CPC Prep

Question 1

What are the AWS Cloud Compute Services?

Answer 1

Elastic Cloud Compute (EC2)
Lambda
Elastic Container Service (ECS)
Lightsail

Question 2

Which AWS Compute service do you manage the operating system? This service scales vertically with Autoscaling and is used for traditional applications and long running tasks?

Answer 2

EC2

Question 3

Which compute service enables you to manage the container instance and the containers? This service enables you to manually add container instances or use ECS services & EC2 Autoscaling. It is used for microservices and batch use cases where you need to maintain management.

Answer 3

ECS (EC2 Launch Type)

Question 4

Which compute service enables you to manage the containers? AWS scales the cluster automatically and is used for microservices and batch use cases.

Answer 4

EC2 (Fargate Launch Type)

Question 5

Which AWS compute service enables you to manage the code? The service is serverless and automatically scales concurrent executions. It is used for ETL, infrastructure, automation, data validation, and mobile backends.

Answer 5

Lambda

Question 6

Which compute choice operates with EC2? The consumer manages functions, application, runtime, and guest OS. AWS manages the Hypervisor and physical hardware.

Answer 6

Infrastructure as a System (IaaS)

Question 7

Which compute choice operates with ECS? The consumer manages functions, applications, and runtime. AWS manages container engine, guest OS & physical hardware.

Answer 7

Container as a Service (CaaS)

Question 8

Which compute choice operate with Lambda? The consumer manages the functions. AWS manages application, runtime, container engine, guest OS & physical hardware.

Answer 8

Function as a System (FaaS)

Question 9

Which AWS service is great for users who do not have a deep AWS technical expertise and makes it easy to provision compute services?

Answer 9

Amazon LightSail

Question 10

Which service includes everything you need to launch projects quickly? It provides preconfigured virtual private servers that include everything required to deploy applications or create a database.

Answer 10

Lightsail

Question 11

Which service allows you to deploy a private server without a lot of technical expertise?

Answer 11

Lightsail

Question 12

Which service provides serverless computing technology that allows you to run code without provisioning or managing servers?

Answer 12

Lambda

Question 13

Which compute service executes code only when needed and scales automatically? You pay only for the compute time you consume.

Answer 13

Lambda

Question 14

Which AWS service has the following benefits:
No servers to manage
Continuous scaling
Sub second metering
Integrates with almost all other AWS services

Answer 14

Lambda

Question 15

Which AWS service has the following use cases:
Data processing
real-time file processing
real-time stream processing
Build serverless backends for web, mobile, IOT, and 3rd party applications

Answer 15

Lambda

Question 16

Which AWS compute service provides a highly-scalable, high performance container management service that supports Docker containers?

Answer 16

Elastic Container Storage (ECS)

Question 17

Which service is launched with ECS that enables you to provision instances and provides you granular control over infrastructure?

Answer 17

EC2

Question 18

What service is launched with ECS where the control plane asks for resources and is automatically provisioned? This system provides you limited control and the infrastructure is automated.

Answer 18

Amazon Fargate

Question 19

What data type is supplied by the user at instance launch?

Answer 19

User data

Question 20

What data type provides data about your instance that you can configure or manage the running instance?

Answer 20

Metadata

Question 21

Which AMI category is free of charge and generally allows you to select the operating system you want?

Answer 21

Community AMIs

Question 22

Which AMI category do you pay to use and generally comes packaged with additional licensed software?

Answer 22

AWS Marketplace AMI

Question 23

Which AMI category do you create yourself?

Answer 23

My AMIs

Question 24

What service provides the information required to launch an instance?

Answer 24

Amazon Machine Image (AMI)

Question 25

Which service provides a template for the root volume of the instance containing one or more EBS snapshots or instance-store-backed AMIs?

Answer 25

AMIs

Question 26

What is an EC2 instance made up of?

Answer 26

Amazon Machine Image (AMI) + Instance type

Question 27

Which web service in the AWS Compute suite of products provides secure, resizable compute capacity in the cloud?

Answer 27

EC2

Question 28

Which EC2 attribute enables you to increase or decrease capacity within minutes and commission one to thousands of instances simultaneously?

Answer 28

Elastic Web-scale computing

Question 29

Which EC2 attribute enables you to have complete control root access to each instance and can stop and start instances without losing data and using web service APIs?

Answer 29

Completely Controlled

Question 30

Which EC2 attribute allows you to choose multiple instance types, operating systems, and software packages as well as instances with varying memory, CPU, and storage configurations?

Answer 30

Flexible Cloud Hosting Services

Question 31

Which web service enables you to request temporary, limited privilege credentials for IAM users or for users that you authenticate?

Answer 31

AWS Security Token Service (STS)

Question 32

What makes up Multi-Factor Authentication?

Answer 32

1. User name and password

2. Virtual or physical Authenticator

Question 33

What are the two IAM Authentication Methods?

Answer 33

1. Access Key

2. User & Password

Question 34

Which IAM authentication method is made up of an access key ID and a secret access key?

Answer 34

Access Key

Question 35

When is the secret access key returned?

Answer 35

Only at the time of creation

Question 36

How can IAM users be given access to change their own access keys?

Answer 36

Through IAM policy

Question 37

Which IAM authentication method is used to access AWS Management Console?

Answer 37

IAM User and Password

Question 38

Which IAM method enables you to define the permissions that can be applied to users, groups, and/or roles?

Answer 38

IAM Policies

Question 39

Which IAM principle does the following:

• all permissions are implicitly denied by default
• the most restrictive policy is applied
• is written in JSON
• Uses a simulator to help you understand, test, and validate its effects

Answer 39

IAM Policy

Question 40

Which IAM service is created and then “assumed” by trusted entities and define a set of permissions for making AWS service requests?

Answer 40

IAM Role

Question 41

Which IAM category has the following attributes:

• Delegate permissions to resources for users and services without using permanent credentials
• Has no credentials associated with it
• Users or services can assume it to obtain temporary security credentials that can be used to make AWS API calls

Answer 41

IAM Role

Question 42

Which IAM item is a collection of users and have policies attached to them?

Answer 42

IAM Groups

Question 43

Which IAM item has the following characteristics:

• Not an identity and cannot be identified as a principal in an IAM policy
• Is used to assign permissions to users
• Uses the principal of least privilege when assigning permissions
• Cannot be nested within other ones

Answer 43

IAM Group

Question 44

Which IAM entity represents a person or service?

Answer 44

IAM User

Question 45

Which credentials consist of the email address used to create the account and password?

Answer 45

Root User

Question 46

What are the 4 best practices for the root account?

Answer 46

1. Don’t use the root user credentials
2. Don’t share the root user credentials
3. Create an IAM user and assign administrative permissions as required
4. Enable Multi-factor Authentication (MFA)

Question 47

Which accounts consist of a friendly name and an Amazon Resource Name (ARN) which uniquely identifies the user across AWS?

Answer 47

IAM User

Question 48

What kind of policy can be defined for enforcing password length, complexity, etc and applies to all users?

Answer 48

Password

Question 49

What two access methods can IAM Users be assigned?

Answer 49

1. Access key ID and secret access key for programmatic access
2. Password for access to the AWS Management Console

Question 50

What describes the prohibited uses of AWS?

Answer 50

AWS Acceptable Use Policy

Question 51

What are the three fundamentals of AWS pricing?

Answer 51

Compute, Storage, Outbound data transfer

Question 52

Which pricing method is highly flexible with no long-term commitments or upfront payments? This method is used for compute and database capacity

Answer 52

On-Demand

Question 53

Which pricing method is available for EC2 where hardware is dedicated to a single customer?

Answer 53

Dedicated Instances

Question 54

Which pricing method allows you to purchase spare capacity with no commitments and great discounts at hourly rates? The drawback is AWS can pull the service if a higher paying customer needs it.

Answer 54

Spot Instances

Question 55

Which payment method has an up to 75% discount and requires a 1 to 3 year term?

Answer 55

Reservations

Question 56

What are the three Reservation payment options?

Answer 56

1. No upfront
2. Partial Upfront
3. All Upfront

Question 57

What three entities make up the AWS Global Infrastructure?

Answer 57

1. Regions
2. Availability Zones
3. Edge Locations

Question 58

Which AWS Global Infrastructure entity is a geographical area with 2 or more Availability Zones, isolated from others?

Answer 58

Regions

Question 59

Which AWS Global Infrastructure entity consists of one or more data centers that are physically separated and isolated?

Answer 59

Availability Zones

Question 60

Which AWS Global Infrastructure has direct, low-latency, high throughput and redundant network connections between each other?

Answer 60

Availability Zones

Question 61

Which AWS Global Infrastructure is designed as an independent fault zone?

Answer 61

Availability Zones

Question 62

Which AWS Global Infrastructure entity is a location with cache content that can be delivered at low latency to users and is used by CloudFront?

Answer 62

Edge Locations

Question 63

What are the 6 benefits of Cloud Computing

Answer 63

1. Trade capital expense for variable expense
2. Benefit from massive economies of scale
3. Stop guessing about capacity
4. Increase speed and agility
5. Stop spending money running and maintaining data centers
6. Go global in minutes

Question 64

Which cloud computing model is fully managed by you?

Answer 64

On-premises (private cloud)

Question 65

Which Cloud Computing Model is the hypervisor and physical hardware managed by the service provider and the customer is responsible for the application, data, runtime, and guest operating system?

Answer 65

Infrastructure as a System (IaaS)

Question 66

Which Cloud Computing Model is the hypervisor, physical hardware, guest operating system, & runtime managed by the service provider and the customer is responsible for the application and data?

Answer 66

Platform as a System (PaaS)

Question 67

Which Cloud Computing Model is the hypervisor, physical hardware, guest operating system, runtime, data, and application managed by the service provider?

Answer 67

Software as a System (SaaS)

Question 68

Which Cloud Computing Deployment Model does an enterprise deploy their own infrastructure and applications into their own data center?

Answer 68

Private Cloud

Question 69

Which Cloud Computing Deployment Model does an IT service that you consume are hosted and delivered from a third-party and accessed over the Internet?

Answer 69

Public Cloud

Question 70

Which Cloud Computing Deployment Model provides benefits include complete control over the entire stack and high-security?

Answer 70

Private Cloud

Question 71

Which Cloud Computing Deployment Model benefits include variable expense, economies of scale, & massive elasticity?

Answer 71

Public Cloud

Question 72

Which Cloud Computing Deployment Model is a combination of on-premises, private cloud and public cloud services?

Answer 72

Hybrid Cloud

Question 73

Which Cloud Computing Deployment Model includes the following benefits:

• allows companies to keep the critical application & sensitive data in a traditional data center or private cloud
• Takes advantages of public cloud resources like SaaS and IaaS
• Facilitates portability of data, apps and services and more choices for deployment models

Answer 73

Hybrid Cloud

Question 74

What are the 3 types of general storage types?

Answer 74

1. Object Storage
2. Block Storage
3. File Storage

Question 75

Which type of storage has virtually unlimited scalability and allows the retention of massive amounts of unstructured data? This storage class is accessed use it a REST API and includes the data itself, metadata, and globally unique identifier.

Answer 75

Object Storage