Cloud Practitioner 2

Question 1

Which AWS Support Plan provides architectural guidance contextual to your specific use-cases?

Business, Enterprise, Basic, Developer

Answer 1

Business

Question 2

Which of the following AWS Support plans provides access to Infra Event Management for an additional fee?

Answer 2

Business

Question 3

AWS Web Application Firewall (WAF) offers protection from common web exploits at which layer?

Answer 3

Layer 7

Question 4

Which AWS Support plans provide access to only 7 core checks from AWS Trust Advisor Best Practice Checks? (Select 2)

Basic, Developer, Corporate, Business, Enterprise

Answer 4

Basic, Developer

Question 5

Which AWS support plans provide access to online training with self-paced labs?
Basic, Developer, Business, Enterprise

Answer 5

Enterprise

Question 6

Which EC2 instance types should be used for server-bound software licenses?
On-demand instances, reserved instances, dedicated host, dedicated instance

Answer 6

Dedicated Host

Question 7

Which AWS service will help you receive alerts when the reservation utilization falls below the defined threshold?

Trusted Advisor, Budgets, CloudTrail, Price Calulator?

Answer 7

Budgets

Question 8

Which of the following AWS services has encryption enabled by default?
EBS, RDS, CloudTrail Logs, EFS

Answer 8

CloudTrail Logs

Question 9

Which of the following is a benefit of using AWS managed services such as Amazon RDS?

There is no need to optimize database instance type and size
The performance of AWS managed RDS instance is better than a customer -managed db instance.
The customer needs to manage database backups
The customer needs to patch the underlying OS

Answer 9

Performance of AWS managed RDS instances is better.

Question 10

Which of the following AWS services support VPC Endpoint Gateway for a private connection from a VPC? (Select 2)
DynamoDB
SQS
EC2
S3
SNS

Answer 10

DynamoDB, S3

A VPC endpoint enables you to privately connect your VPC to supported AWS services and VPC endpoint services powered by AWS PrivateLink without requiring an internet gateway, NAT device, VPN connection, or AWS Direct Connect connection.

Question 11

Which of the following AWS Support plans provide access to guidance, configuration, and troubleshooting of AWS interoperability with third-party software? (Select two)

Enterprise, Business, Basic, Corporate, Developer

Answer 11

Enterprise, Business

Question 12

Which AWS service can be used to provision resources to run big data workloads on Hadoop clusters?

Answer 12

Hadoop = BDP, Amazon EMR

Question 13

Which of the following is correct about AWS “Developer” Support plan?

1 Contact, Unlimited Cases
Unlimited Contacts, limited cases
1 Contact, limited cases
Unlimited Contacts, Unlimited Cases

Answer 13

1 Contact, Unlimited cases

Question 14

Which AWS service will help the organization track the history of configuration changes for all the resources?

CloudTrail, Service Catalog, CloudFormation, Config

Answer 14

Config - assess, audit, and evaluate the configurations of your AWS resources.

Incorrect:
CloudTrail - governance, compliance, operational auditing, and risk auditing of your AWS account.

Question 15

A startup is looking for 24x7 phone based technical support for his AWS account. Which of the following is the MOST cost-effective AWS support plan for this use-case?

Developer, Enterprise, Basic, Business

Answer 15

Business

Question 16

What are the different gateway types supported by AWS Storage Gateway service? Pick 3:

Tape Gateway, File Gateway, Volume Gateway, Block Gateway, Object Gateway

Answer 16

Tape, File, Volume

Question 17

As per the AWS shared responsibility model, which of the following is a responsibility of AWS from a security and compliance point of view?

Server-side Encryption, Identity and Access Management, Customer Data, Edge Location Management

Answer 17

Edge Location Management

Question 18

Which of the following options are the pillars mentioned in the AWS Well-Architected Framework? (Select two)

Availability, Elasticity, Reliability, Cost Optimization, Scalability

Answer 18

Reliability, Cost Optimization

Question 19

Which AWS service helps with global application availability and performance using the AWS global network?

Global Accelerator, CloudFront, Route 53, Elastic Load Balancer

Answer 19

Global Accelerator

Question 20

Which AWS service is best for analysis of SQL - based data stored in S3?

RedShift, DynamoDB, Amazon Athena, Amazon Aurora

Answer 20

Athena

Incorrect: Redshift - can be used for analytics on SQL based data, but not in S3.

Question 21

A multi-national company wants to migrate its IT infrastructure to AWS Cloud and is looking for a concierge support team as well as a response time of around an hour in case the systems go down. As a Cloud Practitioner, which of the following support plans would you recommend to the company?

Enterprise, Business, Developer, Individual

Answer 21

Enterprise

Question 22

Which of the following AWS services are part of the AWS Foundation services for the Reliability pillar of the Well-Architected Framework in AWS Cloud? (Select two)

AWS CloudFormation, AWS CloudTrail, AWS Trusted Advisor, AWS Service Quotas, AWS CloudWatch

Answer 22

AWS Trusted Advisor, AWS Service Quotas

Question 23

CloudWatch billing metric data is stored in which AWS Region?

Answer 23

us-east-1

Question 24

An organization maintains separate VPCs for each of its departments. With expanding business, the organization now wants to connect all VPCs for better departmental collaboration. Which AWS service will help the organization tackle the issue effectively?

AWS Transit Gateway, VPC Peering, Site to Site VPN, AWS Direct Connect?

Answer 24

Transit Gateway

Question 25

Which AWS Services support high Availability by default?

Redshift, EBS, EFS, Instance Store, DynamoDB

Answer 25

EFS, DynamoDB

Question 26

What is the primary benefit of deploying an RDS database in a Read Replica configuration?

Improves Scalability, protects from regional failure, enhances database availability, reduces DB useage costs

Answer 26

Scalability

Question 27

Which pillar of the AWS Well-Architected Framework recommends maintaining infrastructure as code?

Cost Optimization, Performance Efficiency, Operational Excellence, Security

Answer 27

Operational Excellence

Question 28

Which budeget types can be created under AWS budgets? (Select 3)

Reservation budget, Cost budget, Hardware budget, Resource budget, Usage budget, Software budget

Answer 28

Reservation budget, Cost budget, Usage budget

Question 29

Which AWS Support plan provides general architectural guidance on how services can be used for various use-cases, workloads, or applications?

Developer, Business, Basic, Enterprise

Answer 29

Developer

Question 30

Which S3 storage class offers the lowest availability?

S3 Standard, One Zone-IA, Glacier, Intelligent-Tiering

Answer 30

S3 One Zone-IA

Question 31

Data encryption is automatically enabled for which of the following AWS services? (Select two)?

EBS volumes, S3 Glacier, Storage Gateway, EFS drives, Redshift

Answer 31

S3 Glacier, Storage Gateway

Question 32

Which of the following AWS services are regional in scope? (Select two)

AWS WAF, Rekognition, CloudFront, IAM, Lambda

Answer 32

Rekognition, Lambda

Question 33

A leading research firm needs to access information available in old patents and documents (such as PDFs, Text Files, Word documents, etc) present in its huge knowledge base. The firm is looking for a powerful search tool that can dig into these knowledge resources and return the most relevant files/documents. Which of the following is the correct service to address this requirement?

Comprehend, Kendra, Personalize, Lex

Answer 33

Kendra

Question 34

AWS Trusted Advisor analyzes your AWS environment and provides best practice recommendations for which of the following categories? (Select two)?

Service Limits, Change Management, Elasticity, Documentation, Cost Optimization

Answer 34

Service Limits, Cost Optimization

Question 35

Which of the following is a part of the AWS Global Infrastructure?

Region, VPN, Subnets, Virtual Private Cloud (VPC)

Answer 35

Region

Question 36

A research lab wants to optimize the caching capabilities for its scientific computations application running on EC2 instances. Which EC2 storage option is best suited for this use-case?

EBS, EFS, S3, Instance Store

Answer 36

Instance Store

Question 37

Which AWS service will you use to privately connect your VPC to Amazon S3?

AWS Direct Connect, VPC Endpoint Gateway, API Gateway, Transit Gateway

Answer 37

Direct Connect

Question 38

Which of the following is best-suited for load-balancing HTTP and HTTPS traffic?

Network Load Balancer, System Load Balancer, AWS Auto Scaling, Application Load Balancer?

Answer 38

Application Load Balancer

Question 39

A multi-national organization has separate VPCs for each of its business units on the AWS Cloud. The organization also wants to connect its on-premises data center with all VPCs for better organization-wide collaboration. Which AWS services can be combined to build the MOST efficient solution for this use-case? (Select two)

VPC Peering, AWS internet Gateay, AWS Direct Connect, AWS Storage Gateway, AWS Transit Gateway

Answer 39

Direct Connect, Transit Gateway

Question 40

Which of the following S3 storage classes do not charge any data retrieval fee? (Select two)

S3 Standard, S3 Glacier, S3 One Zone-IA, S3 Standard-IA, S3 Intelligent-Tiering

Answer 40

S3 Standard, S3 Intelligent-Tiering

Question 41

Cost-Benefic for reserved instances across accounts are only utilized if the EC2 instances is launched in the same Region, or Availability Zone where the the instances are reserved?

Answer 41

Availability Zone

Question 42

Which of the following describes an Availability Zone in the AWS Cloud?

One or More server racks in multiple locations
one or more data centers in the same location
one or more server racks in the same location
one or more data centers in multiple locations

Answer 42

One or more data centers in the same location

Question 43

Which AWS entity enables you to privately connect your VPC to an Amazon SQS queue?

VPC Interface Endpoint, AWS Direct Connect, VPC Gateway Endpoint, Internet Gateway

Answer 43

VPC Interface Endpoint

Question 44

AWS Shield Advanced provides expanded DDoS attack protection for web applications running on which of the following resources? (Select two)

Amazon Elastic Compute Cloud, AWS elastic Beanstalk, Amazon CloudFront, Amazon S3, AWS IAM

Answer 44

Amazon Elastic Cloud Compute, Amazon CloudFront

Question 45

An e-commerce company wants to review the Payment Card Industry (PCI) reports on AWS Cloud. Which AWS resource can be used to address this use-case?

AWS Trusted Advisor
AWS Cost and Usage Reports, AWS Artifact

Answer 45

AWS Artifact

Question 46

The DevOps team at a Big Data consultancy has set up EC2 instances across two AWS Regions for its flagship application. Which of the following characterizes this application architecture?

Improves Agilitiy, Improves Security, Improves Scalability, Improves Availability

Question 47

Which of the following S3 storage classes has NO constraint of a minimum storage duration charge for objects?

S3 Glacier, S3 One Zone-IA, S3 Standard-IA, S3 Standard

Answer 47

S3 Standard

Question 48

Which AWS service can be used to set up billing alarms to monitor estimated charges on your AWS account?

AWS Cost Explorer, Amazon CloudWatch, AWS organizations, AWS CloudTrail

Answer 48

Setting up Alarms = CloudWatch

Question 49

Data transferred from S3 into an EC2 instance is free when the instances is in [the same region, any region]?

Answer 49

Same Region

Question 50

Which of the following is correct regarding the AWS RDS service?

You can use both Read Replicas and Multi-AZ for improved read performance.
You can use Read Replicas for improved read performance and multi-az for disaster recovery.
You can use Read Replicas for both imrpoved read performance as well as disaster recovery.
You can use Read replicas for Disaster REcover and Multi-AZ for improved read performance.

Answer 50

You can use Read Replicas for both improved read performance as well as disaster recovery.

Question 51

Which of the following AWS Support plans provide programmatic access to AWS Support Center features to create, manage and close your support cases? (Select two)

Developer, Basic, Business, Enterprise, Corporate

Answer 51

Business, Enterprise

Question 52

Which of the following AWS services can be used to forecast your AWS account usage and costs?

Pricing Calculator, Cost Explorer, Budgets, Cost and Usage Reports

Answer 52

AWS Cost Explorer

Question 53

Which pillar of AWS Well-Architected Framework is responsible for making sure that you select the right resource types and sizes based on your workload requirements?

Cost Optimization, Reliability, Operational Excellence, Performance Efficiency

Answer 53

Performance Efficiency

Question 54

Which of the following statements are true regarding Amazon Simple Storage Service (S3) (Select two)?

S3 is a key value based object storage service
S3 is a fully managed, elastic file system storage service used as database backup.
S3 is a block storage service designed for a broad range of workloads.
S3 stores data in a flat, non-hierarchial structure
You can install databases on S3

Question 55

Which of the following statements are true regarding Amazon Simple Storage Service (S3) (Select two)?

S3 is a key value based object storage service
S3 is a fully managed, elastic file system storage service used as database backup.
S3 is a block storage service designed for a broad range of workloads.
S3 stores data in a flat, non-hierarchical structure
You can install databases on S3

Answer 55

S3 Stores data in a flat non-hierarchical structure.
S3 is a key value based object storage service.

Question 56

According to the Well-Architected Framework, which of the following action is recommended in the Security pillar?

Use Cloudwatch to measure overall efficiency
Use AWS cost Explorer to view and track your useage in detail
Use AWS KMS to encrypt data
Use AWS CloudFormation to automate security best practices

Answer 56

AWS KMS to encrypt data

Question 57

Which AWS service can be used to subscribe to an RSS feed to be notified of the status of all AWS service interruptions?

AWS Health - Service Health Dashboard
AWS Lambda
AWS Health - Your Account Health Dashboard
Amazon SNS

Answer 57

AWS Health - Service Health Dashboard

Question 58

According to the Well-Architected Framework, which of the following statements are recommendations in the Operational Excellence pillar? (Select two)

Use Serverless Architectures
Make frequent, small, reversible changes
Anticipate Failure
Automatically recover from failure
Enable traceability

Answer 58

Make frequent, small, reversible changes
Anticipate Failure

Question 59

Which AWS service can be used to view the most comprehensive billing details for the past month?

AWS Cost and Usage Reports
AWS Cost Explorer
AWS Pricing Calculator
AWS Budgets

Answer 59

AWS Cost and Usage Reports

Question 60

Which of the following statements is INCORRECT regarding EBS Volumes?

EBS Volumes can persist data after their termination
EBS Volumes can be bound to several Availability Zones
EBS Volumes can be bound to a specific AZ
EBS Volumes can be mounted to one instance at a time

Answer 60

EBS Volumes can be bound to several AZ’s

Question 61

An e-commerce company would like to build a chatbot for its customer service using Natural Language Understand (NLU). As a Cloud Practitioner, which AWS service would you use?

Amazon Rekognition
Amazon Lex
Amazon SageMaker
Amazon Comprehend

Answer 61

Amazon Lex

Question 62

Which of the following services are provided by Amazon Route 53? (Select TWO)

Health checks and Monitoring
Domain registration
Transfer acceleration
IP Routing
Load Balancing

Answer 62

Health Checks and Monitoring, Domain Name Registration

Question 63

Which types of monitoring can be provided by Amazon CloudWatch? (Select TWO)

Account management
API access
Resource Utilization
Performance and availability of AWS services
Application performance

Answer 63

Resource Utilization, Application performance

Question 64

A company would like to move 50 petabytes (PBs) of data from its on-premises data centers to AWS in the MOST cost-effective way. As a Cloud Practitioner, which of the following solutions would you choose?

AWS Snowball Edge
AWS Storage Gateway
AWS Snowmobile
AWS Snowball

Answer 64

Snowmobile

Question 65

Which AWS tool/service will help you define your cloud infrastructure using popular programming languages such as Python and JavaScript?

AWS Cloud Development Kit (CDK)
AWS Elastic Beanstalk
AWS CloudFormation
AWS CodeBuild

Answer 65

AWS Cloud Development Kit (CDK)

Question 66

According to the Shared Responsibility Model, which of the following is both the responsibility of AWS and the customer? (Select two)

Customer Data
Disposal of disk drives
Operating system configuration
Configuration management
Data center Security

Answer 66

OS configuration, Configuration management.

Question 67

A company needs to use a secure online data transfer tool/service that can automate the ongoing transfers from on-premises systems into AWS while providing support for incremental data backups.

Which AWS tool/service is an optimal fit for this requirement?

AWS Storage Gateway
AWS DataSync
AWS Snowcone
AWS Snowmobile

Answer 67

AWS DataSync - use AWS DataSync for ongoing transfers from on-premises systems into or out of AWS for processing.

Question 68

Which AWS serverless service allows you to prepare data for analytics?

Amazon Athena
Amazon Redshift
Amazon EMR
AWS Glue

Answer 68

AWS Glue

Question 69

A company would like to move its infrastructure to AWS Cloud. Which of the following should be included in the Total Cost of Ownership (TCO) estimate? (Select TWO)

Application Advertising
Number of end-users
Power/Cooling
Server Administration
Electronic Equipment at the office

Answer 69

Power/Cooling
Server Administration

Question 70

Which of the following IAM Security Tools allows you to review permissions granted to a user?

Multi-Factor Authentication (MFA)
IAM access advisor
IAM policies
IAM credentials report

Answer 70

IAM Access Advisor

Question 71

A start-up would like to quickly deploy a popular technology on AWS. As a Cloud Practitioner, which AWS tool would you use for this task?

AWS Whitepapers
AWS Forums
AWS CodeDeploy
AWS Quick Starts References

Answer 71

Quick Starts references

Question 72

A company using a hybrid cloud would like to store secondary backup copies of the on-premises data. Which S3 Storage Class would you use for a cost-optimal yet rapid access solution?

S3 One Zone - Infrequent Access
S3 Glacier
S3 Standard - Infrequent Access
S3 Standard - General Purpose

Question 73

Which of the following are the best practices when using AWS Organizations? (Select TWO)

Disable CloudTrail on Several Accounts
Never use tags for billing
Do not use AWS organizations to automate AWS account creation
Restrict account privileges using Service Control Policies
Create accounts per department

Answer 73

Restrict account privileges using Service Control Policies
Create Accounts per department

Question 74

A Cloud Practitioner would like to get operational insights of its resources to quickly identify any issues that might impact applications using those resources. Which AWS service can help with this task?

Amazon Inspector
AWS Trusted Advisor
AWS Health - Your Account Health Dashboard
AWS Systems Manager

Answer 74

AWS Systems Manager

Question 75

Which member of the AWS Snow Family is used by the Edge computing applications for IoT use cases for facilitating the collection and processing of data to gain immediate insights and then transfer the data to AWS?

AWS Snowposts
AWS Snowball Edge Storage Optimized
AWS Snowmobile
AWS Snowcone

Answer 75

AWS Snowcone

Question 76

Which of the following AWS services is delivered globally rather than regionally?’

Amazon Elastic File System
AWS Snowmobile
Amazon WorkSpaces
Amazon S3 buckets

Answer 76

Amazon WorkSpaces

Question 77

Which of the following data sources are used by Amazon Detective to analyze events and identify potential security issues?

AWS CloudTrail logs, Amazon VPC Flow Logs and Amazon GuardDuty findings.
Amazon CloudWatch Logs, Amazon VPC Flow Logs and Amazon GuardDuty Findings.
Amazon CloudWatchLogs, AWS CloudTrail logs and S3 Access
CloudWatch Logs, CloudTrail logs and Amazon Inspector logs

Answer 77

CloudTrail Logs, VPC Flow Logs, GuardDuty findings

Question 78

Which feature/functionality will help you organize your AWS resources, manage and automate tasks on large numbers of resources at a time?

Tags
AWS organizations
Amazon WorkSpaces
AWS Resource Groups

Answer 78

AWS Resource Groups

Question 79

As part of a flexible pricing model, AWS offers two types of Savings Plans. Which of the following are the Savings Plans from AWS? (Pick 2)

Compute Savings Plans,
Storage Savings Plans,
Instance Savings Plans,
EC2 Instance Savings Plans,
Reserved Instance Savings Plans

Answer 79

Compute Savings Plans, EC2 Instance Savings Plans