Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

AWS > AWS 4 > Flashcards

AWS 4 Flashcards

1
Q

A company has multiple applications and is now building a new multi-tier application. The company will host the new application on Amazon EC2 instances. The company wants the network routing and traffic between the various applications to follow the security principle of least privilege.Which AWS service or feature should the company use to enforce this principle?
A. Security groups
B. AWS Shield
C. AWS Global Accelerator
D. AWS Direct Connect gateway

A

A. Security groups

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

A company’s web application requires AWS credentials and authorizations to use an AWS service.Which IAM entity should the company use as best practice?
A. IAM role
B. IAM user
C. IAM group
D. IAM multi-factor authentication (MFA)

A

A. IAM role

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

A company is creating a document that defines the operating system patch routine for all the company’s systems.Which AWS resources should the company include in this document? (Choose two.)
A. Amazon EC2 instances
B. AWS Lambda functions
C. AWS Fargate tasks
D. Amazon RDS instances
E. Amazon Elastic Container Service (Amazon ECS) instances

A

A. Amazon EC2 instances
D. Amazon RDS instances

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Which AWS service or feature gives a company the ability to control incoming traffic and outgoing traffic for Amazon EC2 instances?
A. Security groups
B. Amazon Route 53
C. AWS Direct Connect
D. Amazon VPC

A

A. Security groups

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

A company is starting to build its infrastructure in the AWS Cloud. The company wants access to technical support during business hours. The company also wants general architectural guidance as teams build and test new applications.Which AWS Support plan will meet these requirements at the LOWEST cost?
A. AWS Basic Support
B. AWS Developer Support
C. AWS Business Support
D. AWS Enterprise Support

A

B. AWS Developer Support

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

A company is migrating its public website to AWS. The company wants to host the domain name for the website on AWS.Which AWS service should the company use to meet this requirement?
A. AWS Lambda
B. Amazon Route 53
C. Amazon CloudFront
D. AWS Direct Connect

A

B. Amazon Route 53

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

A company needs to evaluate its AWS environment and provide best practice recommendations in five categories: cost, performance, service limits, fault tolerance, and security.Which AWS service can the company use to meet these requirements?
A. AWS Shield
B. AWS WAF
C. AWS Trusted Advisor
D. AWS Service Catalog

A

C. AWS Trusted Advisor

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Which AWS service provides the capability to view end-to-end performance metrics and troubleshoot distributed applications?
A. AWS Cloud9
B. AWS CodeStar
C. AWS Cloud Map
D. AWS X-Ray

A

D. AWS X-Ray

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Which cloud computing benefit does AWS demonstrate with its ability to offer lower variable costs as a result of high purchase volumes?
A. Pay-as-you-go pricing
B. High availability
C. Global reach
D. Economies of scale

A

D. Economies of scale

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Which AWS service provides threat detection by monitoring for malicious activities and unauthorized actions to protect AWS accounts, workloads, and data that is stored in Amazon S3?
A. AWS Shield
B. AWS Firewall Manager
C. Amazon GuardDuty
D. Amazon Inspector

A

C. Amazon GuardDuty

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Which AWS service can a company use to store and manage Docker images?
A. Amazon DynamoDB
B. Amazon Kinesis Data Streams
C. Amazon Elastic Container Registry (Amazon ECR)
D. Amazon Elastic File System (Amazon EFS)

A

C. Amazon Elastic Container Registry (Amazon ECR)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

A company needs an automated security assessment report that will identify unintended network access to Amazon EC2 instances. The report also must identify operating system vulnerabilities on those instances.Which AWS service or feature should the company use to meet this requirement?
A. AWS Trusted Advisor
B. Security groups
C. Amazon Macie
D. Amazon Inspector

A

D. Amazon Inspector

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

A global company is building a simple time-tracking mobile app. The app needs to operate globally and must store collected data in a database. Data must be accessible from the AWS Region that is closest to the user.What should the company do to meet these data storage requirements with the LEAST amount of operational overhead?
A. Use Amazon EC2 in multiple Regions to host separate databases
B. Use Amazon RDS cross-Region replication
C. Use Amazon DynamoDB global tables
D. Use AWS Database Migration Service (AWS DMS)

A

C. Use Amazon DynamoDB global tables

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Which of the following are economic advantages of the AWS Cloud? (Choose two.)
A. Increased workforce productivity
B. Decreased need to encrypt user data
C. Manual compliance audits
D. Simplified total cost of ownership (TCO) accounting
E. Faster product launches

A

A. Increased workforce productivity
D. Simplified total cost of ownership (TCO) accounting

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Which controls does the customer fully inherit from AWS in the AWS shared responsibility model?
A. Patch management controls
B. Awareness and training controls
C. Physical and environmental controls
D. Configuration management controls

A

C. Physical and environmental controls

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Which task is a customer’s responsibility, according to the AWS shared responsibility model?
A. Management of the guest operating systems
B. Maintenance of the configuration of infrastructure devices
C. Management of the host operating systems and virtualization
D. Maintenance of the software that powers Availability Zones

A

A. Management of the guest operating systems

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

A company needs to deliver new website features quickly in an iterative manner to minimize the time to market.Which AWS Cloud concept does this requirement represent?
A. Reliability
B. Elasticity
C. Agility
D. High availability

A

C. Agility

18
Q

A company wants to increase its ability to recover its infrastructure in the case of a natural disaster.Which pillar of the AWS Well-Architected Framework does this ability represent?
A. Cost optimization
B. Performance efficiency
C. Reliability
D. Security

A

C. Reliability

19
Q

Which AWS service tracks API calls and user activity?
A. AWS Organizations
B. AWS Config
C. Amazon CloudWatch
D. AWS CloudTrail

A

D. AWS CloudTrail

20
Q

Which AWS service, feature, or tool uses machine learning to continuously monitor cost and usage for unusual cloud spending?
A. Amazon Lookout for Metrics
B. AWS Budgets
C. Amazon CloudWatch
D. AWS Cost Anomaly Detection

A

D. AWS Cost Anomaly Detection

21
Q

A company deployed an application on an Amazon EC2 instance. The application ran as expected for 6 months in the past week, users have reported latency issues. A system administrator found that the CPU utilization was at 100% during business hours. The company wants a scalable solution to meet demand.Which AWS service or feature should the company use to handle the load for its application during periods of high demand?
A. Auto Scaling groups
B. AWS Global Accelerator
C. Amazon Route 53
D. An Elastic IP address

A

A. Auto Scaling groups

22
Q

A company wants to migrate to AWS and use the same security software it uses on premises. The security software vendor offers its security software as a service on AWS.Where can the company purchase the security solution?
A. AWS Partner Solutions Finder
B. AWS Support Center
C. AWS Management Console
D. AWS Marketplace

A

D. AWS Marketplace

23
Q

A company is generating large sets of critical data in its on-premises data center. The company needs to securely transfer the data to AWS for processing. These transfers must occur daily over a dedicated connection.Which AWS service should the company use to meet these requirements?
A. AWS Backup
B. AWS DataSync
C. AWS Direct Connect
D. AWS Snowball

A

C. AWS Direct Connect

24
Q

A company wants to run production workloads on AWS. The company wants access to technical support from engineers 24 hours a day, 7 days a week. The company also wants access to the AWS Health API and contextual architectural guidance for business use cases. The company has a strong IT support team and does not need concierge support.Which AWS Support plan will meet these requirements at the LOWEST cost?
A. AWS Basic Support
B. AWS Developer Support
C. AWS Business Support
D. AWS Enterprise Support

A

C. AWS Business Support Most Voted

25
Q

Which of the following is a managed AWS service that is used specifically for extract, transform, and load (ETL) data?
A. Amazon Athena
B. AWS Glue
C. Amazon S3
D. AWS Snowball Edge

A

B. AWS Glue

26
Q

Which of the following actions are controlled with AWS Identity and Access Management (IAM)? (Choose two.)
A. Control access to AWS service APIs and to other specific resources.
B. Provide intelligent threat detection and continuous monitoring.
C. Protect the AWS environment using multi-factor authentication (MFA).
D. Grant users access to AWS data centers.
E. Provide firewall protection for applications from common web attacks.

A

A. Control access to AWS service APIs and to other specific resources.
C. Protect the AWS environment using multi-factor authentication (MFA).

27
Q

Which of the following are shared controls that apply to both AWS and the customer, according to the AWS shared responsibility model? (Choose two.)
A. Resource configuration management
B. Network data integrity
C. Employee awareness and training
D. Physical and environmental security
E. Replacement and disposal of disk drives

A

A. Resource configuration management
C. Employee awareness and training

28
Q

What information is found on an AWS Identity and Access Management (IAM) credential report? (Choose two.)
A. The date and time when an IAM user’s password was last used to sign in to the AWS Management Console.
B. The type of multi-factor authentication (MFA) device assigned to an IAM user.
C. The User-Agent browser identifier for each IAM user currently logged in.
D. Whether multi-factor authentication (MFA) has been enabled for an IAM user.
E. The number of incorrect login attempts by each IAM user in the previous 30 days.

A

A. The date and time when an IAM user’s password was last used to sign in to the AWS Management Console.
D. Whether multi-factor authentication (MFA) has been enabled for an IAM user.

29
Q

What is the LEAST expensive AWS Support plan that contains a full set of AWS Trusted Advisor best practice checks?
A. AWS Enterprise Support
B. AWS Business Support
C. AWS Developer Support
D. AWS Basic Support

A

B. AWS Business Support

30
Q

Which AWS service provides domain registration, DNS routing, and service health checks?
A. AWS Direct Connect
B. Amazon Route 53
C. Amazon CloudFront
D. Amazon API Gateway

A

B. Amazon Route 53

31
Q

A bank needs to store recordings of calls made to its contact center for 6 years. The recordings must be accessible within 48 hours from the time they are requested.Which AWS service will provide a secure and cost-effective solution for retaining these files?
A. Amazon DynamoDB
B. Amazon S3 Glacier
C. Amazon Connect
D. Amazon ElastiCache

A

B. Amazon S3 Glacier

32
Q

Which AWS service should be used to migrate a company’s on-premises MySQL database to Amazon RDS?
A. AWS Direct Connect
B. AWS Server Migration Service (AWS SMS)
C. AWS Database Migration Service (AWS DMS)
D. AWS Schema Conversion Tool (AWS SCT)

A

C. AWS Database Migration Service (AWS DMS)

33
Q

Which benefits does a company gain when the company moves from on-premises IT architecture to the AWS Cloud? (Choose two.)
A. Reduced or eliminated tasks for hardware troubleshooting, capacity planning, and procurement
B. Elimination of the need for trained IT staff
C. Automatic security configuration of all applications that are migrated to the cloud
D. Elimination of the need for disaster recovery planning
E. Faster deployment of new features and applications

A

A. Reduced or eliminated tasks for hardware troubleshooting, capacity planning, and procurement
E. Faster deployment of new features and applications

34
Q

Which of the following is a benefit of decoupling an AWS Cloud architecture?
A. Reduced latency
B. Ability to upgrade components independently
C. Decreased costs
D. Fewer components to manage

A

B. Ability to upgrade components independently

35
Q

Which task is the responsibility of the customer according to the AWS shared responsibility model?
A. Maintain the security of the hardware that runs Amazon EC2 instances.
B. Patch the guest operating system of Amazon EC2 instances.
C. Protect the security of the AWS global infrastructure.
D. Patch Amazon RDS software.

A

B. Patch the guest operating system of Amazon EC2 instances.

36
Q

Which AWS Organizations feature can be used to track charges across multiple accounts and report the combined cost?
A. Service control policies (SCPs)
B. Cost Explorer
C. Consolidated billing
D. AWS Identity and Access Management (IAM)

A

C. Consolidated billing

37
Q

Which of the following is a cloud benefit that AWS offers to its users?
A. The ability to configure AWS data center hypervisors
B. The ability to purchase hardware in advance of increased traffic
C. The ability to deploy to AWS on a global scale
D. Compliance audits for user IT environments

A

C. The ability to deploy to AWS on a global scale

38
Q

An ecommerce company has migrated its IT infrastructure from an on-premises data center to the AWS Cloud.Which cost is the company’s direct responsibility?
A. Cost of application software licenses
B. Cost of the hardware infrastructure on AWS
C. Cost of power for the AWS servers
D. Cost of physical security for the AWS data center

A

A. Cost of application software licenses

39
Q

What are the five pillars of the AWS Well-Architected Framework?
A. Encryption, documentation, speed, hybrid design, and cost optimization
B. Containerization, cost margins, globalization, marketplace, and developer operations
C. Network, compute, storage, security, and developer operations
D. Operational excellence, reliability, performance efficiency, security, and cost optimization

A

D. Operational excellence, reliability, performance efficiency, security, and cost optimization

40
Q

A company accepts enrollment applications on handwritten paper forms. The company uses a manual process to enter the form data into its backend systems.The company wants to automate the process by scanning the forms and capturing the enrollment data from scanned PDF files.Which AWS service should the company use to build this process?
A. Amazon Rekognition
B. Amazon Textract
C. Amazon Transcribe
D. Amazon Comprehend

A

B. Amazon Textract

AWS (7 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions