Cloud Partitioner Test 5 Flashcards
What types of caching solutions are available in Amazon ElastiCache? (Select TWO.)
a. Amazon ElastiCache for Redis
b. Amazon ElastiCache for Apache Ignite
c. Amazon ElastiCache for Serverless
d. Amazon ElastiCache for Apache Kafka
e. Amazon ElastiCache for Memcached
a. Amazon ElastiCache for Redis
e. Amazon ElastiCache for Memcached
Which AWS service provides tracing and monitoring capabilities for your Lambda function?
a. Amazon Macie
b. AWS X-Ray
c. AWS Shield
d. Amazon Inspector
b. AWS X-Ray
A developer needs to collect and process large streams of data records in real-time. Which AWS service should be used for this task?
a. AWS Glue
b. AWS CloudTrail
c. Amazon CloudWatch
d. Amazon Kinesis Data Streams
d. Amazon Kinesis Data Streams
A company plans to use AWS to send email updates for their new products through SMTP. Which service should they use?
a. Amazon SNS
b. Amazon SES
c. Amazon SWF
d. Amazon SQS
b. Amazon SES
Which service should you use to run complex analytic queries against terabytes to petabytes of structured data?
a. Amazon Redshift
b. Amazon S3
c. Amazon DynamoDB
d. Amazon Neptune
a. Amazon Redshift
Which of the following is an AWS service that provides secure key storage and cryptographic operations, such as encryption and decryption, hashing, and digital signing?
a. AWS Inspector
b. AWS Secrets Manager
c. AWS CloudHSM
d. AWS GuardDuty
c. AWS CloudHSM
Which of the following provides a collection of technical resources to help you build more effectively and efficiently in the AWS Cloud?
a. AWS Architecture Center
b. AWS Config
c. AWS Organizations
d. AWS Trusted Advisor
a. AWS Architecture Center
Which is a fully managed continuous integration service that compiles source code, runs tests, and produces software packages that are ready to deploy?
a. AWS CodeCommit
b. AWS CodePipeline
c. AWS CodeBuild
d. AWS CodeDeploy
c. AWS CodeBuild
A company is planning to launch an Amazon EC2 instance with an attached EBS volume in a default configuration. You will be charged for your EBS storage only when your instance is in which instance state?
a. Terminated
b. Stopped
c. Running
d. Pending
b. Stopped
A customer plans to use Amazon S3 to store their less frequently accessed data and reduce their costs. The data is re-creatable and will be used as a secondary backup. They also require S3’s low latency and high throughput performance. Which of the following storage classes is the cheapest and most suitable option?
a. S3 One Zone-IA
b. S3 Glacier Flexible Retrieval
c. S3 Glacier Deep Archive
d. S3 Standard
a. S3 One Zone-IA
Which of the following are the capabilities provided by Amazon Route 53? (Select TWO.)
a. Web traffic filtering
b. DNS Resolution
c. Domain Registration
d. DDoS Protection
e. Resource metrics collection
b. DNS Resolution
c. Domain Registration
Which AWS services should you use to upload SSL certificates? (Select TWO.)
a. AWS Systems Manager
b. AWS IAM
c. AWS Certificate Manager
d. AWS KMS
e. AWS License Manager
b. AWS IAM
c. AWS Certificate Manager
A company plans to encrypt and manage its own encryption keys using a single-tenant hardware security module. The company must also have exclusive control over how its keys are used via an authentication mechanism independent from AWS.
Which service would meet that requirement?
a. Amazon S3
b. AWS CloudHSM
c. AWS KMS
d. Amazon GuardDuty
b. AWS CloudHSM
Which of the following services allows you to quickly query data in S3 using SQL without having to set up and manage any servers?
a. AWS Step Functions
b. Amazon Athena
c. Amazon SQS
d. AWS Lambda
b. Amazon Athena
Which of the following support plans provides access to the AWS Personal Health Dashboard?
a. Developer, Business, Enterprise
b. Basic, Developer, Business
c. Basic, Business, Enterprise
d. Basic, Developer, Business, Enterprise
d. Basic, Developer, Business, Enterprise
Which feature will customers have access to by using the AWS Business Support plan?
a. Technical Account Manager
b. Concierge Support Team
c. Architecture Support
d. Access to online self-paced labs
c. Architecture Support
A company needs access to the full set of monitoring checks in AWS Trusted Advisor to ensure that its cloud environment is well-architected.
What is the MOST cost-effective support plan that the company should avail of?
a. Enterprise
b. Developer
c. Basic
d. Business
d. Business
A customer needs to store objects that are frequently accessed. To help the customer save costs, you must select a storage service free from retrieval charges. Which of the following S3 storage classes would meet this requirement? (Select TWO.)
a. S3 Glacier Deep Archive
b. S3 Standard-IA
c. S3 Intelligent Tiering
d. S3 One Zone-IA
e. S3 Standard
c. S3 Intelligent Tiering
e. S3 Standard
A startup company plans to create a user management and authentication service for its customers. The users need to sign in through an external identity provider to access their web and mobile applications. Which AWS service should they use to meet this requirement?
a. AWS Artifact
b. AWS IAM
c. Amazon Macie
d. Amazon Cognito
d. Amazon Cognito
A company plans to restrict access to content served from an Amazon S3 bucket using Amazon CloudFront. Which of the following features can you use to satisfy this requirement?
a. Sticky Sessions
b. Origin Access Identity
c. Server Name Indication
d. Service Control Policies
b. Origin Access Identity
Which of the following best describes Amazon Redshift?
a. A NoSQL database service.
b. A messaging and queuing service.
c. A managed data warehouse service.
d. An Online Transaction Processing (OLTP) database.
c. A managed data warehouse service.
Which of the following benefits do AWS Organizations provide? (Select TWO.)
a. Ability to create IAM Roles
b. Records AWS API calls
c. Automate AWS account creation and management
d. Allow Active Directory access controls
e. Centrally manage policies across multiple AWS accounts
c. Automate AWS account creation and management
e. Centrally manage policies across multiple AWS accounts
A company needs to store frequently accessed data in Amazon S3. How will AWS bill you for storing objects in your S3 buckets?
a. Per GB
b. By Instance Type
c. Per Hour or Second
d. Per Unique File Type
a. Per GB
Which AWS team can assist you when your systems are impacted by AWS resources engaging in abusive activities such as phishing, malware, spam, and denial of service (DoS) or distributed denial of service (DDoS) incidents?
a. AWS Trust & Safety
b. AWS Support API
c. Architecture Support
d. Concierge Support
a. AWS Trust & Safety
An e-commerce company launches several EC2 instances to run their web application. Which of the following services can be used to help ensure security compliance? (Select TWO.)
a. Amazon MQ
b. Amazon Inspector
c. AWS OpsWorks
d. AWS CloudFormation
e. AWS Trusted Advisor
b. Amazon Inspector
e. AWS Trusted Advisor
A developer needs to install their application in Docker containers. Which of the following services eliminates the need to manage containers manually?
a. Amazon ECS
b. AWS Fargate
c. Amazon EC2
d. Amazon FSx
b. AWS Fargate
Which of the following AWS resources is a zonal service? (Select TWO.)
a. Amazon Route 53
b. AWS IAM
c. Amazon EBS
d. Amazon EC2
e. Amazon S3
c. Amazon EBS
d. Amazon EC2
A company plans to deploy an enterprise web application that will be accessed globally. The architecture must provide the highest redundancy and fault tolerance to avoid user disruptions.
How should the Amazon EC2 instances be deployed to meet the above requirements?
a. Deploy to multiple Availability Zones across three AWS Regions.
b. Deploy to three AWS Regions with one Availability Zone for each region.
c. Deploy to multiple Availability Zones in a single AWS Region.
d. Deploy in a single Availability Zone in a single AWS Region.
a. Deploy to multiple Availability Zones across three AWS Regions.
Which AWS service allows you to easily manage access to multiple AWS accounts and provide users with single login access?
a. Amazon SES
b. Amazon SWF
c. AWS IAM Identity Center
d. Amazon SQS
c. AWS IAM Identity Center
Which service lets you create rules to filter web traffic based on conditions that include IP addresses, HTTP headers, or custom URIs?
a. AWS Trusted Advisor
b. AWS WAF
c. Network ACLs
d. Security Group
b. AWS WAF
Which of the following Amazon RDS features should you use to achieve high availability with automatic failover?
a. DB Snapshots
b. RDS Read Replica
c. RDS Multi-AZ Deployments
d. RDS Performance Insights
c. RDS Multi-AZ Deployments
A team of developers needs to run hundreds of thousands of fully managed batch computing jobs on AWS. Which of the following service should they choose?
a. AWS Fargate
b. AWS Batch
c. AWS Elastic Beanstalk
d. AWS Lambda
b. AWS Batch
The Chief Technology Officer wants to control the use of services across multiple AWS accounts using AWS Organizations. Which of the following must be used to satisfy this requirement?
a. AWS Systems Manager
b. Resource-based policy
c. Service Control Policy
d. AWS Secrets Manager
c. Service Control Policy
A company plans to work with a third-party provider to deploy a new application that will be accessed globally. You need to delegate permissions to access resources without using permanent credentials.
Which of the following should you use?
a. IAM User
b. Service Control Policy
c. IAM Role
d. IAM Group
c. IAM Role
Which of the following AWS services helps you coordinate the components of distributed applications and microservices using visual workflows?
a. AWS Batch
b. Amazon API Gateway
c. Amazon Rekognition
d. AWS Step Functions
d. AWS Step Functions
Which configuration management service in AWS helps you configure applications and manage resources in your cloud architecture by using Puppet or Chef?
a. AWS Config
b. AWS Systems Manager
c. AWS Management Console
d. AWS OpsWorks
d. AWS OpsWorks
Which AWS service can automatically detect a large and growing list of sensitive data types, including personally identifiable information (PII) such as names, addresses, and credit card numbers?
a. Amazon Rekognition
b. Amazon Macie
c. Amazon CloudSearch
d. Amazon CloudWatch
b. Amazon Macie
What service will allow you to safely store and automatically rotate database secrets for services such as Amazon RDS and Amazon Redshift?
a. AWS Systems Manager Parameter Store
b. AWS Artifact
c. AWS KMS
d. AWS Secrets Manager
d. AWS Secrets Manager
The root AWS account of your company was compromised and fortunately, there was no major data leak. What should you do to prevent this from happening again? (Select TWO.)
a. Grant full access for your IAM users
b. Enable MFA
c. Share your root user access keys
d. Disable the rotation of credentials
e. Configure a strong password policy for your users
b. Enable MFA
e. Configure a strong password policy for your users
Which of the following is a benefit of using AWS Global Accelerator?
a. Reduced server costs in running AWS Services
b. Provides a highly durable data store in AWS
c. Accelerates server performance of your Amazon EC2 instances globally
d. Decreased latency in accessing applications hosted in AWS
d. Decreased latency in accessing applications hosted in AWS
Which of the following pricing options will automatically reduce your cost on any EC2 instance usage regardless of region, instance family, size, OS, or tenancy?
a. Dedicated Hosts
b. Savings Plans
c. On-Demand Instances
d. Reserved Instances
b. Savings Plans
The security team needs to automate security vulnerability assessments throughout their development and production environments. Which service should they use to comply with this requirement?
a. AWS WAF
b. Amazon Inspector
c. AWS Shield
d. AWS Config
b. Amazon Inspector
What is the cloud computing model for services like Amazon RDS and Amazon ECS?
a. SaaS
b. IaaS
c. PaaS
d. FaaS
c. PaaS
A Systems Administrator needs to create an account that will be used for long-term programmatic access to AWS. Which of the following IAM entities should be used to comply with this requirement?
a. IAM User
c. IAM Group
d. IAM Policy
e. IAM Role
a. IAM User
Which of the following AWS services does Amazon EBS use natively for encryption?
a. AWS KMS
b. AWS WAF
c. Amazon S3 SSE
d. AWS Shield
a. AWS KMS
Which of the following services can establish a connection from your on-premises environment and resources hosted on AWS? (Select TWO.)
a. Amazon Connect
b. AWS Directory Service
c. AWS Site-to-Site VPN
d. AWS Direct Connect
e. AWS Snowcone
c. AWS Site-to-Site VPN
d. AWS Direct Connect
Which of the following services connects VPCs and on-premises networks through a central hub?
a. AWS Direct Connect
b. AWS Transit Gateway
c. Amazon VPC Peering
d. AWS Client VPN
b. AWS Transit Gateway
A customer needs to establish a private connection between two virtual private clouds (VPCs) without using additional software. Which of the following should they use?
a. AWS Direct Connect
b. AWS Site-to-Site VPN
c. VPC Peering
d. Amazon Connect
c. VPC Peering
Which of the following services displays the general status of all available AWS Services and informs you if a service is experiencing availability issues?
a. AWS Config Dashboard
b. AWS Trusted Advisor
c. AWS Health Dashboard
d. Amazon CloudWatch
c. AWS Health Dashboard
An e-commerce company is currently undergoing a technological transformation to modernize its infrastructure and transfer its operations to the cloud. The company’s Chief Technology Officer (CTO) has decided to adopt Amazon Web Services (AWS) as its cloud service provider and intends to follow the AWS Cloud Adoption Framework (CAF) methodology to achieve this goal.
Which perspective of the AWS CAF would be most helpful in ensuring successful outcomes in this scenario?
a. Governance
b. Platform
c. People
d. Business
b. Platform
In AWS, _______ is a managed service that enables you to easily create and control the encryption keys used for cryptographic operations without having to manage your own hardware module.
a. AWS CloudHSM
b. AWS IAM
c. AWS KMS
d. AWS Systems Manager
c. AWS KMS
A company is using Cost Explorer to gain an understanding of its cost trends in AWS. How many months of historical data can Cost Explorer store and display?
a. 6 Months
b. 15 Months
c. 12 Months
d. 3 Months
c. 12 Months
A developer needs to set up a message broker service for Apache ActiveMQ for its enterprise application running in AWS. Which service should be used in this scenario?
a. Amazon Chime
b. Amazon WorkMail
c. Amazon Simple Email Service
d. Amazon MQ
d. Amazon MQ
What is the main benefit of deploying instances to multiple availability zones?
a. Cost Optimization
b. Agility
c. Security
d. High Availability
d. High Availability
Which of the following AWS services allows you to query data directly in Amazon S3? (Select TWO.)
a. Amazon MQ
b. Amazon Elasticache
c. Amazon Neptune
d. Amazon Redshift Spectrum
e. Amazon Athena
d. Amazon Redshift Spectrum
e. Amazon Athena
Which AWS service provides automated reference deployments for key workloads in AWS via CloudFormation templates?
a. AWS OpsWorks
b. AWS Config
c. AWS Quick Starts
d. AWS Systems Manager Automation
c. AWS Quick Starts
Which of the following services enables you to limit access to a portfolio of predefined AWS resources?
a. AWS Service Catalog
b. Amazon Grafana
c. AWS Config
d. Amazon Pinpoint
a. AWS Service Catalog
Which of the following provides the key concepts, design principles, and architectural best practices for designing and running workloads in the cloud?
a. AWS Reference Architecture Diagrams
b. AWS Shared Responsibility Model
c. AWS Well-Architected Framework
d. AWS Trusted Advisor
c. AWS Well-Architected Framework
Which service enables you to set up directories in the AWS cloud, or connect your AWS resources with an existing on-premises Microsoft Active Directory?
a. AWS Direct Connect
b. AWS Directory Service
c. Amazon Connect
d. AWS Site-to-Site VPN
b. AWS Directory Service
A customer plans to speed up the time it takes to download data between its clients and S3 bucket over long distances. Which service would meet this requirement?
a. Amazon Kinesis
b. AWS Elastic Load Balancing (ELB)
c. Amazon Route 53
d. Amazon S3 Transfer Acceleration
d. Amazon S3 Transfer Acceleration
A high-performance computing (HPC) application needs a storage service in AWS that can be used as a centralized Windows File Server for multiple EC2 instances.
Which of the following should they use?
a. Amazon EBS
b. Amazon EFS
c. Amazon S3
d. Amazon FSx
d. Amazon FSx
What is the MOST affordable AWS Support plan that provides users access to the AWS Support API?
a. Basic
b. Enterprise
c. Developer
d. Business
d. Business
A developer plans to build a serverless application with a key-value database. Which of the following AWS services can be used to fulfill this requirement? (Select TWO.)
a. Amazon ECR
b. Amazon RDS
c. Amazon DynamoDB
d. Amazon SageMaker
e. AWS Lambda
c. Amazon DynamoDB
e. AWS Lambda
Which of the following cost management capabilities does AWS immediately provide you even before you create your AWS account?
a. Allows you to request billing discounts in exchange for a committed level of instance usage.
b. Allows you to estimate your monthly spending in AWS.
c. Allows you to organize your resources according to your own cost allocation tagging strategy.
d. Allows you to create monthly reports on the cost behavior of your resources.
b. Allows you to estimate your monthly spending in AWS.
An organization is mandated to secure its Amazon S3 bucket and ensure that it cannot have any public objects to satisfy the compliance requirements.
What S3 feature should be used to easily accomplish this?
a. Network ACL
b. Security Groups
c. VPC Endpoint
d. Block Public Access
d. Block Public Access