Cloud Guru Quizzes

Question 1

Which of the following services does X-ray integrate with?

Lambda
API Gateway
Elastic Load Balancer
S3

Answer 1

Lambda, API Gateway and Elastic Load Balancer.

Question 2

How does API Gateway deal with legacy SOAP applications?

Answer 2

It provides webservice passthrough for SOAP applications.

SOAP applications send their responses in XML format. API Gateway supports SOAP applications but only provides passthrough. API Gateway does not transform or convert the responses.

Question 3

What is the 429 error code?

Answer 3

Too many requests response.

Question 4

Using the AWS portal, you are trying to scale DynamoDB past its preconfigured maximums. Which service limit can you increase by raising a ticket to AWS support?

Local secondary indexes
Provisioned throughput limits
Item sizes
Global secondary indexes

Answer 4

Provisioned throughput limits.

You can also request an increase of global secondary indexes - there’s an initial limit of 20 per table

Question 5

Which are recommended ways to optimize a query or scan in DynamoDB?

Answer 5

Running parallel scans and reducing the page size to return fewer items per results page.

A smaller page size means fewer read operations and creates a “pause” between each request which reduces the impact of a query or scan operation. A larger number of smaller operations can allow other critical requests to succeed without throttling. For large tables, a parallel scan can complete much faster than a sequential one, if the table’s provisioned read throughput is not already being used.

Question 6

What is the API call to retrieve multiple items from a DynamoDB table?

Answer 6

BatchGetItem

Question 7

Which DynamoDB feature can be used to define an expiry date and time for a data record in your table?

Answer 7

TTL or Time To Live is used to set an expiry time on your record.

Question 8

You are running a query on your Customers table in DynamoDB, however you only want the query to return CustomerID and EmailAddress for each item in the table, how can you refine the query so that it only includes the required attributes?

Answer 8

Use the ProjectionExpression parameter.

When using a query or a scan, DynamoDB returns all of the item attributes by default. To just get some, rather than all of the attributes, use a Projection Expression.

Question 9

What’s one difference between KMS and CloudHSM?

Answer 9

KMS is multitenant wheras CloudHSM is dedicated hardware.

Question 10

True or false. KMS encryption keys are global.

Answer 10

False, they are regional.

Question 11

True or false. You cannot export your customer master key.

Answer 11

True. Master keys are created and used only within AWS KMS to help ensure their security, enable your policies to be consistently enforced, and provide a centralized log of their use. Keys are only stored and used in the region in which they are created. They cannot be transferred to another region.

Question 12

What’s the API command to configure KMS to rotate your encryption keys on a yearly basis?

Answer 12

enable-key-rotation

Question 13

True or false. SNS messages cannot be customized by protocol type.

Answer 13

False.

Question 14

Which of these is a protocol not supported by SNS?

Email
Email-JSON
HTTP
FTP

Answer 14

FTP.

Question 15

How large can an SQS message be?

Answer 15

256 KB.

Question 16

What native AWS service will act as a file system mounted on an S3 bucket?

Answer 16

AWS Storage Gateway. The Storage Gateway service is primarily used for attaching infrastructure located in a data center to the AWS Storage infrastructure. The AWS documentation states that “You can think of a file gateway as a file system mount on S3”.

Question 17

What’s the maximum long poll time out (for SQS queue)

Answer 17

20 seconds

Question 18

What does AWS Shield protect you from?

Answer 18

AWS Shield operates on layer 3 and 4 of the ISO network model and its primary purpose is to protect against DDoS attacks.

Question 19

What does AWS WAF protect against?

Answer 19

AWS WAF protects against SQL injection attacks and cross site scripting attacks, and also can block traffic from IP addresses based on rules (uses web ACL to analyze incoming traffic).

Question 20

What does Amazon Macie protect?

Answer 20

Amazon Macie uses machine learning to protect sensitive data.

Question 21

What’s the API call to extend the length of time to process messages in an SQS queue?

Answer 21

ChangeMessageVisibility

Question 22

Is Jetty for JBoss applications supported by Elastic Beanstalk?

Answer 22

No.

Question 23

What’s the maximum retention period for an SQS message?

Answer 23

14 days.