Design for New Solutions

Question 1

What types of attacks can AWS Shield Advance protect against

Answer 1

DDoS only

Question 2

In AWS Service Catalog, what should you use to allow specifying a role for a product in the portfolio?

Answer 2

Launch constraints

Question 3

Two ways to run containers on AWS

Answer 3

ECS or Kubernetes (EKS)

Question 4

What Oracle licenses allow version 12c

Answer 4

SE2 or Enterprise

Question 5

How to automatically purge DynamoDB entries after a certain amount of time

Answer 5

Set an attribute with the expiration time value and enable Time to Live on the DynamoDB table for that attribute

Question 6

Best way to provide credentials to members of an IT Operations group to access EC2 instances

Answer 6

Configure IAM role access for AWS Systems Manager Session Manager

Question 7

In AWS Service Catalog, what should you use to restrict the configuration parameters available for the user when they launch the product?

Answer 7

Template constraints

Question 8

How do you define service actions for AWS Service Catalog?

Answer 8

With AWS System Manager documents

Question 9

Tool for streaming and analyzing event logs?

Answer 9

Amazon OpenSearch Service using CloudWatch Logs and AWS Lambda

Question 10

Tool to share data in S3 via AWS Marketplace

Answer 10

AWS Data Exchange

Question 11

How to protect ECS from SQL injection attacks

Answer 11

AWS WAF on an Application Load Balancer

Question 12

Database to use for fast analytic queries of time series data?

Answer 12

Amazon Timestream magnetic store

Question 13

What do you do when you’re running into limitations with Amazon Kinesis Data Streams?

Answer 13

Use Amazon Managed Streaming Service for Kafka (Amazon MSK)

Question 14

What is the correct CLI command to integrate a Lambda with API Gateway?

Answer 14

aws apigateway put-integration

Question 15

How to use CloudFormation to deploy multiple stacks with one root stack and prevent them from sharing information outside of this stack group

Answer 15

Nested stacks

Question 16

How to fix a DynamoDB table that has gotten too large

Answer 16

First, archive as much data as possible. Then, export the remaining data and import it into a new table.

Question 17

Database to use for high throughput writes of time series data?

Answer 17

Amazon Timestream memory store

Question 18

What tool to run and scale big data workloads?

Answer 18

Amazon EMR

Question 19

For a cross team application, is it more efficient to use AWS CodePipeline in multiple team accounts or a single DevOps account?

Answer 19

A single DevOps account

Question 20

When to use Amazon EKS over Amazon ECS with Fargate?

Answer 20

When you need your containerized applications to support an open-source API.

Question 21

How to group EC2 instances for patching.

Answer 21

In AWS Systems Manager Patch Manager, create different patch groups using the tag key “Patch Group”

Question 22

What must resources accessing an EFS file system have in common?

Answer 22

They must all be part of the same VPC.

Question 23

What AWS database services offer multi-region multi-master?

Answer 23

DynamoDB only

Question 24

What type of Step Function workflow is suitable for short-duration idempotent tasks?

Answer 24

Synchronous/Asynchronous Express Workflows

Question 25

Best way to automatically generate metadata for uploaded images to dynamically add them to an online catalog

Answer 25

Trigger a Lambda when images are uploaded to S3 to kick off AWS Step Functions.

Question 26

How long can Amazon Kinesis Data Streams store data?

Answer 26

24 hours by default. Can be extended to up to 7 days max

Question 27

What type of Step Function workflow is suitable for long-running, non-idempotent tasks?

Answer 27

Standard Workflows

Question 28

After an identity ID is used in a GetCredentialsForIdentity request to an Amazon Cognito identity pool, what do you do with the response to get AWS API credentials?

Answer 28

Nothing. AWS API credentials are returned in the response.

Question 29

Is Oracle Data Guard available on RDS?

Answer 29

No

Question 30

Tool for simple search and analytics on data in various locations using SQL queries?

Answer 30

Amazon OpenSearch

Question 31

Build a response to human speech

Answer 31

Amazon Lex

Question 32

Build a chatbot

Answer 32

Amazon Lex

Question 33

Simplest solution to grant a free trial of an application that can’t be downloaded and installed locally

Answer 33

Amazon AppStream

Question 34

How to check conditions in CloudFormation

Answer 34

Fn::If

Question 35

Highest Oracle versions allowed with SE and SE1 licenses

Answer 35

11g

Question 36

Tool to run Oracle RAC

Answer 36

VMware Cloud on AWS and use Oracle Recovery Manager for S3 backups

Question 37

Tool to provide Internet access to an EC2 instance in an AWS Wavelength Zone?

Answer 37

Carrier gateway

Question 38

How to join VMware Cloud on AWS instances to an AD domain

Answer 38

Add a VMware Cloud NSX CGW Firewall rule

Question 39

Tool to apply resources created in CloudFormation to some or all Organizational Units?

Answer 39

CloudFormation StackSets with service-managed permissions. Deploy to organization or organizational units.

Question 40

Name the AWS streaming services

Answer 40

Amazon Kinesis and Amazon Managed Streaming Service for Kafka (Amazon MSK)

Question 41

Can Route 53 consolidate dynamic and static Cloudfront distributions under one alias?

Answer 41

No

Question 42

How to join EC2 Linux instances to an AD domain

Answer 42

Use a Kerberos client package to perform a Realm Join

Question 43

What tool to automate data movement and transformation between AWS compute and storage services?

Answer 43

AWS Data Pipeline

Question 44

Service for converting text to speech

Answer 44

Amazon Polly

Question 45

How to set variables for CloudFormation

Answer 45

Input parameters

Question 46

What S3 routing to find the fastest connection

Answer 46

S3 Latency-based routing

Question 47

Is a secondary Elastic Network Interface the same thing as a secondary IP?

Answer 47

Nope!

Question 48

How to charge per-request pricing for AWS Lambda usage

Answer 48

API Gateway Serverless Developer Portal to create API keys for subscribers and use AWS Marketplace to create usage plans using metrics from a metering IAM Role

Question 49

How to handle traffic boosts after holidays

Answer 49

Scheduled scaling policy

Question 50

How to allow IoT devices to interact with AWS services?

Answer 50

AWS IoT rules

Question 51

How to prevent an Auto Scaling Group from terminating a failed instance so you can look at its logs?

Answer 51

Suspend the terminate process in the Auto Scaling Group

Question 52

Your ECS cluster cannot access ECR. What do you do?

Answer 52

Set up a NAT Gateway for it to access the Internet

Question 53

How to cache API Gateway requests?

Answer 53

API Gateway API Caching

Question 54

Which DB solution provides the best global scalability for mobile applications?

Answer 54

DynamoDB

Question 55

How to provide access to your ECR images in a second region?

Answer 55

Cross-region replication