AWS Certified Cloud Practitioner Practice Test 1(Bonso) Flashcards
Which among the options below can you use to launch a new Amazon RDS database cluster to your VPC? (Select TWO.) A.AWS Management Console B.AWS CodePipeline C.AWS CloudFormation D.AWS Concierge E.AWS Systems Manager
A.AWS Management Console
C.AWS CloudFormation
Explanation:
Amazon Relational Database Service (Amazon RDS) makes it easy to set up, operate, and scale a relational database in the cloud. It provides cost-efficient and resizable capacity while automating time-consuming administration tasks such as hardware provisioning, database setup, patching and backups. It frees you to focus on your applications so you can give them the fast performance, high availability, security and compatibility they need.
You can launch a new RDS database cluster using the AWS Management Console, AWS CLI, and AWS CloudFormation. The AWS Management Console provides a web-based way to administer AWS services. You can sign in to the console and create, list, and perform other tasks with AWS services for your account. These tasks might include starting and stopping Amazon EC2 instances and Amazon RDS databases, creating Amazon DynamoDB tables, creating IAM users, and so on. The AWS Command Line Interface (CLI), on the other hand, is a unified tool to manage your AWS services.
AWS CloudFormation provides a common language for you to describe and provision all the infrastructure resources in your cloud environment. CloudFormation allows you to use programming languages or a simple text file to model and provision, in an automated and secure manner, all the resources needed for your applications across all regions and accounts.
Hence, the correct answers are: AWS Management Console and AWS CloudFormation.
AWS Concierge is incorrect because this is actually a senior customer service agent who is assigned to your account when you subscribe to an Enterprise or qualified Reseller Support plan. This customer service agent is not authorized to launch an RDS cluster on your behalf.
AWS CodePipeline is incorrect because this is just a fully managed continuous delivery service that helps you automate your release pipelines for fast and reliable application and infrastructure updates.
AWS Systems Manager is incorrect because this is just a unified user interface so you can view operational data from multiple AWS services, and allows you to automate operational tasks across your AWS resources.
In AWS, _______ is one of the advantages of Consolidated Billing.
A.Go global in minutes
B.Volume pricing
C.The ability to have one member account to pay the charges of all the master accounts
D. Consolidation of both AWS and AISPL accounts into one billing
B.Volume pricing
Explanation
For billing purposes, AWS treats all the accounts in the organization as if they were one account. Some services, such as Amazon EC2 and Amazon S3, have volume pricing tiers across certain usage dimensions that give you lower prices the more you use the service. With consolidated billing, AWS combines the usage from all accounts to determine which volume pricing tiers to apply, giving you a lower overall price whenever possible. AWS then allocates each linked account a portion of the overall volume discount based on the account’s usage.
The Bills page for each linked account displays an average tiered rate that is calculated across all the accounts on the consolidated bill for the organization. For example, let’s say that Bob’s consolidated bill includes both Bob’s own account and Susan’s account. Bob’s account is the payer account, so he pays the charges for both himself and Susan.
As shown in the following illustration, Bob transfers 8 TB of data during the month and Susan transfers 4 TB.
For the purposes of this example, AWS charges $0.17 per GB for the first 10 TB of data transferred and $0.13 for the next 40 TB. This translates into $174.08 per TB (= .171024) for the first 10 TB, and $133.12 per TB (= .131024) for the next 40 TB. Remember that 1 TB = 1024 GB.
For the 12 TB that Bob and Susan used, Bob’s payer account is charged:
= ($174.08 * 10 TB) + ($133.12 * 2 TB)
= $1740.80 + $266.24
= $2,007.04
The average cost-per-unit of data transfer out for the month is therefore $2,007.04 / 12 TB = $167.25 per TB. That is the average tiered rate that is shown on the Bills page and in the downloadable cost report for each linked account on the consolidated bill.
Without the benefit of tiering across the consolidated bill, AWS would have charged Bob and Susan each $174.08 per TB for their usage, for a total of $2,088.96.
Hence, the correct answer in this scenario is Volume pricing.
The option that says: consolidation of both AWS and AISPL accounts into one billing is incorrect because AWS and AISPL (Amazon Internet Services Private Limited) accounts are considered as two different entities and hence, can’t be consolidated together.
The option that says: Go global in minutes is incorrect because this is one of the advantages of Cloud Computing and not Consolidated Billing.
The option that says: The ability to have one member account to pay the charges of all the master accounts is incorrect because it is actually the other way around. Every organization in AWS Organizations has a master account that pays the charges of all the member accounts.
_________ is one of the components of AWS Global Infrastructure which consists of one or more discrete data centers each with redundant power, networking, and connectivity, and housed in separate facilities.
A.AWS Region
B.VPC
C.Edge Location
D.Availability Zone
D.Availability Zone
Explanation:
The AWS Cloud infrastructure is built around AWS Regions and Availability Zones. An AWS Region is a physical location in the world where we have multiple Availability Zones. Availability Zones consist of one or more discrete data centers, each with redundant power, networking, and connectivity, housed in separate facilities.
These Availability Zones offer you the ability to operate production applications and databases that are more highly available, fault-tolerant, and scalable than would be possible from a single data center. The AWS Cloud operates in over 60 Availability Zones within over 20 geographic Regions around the world, with announced plans for more Availability Zones and Regions.
Each Amazon Region is designed to be completely isolated from the other Amazon Regions. This achieves the greatest possible fault tolerance and stability. Each Availability Zone is isolated, but the Availability Zones in a Region are connected through low-latency links. AWS provides you with the flexibility to place instances and store data within multiple geographic regions as well as across multiple Availability Zones within each AWS Region.
Each Availability Zone is designed as an independent failure zone. This means that Availability Zones are physically separated within a typical metropolitan region and are located in lower-risk flood plains (specific flood zone categorization varies by AWS Region). In addition to discrete uninterruptable power supply (UPS) and onsite backup generation facilities, they are each fed via different grids from independent utilities to further reduce single points of failure. Availability Zones are all redundantly connected to multiple tier-1 transit providers.
Hence, the correct answer is Availability Zone.
Edge location is incorrect because this is just a site that CloudFront uses to cache copies of your content for faster delivery to users at any location.
AWS Region is incorrect because this consists of multiple Availability Zones (AZ).
VPC is incorrect because it is just a service that lets you provision a logically isolated section of the AWS Cloud where you can launch AWS resources in a virtual network that you define.
Which of the following below are the benefits of using Consolidated billing in AWS? (Select TWO.)
A.Allows one member account to pay the charges of all the master accounts
B.Share the volume pricing and Reserved Instance discounts by combining the usage across all accounts in the organization
C.You get one bill for multiple accounts
D.Consolidate all the bills from multiple AWS accounts for only $1 every month
E.COnsolidate together the billing and payment of both AWS accounts and Amazon Internet Services Pvt. Ltd (AISPL) accounts
B.Share the volume pricing and Reserved Instance discounts by combining the usage across all accounts in the organization
C.You get one bill for multiple accounts
Explanation:
You can use the consolidated billing feature in AWS Organizations to consolidate billing and payment for multiple AWS accounts or multiple Amazon Internet Services Pvt. Ltd (AISPL) accounts. Every organization in AWS Organizations has a master account that pays the charges of all the member accounts. The master account is also called a payer account, and the member account is also known as a linked account.
Consolidated billing has the following benefits:
One bill – You get one bill for multiple accounts.
Easy tracking – You can track the charges across multiple accounts and download the combined cost and usage data.
Combined usage – You can combine the usage across all accounts in the organization to share the volume pricing discounts and Reserved Instance discounts. This can result in a lower charge for your project, department, or company than with individual standalone accounts.
No extra fee – Consolidated billing is offered at no additional cost.
If you have access to the payer account, you can see a combined view of the AWS charges that the linked accounts incur. You also can get a cost report for each linked account. AWS and AISPL accounts can’t be consolidated together. If your contact address is in India, you can use AWS Organizations to consolidate AISPL accounts within your organization.
When a linked account leaves an organization, the linked account can no longer access Cost Explorer data that was generated when the account was in the organization. The data isn’t deleted, and the payer account in the organization can still access the data. If the linked account rejoins the organization, the linked account can access the data again.
Hence, the correct answers for this scenario are:
- You get one bill for multiple accounts
- Share the volume pricing and Reserved Instance discounts by combining the usage across all accounts in the organization
The option that says: Consolidated all the bills from multiple AWS accounts for only $1 every month is incorrect because this feature is offered at no additional cost.
The option that says: Allows one member account to pay the charges of all the master accounts is incorrect because it should be the other way around. The master account pays the charges of all the member accounts.
The option that says: Consolidate together the billing and payment of both AWS accounts and Amazon Internet Services Pvt. Ltd (AISPL) accounts is incorrect because these two can’t be consolidated together.
Which service should you use if there is a need to launch a customized self-hosted database which requires a scheduled shutdown every night to save on cost?
A.Amazon Redshift
B.Amazon EC2 instance with an Instance Store volume
C.Amazon DynamoDB
D.Amazon EC2 instance with an EBS volume
D.Amazon EC2 instance with an EBS volume
Explanation:
Amazon EBS provides durable, block-level storage volumes that you can attach to a running instance. You can use Amazon EBS as a primary storage device for data that requires frequent and granular updates. For example, Amazon EBS is the recommended storage option when you run a database on an instance.
An EBS volume behaves like a raw, unformatted, external block device that you can attach to a single instance. The volume persists independently from the running life of an instance. After an EBS volume is attached to an instance, you can use it like any other physical hard drive. As illustrated in the figure, multiple volumes can be attached to an instance. You can also detach an EBS volume from one instance and attach it to another instance. You can dynamically change the configuration of a volume attached to an instance. EBS volumes can also be created as encrypted volumes using the Amazon EBS encryption feature.
Hence, the correct answer for this scenario is Amazon EC2 instance with an EBS volume.
Amazon DynamoDB is incorrect because this is a non-relational database service that is fully-managed by AWS. This means that you have no control over its underlying server.
Amazon EC2 instance with an Instance Store volume is incorrect because if you use this for your self-hosted database, all of your data will be lost after you shut down the instance. You have to use an EBS Volume instead in order to persist the data for the scheduled nightly shutdown.
Amazon Redshift is incorrect because just like Amazon DynamoDB, you don’t have control over its underlying server and hence, you won’t be able to schedule a nightly shutdown. This is a fully managed, petabyte-scale data warehouse service in the cloud.
In the Shared Responsibility Model, which of the following options below is a shared control between AWS and the customer?
A.Server-side data encryption
B.Awareness and training
C.Client-side data encryption
D.Physical and environmental controls of the AWS data centers
B.Awareness and training
Explanation:
Deploying workloads on Amazon Web Services (AWS) helps streamline time-to-market, increase business efficiency, and enhance user performance for many organizations. But as you capitalize on this strategy, it is important to understand your role in securing your AWS environment.
Based on the AWS Shared Responsibility Model, AWS provides a data center and network architecture built to meet the requirements of the most security-sensitive organizations, while you are responsible for securing services built on top of this infrastructure, notably including network traffic from remote networks.
This customer/AWS shared responsibility model also extends to IT controls. Just as the responsibility to operate the IT environment is shared between AWS and its customers, so is the management, operation and verification of IT controls shared. AWS can help relieve customer burden of operating controls by managing those controls associated with the physical infrastructure deployed in the AWS environment that may previously have been managed by the customer. As every customer is deployed differently in AWS, customers can take advantage of shifting management of certain IT controls to AWS which results in a (new) distributed control environment.
Customers can then use the AWS control and compliance documentation available to them to perform their control evaluation and verification procedures as required. Below are examples of controls that are managed by AWS, AWS Customers and/or both.
Inherited Controls: Controls which a customer fully inherits from AWS.
- Physical and Environmental controls
Shared Controls: Controls which apply to both the infrastructure layer and customer layers, but in completely separate contexts or perspectives. In a shared control, AWS provides the requirements for the infrastructure and the customer must provide their own control implementation within their use of AWS services.
Examples include:
- Patch Management: AWS is responsible for patching and fixing flaws within the infrastructure, but customers are responsible for patching their guest OS and applications. - Configuration Management: AWS maintains the configuration of its infrastructure devices, but a customer is responsible for configuring their own guest operating systems, databases, and applications. - Awareness & Training: AWS trains AWS employees, but a customer must train their own employees.
Customer Specific: Controls which are solely the responsibility of the customer based on the application they are deploying within AWS services.
Examples include:
- Service and Communications Protection or Zone Security which may require a customer to route or zone data within specific security environments.
Hence, the correct answer is Awareness and training.
The options that say: Client-side data encryption and Server-side data encryption are incorrect because these items fall under the responsibilities of the customer.
The option that says: Physical and environmental controls of the AWS data centers is incorrect because this is the sole responsibility of AWS.
Which of the following IAM identities is associated with the access keys that are used in managing your cloud resources via the AWS Command Line Interface (AWS CLI)?
A.IAM Group
B.IAM Role
C.IAM User
D.IAM Policy
C.IAM User
Explanation:
Access keys are long-term credentials for an IAM user or the AWS account root user. You can use access keys to sign programmatic requests to the AWS CLI or AWS API (directly or using the AWS SDK).
Access keys consist of two parts:
- Access key ID (for example: AKIAIOSTUTORIALSDOJO)
- Secret access key (for example: wJalrXUtnFEMI/K7MDENG/bTutorialsDojoKEY).
Like a user name and password, you must use both the access key ID and secret access key together to authenticate your requests. Manage your access keys as securely as you do your user name and password. It is quite important that you do not provide your access keys to a third party, even to help find your canonical user ID. By doing this, you might give someone permanent access to your account.
As a best practice, use temporary security credentials (IAM roles) instead of access keys, and disable any AWS account root user access keys. When you create an access key pair, save the access key ID and secret access key in a secure location. The secret access key is available only at the time you create it. If you lose your secret access key, you must delete the access key and create a new one.
An IAM user is an entity that you create in AWS. The IAM user represents the person or service who uses the IAM user to interact with AWS. The primary use for IAM users is to give people the ability to sign in to the AWS Management Console for interactive tasks and to make programmatic requests to AWS services using the API or CLI.
A user in AWS consists of a name, a password to sign into the AWS Management Console, and up to two access keys that can be used with the API or CLI. When you create an IAM user, you grant it permissions by making it a member of a group that has appropriate permission policies attached, or by directly attaching policies to the user. You can also clone the permissions of an existing IAM user, which automatically makes the new user a member of the same groups and attaches all the same policies.
Hence, the correct answer is IAM User.
IAM Role is incorrect because although you can use this IAM identity for AWS CLI, it is not associated with access keys just as what is clearly mentioned in the scenario.
IAM Group is incorrect because this is just a collection of IAM users and is not used for the AWS CLI tool. You can use IAM groups to specify permissions for a collection of users, which can make those permissions easier to manage for those users.
IAM Policy is incorrect because this is actually not considered as one of the IAM identities and it is not associated with the access keys used for the AWS CLI. You manage access in AWS by creating policies and attaching them to IAM identities (users, groups of users, or roles) or AWS resources. A policy is an object in AWS that, when associated with an identity or resource, defines their permissions.
Which statement below is correct regarding the components of the AWS Global Infrastructure?
A.An edge location contains multiple AWS Regions
B.An AWS Region contains multiple Availability Zones
C.An Availability Zone contains multiple AWS regions
D.An Availability Zones contains edge locations
B.An AWS Region contains multiple Availability Zones
Explanation:
The AWS Global Infrastructure delivers a cloud infrastructure companies can depend on—no matter their size, changing needs, or challenges. The AWS Global Infrastructure is designed and built to deliver the most flexible, reliable, scalable, and secure cloud computing environment with the highest quality global network performance available today. Every component of the AWS infrastructure is designed and built for redundancy and reliability, from regions to networking links to load balancers to routers and firmware.
AWS provides a more extensive global footprint than any other cloud provider, and it opens up new Regions faster than other providers. To support its global footprint and ensure customers are served across the world, AWS maintains multiple geographic regions, including Regions in North America, South America, Europe, Asia Pacific, and the Middle East.
Each AWS Region provides full redundancy and connectivity to the network. Unlike other cloud providers, who define a region as a single data center, at AWS Regions consist of multiple Availability Zones, each of which is a fully isolated partition of the AWS infrastructure that consists of discrete data centers, each with redundant power, networking, and connectivity, and each housed in separate facilities.
An Availability Zone gives customers the ability to operate production applications and databases that are more highly available, fault-tolerant, and scalable than would be possible from a single data center. All AZs are interconnected with high-bandwidth, low-latency networking, over fully redundant, dedicated metro fiber providing high-throughput, low-latency networking between AZs. The network performance is sufficient to accomplish synchronous replication between AZs.
Hence, the correct answer is: An AWS Region contains multiple Availability Zones.
The option that says: An Availability Zone contains multiple AWS Regions is incorrect because it is actually the other way around. It is the AWS Region which contains multiple Availability Zones.
The option that says: An Availability Zone contains edge locations is incorrect because this is a false description of the relationship between these two components. An edge location is simply a site that CloudFront uses to cache copies of your content for faster delivery to users in any location.
The option that says: An edge location contains multiple AWS Regions is incorrect because an edge location and an AWS Region are not geographically related. Hence, it is important to note that an edge location does not contain multiple AWS Regions.
Which AWS service should you use if you need to launch a highly scalable MySQL database?
A.Amazon Aurora
B.Amazon Elasticache
C.Amazon Redshift
D.Amazon DynamoDB
A.Amazon Aurora
Explanation:
Amazon Aurora is a MySQL and PostgreSQL-compatible relational database built for the cloud, that combines the performance and availability of traditional enterprise databases with the simplicity and cost-effectiveness of open source databases.
Amazon Aurora is up to five times faster than standard MySQL databases and three times faster than standard PostgreSQL databases. It provides the security, availability, and reliability of commercial databases at 1/10th the cost. Amazon Aurora is fully managed by Amazon Relational Database Service (RDS), which automates time-consuming administration tasks like hardware provisioning, database setup, patching, and backups.
Amazon Aurora features a distributed, fault-tolerant, self-healing storage system that auto-scales up to 64TB per database instance. It delivers high performance and availability with up to 15 low-latency read replicas, point-in-time recovery, continuous backup to Amazon S3, and replication across three Availability Zones (AZs).
Hence, the correct answer is Amazon Aurora.
Amazon Redshift is incorrect because this is just a data warehousing service and doesn’t support MySQL.
Amazon DynamoDB is incorrect because although this service is highly scalable, this is primarily used for nonrelational databases only.
Amazon ElastiCache is incorrect because this service just makes it easy for you to deploy and run Memcached or Redis protocol-compliant server nodes in the cloud.
Which AWS service allows your EC2 compute capacity to automatically scale based on the incoming traffic?
A.Amazon Macie
B.AWS Auto scaling
C.Amazon LightSail
D.AWS CloudTrail
B.AWS Auto scaling
Explanation:
AWS Auto Scaling enables you to configure automatic scaling for the AWS resources that are part of your application in a matter of minutes. The AWS Auto Scaling console provides a single user interface to use the automatic scaling features of multiple AWS services. You can configure automatic scaling for individual resources or for whole applications.
With AWS Auto Scaling, you configure and manage scaling for your resources through a scaling plan. The scaling plan uses dynamic scaling and predictive scaling to automatically scale your application’s resources. This ensures that you add the required computing power to handle the load on your application and then remove it when it’s no longer required. The scaling plan lets you choose scaling strategies to define how to optimize your resource utilization. You can optimize for availability, for cost, or a balance of both. Alternatively, you can create custom scaling strategies.
Hence, the correct answer is: AWS Auto Scaling.
Amazon Macie is incorrect because this is just a security service that uses machine learning to automatically discover, classify, and protect sensitive data in AWS.
AWS CloudTrail is incorrect because this service is primarily used for governance, compliance, operational auditing, and risk auditing of your AWS account.
Amazon LightSail is incorrect because this service is just a virtual private server (VPS) solution and is not used for Amazon EC2 Scaling. This service provides developers compute, storage, and networking capacity and capabilities to deploy and manage websites and web applications in the cloud.
A company which has a basic support plan needs resources to deploy, test, and improve their AWS environment. Which of the following can they use for free?
A.Technical Account manager consultation
B.AWS Support API for programmatic case management
C.AWS online documentation, whitepapers, blogs and support forms
D.In-person classes with an accredited AWS instructor
C.AWS online documentation, whitepapers, blogs and support forms
Explanation:
AWS Support offers a range of plans that provide access to tools and expertise that support the success and operational health of your AWS solutions. All support plans provide 24x7 access to customer service, AWS documentation, whitepapers, and support forums. For technical support and more resources to plan, deploy, and improve your AWS environment, you can select a support plan that best aligns with your AWS use case.
AWS Support offers four support plans: Basic, Developer, Business, and Enterprise. The Basic plan is free of charge and offers support for account and billing questions and service limit increases. The other plans offer an unlimited number of technical support cases with pay-by-the-month pricing and no long-term contracts, providing the level of support that meets your needs.
All AWS customers automatically have around-the-clock access to these features of the Basic support plan:
- Customer Service: one-on-one responses to account and billing questions
- Support forums
- Service health checks
- Documentation, whitepapers, and best-practice guides
In addition, customers with a Business or Enterprise support plan have access to these features:
- Use-case guidance: what AWS products, features, and services to use to best support your specific needs.
- AWS Trusted Advisor, which inspects customer environments. Then, Trusted Advisor identifies opportunities to save money, close security gaps, and improve system reliability and performance.
- An API for interacting with Support Center and Trusted Advisor. This API allows for automated support case management and Trusted Advisor operations.
- Third-party software support: help with Amazon Elastic Compute Cloud (EC2) instance operating systems and configuration. Also, help with the performance of the most popular third-party software components on AWS.
The AWS Support API provides access to some of the features of the AWS Support Center. This API allows programmatic access to AWS Support Center features to create, manage, and close your support cases, and operationally manage your Trusted Advisor check requests and status. AWS provides this access for AWS Support customers who have a Business or Enterprise support plan.
Hence, the correct answer is: AWS online documentation, whitepapers, blogs and support forums.
The option that says: AWS Support API for programmatic case management is incorrect because the AWS Support API is only accessible to customers who have a Business or Enterprise support plan.
The option that says: Technical Account Manager consultation is incorrect because this feature only applies to customers with an Enterprise Support plan.
The option that says: In-person classes with an accredited AWS instructor is incorrect because this activity is not free.
Which of the following can a developer use to interact with your AWS services? (Select TWO.) A.AWS Artifact B.AWS Organizations C.AWS Command Line Interface D.Elastic Network Interface E.AWS SDKs
C.AWS Command Line Interface
E.AWS SDKs
Explanation:
The AWS Command Line Interface (AWS CLI) is an open-source tool that enables you to interact with AWS services using commands in your command-line shell. With minimal configuration, you can start using functionality equivalent to that provided by the browser-based AWS Management Console from the command prompt in your favorite terminal program such as Linux shell or the Windows command line.
You can also use Software Development Kits (SDKs) to interact with your AWS services. SDKs take the complexity out of coding by providing language-specific APIs for AWS services to enable you to develop cloud applications much faster.
In addition, you can also utilize aws-shell which is an integrated shell program for working with the AWS CLI. Take note that this is just an interactive productivity booster for the AWS CLI which is why you have to install the CLI first before you can use this.
You need to have access keys in order to use the AWS CLI. Access keys consist of an access key ID and secret access key, which are used to sign programmatic requests that you make to AWS. If you don’t have access keys, you can create them from the AWS Management Console. As a best practice, do not use the AWS account root user access keys for any task where it’s not required.
Hence, the correct answers are AWS Command Line Interface and AWS SDKs.
Elastic Network Interface is incorrect because this is just a logical networking component in a VPC that represents a virtual network card.
AWS Artifact is incorrect because it simply provides on-demand access to AWS’ security and compliance reports and select online agreements. The compliance reports include Service Organization Control (SOC) reports, Payment Card Industry (PCI) reports, and certifications from accreditation bodies across geographies and compliance verticals that validate the implementation and operating effectiveness of AWS security controls.
AWS Organizations is incorrect because this is just an account management service that enables you to consolidate multiple AWS accounts into an organization that you create and centrally manage.
For security audit, a company needs to download the compliance-related documents in AWS such as ISO certifications, Payment Card Industry (PCI), and Service Organization Control (SOC) reports. Which of the following should they use to retrieve these files?
A.AWS Artifact
B.AWS Trusted Advisor
C.AWS CloudTrail
D.AWS Certificate Manager
A.AWS Artifact
Explanation:
AWS Artifact is your go-to, central resource for compliance-related information that matters to you. It provides on-demand access to AWS’ security and compliance reports and select online agreements. Reports available in AWS Artifact include our Service Organization Control (SOC) reports, Payment Card Industry (PCI) reports, and certifications from accreditation bodies across geographies and compliance verticals that validate the implementation and operating effectiveness of AWS security controls. Agreements available in AWS Artifact include the Business Associate Addendum (BAA) and the Nondisclosure Agreement (NDA).
All AWS Accounts have access to AWS Artifact. Root users and IAM users with admin permissions can download all audit artifacts available to their account by agreeing to the associated terms and conditions. You will need to grant IAM users with non-admin permissions access to AWS Artifact using IAM permissions. This allows you to grant a user access to AWS Artifact, while restricting access to other services and resources within your AWS Account.
Hence, the correct answer in this scenario is AWS Artifact.
AWS Trusted Advisor is incorrect because this is just an online tool that provides you real-time guidance to help you provision your resources following AWS best practices. It inspects your AWS environment and makes recommendations for saving money, improving system performance and reliability, or closing security gaps.
AWS Certificate Manager is incorrect because this is a service that lets you easily provision, manage, and deploy public and private Secure Sockets Layer/Transport Layer Security (SSL/TLS) certificates for use with AWS services and your internal connected resources. This service does not store certifications or compliance-related documents.
AWS CloudTrail is incorrect because although this service is helpful for auditing your AWS resources, it doesn’t store any compliance-related documents which are mentioned in the scenario. This simply is a service that enables governance, compliance, operational auditing, and risk auditing of your AWS account.
Which of the following allows you to categorize and track your AWS costs on a detailed level?
A.AWS Budgets
B.Cost allocation tags
C.Consolidated Billing
D.Amazon Aurora Backtrack
B.Cost allocation tags
Explanation:
A tag is a label that you or AWS assigns to an AWS resource. Each tag consists of a key and a value. A key can have more than one value. You can use tags to organize your resources, and cost allocation tags to track your AWS costs on a detailed level.
After you activate cost allocation tags, AWS uses these tags to organize your resource costs on your cost allocation report, to make it easier for you to categorize and track your AWS costs. AWS provides two types of cost allocation tags, an AWS generated tags and user-defined tags. AWS defines, creates, and applies the AWS generated tags for you, and you define, create, and apply user-defined tags. You must activate both types of tags separately before they can appear in Cost Explorer or on a cost allocation report.
Hence, the correct answer is Cost Allocation Tags.
Consolidated Billing is incorrect because this is just a feature in AWS Organizations to consolidate all of the billing and payments for multiple AWS accounts or multiple Amazon Internet Services Pvt. Ltd (AISPL) account.
AWS Budgets is incorrect because this just gives you the ability to set custom budgets that alert you when your costs or usage exceed (or are forecasted to exceed) your budgeted amount.
Amazon Aurora Backtrack is incorrect because this is simply one of the features of Amazon Aurora that allows you to easily undo mistakes on your database. If you mistakenly perform a destructive action, such as a DELETE without a WHERE clause, you can backtrack the DB cluster to a time before the destructive action with minimal interruption of service.
What service provides the lowest-cost storage option for retaining database backups which also allows occasional data retrieval in minutes?
A.Amazon EBS
B.Amazon Glacier
C.AWS EFS
D.Amazon S3
B.Amazon Glacier
Explanation:
Amazon S3 Glacier and S3 Glacier Deep Archive are designed to be the lowest-cost Amazon S3 storage classes, allowing you to archive large amounts of data at a very low cost. This makes it feasible to retain all the data you want for use cases like data lakes, analytics, IoT, machine learning, compliance, and media asset archiving. You pay only for what you need, with no minimum commitments or up-front fees.
Amazon S3 Glacier and S3 Glacier Deep Archive are a secure, durable, and extremely low-cost Amazon S3 cloud storage classes for data archiving and long-term backup. They are designed to deliver 99.999999999% durability, and provide comprehensive security and compliance capabilities that can help meet even the most stringent regulatory requirements.
Customers can store data for as little as $1 per terabyte per month, a significant savings compared to on-premises solutions. To keep costs low yet suitable for varying retrieval needs, Amazon S3 Glacier provides three options for access to archives, from a few minutes to several hours, and S3 Glacier Deep Archive provides two access options ranging from 12 to 48 hours.
Hence, the correct answer is Amazon Glacier.
Amazon S3 is incorrect because this type of storage service costs more than Glacier.
Amazon EBS is incorrect because this is a type of block storage that is not suitable to be used for database backups. It is also more expensive than Glacier.
Amazon EFS is incorrect because this is a type of POSIX-compliant file storage suitable to be used as a file system and not for storing backups.
Which of the following Cost Management Tools allows you to track your Amazon EC2 Reserved Instance (RI) usage and view the discounted RI rate that was charged to your resources?
A.AWS Cost Explorer
B.AWS Cost and Usage report
C.AWS Systems Manager
D.AWS Budgets
B.AWS Cost and Usage report
Explanation:
The Cost and Usage Report is your one-stop-shop for accessing the most granular data about your AWS costs and usage. You can also load your cost and usage information into Amazon Athena, Amazon Redshift, AWS QuickSight, or a tool of your choice.
It lists AWS usage for each service category used by an account and its IAM users in hourly or daily line items, as well as any tags that you have activated for cost allocation purposes. You can also customize the AWS Cost & Usage Report to aggregate your usage data to the daily or hourly level.
With the AWS Cost & Usage Report, you can do the following:
Access comprehensive AWS cost and usage information
- The AWS Cost & Usage Report gives you the ability to delve deeply into your AWS cost and usage data, understand how you are using your AWS implementation, and identify opportunities for optimization.
Track your Amazon EC2 Reserved Instance (RI) usage
- Each line item of usage that receives an RI discount contains information about where the discount was allocated. This makes it easier to trace which instances are benefitting from specific reservations.
Leverage strategic data integrations
- Using the Amazon Athena data integration feature, you can quickly query your cost and usage information using standard SQL queries. You can also upload your data directly into Amazon Redshift or Amazon QuickSight.
One of the core benefits of the AWS Cost & Usage Report is the wealth of RI-related data that is made available to you. It can be customized to collect cost and usage data at the daily and monthly levels of detail and is updated at least once per day. Each line item of usage that receives an RI discount contains information about where the discount came from. This makes it easier to trace which instances are benefitting from specific reservations. If desired, the AWS Cost & Usage Report can even be ingested directly into Amazon Athena, Amazon QuickSight, or your Amazon Redshift cluster.
Hence, the correct answer is AWS Cost and Usage report.
AWS Cost Explorer is incorrect because this one has a Reserved Instance Utilization and Coverage report, it doesn’t show the discounted RI rate that was charged to your resources unlike the AWS Cost and Usage report.
AWS Budgets is incorrect because it simply gives you the ability to set custom budgets that alert you when your costs or usage exceed (or are forecasted to exceed) your budgeted amount.
AWS Systems Manager is incorrect because this is not a cost management tool. The Systems Manager simply provides a unified user interface so you can view operational data from multiple AWS services and allows you to automate operational tasks across your AWS resources.
A customer is planning to migrate some of their web applications that are hosted on-premises to AWS. Which of the following is a benefit of using AWS over virtualized data centers?
A.Higher variable costs and higher upfront costs
B.Lower variable costs and lower upfront costs
C.Higher variable costs and lower upfront costs
D.Lower variable costs and higher upfront costs
B.Lower variable costs and lower upfront costs
Explanation:
AWS helps customers reduce large capital investments with lower variable costs. AWS also gives customers the opportunity to work on their own terms without long-term lock-in, reducing the risks from unplanned capacity and demand. AWS helps finance teams plan and forecast more effectively, while giving IT teams the capacity and resources they need, even during peak periods.
In 2006, Amazon Web Services (AWS) began offering IT infrastructure services to businesses as web services—now commonly known as cloud computing. One of the key benefits of cloud computing is the opportunity to replace upfront capital infrastructure expenses with low variable costs that scale with your business. With the cloud, businesses no longer need to plan for and procure servers and other IT infrastructure weeks or months in advance. Instead, they can instantly spin up hundreds or thousands of servers in minutes and deliver results faster.
Hence, the correct answer is lower variable costs and lower upfront costs.
The option that says: Higher variable costs and higher upfront costs is incorrect because AWS actually provides the opposite: lower variable costs and lower upfront costs.
The option that says: Higher variable costs and lower upfront costs is incorrect because although it is true that AWS provides lower upfront costs, it does not have higher variable costs.
The option that says: Lower variable costs and higher upfront costs is incorrect because although AWS provides lower variable costs, it also offers lower upfront costs as well.
A company is currently using an On-Demand EC2 instance for their application which they plan to migrate to a Reserved EC2 Instance to save on cost. Which of the following is the most cost-effective option if the application being hosted would be used for more than 3 years?
A.All Upfront Covertible Reserved Instance pricing for a 1-year term
B.No Upfront Convertible reserved instances pricing for a 3-year term
C.All Upfront, Standard Reserved Instance pricing for a 3-year term
D.No Upfront Standard Reserved Instance pricing for a 1-year term that is renewed every year
C.All Upfront, Standard Reserved Instance pricing for a 3-year term
Explanation:
Reserved Instances provide you with a significant discount (up to 75%) compared to On-Demand instance pricing. In addition, when Reserved Instances are assigned to a specific Availability Zone, they provide a capacity reservation, giving you additional confidence in your ability to launch instances when you need them.
Standard Reserved Instances provide you with a significant discount (up to 75%) compared to On-Demand instance pricing and can be purchased for a 1-year or 3-year term. The average discount off On-Demand instances varies based on your term and chosen payment options (up to 40% for 1-year and 60% for a 3-year term). Customers have the flexibility to change the Availability Zone, the instance size, and networking type of their Standard Reserved Instances.
Convertible Reserved Instances provide you with a significant discount (up to 54%) compared to On-Demand Instances and can be purchased for a 1-year or 3-year term. Purchase Convertible Reserved Instances if you need additional flexibility, such as the ability to use different instance families, operating systems, or tenancies over the Reserved Instance term.
You can choose between three payment options when you purchase a Standard or Convertible Reserved Instance:
All Upfront option: You pay for the entire Reserved Instance term with one upfront payment. This option provides you with the largest discount compared to On-Demand instance pricing.
Partial Upfront option: You make a low upfront payment and are then charged a discounted hourly rate for the instance for the duration of the Reserved Instance term.
No Upfront option: Does not require any upfront payment and provides a discounted hourly rate for the duration of the term.
Here’s a sample calculation to see the price difference between a Standard RI and Convertible RI on various payment options for 1-year and 3-year terms:
As a general rule, Standard RI provides more savings than Convertible RI, which means that the former is the cost-effective option. The All Upfront option provides you with the largest discount compared with the other types. Opting for a longer compute reservation, such as the 3-year term, gives us greater discount as opposed to a shorter 1-year renewable term.
Therefore, using an All Upfront, Standard Reserved Instance pricing for a 3-year term is the most cost-effective option in this scenario.
No Upfront Standard Reserved Instance pricing for a 1-year term that is renewed every year is incorrect because although using a Standard RI is more affordable than a Convertible RI, it is still much more cost-efficient if you use the All Upfront payment option for a longer 3-year term period.
All Upfront Convertible Reserved Instance pricing for a 1-year term is incorrect because although an All Upfront payment option provides you with the largest discount compared to On-Demand instance pricing, a Standard RI is still much more affordable to use than a Convertible RI.
No Upfront Convertible Reserved Instance pricing for a 3-year term is incorrect because although opting for a 3-year term is more affordable than a 1-year term, using a No Upfront Convertible Reserved Instance pricing option costs more money than using an All Upfront Standard RI.
Users from different parts of the globe are complaining about the slow performance of the newly launched photo-sharing website in loading their high-resolution images. Which combination of AWS services should you use to serve the files with lowest possible latency? (Select TWO.)
A.Amazon Glacier B.Amazon S3 C.Amazon Elastic File System D.Amazon Cloudfront E.AWS Storage Gateway
B.Amazon S3
D.Amazon Cloudfront
Explanation
You can configure your application to deliver static content and decrease the end-user latency using Amazon S3 and Amazon CloudFront. High-resolution images, videos, and other static files can be stored in Amazon S3. CloudFront speeds up content delivery by leveraging its global network of data centers, known as edge locations, to reduce delivery time by caching your content close to your end-users.
CloudFront fetches your content from an origin, such as an Amazon S3 bucket, an Amazon EC2 instance, an Amazon Elastic Load Balancing load balancer or your own web server, when it’s not already in an edge location. CloudFront can be used to deliver your entire website or application, including dynamic, static, streaming, and interactive content. You can set your Amazon S3 bucket as the origin of your CloudFront web distribution.
Hence, the correct answers are Amazon S3 and Amazon CloudFront.
AWS Storage Gateway is incorrect because this is just a hybrid cloud storage service that gives you on-premises access to virtually unlimited cloud storage in AWS.
Amazon Elastic File System is incorrect because this is not a suitable service to use to store static content unlike S3. It is a regional service storing data within and across multiple Availability Zones (AZs) for high availability and durability. In addition, you can’t directly connect it to CloudFront, unlike S3.
Amazon Glacier is incorrect because this is primarily used for data archival with usually a long data retrieval time. Like EFS, you can’t directly connect it to CloudFront too, unlike Amazon S3.
Among the following services, which is the most suitable one to use to store the results of I/O-intensive SQL database queries to improve application performance?
A.Amazon DynamoDB Accelerator (DAX)
B.AWS Greengrass
C.AWS CloudFront
D.Amazon ElastiCache
D.Amazon ElastiCache
Explanation:
Amazon ElastiCache offers fully managed Redis and Memcached. Seamlessly deploy, run, and scale popular open source compatible in-memory data stores. With this service, you can build data-intensive apps or improve the performance of your existing apps by retrieving data from high throughput and low latency in-memory data stores.
The in-memory caching provided by Amazon ElastiCache can be used to significantly improve latency and throughput for many read-heavy application workloads (such as social networking, gaming, media sharing and Q&A portals) or compute-intensive workloads (such as a recommendation engine).
In-memory caching improves application performance by storing critical pieces of data in memory for low-latency access. Cached information may include the results of I/O-intensive database queries or the results of computationally-intensive calculations.
Hence, the correct answer in this scenario is Amazon Elasticache.
AWS Greengrass is incorrect because this is just a software that lets you run local compute, messaging, data caching, sync, and ML inference capabilities on connected devices in a secure way.
Amazon CloudFront is incorrect because this is a global CDN service that accelerates delivery of your websites, APIs, video content or other web assets to your customers around the world. A CDN provides you the ability to utilize its global network of edge locations to deliver a cached copy of web content such as videos, webpages, images and not I/O-intensive SQL database queries. The more suitable service to use here is Amazon Elasticache.
Amazon DynamoDB Accelerator (DAX) is incorrect because although this is a caching feature, it is only applicable to DynamoDB which is a NoSQL database. Remember that the requirement says that you need to store the results of I/O-intensive SQL database queries.
Which of the following provides you the most granular data about your AWS costs and usage and also load that information into Amazon Athena, Amazon Redshift, AWS QuickSight, or a tool of your choice? A.AWS Cost and Usage report B.AWS Cost Explorer C.Consolidated Billing D.AWS Budgets
A.AWS Cost and Usage report
Explanation:
The Cost and Usage Report is your one-stop-shop for accessing the most granular data about your AWS costs and usage. You can also load your cost and usage information into Amazon Athena, Amazon Redshift, AWS QuickSight, or a tool of your choice.
It lists AWS usage for each service category used by an account and its IAM users in hourly or daily line items, as well as any tags that you have activated for cost allocation purposes. You can also customize the AWS Cost & Usage Report to aggregate your usage data to the daily or hourly level.
With the AWS Cost & Usage Report, you can do the following:
Access comprehensive AWS cost and usage information
- The AWS Cost & Usage Report gives you the ability to delve deeply into your AWS cost and usage data, understand how you are using your AWS implementation, and identify opportunities for optimization.
Track your Amazon EC2 Reserved Instance (RI) usage
- Each line item of usage that receives an RI discount contains information about where the discount was allocated. This makes it easier to trace which instances are benefitting from specific reservations.
Leverage strategic data integrations
- Using the Amazon Athena data integration feature, you can quickly query your cost and usage information using standard SQL queries. You can also upload your data directly into Amazon Redshift or Amazon QuickSight.
Hence, the correct answer is AWS Cost and Usage report.
Consolidated Billing is incorrect because this just allows you to track the combined costs of all the linked AWS accounts in your organization. This feature does not provide the most granular data about your AWS costs and usage.
AWS Cost Explorer is incorrect because this is just a tool that enables you to view and analyze your costs and usage but not at a granular level like the AWS Cost and Usage report. It also does not provide a way to load your cost and usage information into Amazon Athena, Amazon Redshift, AWS QuickSight, or a tool of your choice.
AWS Budgets is incorrect because it simply gives you the ability to set custom budgets that alert you when your costs or usage exceed (or are forecasted to exceed) your budgeted amount.
There is a requirement to launch a new database in AWS where the customer assumes the responsibility and management of the guest operating system, including updates and security patches. Which of the following services should the customer use?
A.Amazon DynamoDB
B.Amazon EC2
C.Amazon Aurora
D.Amazon DocumentDB
B.Amazon EC2
Explanation:
Security and Compliance is a shared responsibility between AWS and the customer. This shared model can help relieve the customer’s operational burden as AWS operates, manages and controls the components from the host operating system and virtualization layer down to the physical security of the facilities in which the service operates.
The customer assumes responsibility and management of the guest operating system (including updates and security patches), other associated application software as well as the configuration of the AWS provided security group firewall. Customers should carefully consider the services they choose as their responsibilities vary depending on the services used, the integration of those services into their IT environment, and applicable laws and regulations. The nature of this shared responsibility also provides the flexibility and customer control that permits the deployment. This differentiation of responsibility is commonly referred to as the Security OF the Cloud versus Security IN the Cloud.
Amazon Elastic Compute Cloud (Amazon EC2) is a web service that provides secure, resizable compute capacity in the cloud. It is designed to make web-scale cloud computing easier for developers. Amazon EC2’s simple web service interface allows you to obtain and configure capacity with minimal friction. It provides you with complete control of your computing resources and lets you run on Amazon’s proven computing environment. Amazon EC2 reduces the time required to obtain and boot new server instances to minutes, allowing you to quickly scale capacity, both up and down, as your computing requirements change. Amazon EC2 changes the economics of computing by allowing you to pay only for capacity that you actually use. Amazon EC2 provides developers the tools to build failure resilient applications and isolate them from common failure scenarios.
Since you have more control over your EC2 instance, you can install any database that you prefer and manage its guest operating system, including the required updates and security patches. You can also choose an AMI with a pre-installed database (such as PostgreSQL or MySQL) in the Amazon EC2 Dashboard to save your time. Hence, the correct answer is Amazon EC2.
Amazon Aurora is incorrect because this is a fully-managed service that automates time-consuming administration tasks like hardware provisioning, database setup, patching, and backups without any manual intervention from you.
Amazon DocumentDB is incorrect because this is a fully-managed document database service that supports MongoDB workloads. Just like Amazon Aurora, you don’t need to handle or manage the guest operating system of this service since it is already managed by AWS.
Amazon DynamoDB is incorrect because just like the other two options above, this is also a fully-managed database service which means that you won’t be able to manage the underlying guest operating system or apply the required updates and security patches.
Which of the following best describes what CloudWatch is?
A.A metric repository
B.An automated security assessment service
C.A rule repository
D.An audit service that records all API calls made to your AWS account
A.A metric repository
Explanation:
Amazon CloudWatch is basically a metrics repository. An AWS service, such as Amazon EC2, puts metrics into the repository, and you retrieve statistics based on those metrics. If you put your own custom metrics into the repository, you can retrieve statistics on these metrics as well.
You can use metrics to calculate statistics and then present the data graphically in the CloudWatch console. You can configure alarm actions to stop, start, or terminate an Amazon EC2 instance when certain criteria are met. In addition, you can create alarms that initiate Amazon EC2 Auto Scaling and Amazon Simple Notification Service (Amazon SNS) actions on your behalf.
Hence, a metric repository is the best option that best describes CloudWatch.
The option that says: an audit service that records all API calls made to your AWS account is incorrect because this describes CloudTrail and not CloudWatch.
The option that says: a rules repository is incorrect because this is more related with AWS Config.
The option that says: an automated security assessment service is incorrect because this description fits the Amazon Inspector service and not CloudWatch.
A company is planning to launch a new system in AWS but they do not have an employee who has an AWS-related expertise. Which of the following can help the company to design, architect, build, migrate, and manage their workloads and applications on AWS?
A.AWS Marketplace
B.Technical Account manager
C.AWS Partner Network Technology Partners
D.AWS Partner Network Consulting Partners
D.AWS Partner Network Consulting Partners
Explanation
The AWS Partner Network (APN) is focused on helping partners build successful AWS-based businesses to drive superb customer experiences. This is accomplished by developing a global ecosystem of Partners with specialties unique to each customer’s needs.
There are two types of APN Partners:
- APN Consulting Partners
- APN Technology Partners
APN Consulting Partners are professional services firms that help customers of all sizes design, architect, migrate, or build new applications on AWS. Consulting Partners include System Integrators (SIs), Strategic Consultancies, Resellers, Digital Agencies, Managed Service Providers (MSPs), and Value-Added Resellers (VARs).
APN Technology Partners provide software solutions that are either hosted on, or integrated with, the AWS platform. Technology Partners include Independent Software Vendors (ISVs), SaaS, PaaS, developer tools, management and security vendors.
Hence, the correct answer in this scenario is APN Consulting Partners.
APN Technology Partners is incorrect because this only provides software solutions that are either hosted on, or integrated with, the AWS platform. You should use APN Consulting Partners instead as this program helps customers to design, architect, migrate, or build new applications on AWS which is what is needed in the scenario.
AWS Marketplace is incorrect because this just provides a new sales channel for independent software vendors (ISVs) and Consulting Partners to sell their solutions to AWS customers. This makes it easy for customers to find, buy, deploy, and manage software solutions, including SaaS, in a matter of minutes.
Technical Account Management is incorrect because this is just a part of AWS Enterprise Support which provides advocacy and guidance to help plan and build solutions using best practices, coordinate access to subject matter experts and product teams, and proactively keep your AWS environment operationally healthy.
A company is designing a new cloud architecture for its mission-critical application in AWS which must be highly-available. Which of the following is the recommended pattern to meet this requirement?
A.Make sure that each component of the application has high bandwidfth and low-latency network connectivity using ENIs
B.Adopt a monolithic application architecture
C.Deploy an Amazon EC2 Spot Fleet with a diversified allocation strategy
D.Use multiple Availability Zones to ensure that the application can handle the failure of any single component
D.Use multiple Availability Zones to ensure that the application can handle the failure of any single component
Explanation:
At AWS, Availability Zones are the core of their infrastructure architecture and they form the foundation of AWS’s and customers’ reliability and operations. Availability Zones are designed for physical redundancy and provide resilience, enabling uninterrupted performance, even in the event of power outages, Internet downtime, floods, and other natural disasters.
Amazon EC2 is hosted in multiple locations worldwide. These locations are composed of Regions and Availability Zones. Each Region is a separate geographic area. Each Region has multiple, isolated locations known as Availability Zones. Amazon EC2 provides you the ability to place resources, such as instances, and data in multiple locations. Resources aren’t replicated across AWS Regions unless you do so specifically.
Amazon operates state-of-the-art, highly-available data centers. Although rare, failures can occur that affect the availability of instances that are in the same location. If you host all your instances in a single location that is affected by such a failure, none of your instances would be available.
Hence, the correct answer is: Use multiple Availability Zones to ensure that the application can handle the failure of any single component.
The option that says: Make sure that each component of the application has high bandwidth and low-latency network connectivity using ENIs is incorrect because improving the network connectivity through the use of Elastic Network Interfaces (ENIs) is not enough to make your architecture highly available. You still need to deploy your application to multiple Availability Zones.
The option that says: Deploy an Amazon EC2 Spot Fleet with a diversified allocation strategy is incorrect because although using a diversified allocation strategy for your EC2 Spot Fleet can improve the availability of your compute capacity, this solution is still inappropriate since Spot Instances can be interrupted by AWS.
The option that says: Adopt a monolithic application architecture is incorrect because this type of architecture is already obsolete and should be replaced with modern, microservices architecture.
Which of the following shares a collection of offerings to help you achieve specific business outcomes related to enterprise cloud adoption through paid engagements in several specialty practice areas?
A.AWS Technical Account Manager
B.AWS Professional Services
C.Concierge Support
D.AWS Enterprise Support
B.AWS Professional Services
Explanation:
AWS Professional Services shares a collection of offerings to help you achieve specific outcomes related to enterprise cloud adoption. Each offering delivers a set of activities, best practices, and documentation reflecting our experience supporting hundreds of customers in their journey to the AWS Cloud. AWS Professional Services’ offerings use a unique methodology based on Amazon’s internal best practices to help you complete projects faster and more reliably while accounting for evolving expectations and dynamic team structures along the way.
AWS Professional Services created the AWS Cloud Adoption Framework (AWS CAF) to help organizations design and travel an accelerated path to successful cloud adoption. The guidance and best practices provided by the framework help you build a comprehensive approach to cloud computing across your organization, and throughout your IT lifecycle. Using the AWS CAF helps you realize measurable business benefits from cloud adoption faster and with less risk.
Hence, the correct answer in this scenario is AWS Professional Services.
AWS Enterprise Support is incorrect because this is the one which provides 24x7 technical support from high-quality engineers, tools and technology to automatically manage the health of your environment, consultative architectural guidance delivered in the context of your applications and use-cases, and a designated Technical Account Manager (TAM) to coordinate access to proactive/preventative programs and AWS subject matter experts.
Concierge Support is incorrect because this is a team composed of AWS billing and account experts that specialize in working with enterprise accounts. They will quickly and efficiently assist you with your billing and account inquiries, and work with you to implement billing and account best practices so that you can focus on running your business.
AWS Technical Account Manager is incorrect because this is your designated technical point of contact who provides advocacy and guidance to help plan and build solutions using best practices, coordinate access to subject matter experts and product teams, and proactively keep your AWS environment operationally healthy.
