Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

AWS Exam > AWS Dev Linux Aca 2 > Flashcards

AWS Dev Linux Aca 2 Flashcards

1
Q

CodeBuild projects have configuration settings that determine things like:

A
  1. Where the project’s source code is located

2. Where to store the output of the build

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Server-side encryption is about data encryption at rest. That is, Amazon S3 encrypts your data at the object level as it writes it to disk in its data centers and decrypts it for you when you go to access it.

There are a few different options depending on how you choose to manage the encryption keys.

One of the options is called ‘Server-Side Encryption with Amazon S3-Managed Keys (SSE-S3)’.

Which of the following best describes how this encryption method works?

A

Each object is encrypted with a unique key employing strong encryption. As an additional safeguard, it encrypts the key itself with a master key that it regularly rotates.

With this encryption option, Amazon S3 handles all of the encryption/decryption of objects, including the rotation of keys. Other options allow you to manage your own keys if you want, but not the method mentioned in the question.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

A corporate web application is deployed within an Amazon VPC, and is connected to the corporate data center via IPSec VPN. The application must authenticate against the on-premise LDAP server. Once authenticated, logged-in users can only access an S3 keyspace specific to the user.

A

The application authenticates against LDAP, and retrieves the name of an IAM role associated with the user. The application then calls the IAM Security Token Service to assume that IAM Role. The application can use the temporary credentials to access the S3 keyspace.

Develop an identity broker which authenticates against LDAP, and then calls IAM Security Token Service to get IAM federated user credentials. The application calls the identity broker to get IAM federated user credentials with access to the appropriate S3 keyspace

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Does DynamoDB use optimistic concurency control?

A

Yes

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Function task states do work on your state machines. What compute resource directly integrates with state machines by including an ARN within the task state?

A

Lamda

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Your EC2 component receives a message from a message queue. The message will then become invisible for 30 seconds. What API request must be called in order for the VisibilityTimeout not to make the message visible again?

A

DeleteMessage

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

You’ve enabled website hosting on a bucket named “linuxacademy.com” in the US-East-1 (US standard region). Select the URL you’ll receive from AWS as the URL for the bucket.

A

linuxacademy.com,s3-website-us-east-1.amazonaws.com

the default URL for S3 hosted websites lists the bucket name first followerd by s3-website-region.amazonaws.com

How well did you know this?
1
Not at all
2
3
4
5
Perfectly

AWS Exam (3 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions