Cloud Practitioner 2 Flashcards
Which AWS Support Plan provides architectural guidance contextual to your specific use-cases?
Business, Enterprise, Basic, Developer
Business
Which of the following AWS Support plans provides access to Infra Event Management for an additional fee?
Business
AWS Web Application Firewall (WAF) offers protection from common web exploits at which layer?
Layer 7
Which AWS Support plans provide access to only 7 core checks from AWS Trust Advisor Best Practice Checks? (Select 2)
Basic, Developer, Corporate, Business, Enterprise
Basic, Developer
Which AWS support plans provide access to online training with self-paced labs?
Basic, Developer, Business, Enterprise
Enterprise
Which EC2 instance types should be used for server-bound software licenses?
On-demand instances, reserved instances, dedicated host, dedicated instance
Dedicated Host
Which AWS service will help you receive alerts when the reservation utilization falls below the defined threshold?
Trusted Advisor, Budgets, CloudTrail, Price Calulator?
Budgets
Which of the following AWS services has encryption enabled by default?
EBS, RDS, CloudTrail Logs, EFS
CloudTrail Logs
Which of the following is a benefit of using AWS managed services such as Amazon RDS?
There is no need to optimize database instance type and size
The performance of AWS managed RDS instance is better than a customer -managed db instance.
The customer needs to manage database backups
The customer needs to patch the underlying OS
Performance of AWS managed RDS instances is better.
Which of the following AWS services support VPC Endpoint Gateway for a private connection from a VPC? (Select 2)
DynamoDB
SQS
EC2
S3
SNS
DynamoDB, S3
A VPC endpoint enables you to privately connect your VPC to supported AWS services and VPC endpoint services powered by AWS PrivateLink without requiring an internet gateway, NAT device, VPN connection, or AWS Direct Connect connection.
Which of the following AWS Support plans provide access to guidance, configuration, and troubleshooting of AWS interoperability with third-party software? (Select two)
Enterprise, Business, Basic, Corporate, Developer
Enterprise, Business
Which AWS service can be used to provision resources to run big data workloads on Hadoop clusters?
Hadoop = BDP, Amazon EMR
Which of the following is correct about AWS “Developer” Support plan?
1 Contact, Unlimited Cases
Unlimited Contacts, limited cases
1 Contact, limited cases
Unlimited Contacts, Unlimited Cases
1 Contact, Unlimited cases
Which AWS service will help the organization track the history of configuration changes for all the resources?
CloudTrail, Service Catalog, CloudFormation, Config
Config - assess, audit, and evaluate the configurations of your AWS resources.
Incorrect:
CloudTrail - governance, compliance, operational auditing, and risk auditing of your AWS account.
A startup is looking for 24x7 phone based technical support for his AWS account. Which of the following is the MOST cost-effective AWS support plan for this use-case?
Developer, Enterprise, Basic, Business
Business
What are the different gateway types supported by AWS Storage Gateway service? Pick 3:
Tape Gateway, File Gateway, Volume Gateway, Block Gateway, Object Gateway
Tape, File, Volume
As per the AWS shared responsibility model, which of the following is a responsibility of AWS from a security and compliance point of view?
Server-side Encryption, Identity and Access Management, Customer Data, Edge Location Management
Edge Location Management
Which of the following options are the pillars mentioned in the AWS Well-Architected Framework? (Select two)
Availability, Elasticity, Reliability, Cost Optimization, Scalability
Reliability, Cost Optimization
Which AWS service helps with global application availability and performance using the AWS global network?
Global Accelerator, CloudFront, Route 53, Elastic Load Balancer
Global Accelerator
Which AWS service is best for analysis of SQL - based data stored in S3?
RedShift, DynamoDB, Amazon Athena, Amazon Aurora
Athena
Incorrect: Redshift - can be used for analytics on SQL based data, but not in S3.
A multi-national company wants to migrate its IT infrastructure to AWS Cloud and is looking for a concierge support team as well as a response time of around an hour in case the systems go down. As a Cloud Practitioner, which of the following support plans would you recommend to the company?
Enterprise, Business, Developer, Individual
Enterprise
Which of the following AWS services are part of the AWS Foundation services for the Reliability pillar of the Well-Architected Framework in AWS Cloud? (Select two)
AWS CloudFormation, AWS CloudTrail, AWS Trusted Advisor, AWS Service Quotas, AWS CloudWatch
AWS Trusted Advisor, AWS Service Quotas
CloudWatch billing metric data is stored in which AWS Region?
us-east-1
An organization maintains separate VPCs for each of its departments. With expanding business, the organization now wants to connect all VPCs for better departmental collaboration. Which AWS service will help the organization tackle the issue effectively?
AWS Transit Gateway, VPC Peering, Site to Site VPN, AWS Direct Connect?
Transit Gateway
Which AWS Services support high Availability by default?
Redshift, EBS, EFS, Instance Store, DynamoDB
EFS, DynamoDB
What is the primary benefit of deploying an RDS database in a Read Replica configuration?
Improves Scalability, protects from regional failure, enhances database availability, reduces DB useage costs
Scalability
Which pillar of the AWS Well-Architected Framework recommends maintaining infrastructure as code?
Cost Optimization, Performance Efficiency, Operational Excellence, Security
Operational Excellence
Which budeget types can be created under AWS budgets? (Select 3)
Reservation budget, Cost budget, Hardware budget, Resource budget, Usage budget, Software budget
Reservation budget, Cost budget, Usage budget
Which AWS Support plan provides general architectural guidance on how services can be used for various use-cases, workloads, or applications?
Developer, Business, Basic, Enterprise
Developer
Which S3 storage class offers the lowest availability?
S3 Standard, One Zone-IA, Glacier, Intelligent-Tiering
S3 One Zone-IA
Data encryption is automatically enabled for which of the following AWS services? (Select two)?
EBS volumes, S3 Glacier, Storage Gateway, EFS drives, Redshift
S3 Glacier, Storage Gateway
Which of the following AWS services are regional in scope? (Select two)
AWS WAF, Rekognition, CloudFront, IAM, Lambda
Rekognition, Lambda
A leading research firm needs to access information available in old patents and documents (such as PDFs, Text Files, Word documents, etc) present in its huge knowledge base. The firm is looking for a powerful search tool that can dig into these knowledge resources and return the most relevant files/documents. Which of the following is the correct service to address this requirement?
Comprehend, Kendra, Personalize, Lex
Kendra
AWS Trusted Advisor analyzes your AWS environment and provides best practice recommendations for which of the following categories? (Select two)?
Service Limits, Change Management, Elasticity, Documentation, Cost Optimization
Service Limits, Cost Optimization
Which of the following is a part of the AWS Global Infrastructure?
Region, VPN, Subnets, Virtual Private Cloud (VPC)
Region
A research lab wants to optimize the caching capabilities for its scientific computations application running on EC2 instances. Which EC2 storage option is best suited for this use-case?
EBS, EFS, S3, Instance Store
Instance Store
Which AWS service will you use to privately connect your VPC to Amazon S3?
AWS Direct Connect, VPC Endpoint Gateway, API Gateway, Transit Gateway
Direct Connect
Which of the following is best-suited for load-balancing HTTP and HTTPS traffic?
Network Load Balancer, System Load Balancer, AWS Auto Scaling, Application Load Balancer?
Application Load Balancer
A multi-national organization has separate VPCs for each of its business units on the AWS Cloud. The organization also wants to connect its on-premises data center with all VPCs for better organization-wide collaboration. Which AWS services can be combined to build the MOST efficient solution for this use-case? (Select two)
VPC Peering, AWS internet Gateay, AWS Direct Connect, AWS Storage Gateway, AWS Transit Gateway
Direct Connect, Transit Gateway
Which of the following S3 storage classes do not charge any data retrieval fee? (Select two)
S3 Standard, S3 Glacier, S3 One Zone-IA, S3 Standard-IA, S3 Intelligent-Tiering
S3 Standard, S3 Intelligent-Tiering
Cost-Benefic for reserved instances across accounts are only utilized if the EC2 instances is launched in the same Region, or Availability Zone where the the instances are reserved?
Availability Zone
Which of the following describes an Availability Zone in the AWS Cloud?
One or More server racks in multiple locations
one or more data centers in the same location
one or more server racks in the same location
one or more data centers in multiple locations
One or more data centers in the same location
Which AWS entity enables you to privately connect your VPC to an Amazon SQS queue?
VPC Interface Endpoint, AWS Direct Connect, VPC Gateway Endpoint, Internet Gateway
VPC Interface Endpoint
AWS Shield Advanced provides expanded DDoS attack protection for web applications running on which of the following resources? (Select two)
Amazon Elastic Compute Cloud, AWS elastic Beanstalk, Amazon CloudFront, Amazon S3, AWS IAM
Amazon Elastic Cloud Compute, Amazon CloudFront
An e-commerce company wants to review the Payment Card Industry (PCI) reports on AWS Cloud. Which AWS resource can be used to address this use-case?
AWS Trusted Advisor
AWS Cost and Usage Reports, AWS Artifact
AWS Artifact
The DevOps team at a Big Data consultancy has set up EC2 instances across two AWS Regions for its flagship application. Which of the following characterizes this application architecture?
Improves Agilitiy, Improves Security, Improves Scalability, Improves Availability
Which of the following S3 storage classes has NO constraint of a minimum storage duration charge for objects?
S3 Glacier, S3 One Zone-IA, S3 Standard-IA, S3 Standard
S3 Standard
Which AWS service can be used to set up billing alarms to monitor estimated charges on your AWS account?
AWS Cost Explorer, Amazon CloudWatch, AWS organizations, AWS CloudTrail
Setting up Alarms = CloudWatch
Data transferred from S3 into an EC2 instance is free when the instances is in [the same region, any region]?
Same Region
Which of the following is correct regarding the AWS RDS service?
You can use both Read Replicas and Multi-AZ for improved read performance.
You can use Read Replicas for improved read performance and multi-az for disaster recovery.
You can use Read Replicas for both imrpoved read performance as well as disaster recovery.
You can use Read replicas for Disaster REcover and Multi-AZ for improved read performance.
You can use Read Replicas for both improved read performance as well as disaster recovery.
Which of the following AWS Support plans provide programmatic access to AWS Support Center features to create, manage and close your support cases? (Select two)
Developer, Basic, Business, Enterprise, Corporate
Business, Enterprise
Which of the following AWS services can be used to forecast your AWS account usage and costs?
Pricing Calculator, Cost Explorer, Budgets, Cost and Usage Reports
AWS Cost Explorer
Which pillar of AWS Well-Architected Framework is responsible for making sure that you select the right resource types and sizes based on your workload requirements?
Cost Optimization, Reliability, Operational Excellence, Performance Efficiency
Performance Efficiency
Which of the following statements are true regarding Amazon Simple Storage Service (S3) (Select two)?
S3 is a key value based object storage service
S3 is a fully managed, elastic file system storage service used as database backup.
S3 is a block storage service designed for a broad range of workloads.
S3 stores data in a flat, non-hierarchial structure
You can install databases on S3
Which of the following statements are true regarding Amazon Simple Storage Service (S3) (Select two)?
S3 is a key value based object storage service
S3 is a fully managed, elastic file system storage service used as database backup.
S3 is a block storage service designed for a broad range of workloads.
S3 stores data in a flat, non-hierarchical structure
You can install databases on S3
S3 Stores data in a flat non-hierarchical structure.
S3 is a key value based object storage service.
According to the Well-Architected Framework, which of the following action is recommended in the Security pillar?
Use Cloudwatch to measure overall efficiency
Use AWS cost Explorer to view and track your useage in detail
Use AWS KMS to encrypt data
Use AWS CloudFormation to automate security best practices
AWS KMS to encrypt data
Which AWS service can be used to subscribe to an RSS feed to be notified of the status of all AWS service interruptions?
AWS Health - Service Health Dashboard
AWS Lambda
AWS Health - Your Account Health Dashboard
Amazon SNS
AWS Health - Service Health Dashboard
According to the Well-Architected Framework, which of the following statements are recommendations in the Operational Excellence pillar? (Select two)
Use Serverless Architectures
Make frequent, small, reversible changes
Anticipate Failure
Automatically recover from failure
Enable traceability
Make frequent, small, reversible changes
Anticipate Failure
Which AWS service can be used to view the most comprehensive billing details for the past month?
AWS Cost and Usage Reports
AWS Cost Explorer
AWS Pricing Calculator
AWS Budgets
AWS Cost and Usage Reports
Which of the following statements is INCORRECT regarding EBS Volumes?
EBS Volumes can persist data after their termination
EBS Volumes can be bound to several Availability Zones
EBS Volumes can be bound to a specific AZ
EBS Volumes can be mounted to one instance at a time
EBS Volumes can be bound to several AZ’s
An e-commerce company would like to build a chatbot for its customer service using Natural Language Understand (NLU). As a Cloud Practitioner, which AWS service would you use?
Amazon Rekognition
Amazon Lex
Amazon SageMaker
Amazon Comprehend
Amazon Lex
Which of the following services are provided by Amazon Route 53? (Select TWO)
Health checks and Monitoring
Domain registration
Transfer acceleration
IP Routing
Load Balancing
Health Checks and Monitoring, Domain Name Registration
Which types of monitoring can be provided by Amazon CloudWatch? (Select TWO)
Account management
API access
Resource Utilization
Performance and availability of AWS services
Application performance
Resource Utilization, Application performance
A company would like to move 50 petabytes (PBs) of data from its on-premises data centers to AWS in the MOST cost-effective way. As a Cloud Practitioner, which of the following solutions would you choose?
AWS Snowball Edge
AWS Storage Gateway
AWS Snowmobile
AWS Snowball
Snowmobile
Which AWS tool/service will help you define your cloud infrastructure using popular programming languages such as Python and JavaScript?
AWS Cloud Development Kit (CDK)
AWS Elastic Beanstalk
AWS CloudFormation
AWS CodeBuild
AWS Cloud Development Kit (CDK)
According to the Shared Responsibility Model, which of the following is both the responsibility of AWS and the customer? (Select two)
Customer Data
Disposal of disk drives
Operating system configuration
Configuration management
Data center Security
OS configuration, Configuration management.
A company needs to use a secure online data transfer tool/service that can automate the ongoing transfers from on-premises systems into AWS while providing support for incremental data backups.
Which AWS tool/service is an optimal fit for this requirement?
AWS Storage Gateway
AWS DataSync
AWS Snowcone
AWS Snowmobile
AWS DataSync - use AWS DataSync for ongoing transfers from on-premises systems into or out of AWS for processing.
Which AWS serverless service allows you to prepare data for analytics?
Amazon Athena
Amazon Redshift
Amazon EMR
AWS Glue
AWS Glue
A company would like to move its infrastructure to AWS Cloud. Which of the following should be included in the Total Cost of Ownership (TCO) estimate? (Select TWO)
Application Advertising
Number of end-users
Power/Cooling
Server Administration
Electronic Equipment at the office
Power/Cooling
Server Administration
Which of the following IAM Security Tools allows you to review permissions granted to a user?
Multi-Factor Authentication (MFA)
IAM access advisor
IAM policies
IAM credentials report
IAM Access Advisor
A start-up would like to quickly deploy a popular technology on AWS. As a Cloud Practitioner, which AWS tool would you use for this task?
AWS Whitepapers
AWS Forums
AWS CodeDeploy
AWS Quick Starts References
Quick Starts references
A company using a hybrid cloud would like to store secondary backup copies of the on-premises data. Which S3 Storage Class would you use for a cost-optimal yet rapid access solution?
S3 One Zone - Infrequent Access
S3 Glacier
S3 Standard - Infrequent Access
S3 Standard - General Purpose
Which of the following are the best practices when using AWS Organizations? (Select TWO)
Disable CloudTrail on Several Accounts
Never use tags for billing
Do not use AWS organizations to automate AWS account creation
Restrict account privileges using Service Control Policies
Create accounts per department
Restrict account privileges using Service Control Policies
Create Accounts per department
A Cloud Practitioner would like to get operational insights of its resources to quickly identify any issues that might impact applications using those resources. Which AWS service can help with this task?
Amazon Inspector
AWS Trusted Advisor
AWS Health - Your Account Health Dashboard
AWS Systems Manager
AWS Systems Manager
Which member of the AWS Snow Family is used by the Edge computing applications for IoT use cases for facilitating the collection and processing of data to gain immediate insights and then transfer the data to AWS?
AWS Snowposts
AWS Snowball Edge Storage Optimized
AWS Snowmobile
AWS Snowcone
AWS Snowcone
Which of the following AWS services is delivered globally rather than regionally?’
Amazon Elastic File System
AWS Snowmobile
Amazon WorkSpaces
Amazon S3 buckets
Amazon WorkSpaces
Which of the following data sources are used by Amazon Detective to analyze events and identify potential security issues?
AWS CloudTrail logs, Amazon VPC Flow Logs and Amazon GuardDuty findings.
Amazon CloudWatch Logs, Amazon VPC Flow Logs and Amazon GuardDuty Findings.
Amazon CloudWatchLogs, AWS CloudTrail logs and S3 Access
CloudWatch Logs, CloudTrail logs and Amazon Inspector logs
CloudTrail Logs, VPC Flow Logs, GuardDuty findings
Which feature/functionality will help you organize your AWS resources, manage and automate tasks on large numbers of resources at a time?
Tags
AWS organizations
Amazon WorkSpaces
AWS Resource Groups
AWS Resource Groups
As part of a flexible pricing model, AWS offers two types of Savings Plans. Which of the following are the Savings Plans from AWS? (Pick 2)
Compute Savings Plans,
Storage Savings Plans,
Instance Savings Plans,
EC2 Instance Savings Plans,
Reserved Instance Savings Plans
Compute Savings Plans, EC2 Instance Savings Plans
