AWS CCP 6 Flashcards

1
Q

What type of cloud computing service type do AWS Elastic Beanstalk and Amazon RDS correspond to?

  1. IaaS
  2. PaaS
  3. SaaS
  4. Hybrid
A
  1. PaaS
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Which types of scaling policies are available when using AWS Auto Scaling? (choose 2)

  1. Simple scaling
  2. Deferred scaling
  3. Agile scaling
  4. Step scaling
  5. Warm scaling
A
  1. Simple scaling

4. Step scaling

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Which type of Elastic Load Balancer only distributes traffic using the TCP protocol information?

  1. Application Load Balancer (ALB)
  2. Network Load Balancer (NLB)
  3. Classic Load Balancer (CLB)
  4. No load balancers operate at the TCP level
A
  1. Network Load Balancer (NLB)
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

How can a company configure automatic, asynchronous copying of objects in Amazon S3 buckets across regions?

  1. This is done by default by AWS
  2. By configuring multi-master replication
  3. Using cross-region replication
  4. Using lifecycle actions
A
  1. Using cross-region replication
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

A web server is being maliciously targeted, how a systems administrator deny access from a list of known attacker IP addresses? (choose 2)

  1. Using a local firewall such as iptables
  2. Using a rule on the Internet Gateway
  3. Using a Security Group deny rule
  4. Using a Network ACL deny rule
  5. Through VPC route table configuration
A
  1. Using a local firewall such as iptables

4. Using a Network ACL deny rule

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

How can a Solutions Architect reduce the latency between end-users and applications or content? (choose 2)

  1. Deploy applications in multiple AZs
  2. Deploy applications in regions closest to the end-users
  3. Use S3 Transfer Acceleration to improve application performance
  4. Use Amazon CloudFront to cache content closer to end-users
  5. Use larger EC2 instance types for the applications
A
  1. Deploy applications in regions closest to the end-users

4. Use Amazon CloudFront to cache content closer to end-users

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What is an example of scaling vertically?

  1. AWS Auto Scaling adding more EC2 instances
  2. AWS Lambda adding concurrently executing functions
  3. Increasing the instance size with Amazon RDS
  4. Adding read replicas to an Amazon RDS database
A
  1. Increasing the instance size with Amazon RDS
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

To reduce cost, which of the following services support reservations? (choose 2)

  1. Amazon ElastiCache
  2. Amazon CloudFormation
  3. Amazon RedShift
  4. AWS Elastic Beanstalk
  5. Amazon S3
A
  1. Amazon ElastiCache

3. Amazon RedShift

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Which of the following is not a best practice for protecting the root user of an AWS account?

  1. Don’t share the root user credentials
  2. Enable MFA
  3. Remove administrative permissions
  4. Lock away the AWS root user access keys
A
  1. Remove administrative permissions
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Which AWS database service is a SQL database that supports complex queries and joins?

  1. Amazon DynamoDB
  2. Amazon ElastiCache
  3. Amazon SimpleDB
  4. Amazon RDS
A
  1. Amazon RDS
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

You are evaluating AWS services that can assist with creating scalable application environments. Which of the statements below best describes the Elastic Load Balancer service?

  1. Helps you ensure that you have the correct number of Amazon EC2 instances available to handle the load for your application
  2. A highly available and scalable Domain Name System (DNS) service
  3. Automatically distributes incoming application traffic across multiple targets, such as Amazon EC2 instances, containers, and IP addresses
  4. A network service that provides an alternative to using the Internet to connect customers’ on-premise sites to AWS
A
  1. Automatically distributes incoming application traffic across multiple targets, such as Amazon EC2 instances, containers, and IP addresses
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What are two of the core concepts related to Amazon SNS? (choose 2)

  1. Topics
  2. Conversations
  3. Subscriptions
  4. Templates
  5. Tables
A
  1. Topics

3. Subscriptions

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What types of rules can be defined in a security group? (choose 2)

  1. Inbound
  2. Deny
  3. Tags
  4. Outbound
  5. Stateful
A
  1. Inbound

4. Outbound

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

A Solutions Architect needs to design a cloud-native application architecture using AWS services. What is a typical use case for Amazon Simple Queue Service (SQS)?

  1. Providing fault tolerance for EC2 instances
  2. Co-ordination of work items between different human and non- human workers
  3. Decoupling application components to ensure that there is no dependency on the availability of a single component
  4. Running serverless processes as functions
A
  1. Decoupling application components to ensure that there is no dependency on the availability of a single component
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Which AWS technology enables you to group resources that share one or more tags?

  1. Tag groups
  2. Organization groups
  3. Resource groups
  4. Consolidation groups
A
  1. Resource groups
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Which AWS security tool uses an agent installed in EC2 instances and assesses applications for vulnerabilities and deviations from best practices?

  1. AWS Trusted Advisor
  2. AWS Personal Health Dashboard
  3. AWS TCO Calculator
  4. AWS Inspector
A
  1. AWS Inspector
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

You need to provision a single EBS volume that is 500 GiB in size and needs to support 20,000 IOPS. Which EBS volume type will you select?

  1. General Purpose SSD
  2. Provisioned IOPS SSD
  3. Throughput Optimized HDD
  4. Cold HDD
A
  1. Provisioned IOPS SSD
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

What is the easiest way to store a backup of an EBS volume on Amazon S3?

  1. Write a custom script to copy the data into a bucket
  2. Use S3 lifecycle actions to backup the volume
  3. Create a snapshot of the volume
  4. Use Amazon Kinesis to process the data and store the results in S3
A
  1. Create a snapshot of the volume
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
19
Q

Which AWS storage service is accessed using the Network File System (NFS) protocol?

  1. Amazon EBS
  2. Amazon S3
  3. Amazon Instance Store
  4. Amazon EFS
A
  1. Amazon EFS
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
20
Q

Which of the statements below do not characterize cloud computing?

  1. Cloud computing is the on-demand delivery of compute power
  2. With cloud computing you get to benefit from massive economies of scale
  3. Cloud computing allows you to swap variable expense for capital expense
  4. With cloud computing you can increase your speed and agility
A
  1. Cloud computing allows you to swap variable expense for capital expense
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
21
Q

What are the advantages of running a database service such as Amazon RDS in the cloud versus deploying on-premise? (choose 2)

  1. You have full control of the operating system and can install your own operational tools
  2. Scalability is improved as it is quicker to implement and there is an abundance of capacity
  3. You can use any database software you like, allowing greater flexibility
  4. High availability is easier to implement due to built-in functionality for deploying read replicas and multi-AZ
  5. There are no costs for replicating data between DBs in different data centers or regions
A
  1. Scalability is improved as it is quicker to implement and there is an abundance of capacity
  2. High availability is easier to implement due to built-in functionality for deploying read replicas and multi-AZ
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
22
Q

A Solutions Architect is looking for a way to use standard templates for describing and provisioning their infrastructure resources on AWS. Which AWS service can be used in this scenario?

  1. Amazon SNS
  2. AWS Auto Scaling
  3. AWS Elastic Beanstalk
  4. AWS CloudFormation
A
  1. AWS CloudFormation
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
23
Q

Which type of Elastic Load Balancer allows you to route traffic to instances based on the URL path of the HTTP header?

  1. Application Load Balancer (ALB)
  2. Network Load Balancer (NLB)
  3. Classic Load Balancer (CLB)
  4. This is not supported with any type of ELB
A
  1. Application Load Balancer (ALB)
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
24
Q

What can be used to automatically invoke an AWS Lambda function? (choose 2)

  1. Changes to an Amazon S3 bucket
  2. Creation of an IAM user
  3. An EC2 instance is terminated
  4. Messages added to an Amazon SQS queue
  5. Data is written to an Amazon EBS volume
A
  1. Changes to an Amazon S3 bucket

4. Messages added to an Amazon SQS queue

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
25
Q

Which of the following are pillars from the five pillars of the AWS Well- Architected Framework? (Choose 2)

  1. Resilience
  2. Operational excellence
  3. Confidentiality
  4. Economics
  5. Performance efficiency
A
  1. Operational excellence

5. Performance efficiency

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
26
Q

Up to what layer of the OSI model does AWS Web Application Firewall operate?

  1. Layer 3
  2. Layer 4
  3. Layer 5
  4. Layer 7
A
  1. Layer 7
27
Q

What do you need to log into the AWS console?

  1. User name and password
  2. Key pair
  3. Access key and secret ID
  4. Certificate
A
  1. User name and password
28
Q

Your manager has asked you to explain the benefits of using IAM groups. Which of the below statements are valid benefits? (choose 2)

  1. You can restrict access to the subnets in your VPC
  2. Groups let you specify permissions for multiple users, which can make it easier to manage the permissions for those users
  3. Provide the ability to create custom permission policies
  4. Enables you to attach IAM permission policies to more than one user at a time
  5. Provide the ability to nest groups to create an organizational hierarchy
A
  1. Groups let you specify permissions for multiple users, which can make it easier to manage the permissions for those users
  2. Enables you to attach IAM permission policies to more than one user at a time
29
Q

Which of the authentication options below can be used to authenticate using AWS APIs? (choose 2)

  1. Key pairs
  2. Access keys
  3. Server passwords
  4. Security groups
  5. Server certificates
A
  1. Access keys

4. Server certificates

30
Q

When using Amazon Kinesis Data Streams, where can a consumer store their results? (choose 2)

  1. Amazon S3
  2. Amazon RDS
  3. Amazon DynamoDB
  4. Amazon ECS
  5. Amazon EBS
A
  1. Amazon S3

3. Amazon DynamoDB

31
Q

A company wants to use their on-premise Active Directory service to authenticate with applications on the AWS cloud. Which AWS service can be used to connect their on-premise AD to AWS?

  1. Simple AD
  2. AD Connector
  3. IAM Connector
  4. RADIUS
A
  1. AD Connector
32
Q

Which type of Elastic Load Balancer only distributes traffic using the HTTP, and HTTPS protocol information?

  1. Application Load Balancer (ALB)
  2. Network Load Balancer (NLB)
  3. Classic Load Balancer (CLB)
  4. No load balancers operate at the TCP level
A
  1. Application Load Balancer (ALB)
33
Q

A company is currently running containers using Docker and Kubernetes. The company are interested in consuming a managed Kubernetes service so they don’t need to maintain their own implementation. Which AWS service can they use?

  1. Amazon ECS
  2. Amazon EC2
  3. Amazon EKS
  4. Amazon EBS
A
  1. Amazon EKS
34
Q

You need to connect your company’s on-premise network into AWS and would like to establish an AWS managed VPN service. Which of the following configuration items needs to be setup in your company side of the connection?

  1. A Virtual Private Gateway
  2. A Customer Gateway
  3. A Network Address Translation device
  4. A Firewall
A
  1. A Customer Gateway
35
Q

How can you deploy your EC2 instances so that if a single data center fails you still have instances available?

  1. Across regions
  2. Across subnets
  3. Across Availability Zones
  4. Across VPCs
A
  1. Across Availability Zones
36
Q

When using an Application Load Balancer (ALB), what protocols can be selected for instance health checks? (choose 2)

  1. HTTP
  2. SSL
  3. HTTPS
  4. TCP
  5. ICMP
A
  1. HTTP

3. HTTPS

37
Q

How can a systems administrator specify a script to be run on an EC2 instance during launch?

  1. Metadata
  2. User Data
  3. Run Command
  4. AWS Config
A
  1. User Data
38
Q

How can a company facilitate the sharing of data over private connections between two accounts they own within a region?

  1. Create an internal ELB
  2. Create a subnet peering connection
  3. Create a VPC peering connection
  4. Configure matching CIDR address ranges
A
  1. Create a VPC peering connection
39
Q

Which AWS support plans provide 24x7 access to customer service?

  1. Basic
  2. Business
  3. Developer
  4. All plans
A
  1. All plans
40
Q

What advantages does the AWS cloud provide in relation to cost? (choose 2)

  1. Fine-grained billing
  2. One-off payments for on-demand resources
  3. Ability to turn off resources and not pay for them
  4. Enterprise licensing discounts
  5. Itemized power costs
A
  1. Fine-grained billing

3. Ability to turn off resources and not pay for them

41
Q

Which of the following are NOT features of AWS IAM? (choose 2)

  1. Shared access to your AWS account
  2. Logon using local user accounts
  3. Identity federation
  4. PCI DSS compliance
  5. Charged for what you use
A
  1. Logon using local user accounts

5. Charged for what you use

42
Q

Which HTTP code indicates a successful upload of an object to Amazon S3

  1. 200
  2. 300
  3. 400
  4. 500
A
  1. 200
43
Q

Which of the following records are captured by Amazon CloudTrail? (choose 2)

  1. The identity of the API caller
  2. The CPU usage of the instance
  3. Custom metrics generated by applications
  4. The request parameters
  5. Billing information
A
  1. The identity of the API caller

4. The request parameters

44
Q

Which AWS database service is schema-less and can be scaled dynamically without incurring downtime?

  1. Amazon RDS
  2. Amazon Aurora
  3. Amazon RedShift
  4. Amazon DynamoDB
A
  1. Amazon DynamoDB
45
Q

Under the AWS Shared Responsibility Model, who is responsible for what? (choose 2)

  1. Customers are responsible for compute infrastructure
  2. AWS are responsible for network and firewall configuration
  3. Customers are responsible for networking traffic protection
  4. AWS are responsible for networking infrastructure
  5. Customers are responsible for edge locations
A
  1. Customers are responsible for networking traffic protection
  2. AWS are responsible for networking infrastructure
46
Q

When using Amazon RDS with Read Replicas, which of the deployment options below are valid? (choose 2)

  1. Within an Availability Zone
  2. Cross-edge location
  3. Cross-subnet
  4. Cross-data center
  5. Cross-Availability Zone
A
  1. Within an Availability Zone

5. Cross-Availability Zone

47
Q

What do you need to create to specify how your AWS Auto Scaling Group scales and shrinks?

  1. IAM Policy
  2. Scaling Plan
  3. Scaling Policy
  4. Launch Configuration
A
  1. Scaling Policy
48
Q

Your manager has asked you to explain some of the security features available in the AWS cloud. How can you describe the function of Amazon CloudHSM?

  1. It is a Public Key Infrastructure (PKI)
  2. It provides server-side encryption for S3 objects
  3. It can be used to generate, use and manage encryption keys in the cloud
  4. it is a firewall for use with web applications
A
  1. It can be used to generate, use and manage encryption keys in the cloud
49
Q

Which AWS Glacier data access option retrieves data from an archive in 1- 5 minutes?

  1. Standard
  2. Express
  3. Accelerated
  4. Expedited
A
  1. Expedited
50
Q

With which AWS Storage Gateway Volume Gateway configuration is data stored on-premise and asynchronously backed up to Amazon S3?

  1. Cached volume mode
  2. File gateway mode
  3. Stored volume mode
  4. VTL mode
A
  1. Stored volume mode
51
Q

Which type of AWS database is ideally suited to analytics using SQL queries?

  1. Amazon DynamoDB
  2. Amazon RedShift
  3. Amazon RDS
  4. Amazon S3
A
  1. Amazon RedShift
52
Q

When using Identity and Access Management (IAM) what is the process of gaining access to a resource?

  1. First you authenticate, then you are authorized, and then you gain access
  2. First you are authorized, then you authenticate, and then you gain access
  3. First you authenticate, then you gain access, and then you are authorized
  4. With IAM you do not need to authenticate or be authorized
A
  1. First you authenticate, then you are authorized, and then you gain access
53
Q

Which AWS service makes it easy to coordinate the components of distributed applications as a series of steps in a visual workflow?

  1. Amazon SWF
  2. AWS Step Functions
  3. Amazon SNS
  4. Amazon SES
A
  1. AWS Step Functions
54
Q

A Solutions Architect is creating the business process workflows associated with an order fulfilment system. Which AWS service can assist with coordinating tasks across distributed application components?

  1. Amazon STS
  2. Amazon SQS
  3. Amazon SWF
  4. Amazon SNS
A
  1. Amazon SWF
55
Q

Which types of servers can be migrated using the AWS Server Migration Service? (choose 2)

  1. OpenStack VMs
  2. VMware vSphere VMs
  3. Oracle VMs
  4. Hyper-V VMs
  5. Azure Instances
A
  1. VMware vSphere VMs

4. Hyper-V VMs

56
Q

Which billing and account management service can be used by businesses to sell applications they have built on the AWS cloud?

  1. Amazon Payments
  2. Amazon AppPay
  3. Amazon DevPay
  4. Amazon Billing
A
  1. Amazon DevPay
57
Q

Which AWS service is designed to be used for operational analytics?

  1. Amazon EMR
  2. Amazon Athena
  3. Amazon QuickSight
  4. Amazon Elasticsearch Service
A
  1. Amazon Elasticsearch Service
58
Q

You need to connect your company’s on-premise network into AWS and would like to establish an AWS managed VPN service. Which of the following configuration items needs to be setup on the Amazon VPC side of the connection?

  1. A Virtual Private Gateway
  2. A Customer Gateway
  3. A Network Address Translation device
  4. A Firewall
A
  1. A Virtual Private Gateway
59
Q

Where are Amazon EBS snapshots stored?

  1. On an Amazon EBS instance store
  2. On an Amazon EFS filesystem
  3. Within the EBS block store
  4. On Amazon S3
A
  1. On Amazon S3
60
Q

Which type of Elastic Load Balancer distributes traffic using the TCP, SSL, HTTP and HTTPS protocol information?

  1. Application Load Balancer (ALB)
  2. Network Load Balancer (NLB)
  3. Classic Load Balancer (CLB)
  4. No load balancers operate at the TCP level
A
  1. Classic Load Balancer (CLB)
61
Q

What locations can be used for storing Amazon CloudWatch log files? (choose 2)

  1. Amazon EBS
  2. Amazon CloudWatch Logs
  3. Amazon Storage Gateway
  4. Splunk
  5. Amazon CloudTrail
A
  1. Amazon CloudWatch Logs

4. Splunk

62
Q

How many snapshots are required in order to restore an Amazon EBS volume?

  1. The most recent snapshot only
  2. The first and most recent snapshot
  3. All snapshots
  4. The first snapshot only
A
  1. The most recent snapshot only
63
Q

To which destinations can Amazon S3 NOT send event notifications? (choose 2)

  1. DynamoDB Table
  2. SNS Topics
  3. SQS Queue
  4. CloudWatch
  5. Lambda functions
A
  1. DynamoDB Table

4. CloudWatch

64
Q

Which type of scaling does AWS Auto Scaling provide?

  1. Vertical
  2. Linear
  3. Horizontal
  4. Incremental
A
  1. Horizontal