AWS CCP 3

Question 1

Which of the options below are recommendations in the performance efficiency pillar of the well-architected framework? (choose 2)

1. Democratize advanced technologies
2. Go global in days
3. Use serverless architectures
4. Rarely experiment
5. Mechanical complexity

Answer 1

1. Democratize advanced technologies

3. Use serverless architectures

Question 2

What are Edge locations used for?

1. They are used for terminating VPN connections
2. They host a CDN called CloudFront
3. They are the public-facing APIs for Amazon S3
4. They are used by regions for inter-region connectivity

Answer 2

2. They host a CDN called CloudFront

Question 3

What is required to enable an EC2 instance in a public subnet to access the Internet? (choose 2)

1. A public IP address
2. A NAT Gateway
3. A NAT Instance
4. A VPN connection
5. A route to an Internet Gateway

Answer 3

1. A public IP address

5. A route to an Internet Gateway

Question 4

What types of origins are supported by Amazon CloudFront? (choose 2)

1. EBS volume
2. S3 object
3. Elastic Load Balancer
4. EC2 instance
5. Elastic File System

Answer 4

3. Elastic Load Balancer

4. EC2 instance

Question 5

Which feature enables fast, easy, and secure transfers of files over long distances between a client and an Amazon S3 bucket?

1. S3 Static Websites
2. S3 Copy
3. Multipart Upload
4. S3 Transfer Acceleration

Answer 5

4. S3 Transfer Acceleration

Question 6

How is data protected by default in Amazon S3?

1. Buckets are replicated across all regions
2. Objects are redundantly stored on multiple devices across multiple facilities within a region
3. Objects are redundantly stored on multiple devices across multiple facilities across all regions
4. Objects are copied across at least two Availability Zones per region

Answer 6

2. Objects are redundantly stored on multiple devices across multiple facilities within a region

Question 7

Which of the options below are recommendations in the cost optimization pillar of the well-architected framework? (choose 2)

1. Adopt a consumption model
2. Adopt a capital expenditure model
3. Start spending money on data center operations
4. Analyze and attribute expenditure
5. Manage your services independently

Answer 7

1. Adopt a consumption model

4. Analyze and attribute expenditure

Question 8

Which pricing options are available when using Amazon EC2 Reserved Instances? (choose 2)

1. Capacity upfront
2. All upfront
3. Mainly upfront
4. Partial upfront
5. Enterprise upfront

Answer 8

2. All upfront

4. Partial upfront

Question 9

Which data consistency models are available with Amazon S3? (choose 2)

1. Eventual consistency for PUTS of new objects
2. Read after write consistency for PUTS of new objects
3. Eventual consistency for overwrite PUTS and DELETES
4. Read after write consistency for overwrites PUTS and DELETES
5. Accelerated consistency for all PUTS and DELETES

Answer 9

2. Read after write consistency for PUTS of new objects

3. Eventual consistency for overwrite PUTS and DELETES

Question 10

Which Amazon EC2 Reserved Instance type enables you to match your capacity reservation to predictable recurring dates and times?

1. Standard RI
2. Convertible RI
3. Scheduled RI
4. Customized RI

Answer 10

3. Scheduled RI

Question 11

Which information security standard applies to entities that store, process or transmit credit cardholder data?

1. ISO 27001
2. HIPAA
3. NIST
4. PCI DSS

Answer 11

4. PCI DSS

Question 12

Which Amazon RDS database engines support AWS RDS Read Replicas? (choose 2)

1. Oracle
2. MySQL
3. PostgreSQL
4. Microsoft SQL Server
5. DynamoDB

Answer 12

2. MySQL

3. PostgreSQL

Question 13

Which Amazon RDS feature enables disaster recovery by creating a replica in another Availability Zone and synchronously replicating data to it?

1. Read Replica
2. Multi-AZ
3. DB mirroring
4. Log shipping

Answer 13

2. Multi-AZ

Question 14

When deploying resources using AWS CloudFormation, what are you charged for? (choose 2)

1. Per-usage costs for CloudFormation
2. Provisioned EC2 instances
3. Provisioned EBS volumes
4. Provisioned route tables
5. AWS Auto Scaling Groups

Answer 14

2. Provisioned EC2 instances

3. Provisioned EBS volumes

Question 15

Which statement best describes elasticity in the cloud?

1. The ability to scale resources up or down and only pay for what you use
2. The ability for a system to recover from the failure of a single component
3. A flexible model of code development that results in faster deployment times
4. A pricing model that allows upfront payments and term commitments to reduce cost

Answer 15

1. The ability to scale resources up or down and only pay for what you use

Question 16

Which statement best describes elasticity in the cloud?

1. The ability to scale resources up or down and only pay for what you use
2. The ability for a system to recover from the failure of a single component
3. A flexible model of code development that results in faster deployment times
4. A pricing model that allows upfront payments and term commitments to reduce cost

Answer 16

1. The ability to scale resources up or down and only pay for what you use

Question 17

Which AWS service can be used to ensure the persistence of in-flight transactions independently of any single application component?

1. AWS CloudFormation
2. Amazon DynamoDB
3. AWS ElastiCache
4. Amazon SQS

Answer 17

4. Amazon SQS

Question 18

Which of the below AWS services supports automated backups as a default configuration?

1. Amazon S3
2. Amazon RDS
3. Amazon EC2
4. Amazon EBS

Answer 18

2. Amazon RDS

Question 19

How can you ensure that the EBS volumes attached to an EC2 instance are still available after the instance is terminated?

1. EBS volumes automatically persist after the EC2 instance is terminated
2. EBS volumes are always deleted when an EC2 instance is terminated
3. Ensure the “DeleteOnTermination” attribute of the EBS volume is set to false while launching the instance
4. Take a snapshot of the EBS volume

Answer 19

3. Ensure the “DeleteOnTermination” attribute of the EBS volume is set to false while launching the instance

Question 20

Which EC2 tenancy model gives you visibility and control over how instances are placed on a server?

1. Dedicated Instances
2. Dedicated Hosts
3. Dedicated Tenancy
4. Dedicated EC2

Answer 20

2. Dedicated Hosts

Question 21

How does the consolidated billing feature of AWS Organizations treat Reserved Instances that were purchased by another account in the organization?

1. All accounts in the organization are treated as one account so any account can receive the hourly cost benefit
2. Only the master account can benefit from the hourly cost benefit of the reserved instances
3. All accounts in the organization are treated as one account for volume discounts but not for reserved instances
4. AWS Organizations does not support any volume or reserved instance benefits across accounts, it is just a method of aggregating bills

Answer 21

1. All accounts in the organization are treated as one account so any account can receive the hourly cost benefit

Question 22

What is the best way to apply an organizational system to EC2 instances so they can be identified by descriptors such as purpose or department?

1. Use descriptive hostnames
2. Organize the instances into separate subnets
3. Apply tags
4. Use the instance meta-data

Answer 22

3. Apply tags

Question 23

Which services provide protection measures against distributed denial of service (DDoS) attacks? (choose 2)

1. AWS CloudHSM
2. Amazon CloudFront
3. AWS WAF
4. Internet Gateway
5. Managed VPN

Answer 23

2. Amazon CloudFront

3. AWS WAF

Question 24

Which service can be used to create sophisticated, interactive graph applications?

1. Amazon RedShift
2. Amazon Neptune
3. AWS X-Ray
4. Amazon Athena

Answer 24

2. Amazon Neptune

Question 25

Which of the below is a fully managed Amazon search service based on open source software?

1. Amazon Elastic Beanstalk
2. AWS OpsWorks
3. Amazon CloudSearch
4. Amazon Elasticsearch

Answer 25

4. Amazon Elasticsearch

Question 26

Which descriptions are correct regarding cloud deployment models? (choose 2)

1. With the public cloud the consumer organization typically owns and manages the infrastructure
2. With the private cloud the consumer organization typically incurs OPEX costs for usage
3. With the hybrid cloud, multiple private clouds are connected
4. With the public cloud the consumer organization typically incurs OPEX costs for usage
5. With the private cloud the consumer organization typically owns and manages the infrastructure

Answer 26

4. With the public cloud the consumer organization typically incurs OPEX costs for usage
5. With the private cloud the consumer organization typically owns and manages the infrastructure

Question 27

When using Amazon IAM, what authentication methods are available to use? (choose 2)

1. Client certificates
2. Access keys
3. Amazon KMS
4. Server certificates
5. AES 256

Answer 27

2. Access keys

4. Server certificates

Question 28

To ensure the security of your AWS account, what are two AWS best practices for managing access keys? (choose 2)

1. Don’t create any access keys, use IAM roles instead
2. Don’t generate an access key for the root account user
3. Where possible, use IAM roles with temporary security credentials
4. Rotate access keys daily
5. Use MFA for access keys

Answer 28

2. Don’t generate an access key for the root account user

3. Where possible, use IAM roles with temporary security credentials

Question 29

Which AWS database service provides a fully managed data warehouse that can be analyzed using SQL tools and business intelligence tools?

1. Amazon RDS
2. Amazon DynamoDB
3. Amazon RedShift
4. Amazon ElastiCache

Answer 29

3. Amazon RedShift

Question 30

Which AWS service lets you use Chef and Puppet to automate how servers are configured, deployed, and managed across your Amazon EC2 instances or on-premises compute environments?

1. AWS Elastic Beanstalk
2. AWS CloudFormation
3. AWS Systems Manager
4. AWS OpsWorks

Answer 30

4. AWS OpsWorks

Question 31

Which of the following statements are correct about the benefits of AWS Direct Connect? (choose 2)

1. Quick to implement
2. Increased reliability (predictable performance)
3. Lower cost than a VPN
4. Increased bandwidth (predictable bandwidth)
5. Uses redundant paths across the Internet

Answer 31

2. Increased reliability (predictable performance)

4. Increased bandwidth (predictable bandwidth)

Question 32

Which types of Amazon Kinesis services are available? (choose 2)

1. Kinesis Video Streams
2. Kinesis Encrypted Streams
3. Kinesis Data Firehose
4. Kinesis Shard Streams
5. Kinesis Splunk Streams

Answer 32

1. Kinesis Video Streams

3. Kinesis Data Firehose

Question 33

Where is the information stored that defines an EC2 instance such as the template for the root volume, launch permissions and block device mappings?

1. EFS
2. EBS
3. AMI
4. ARN

Answer 33

3. AMI

Question 34

What is the best way for an organization to automate the creation, retention, and deletion of EBS snapshots?

1. Use S3 lifecycle policies
2. Create a script
3. Create a CloudFormation template
4. Use Amazon DLM

Answer 34

4. Use Amazon DLM

Question 35

Which of the following statements are correct regarding Elastic Network Interfaces (ENIs)? (choose 2)

1. Additional ENIs can be detached from an instance and attached to another instance
2. The primary ENI is identified as “eth0”
3. The primary ENI can be detached from an instance and attached to another instance
4. The attributes of an ENI do not follow it when moved between instances
5. The primary ENI is identified as “eth1”

Answer 35

1. Additional ENIs can be detached from an instance and attached to another instance
2. The primary ENI is identified as “eth0”

Question 36

What are the charges for using Amazon Glacier? (choose 2)

1. Data transferred into Glacier
2. Retrieval requests
3. Data storage
4. Enhanced networking
5. Minimum storage fees

Answer 36

2. Retrieval requests

3. Data storage

Question 37

Which database allows you to scale at the push of a button without incurring any downtime?

1. Amazon RDS
2. Amazon EMR
3. Amazon DynamoDB
4. Amazon RedShift

Answer 37

3. Amazon DynamoDB

Question 38

Which feature of Amazon S3 adds a layer of additional security to prevent accidental deletion?

1. Versioning
2. Encryption
3. MFA delete
4. Lifecycle management

Answer 38

3. MFA delete

Question 39

Which service can an organization use to track API activity within their account?

1. AWS CloudTrail
2. Amazon CloudWatch
3. Amazon IAM
4. Amazon CloudHSM

Answer 39

1. AWS CloudTrail

Question 40

What tool provides real time guidance to help you provision your resources following best practices in the areas of cost optimization, performance, security and fault tolerance?

1. AWS Inspector
2. AWS Trusted Advisor
3. AWS Personal Health Dashboard
4. Amazon IAM

Answer 40

2. AWS Trusted Advisor

Question 41

What is the best way for an organization to transfer hundreds of terabytes of data from their on-premise data center into Amazon S3 with limited bandwidth available?

1. Use S3 Transfer Acceleration
2. Apply compression before uploading
3. Use AWS Snowball
4. Use Amazon CloudFront

Answer 41

3. Use AWS Snowball

Question 42

When launching an EC2 instance, where can you specify configuration tasks and scripts to run after the instance starts?

1. Metadata
2. User data
3. Run command
4. AWS config

Answer 42

2. User data

Question 43

You need to run a production process that will use several EC2 instances and run constantly on an ongoing basis. The process cannot be interrupted or restarted without issue. What EC2 pricing model would be best for this workload?

1. Reserved instances
2. Spot instances
3. On-demand instances
4. Flexible instances

Answer 43

1. Reserved instances

Question 44

Which Amazon RDS feature can reduce the burden on a database that is experiencing heavy read traffic?

1. Multi AZ
2. Read Replicas
3. Log Shipping
4. Global Tables

Answer 44

2. Read Replicas

Question 45

Which of the options below are recommendations in the reliability pillar of the well-architected framework? (choose 2)

1. Use ad-hoc recovery procedures
2. Automatically recover from failure
3. Scale vertically to increase aggregate system availability
4. Attempt to accurately estimate capacity requirements
5. Manage change in automation

Answer 45

2. Automatically recover from failure

5. Manage change in automation

Question 46

Which AWS service does API Gateway integrate with to enable users from around the world to achieve the lowest possible latency for API requests and responses?

1. AWS Direct Connect
2. Amazon S3 Transfer Acceleration
3. Amazon CloudFront
4. AWS Lambda

Answer 46

3. Amazon CloudFront

Question 47

Which service provides the ability to simply upload applications and have AWS handle the deployment details of capacity provisioning, load balancing, auto-scaling, and application health monitoring?

1. Amazon EC2
2. Amazon Elastic Beanstalk
3. AWS Auto Scaling
4. AWS OpsWorks

Answer 47

2. Amazon Elastic Beanstalk

Question 48

You are concerned that you may be getting close to some of the default service limits for several AWS services. What AWS tool can be used to display current usage and limits?

1. AWS CloudWatch
2. AWS Personal Health Dashboard
3. AWS Trusted Advisor
4. AWS Systems Manager

Answer 48

3. AWS Trusted Advisor

Question 49

Which of the following represent economic advantages of moving to the AWS cloud? (choose 2)

1. Reduce the need to manage applications
2. Increase efficiencies through automation
3. Reduce the rate of change
4. Reduce the need to manage infrastructure
5. Increase time to market for new applications

Answer 49

2. Increase efficiencies through automation

4. Reduce the need to manage infrastructure

Question 50

What advantages do NAT Gateways have over NAT Instances? (choose 2)

1. Can be assigned to security groups
2. Can be used as a bastion host
3. Managed for you by AWS
4. Highly available within each AZ
5. Can be scaled up manually

Answer 50

3. Managed for you by AWS

4. Highly available within each AZ

Question 51

What speeds is AWS Direct Connect offered at by AWS? (choose 2)

1. 50 Mbps
2. 100 Mbps
3. 1 Gbps
4. 10 Gbps
5. 100 Gbps

Answer 51

3. 1 Gbps

4. 10 Gbps

Question 52

Which AWS service is known as a “serverless” service and runs code as functions triggered by events?

1. Amazon ECS
2. AWS Lambda
3. Amazon CodeDeploy
4. Amazon Cognito

Answer 52

2. AWS Lambda

Question 53

Which AWS service is used for decoupling applications components using a message queue?

1. Amazon SWF
2. Amazon SNS
3. Amazon Kinesis
4. Amazon SQS

Answer 53

4. Amazon SQS

Question 54

At what level is an Internet Gateway attached in the AWS infrastructure?

1. Availability Zone
2. Subnet
3. VPC
4. Region

Answer 54

3. VPC

Question 55

Which of the below are valid options for interacting with Amazon Glacier archives? (choose 2)

1. Directly through the management console
2. From the AWS CLI
3. Using S3 Multipart Upload
4. Using the REST API
5. Through IAM

Answer 55

2. From the AWS CLI

4. Using the REST API

Question 56

Which service provides a way to convert video and audio files from their source format into versions that will playback on devices like smartphones, tablets and PCs?

1. Amazon Elastic Transcoder
2. AWS Glue
3. Amazon Rekognition
4. Amazon Comprehend

Answer 56

1. Amazon Elastic Transcoder

Question 57

Which AWS support plan comes with a Technical Account Manager (TAM)?

1. Basic
2. Developer
3. Business
4. Enterprise

Answer 57

4. Enterprise

Question 58

When using AWS Organizations with consolidated billing what are two valid best practices? (choose 2)

1. Always enable multi-factor authentication (MFA) on the root account
2. Always use a straightforward password on the root account
3. The paying account should be used for billing purposes only
4. Use the paying account for deploying resources
5. Never exceed the limit of 20 linked accounts

Answer 58

1. Always enable multi-factor authentication (MFA) on the root account
2. The paying account should be used for billing purposes only

Question 59

Which statement best describes Amazon Route 53?

1. Amazon Route 53 is a service that enables routing within VPCs in an account
2. Amazon Route 53 is a highly available and scalable Domain Name System (DNS) service
3. Amazon Route 53 enables hybrid cloud models by extending an organization’s on-premise networks into the AWS cloud
4. Amazon Route 53 is a service for distributing incoming connections between a fleet of registered EC2 instances

Answer 59

2. Amazon Route 53 is a highly available and scalable Domain Name System (DNS) service

Question 60

Which type of AWS Elastic Load Balancer should be used if you want to route traffic to targets based on the content of the request such as DNS name or URL path?

1. Application Load Balancer (ALB)
2. Network Load Balancer (NLB)
3. Classic Load Balancer (CLB)
4. AWS Auto Scaling

Answer 60

1. Application Load Balancer (ALB)

Question 61

Which data warehouse service can be used to query data in an Amazon S3 data lake without loading the data?

1. Amazon RDS
2. AWS Lambda
3. Amazon RedShift
4. Amazon EMR

Answer 61

3. Amazon RedShift

Question 62

Under the AWS shared responsibility model what is AWS responsible for? (choose 2)

1. Physical security of the data center
2. Replacement and disposal of disk drives
3. Configuration of security groups
4. Patch management of operating systems
5. Encryption of customer data

Answer 62

1. Physical security of the data center

2. Replacement and disposal of disk drives

Question 63

Which feature allows customers to route traffic via private IP addresses between two VPCs?

1. Endpoints
2. Network Address Translation
3. Virtual Private Gateway
4. Peering Connections

Answer 63

4. Peering Connections

Question 64

Which AWS services can be used to create a “stateless” application? (choose 2)

1. Amazon DynamoDB 2. Amazon RDS
2. Amazon SWF
3. Load balancing with session affinity
4. Amazon EBS

Answer 64

3. Amazon SWF

5. Amazon EBS