AWS Skill Builder Flashcards
Which service is used to quickly deploy and scale applications on AWS?
A. AWS Snowball
B. Amazon CloudFront
C. AWS Outposts
D. AWS Elastic Beanstalk
D. AWS Elastic Beanstalk
Explanation:
The correct response option is AWS Elastic Beanstalk.
You upload your application, and Elastic Beanstalk automatically handles the deployment details of capacity provisioning, load balancing, auto-scaling, and application health monitoring.
The other response options are incorrect because:
AWS Outposts is a service that enables you to run infrastructure in a hybrid cloud approach. Amazon CloudFront is a content delivery service. AWS Snowball is a device that enables you to transfer large amounts of data into and out of AWS.
Which compute option reduces costs when you commit to a consistent amount of compute usage for a 1-year or 3-year term?
A. Reserved Instances
B. Dedicated Hosts
C. Spot Instances
D. Savings Plans
D. Savings Plans
Explanation:
Amazon EC2 Savings Plans enable you to reduce your compute costs by committing to a consistent amount of compute usage for a 1-year or 3-year term. This results in savings of up to 72% over On-Demand Instance costs. Any usage up to the commitment is charged at the discounted Savings Plan rate (for example, $10 an hour). Any usage beyond the commitment is charged at regular On-Demand Instance rates.
The other response options are incorrect because:
Reserved Instances are a billing discount that is applied to the use of On-Demand Instances in your account. You can purchase Standard Reserved and Convertible Reserved Instances for a one-year or three-year term, and Scheduled Reserved Instances for a one-year term. Unlike Savings Plans, Reserved Instances do not require you to commit to a consistent amount of compute usage over the duration of the contract. Spot Instances are ideal for workloads with flexible start and end times or that can withstand interruptions. Spot Instances leverage unused EC2 computing capacity and offer you cost savings at up to 90% of On-Demand Instance prices. Dedicated Hosts are physical servers with EC2 instance capacity that is fully dedicated to your use. You can use your existing per-socket, per-core, or per-VM software licenses to help maintain license compliance. You can purchase On-Demand Dedicated Hosts or Reserved Dedicated Hosts. Of all the Amazon EC2 options that were covered in this course, Dedicated Hosts are the most expensive.
Which service enables you to review details for user activities and API calls that have occurred within your AWS environment?
A. Amazon Inspector
B. AWS CloudTrail
C. AWS Trusted Advisor
D. Amazon CloudWatch
B. AWS CloudTrail
Explanation:
With CloudTrail, you can view a complete history of user activity and API calls for your applications and resources.
Events are typically updated in CloudTrail within 15 minutes after an API call was made. You can filter events by specifying the time and date that an API call occurred, the user who requested the action, the type of resource that was involved in the API call, and more.
The other response options are incorrect because:
Amazon CloudWatch is a service that provides data that you can use to monitor your applications, optimize resource utilization, and respond to system-wide performance changes. Amazon Inspector is a service that checks applications for security vulnerabilities and deviations from security best practices. AWS Trusted Advisor is an online tool that inspects your AWS environment and provides real-time guidance in accordance with AWS best practices.
Which tool enables you to visualize, understand, and manage your AWS costs and usage over time?
A. AWS Cost Explorer
B. AWS Budgets
C. AWS Pricing Calculator
D. AWS Artifact
A. AWS Cost Explorer
Explanation:
With AWS Cost Explorer, you can quickly create custom reports to analyze your AWS cost and usage data.
The other response options are incorrect because:
AWS Budgets lets you set custom alerts that will notify you when your service usage exceeds (or is forecasted to exceed) the amount that you have budgeted. AWS Pricing Calculator lets you explore AWS services and create an estimate for the cost of your use cases on AWS. In the AWS Pricing Calculator, you can enter details for your cloud computing requirements and then receive a detailed estimate that can be exported and shared. AWS Artifact is a service that enables you to access AWS security and compliance reports and special online agreements.
You are running an Amazon EC2 instance and want to store data in an attached resource. Your data is temporary and will not be kept long term. Which resource should you use?
A. Instance store
B. Subnet
C. Amazon Elastic Block Store (Amazon EBS) volume
D. Amazon S3 bucket
A. Instance store
Explanation:
Instance stores are ideal for temporary data that does not need to be kept long term.
When an Amazon EC2 instance is stopped or terminated, all the data that has been written to the attached instance store is deleted.
The other response options are incorrect because:
Amazon EBS volumes are ideal for data that needs to be retained. When an Amazon EC2 instance is stopped or terminated, all of the data on the attached EBS volume is still available. Amazon S3 buckets cannot be attached to Amazon EC2 instances. A subnet is a section of a virtual private cloud (VPC) in which you can group resources based on security or operational needs.
Which action can you perform in Amazon CloudFront?
A. Deliver content to customers through a global network of edge locations.
B. Run infrastructure in a hybrid cloud approach.
C. Provision an isolated section of the AWS Cloud to launch resources in a virtual network that you define.
D. Provision resources by using programming languages or a text file.
A. Deliver content to customers through a global network of edge locations.
Explanation:
The correct response is Deliver content to customers through a global network of edge locations.
Amazon CloudFront is a content delivery service.
It uses a network of edge locations to cache content and deliver content to customers all over the world. When content is cached, it is stored locally as a copy. This content might be video files, photos, webpages, and so on.
The other response options are incorrect because:
Run infrastructure in a hybrid cloud approach - This action can be performed with AWS Outposts. Provision resources by using programming languages or a text file - This action can be performed in AWS CloudFormation. Provision an isolated section of the AWS Cloud to launch resources in a virtual network that you define - This action can be performed in Amazon Virtual Private Cloud (Amazon VPC).
Which virtual private cloud (VPC) component controls inbound and outbound traffic for Amazon EC2 instances?
A. Network access control list
B. Subnet
C. Internet gateway
D. Security group
D. Security group
Explanation:
The correct response option is security group.
A security group is a virtual firewall that controls inbound and outbound traffic for an Amazon EC2 instance.
By default, a security group denies all inbound traffic and allows all outbound traffic. You can add custom rules to configure which traffic should be allowed or denied.
The other response options are incorrect because:
A subnet is a section of a VPC in which you can group resources based on security or operational needs. A network access control list (ACL) is a virtual firewall that controls inbound and outbound traffic at the subnet level. An internet gateway is a connection between a VPC and the internet. It allows public traffic from the internet to access a VPC.
In the S3 Intelligent-Tiering storage class, Amazon S3 moves objects between a frequent access tier and an infrequent access tier. Which storage classes are used for these tiers? (Select TWO.)
A. Amazon S3 Standard-IA
B. Amazon S3 One Zone-IA
C. Amazon S3 Standard
D. Amazon S3 Glacier Deep Archive
E. Amazon S3 Glacier Flexible Retrieval
A. Amazon S3 Standard-IA
C. Amazon S3 Standard
Explanation:
The two correct response options are:
Amazon S3 Standard Amazon S3 Standard-IA
In the Amazon S3 Intelligent-Tiering storage class, Amazon S3 monitors objects’ access patterns. If you haven’t accessed an object for 30 consecutive days, Amazon S3 automatically moves it to the infrequent access tier, Amazon S3 Standard-IA. If you access an object in the infrequent access tier, Amazon S3 automatically moves it to the frequent access tier, Amazon S3 Standard.
Which service enables you to build the workflows that are required for human review of machine learning predictions?
A. Amazon Lex
B. Amazon Textract
C. Amazon Augmented AI
D. Amazon Aurora
C. Amazon Augmented AI
Explanation:
The correct response option is Amazon Augmented AI.
Amazon Augmented AI (Amazon A2I) provides built-in human review workflows for common machine learning use cases, such as content moderation and text extraction from documents. With Amazon A2I, you can also create your own workflows for machine learning models built on Amazon SageMaker or any other tools.
The other response options are incorrect because:
Amazon Textract is a machine learning service that automatically extracts text and data from scanned documents. Amazon Lex is a service that enables you to build conversational interfaces using voice and text. Amazon Aurora is an enterprise-class relational database.
Which statement best describes AWS Marketplace?
A. An online tool that inspects your AWS environment and provides real-time guidance in accordance with AWS best practices
B. A resource that can answer questions about best practices and assist with troubleshooting issues
C. A digital catalog that includes thousands of software listings from independent software vendors
D. A resource that provides guidance, architectural reviews, and ongoing communication with your company as you plan, deploy, and optimize your applications
C. A digital catalog that includes thousands of software listings from independent software vendors
Explanation:
The correct response option is A digital catalog that includes thousands of listings from independent software vendors.
You can use AWS Marketplace to find, test, and buy software that runs on AWS.
The other response options are incorrect because:
A resource that can answer questions about best practices and assist with troubleshooting issues - This response option describes AWS Support. A resource that provides guidance, architectural reviews, and ongoing communication with your company as you plan, deploy, and optimize your applications - This response option describes a Technical Account Manager (TAM). An online tool that inspects your AWS environment and provides real-time guidance in accordance with AWS best practices - This response option describes AWS Trusted Advisor.
You want to send and receive messages between distributed application components. Which service should you use?
A. Amazon Simple Queue Service (Amazon SQS)
B. Amazon ElastiCache
C. AWS Snowball
D. Amazon Route 53
A. Amazon Simple Queue Service (Amazon SQS)
Explanation:
Amazon SQS is a message queuing service. Using Amazon SQS, you can send, store, and receive messages between software components at any volume size, without losing messages or requiring other services to be available.
In Amazon SQS, an application sends messages into a queue. A user or service retrieves a message from the queue, processes it, and then deletes it from the queue.
The other response options are incorrect because:
AWS Snowball is a device that enables you to transfer large amounts of data into and out of AWS. Amazon ElastiCache is a service that adds caching layers on top of your databases to help improve the read times of common requests. Amazon Route 53 is a DNS web service. It gives developers and businesses a reliable way to route end users to internet applications that are hosted in AWS. Additionally, you can transfer DNS records for existing domain names that are currently managed by other domain registrars or register new domain names directly in Amazon Route 53.
Which migration strategy involves changing how an application is architected and developed, typically by using cloud-native features?
A. Rehosting
B. Replatforming
C. Repurchasing
D. Refactoring
D. Refactoring
Explanation:
The correct response option is Refactoring.
The other response options are incorrect because:
Repurchasing involves replacing an existing application with a cloud-based version, such as software found in AWS Marketplace. Rehosting involves moving an application to the cloud with little to no modifications to the application itself. It is also known as “lift and shift.” Replatforming involves selectively optimizing aspects of an application to achieve benefits in the cloud without changing the core architecture of the application. It is also known as “lift, tinker, and shift.”
You want to store data in a volume that is attached to an Amazon EC2 instance. Which service should you use?
A. Amazon ElastiCache
B. Amazon Simple Storage Service (Amazon S3)
C. AWS Lambda
D. Amazon Elastic Block Store (Amazon EBS)
D. Amazon Elastic Block Store (Amazon EBS)
Explanation:
The correct response option is Amazon Elastic Block Store (Amazon EBS).
Amazon EBS provides block-level storage volumes that you can use with Amazon EC2 instances. If you stop or terminate an Amazon EC2 instance, all the data on the attached EBS volume remains available.
The other response options are incorrect because:
Amazon Simple Storage Service (Amazon S3) is a service that provides object-level storage. Amazon S3 stores data as objects within buckets. AWS Lambda is a service that lets you run code without provisioning or managing servers. Amazon ElastiCache is a service that adds caching layers on top of your databases to help improve the read times of common requests.
Which statement best describes Amazon GuardDuty?
A. A service that checks applications for security vulnerabilities and deviations from security best practices
B. A service that helps protect your applications against distributed denial-of-service (DDoS) attacks
C. A service that provides intelligent threat detection for your AWS infrastructure and resources
D. A service that lets you monitor network requests that come into your web applications
C. A service that provides intelligent threat detection for your AWS infrastructure and resources
Explanation:
The correct response option is A service that provides intelligent threat detection for your AWS infrastructure and resources.
AWS GuardDuty identifies threats by continually monitoring the network activity and account behavior within your AWS environment.
The other response options are incorrect because:
A service that helps protect your applications against distributed denial-of-service (DDoS) attacks - This response option describes AWS Shield. A service that checks applications for security vulnerabilities and deviations from security best practices - This response option describes Amazon Inspector. A service that lets you monitor network requests that come into your web applications - This response option describes AWS WAF.
Which statement best describes an Availability Zone?
A. A site that Amazon CloudFront uses to cache copies of content for faster delivery to users at any location
B. The server from which Amazon CloudFront gets your files
C. A fully isolated portion of the AWS global infrastructure
D. A separate geographical location with multiple locations that are isolated from each other
C. A fully isolated portion of the AWS global infrastructure
Explanation:
The correct response option is A fully isolated portion of the AWS global infrastructure.
An Availability Zone is a single data center or a group of data centers within a Region.
Availability Zones are located tens of miles apart from each other. This helps them to provide interconnectivity to support the services and applications that run within a Region.
The other response options are incorrect because:
A separate geographical location with multiple locations that are isolated from each other - This response option describes a Region. The server from which Amazon CloudFront gets your files - This response option describes an origin. A site that Amazon CloudFront uses to cache copies of content for faster delivery to users at any location - This response option describes an Edge location.
