a virtual hard disk to a virtual machine in a virtual infrastructure.
How can a database administrator reduce operational overhead for a MySQL database?
Migrate the database onto an Amazon RDS instance
Migrate the database onto an EC2 instance
Migrate the database onto AWS Lambda
Use AWS CloudFormation to manage operations
Migrate the database onto an Amazon RDS instance
Which of the following acts as a virtual firewall at the Amazon EC2 instance level to control traffic for one or more instances?
Network Access Control Lists (ACL)
Virtual Private gateways(VPG)
Route table
Security Groups
Security Groups
Wrong answer : Virtual private gateways (VPG) is incorrect. A VPG is the Amazon side of an AWS Managed VPN.
Which AWS Cloud design principles can help increase reliability? (Select TWO)
Automatically recovering from failure
Testing recovery procedures
Using monolithic architecture
Measuring overall efficiency
Adopting a consumption model
Automatically recovering from failure is the correct answer. When designing systems, it is also a good practice to implement automatic recovery when possible. This reduces or eliminates the operational burden and potential downtime associated with a failure of a system or application component.
Testing recovery procedures is the correct answer. Recovery procedures should always be tested ahead of any outage of disaster recovery situation. This is the only way to be sure your recovery procedures are effective.
What type of cloud computing service type do AWS Elastic Beanstalk and Amazon RDS correspond to?
Hybrid
PaaS
IaaS
Saas
PaaS is the correct answer. Both Elastic Beanstalk and RDS are services that are managed at the platform level meaning you don’t need to manage the infrastructure level yourself. Therefore, tasks like OS management and patching are performed for you.
How can you deploy your EC2 instances so that if a single data center fails you still have instances available?
Across Availability Zones
Across regions
Across subnets
Across VPCs
Across Availability Zones is the correct answer. An AZ spans one or more data centers and each AZ is physically isolated from other AZs and connected by high speed networking. If you want to deploy a highly available application you should spread your instances across AZs and they will be resilient to the failure of a single DC
What is the easiest way to store a backup of an EBS volume on Amazon S3?
Use S3 lifecycle actions to back up the volume
Create a snapshot of the volume
Use Amazon Kinesis to process the data and store the results in S3
Write a AWS Lambda script to copy the data into a bucket
Create a snapshot of the volume is the correct answer. You can back up the data on your Amazon EBS volumes to Amazon S3 by taking point-in-time snapshots. Snapshots are incremental backups, which means that only the blocks on the device that have changed after your most recent snapshot are saved.
Which AWS technology enables you to group resources that share one or more tags?
Tag groups
Consolidation groups
Organization groups
Resource groups
Resource groups is the correct answer. You can use resource groups to organize your AWS resources. Resource groups make it easier to manage and automate tasks on large numbers of resources at one time.
Under the AWS Shared Responsibility Model, who is responsible for what? (Select TWO)
AWS is responsible for network and firewall configuration
AWS is responsible for networking infrastructure
Customers are responsible for networking traffic protection
Customers are responsible for edge locations
Customers are responsible for compute infrastructure
AWS is responsible for networking infrastructure is also a correct answer. AWS is responsible for networking infrastructure. The underlying networking equipment is maintained by AWS.
Customers are responsible for networking traffic protection is a correct answer. Customers are responsible for networking traffic protection. This includes applying encryption and using security groups and Network ACLs.
Which of the following statements about AWS’s pay-as-you-go pricing model is correct?
It reduces operational expenditures
It results in reduced capital expenditures
It requires payment up front for AWS services
It is relevant only for Amazon EC2, Amazon S3, and Amazon DynamoDB
It results in reduced capital expenditures is the correct answer. The pay-as-you-go pricing model means you only pay for the services and consumption you actually use. You are charged for compute, storage and outbound data transfer. This model reduces capital expenditure as you pay a monthly bill (operational expenditure).
Which of the following are examples of horizontal scaling? (Select TWO)
Add more instances as demand increases
Automatic using services such as AWS Auto Scaling
Add more CPU/RAM to existing instances as demand increases
Requires a restart to scale up or down
Scalability is limited by maximum instance size
Add more instances as demand increases is a correct answer. With horizontal scaling you add more instances to a fleet of instances to service demand as it increases. This can be achieved automatically by using AWS Auto Scaling to add instances in response to CloudWatch performance metrics.
Automatic using services such as AWS Auto Scaling is also a correct answer. With vertical scaling you are adding CPU, RAM or storage to an existing instance. This may involve modifying the instance type which typically requires a restart. With vertical scaling on AWS scalability is limited by the maximum instance size.
Which AWS service is suitable for an event-driven workload?
AWS Elastic Beanstalk
Amazon Lumberyard
AWS Lambda
Amazon EC2
AWS Lambda is the correct answer. AWS Lambda is an event-driven service. For example, you can configure an Amazon S3 bucket with event notifications that trigger an AWS Lambda function when data is uploaded to an S3 bucket.
Which type of scaling does Amazon EC2 Auto Scaling provide?
Linear
Vertical
Incremental
Horizontal
Horizontal is the correct answer. Amazon EC2 Auto Scaling scales horizontally by adding launching and terminating EC2 instances based on actual demand for your application.
How can a company configure automatic, asynchronous copying of objects in Amazon S3 buckets across regions?
Using lifecycle actions
Using cross-region replication
This is done by default by AWS
By configuring multi-master replication
Using cross-region replication is the correct answer. Cross-region replication (CRR) enables automatic, asynchronous copying of objects across buckets in different AWS Regions. Buckets configured for cross-region replication can be owned by the same AWS account or by different account
According to the AWS Well-Architected Framework, what change management steps should be taken to achieve reliability in the AWS Cloud? (Select TWO)
Use Amazon GuardDuty to record API activity to an S3 bucket
Use AWS Certificate Manager to create a catalog of approved services
Use AWS Config to generate an inventory of AWS resources
Use service limits to prevent users from creating or making changes to AWS resources
Use AWS CloudTrail to record AWS API calls into an auditable log file
Use AWS CloudTrail to record AWS API calls into an auditable log file is the correct answer. With CloudTrail you can audit who made what API calls on what resources at what time. This can help with identifying changes that cause reliability issues.
Use AWS Config to generate an inventory of AWS resources is the correct answer. AWS Config can be used to track the configuration state of your resources and how the state has changed over time.
Which of the following are pillars from the five pillars of the AWS Well-Architected Framework? (Select TWO)
Confidentiality
Economics
Resilience
Performance efficiency
Operational excellence
Performance efficiency & Operational excellence. The five pillars of the AWS Well-Architected Framework are operation excellence, security, reliability, performance efficiency, and cost optimization
Which feature of Amazon S3 enables you to create rules to control the transfer of objects between different storage classes?
Bucket policies
Lifecycle management
versioning
object sharing
Lifecycle management is the correct answer. To manage your objects so that they are stored cost effectively throughout their lifecycle, configure their Amazon S3 Lifecycle. An S3 Lifecycle configuration is a set of rules that define actions that Amazon S3 applies to a group of objects.
What is object sharing
Object sharing refers to the ability to make any object publicly available via a URL.
Which AWS service can be used to run Docker containers?
AWS Fargate
AWS Lambda
Amazon AMI
Amazon ECR
AWS Fargate
AWS Fargate is a serverless compute engine for containers that works with both Amazon Elastic Container Service (ECS) and Amazon Elastic Kubernetes Service (EKS).
Your manager has asked you to explain some of the security features available in the AWS cloud. How can you describe the function of Amazon CloudHSM?
It provides server-side encryption for S3 objects
It is a firewall for use with web applications
It can be used to generate, use and manage encryption keys in the cloud
It is a Public Key Infrastructure (PKI)
It can be used to generate, use and manage encryption keys in the cloud is the correct answer. AWS CloudHSM is a cloud-based hardware security module (HSM) that allows you to easily add secure key storage and high-performance crypto operations to your AWS applications.
A web application running on AWS has been received malicious requests from the same set of IP addresses. Which AWS service can help secure the application and block the malicious traffic?
AWS WAF
AWS IAM
Amazon GuardDuty
Amazon SNS
AWS WAF is the correct answer. The AWS Web Application Firewall (WAF) is used to protect web applications or APIs against common web exploits. Rules can be created that block traffic based on source IP address.
Which AWS database service is schema-less and can be scaled dynamically without incurring downtime?
Amazon RedShift
Amazon Aurora
Amazon DynamoDB
Amazon RDS
Amazon DynamoDB is the correct answer. Amazon DynamoDB is a fully managed NoSQL database service that provides fast and predictable performance with seamless scalability. Push button scaling means that you can scale the DB at any time without incurring downtime. DynamoDB is schema-less. All other options are SQL type of databases and therefore have a schema. They also rely on EC2 instances so cannot be scaled dynamically without incurring downtime (you have to change instance types).
Which AWS Glacier data access option retrieves data from an archive in 1-5 minutes?
Express
Expedited
Accelerated
Standard
Expedited is the correct answer. Expedited retrievals allow you to quickly access your data when occasional urgent requests for a subset of archives are required. For all but the largest archives (250 MB+), data accessed using Expedited retrievals are typically made available within 1–5 minutes.
According to the AWS Shared Responsibility Model, which of the following is a shared control?
Operating system patching
Protection of infrastructure
Client-side data encryption
Awareness and training
Awareness and training is the correct answer. Shared Controls are controls that apply to both the infrastructure layer and customer layers, but in completely separate contexts or perspectives. In a shared control, AWS provides the requirements for the infrastructure and the customer must provide their own control implementation within their use of AWS services. Examples include patch management, configuration management, and awareness and training.
What advantages does the AWS cloud provide in relation to cost? (Select TWO)
Fine-grained billing
One-off payments for on-demand resources
Itemized power costs
Ability to turn off resources and not pay for them
Enterprise licensing discounts
“Fine-grained billing” is a correct answer.
“Ability to turn off resources and not pay for them” is also a correct answer. With the AWS cloud you get fine-grained billing and can turn off resources you are not using easily and not have to pay for them (pay for what you use model).
Why is AWS more economical than traditional data centers for applications with varying compute
workloads?
Amazon EC2 costs are billed on a monthly basis
Users retain full administrative access to their Amazon EC2 instances
Amazon EC2 instances can be launched on demand when needed
Users can permanently run enough instances to handle peak workloads
Amazon EC2 instances can be launched on demand when needed” is correct. The ability to launch instances on demand when needed allows users to launch and terminate instances in
response to a varying workload. This is a more economical practice than purchasing enough on-premises servers
to handle the peak load.
Which service provides the ability to simply upload applications and have AWS handle the deployment details of capacity provisioning, load balancing, auto-scaling, and application health monitoring?
AWS OpsWorks
AWS Elastic Beanstalk
Amazon EC2
Amazon EC2 Auto Scaling
AWS Elastic Beanstalk can be used to quickly deploy and manage applications in the AWS Cloud. Developers upload applications and Elastic Beanstalk handles the deployment details of capacity provisioning, load balancing, auto-scaling, and application health monitoring. Considered a Platform as a Service (PaaS) solution. Supports Java, .NET, PHP, Node.js, Python, Ruby, Go, and Docker web applications
You need to run a production process that will use several EC2 instances and run constantly on an ongoing basis. The process cannot be interrupted or restarted without issue. What EC2 pricing model would be most cost-effective for this workload?
On-demand instances
Reserved instances
Spot instances
Flexible instance
Reserved Instance (RIs) is correct. RIs provide you with a significant discount (up to 75%) compared to On-Demand instance pricing. You have the flexibility to change families, OS types, and tenancies while benefitting from RI pricing when you use RIs.
In this scenario for a stable process that will run constantly on an ongoing basis RIs will be the most affordable solution.
Which services allow you to store files on AWS? (Select TWO)
Amazon EFS
AWS Lambda
Amazon SQS
Amazon LightSail
Amazon EBS
You can store files on the Elastic File System (EFS). EFS volumes are mounted to the instance using the NFS protocol.
You can store files on the Elastic Block Store (EBS). EBS volumes are mounted as block devices to EC2 instances.
Which AWS offering enables users to find, buy, and immediately start using software solutions in their AWS environment?
AWS OpsWorks
AWS SDK
AWS Config
AWS Marketplace
AWS Marketplace is correct. AWS Marketplace is a digital catalog with thousands of software listings from independent software vendors that makes it easy to find, test, buy, and deploy software that runs on AWS.
What information must be entered into the AWS TCO Calculator?
The number of storage systems in your company
The number of applications in your company
The number of end users in your company
The number of servers in your company
The number of servers in your company
Which AWS feature of Amazon EC2 allows an administrator to create a standardized image that can be used for launching new instances?
Amazon Machine Image
AWS Config
AWS Platinum AMI
Amazon CloudFormation Template
Amazon Machine Image (AMI) is correct. The purpose of an AMI, whether you create one or buy it from the AWS Marketplace, is to load standardized software onto new EC2 instances you launch.
A company wants to utilize a pay as you go cloud model for all of their applications without CAPEX costs and which is highly elastic. Which cloud delivery model will suit them best?
Hybrid
Private
Public
On-premises
Public cloud is correct. The public cloud is offered under a purely pay as you go model (unless you choose to reserve), and allows companies to completely avoid CAPEX costs. The public cloud is also highly elastic so companies can grow and shrink the applications as demand changes.
What is a graph database ?
Amazon Neptune
A non-relational graph database. Graph databases power social networks.
What is a data warehouse?
Amazon Redshift A data warehouse. A data warehouse pulls and stores information from
many sources in a columnar format and provides the compute to run
queries
What is Amazon Forecast?
A machine-learning (ML) service that predicts future needs based on current
and historical patterns.
Amazon EMR
Elastic Map Reduce. Performs big data analysis by splitting up the data,
processing the data on Hadoop servers, then combine the results.
AWS Lake
Formation
Creates and secures data lakes (on S3).
AWS Glue
Extract, transform, load (ETL) service. Take big data, clean it, and load it else
(like from an S3 data lake to Redshift)
Amazon Kinesis
Real-time analysis of data streams. Example: see housing price trends based on
changes to listing price across a country.
Amazon
Elasticsearch Service
(Opensearch)
Managed Elasticsearch, an open source service, for operational analytics on your
storage, applications, logs, and clickstreams. Performs very fast queries and data
visualization
Amazon QuickSight
Build custom business intelligence (BI) service dashboards for your customers to use.
Amazon Aurora
Amazon’s proprietary relational (SQL) database engine, part of RDS. Tuned to perform and scale best on AWS. Only works with two open source databases: MySQL and PostgreSQL.
