Domain 3.0 Technology

Question 1

is an online tool that provides you real-time guidance to help you provision your resources following AWS best practices. It inspects your AWS environment and makes recommendations for saving money, improving system performance and reliability, or closing security gaps.

Answer 1

AWS Trusted Advisor

Question 2

AWS Trusted Advisor five categories

Answer 2

3. Fault Tolerance
4. Performance
5. Service Limits
6. Security
7. Cost Optimization

Question 3

You need to host a new Microsoft SQL Server database in AWS for an urgent project. Which AWS services we can use?

Answer 3

Amazon Relational Database Service (Amazon RDS) and Amazon EC2

Question 4

A company has web servers running on Amazon EC2 instances that access a RESTful API hosted on their on-premises data center. What kind of architecture is the company using?

Answer 4

Hybrid Architecture

Question 5

a cloud architecture model
Help organizations integrate their on-premises and cloud operations to support a broad spectrum of use cases using a common set of cloud services, tools, and APIs across on-premises and cloud environments

Answer 5

Hybrid Architecture

Question 6

Which of the following is an advantage of using managed services like RDS, ElastiCache, and CloudSearch in AWS?

Answer 6

Simplifies all of your OS patching and backup activities to help keep your resources current and secure

Question 7

Makes it easy to set up, operate, and scale a relational database in the cloud. It provides cost-efficient and resizable capacity while automating time-consuming administration tasks such as hardware provisioning, database setup, patching and backups. It frees you to focus on your applications so you can give them the fast performance, high availability, security and compatibility they need

Answer 7

Amazon Relational Database Service (Amazon RDS)

Question 8

aws service
Offers fully managed Redis and Memcached. Seamlessly deploy, run, and scale popular open source compatible in-memory data stores. Build data-intensive apps or improve the performance of your existing apps by retrieving data from high throughput and low latency in-memory data stores.

Answer 8

Amazon ElastiCache

Question 9

A managed service in the AWS Cloud that makes it simple and cost-effective to set up, manage, and scale a search solution for your website or application

Answer 9

Amazon CloudSearch

Question 10

Highly available and scalable cloud Domain Name System (DNS) web service in AWS?

Answer 10

Amazon Route 53

Question 11

enables your applications to confirm user identities by comparing their live image with a reference image.

Answer 11

Amazon Rekognition

Question 12

A core Windows service that provides the foundation for many enterprise-class Microsoft-based solutions, including Microsoft SharePoint, Microsoft Exchange, and .NET applications

Answer 12

Active Directory Domain Service

Question 13

An easy-to-use cloud platform that offers everything you need to build an application or website, plus a cost-effective, monthly plan. A virtual private server (VPS) solution. Not used for Amazon EC2 scaling

Answer 13

Amazon Lightsail

Question 14

is a global team of experts that can help you realize your desired business outcomes when using the AWS Cloud

Answer 14

AWS Professional Services

Question 15

Is the one which provides 24×7 technical support from high-quality engineers, tools and technology to automatically manage the health of your environment, consultative architectural guidance delivered in the context of your applications and use-cases, and a designated Technical Account Manager (TAM) to coordinate access to proactive/preventative programs and AWS subject matter experts

Answer 15

AWS Enterprise Support

Question 16

A team composed of AWS billing and account experts that specialize in working with enterprise accounts. They will quickly and efficiently assist you with your billing and account inquiries, and work with you to implement billing and account best practices so that you can focus on running your business

Answer 16

Concierge Support

Question 17

Your designated technical point of contact who provides advocacy and guidance to help plan and build solutions using best practices, coordinate access to subject matter experts and product teams, and proactively keep your AWS environment operationally healthy

Answer 17

AWS Technical Account Manager

Question 18

What are the benefits of using Edge locations in AWS?

Answer 18

1. Improves application performance by delivering content closer to your users
2. Provides caching which reduces the load on your origin servers

Question 19

provides powerful computing resources for use cases such as machine learning, full motion video
analysis, analytics, and local computing stacks.

Storage 42TBand 7.68 TB and Computer 52vCPU

Answer 19

AWS Snowball Edge Compute Optmized

Question 20

Seamlessly extends AWS to edge devices so they can act locally on the data they generate, while still using the cloud for management, analytics, and durable storage

Answer 20

AWS IoT Greengrass

Question 21

Provides highly scalable object storage for your static content. Provies 99.999999999% reliability and durability

provides Block Public Access settings for buckets and accounts to help you manage public access to Amazon S3 resources

Answer 21

Amazon S3 Standard

Question 22

A web service that speeds up distribution of your static and dynamic web content, such as .html, .css, .js, and image files, to your users. delivers your content through a worldwide network of data centers called edge locations

Answer 22

Amazon CloudFront

Question 23

Describes the Amazon Simple Storage Service (S3)?

Answer 23

1. A storage service with virtually unlimited space
2. A highly durable object storage infrastructure

Question 24

A durable, high throughput file system. It’s a regional service storing data within and across multiple Availability Zones (AZs)

Answer 24

Amazon Elastic File System (EFS)

Question 25

A high-performance block storage service

Answer 25

Amazon Elastic Block Store (EBS)

Question 26

A hybrid cloud storage service that gives you on-premises access to virtually unlimited cloud storage in AWS

Answer 26

AWS Storage Gateway

Question 27

The most suitable one to use to store the results of I/O-intensive SQL database queries to improve application performance?

Answer 27

Amazon ElastiCache

Question 28

A software that lets you run local compute, messaging, data caching, sync, and ML inference capabilities on connected devices in a secure way

Answer 28

AWS Greengrass

Question 29

is an in-memory cache for DynamoDB. Help improves responses times from single-digit milliseconds to microseconds.

Answer 29

Amazon DynamoDB Accelarator (DAX)

Question 30

This implementation has to be robust, fast, and simple to use. It should also prevent any type of data loss from occurring. The company would like to keep track of the status of the migration.

Which tool should the team adopt for the DR solution?

Answer 30

CloudEndure

Question 31

These services cannot migrate bare metal servers

Answer 31

AWS Server Migration Service and AWS Database Migration Service

Question 32

This service is for monitoring the state of your migrations. It does not handle disaster recovery

Answer 32

AWS Migration Hub

Question 33

Are the things that Amazon CloudWatch Logs can accomplish?

Answer 33

1. Monitor application logs from Amazon EC2 Instances
2. Adjust the retention policy for each log group

Question 34

Amazon CloudWatch services:

Answer 34

1. Monitor logs from Amazon EC2 Instances
2. Monitor AWS CloudTrail Logged Events
3. Log Retention
4. Archive Log Data
5. Log Route 53 DNS Queries

Question 35

Primarily used for governance, compliance, operational auditing, and risk auditing of your AWS account. Record AWS Management Console actions and API calls

Answer 35

AWS CloudTrail

Question 36

Create alarms that automatically stop, terminate, reboot, or recover your EC2 Instances

Answer 36

Amazon CloudWatch Alarms

Question 37

Users from different parts of the globe are complaining about the slow performance of the newly launched photo-sharing website in loading their high-resolution images. Which combination of AWS services should you use to serve the files with lowest possible latency?

Answer 37

Amazon S3 and Amazon CloudFront

Question 38

is focused on helping partners build successful AWS-based businesses to drive superb customer experiences. This is accomplished by developing a global ecosystem of Partners with specialties unique to each customer’s needs.

Answer 38

AWS Partner Network Consulting Partners

Question 39

Two types of AWS Partner Network (APN) Partners:

Answer 39

1. APN Consulting Partners
2. APN Technology Partners

Question 40

are professional services firms that help customers of all sizes design, architect, migrate, or build new applications on AWS.

Answer 40

APN Consulting Partners

Question 41

Provides a new sales channel for independent software vendors (ISVs) and Consulting Partners to sell their solutions to AWS customers. This makes it easy for customers to find, buy, deploy, and manage software solutions, including SaaS, in a matter of minutes

Answer 41

AWS Marketplace

Question 42

A company has hybrid cloud architecture where their on-premises data center interacts with their cloud resources in AWS. Which of the following services in AWS could you use to deploy a web application to servers running on-premises?

Answer 42

AWS OpsWorks and AWS CodeDeploy

Question 43

Is a configuration management service that helps customers configure and operate applications, both on-premises and in the AWS Cloud, using Chef and Puppet

Answer 43

AWS OpsWorks

Question 44

Automates code deployments to any instance, including Amazon EC2 instances and instances running on-premises. Makes it easier to rapidly release new features, avoids downtime during application deployment, and handles the complexity of updating applications

Answer 44

AWS CodeDeploy

Question 45

These services can only deploy applications to your AWS instances and not to the servers located in your on-premises data center

Answer 45

AWS CloudFormation and AWS ElasticBeanstalk

Question 46

This service simply has a set of batch management capabilities that enables developers, scientists, and engineers to easily and efficiently run hundreds of thousands of batch computing jobs on AWS. It doesn’t have the capability to deploy applications to your on-premises servers

Answer 46

AWS Batch

Question 47

Which AWS services should you use to store rapidly changing data with low read and write latencies?

Answer 47

Amazon Elastic Block Store (EBS) and Amazon RDS

Question 48

This is a petabyte-scale data migration solution that uses hardware devices to transfer large amounts of data into and out of the AWS Cloud

Answer 48

AWS Snowball

Question 49

This service is optimal for storing numerous classes of information that are relatively static and not rapidly changing data

Answer 49

Amazon S3

Question 50

fully managed application streaming service that provides users instant access to their desktop applications from anywhere

Answer 50

Amazon AppStream 2.0

Question 51

What AWS service allows your EC2 compute capacity to automatically scale based on the incoming traffic?

Answer 51

AWS Auto Scaling

Question 52

A Security service that uses machine learning to automatically discover, classify, and protect sensitive data in AWS

Answer 52

Amazon Macie

Question 53

What service should you use if there is a need to launch a customized self-hosted database which requires a scheduled shutdown every night to save on cost?

Answer 53

Amazon EC2 instance with an EBS Volume

Question 54

Provides durable, block-level storage volumes that you can attach to a running instance. It’s a primary storage device for data that requires frequent and granular updates. For example, It’s the recommended storage option when you run a database on an instance

Answer 54

Amazon EBS

Question 55

Volumes behaves like a raw, unformatted, external block device that you can attach to a single instance

The volume persists independently from the running life of an instance

Answer 55

Amazon EBS

Question 56

Once attached to an instance, you can use it like any other physical hard drive

Can also detach its volume from one instance and attach it to another instance

Answer 56

Amazon EBS

Question 57

Can dynamically change the configuration of a volume attached to an instance

Can also be created as encrypted volumes

Answer 57

Amazon EBS

Question 58

A non-relational database service that is fully-managed by AWS

Answer 58

Amazon DynamoDB

Question 59

Fully managed, petabyte-scale data warehouse service in the cloud

Run complex analytic queries against terabytes to petabytes of structured data

Answer 59

Amazon Redshift

Question 60

local storage data that is temporary data that you do not need in the long run. All data will get deleted once you stop the EC2 instance

Answer 60

Instance Store volume

Question 61

What is the minimum number of Availability Zones that you should set up for your Application Load Balancer in order to create a highly available architecture?

Answer 61

2 Availability Zones (2 AZs is the minimum to make a highly available architecture)

3 is for higher level of availability but consider the cost + use case

Question 62

A networking connection between two VPCs, and not between your on-premises data center and VPC

Answer 62

VPC Peering

Question 63

This works like a NAT Gateway but for IPv6 traffic only. It’s horizontally scaled, redundant, and highly available VPC component that allows outbound communication over IPv6 from instances in your VPC to the Internet, and prevents the Internet from initiating an IPv6 connection with your instances

Answer 63

Egress-only internet gateway

Question 64

is a highly available AWS managed service that makes it easy to connect to the Internet from instances within a private subnet in an Amazon Virtual Private Cloud (Amazon VPC)

Answer 64

NAT Gateway

Question 65

A company plans to migrate their on-premises MySQL database to Amazon RDS. Which AWS service should they use for this task?

Answer 65

AWS Database Migration Service (AWS DMS)

Question 66

Helps you migrate databases to AWS quickly and securely. The source database remains fully operational during the migration, minimizing downtime to applications that rely on the database. Can migrate your data to and from most widely used commercial and open-source databases

Answer 66

AWS Database Migration Service

Question 67

Primarily used to convert your existing database schema from one database engine to another

Answer 67

AWS Schema Conversion Tool (AWS SCT)

Question 68

An agentless service that makes it easier and faster for you to migrate thousands of on-premises workloads to AWS. This is not the appropriate service to use in migrating your on-premises database

Answer 68

AWS Server Migration Service

Question 69

• is a direct private fiber connection from a datacenter to the VPC. Helps reduce network costs and increase the amount of bandwidth that can travel through the established private network.

Answer 69

AWS Direct Connect

Question 70

personalized dashboard view into the performance and availability of the AWS services you are using, as well as alerts that are automatically triggered by changes in the health of those services.

Answer 70

AWS Personal Health Dashboard

Question 71

This is where you can check the support package you are subscribed to, and where you can file cases if you need assistance from the AWS support team

Answer 71

AWS Support Center

Question 72

Provides access to current status and historical data about each and every Amazon Web Service. If there’s a problem with a service, you’ll be able to expand the appropriate line in the Details section. You can even subscribe to the RSS feed for any service. You can use the “Report an Issue” link to make sure that we are aware of any system-wide service issues

Answer 72

AWS Service Health Dashboard

Question 73

Is a publish/subscribe service. Publisher publishes messages to subscribers to things like web servers, email address and AWS Lambda functions.

Answer 73

Amazon Simple Notification Service (SNS)

Question 74

A fully managed message queuing service that enables you to decouple and scale microservices, distributed systems, and serverless applications

Answer 74

Amazon Simple Queue Service (SQS)

Question 75

Eliminates the complixity and overhead associated with managing and operating message-oriented middleware, and empowers developers to focus on differentiating work

Answer 75

Amazon Simple Queue Service (SQS)

Question 76

You can send, store, and receive messages between software components at any volume, without losing messages or requiring other services to be available

Answer 76

Amazon Simple Queue Service (SQS)

Question 77

web service that makes it easy to coordinate work across distributed application components

Answer 77

Amazon Simple Workflow Service (SWF)

Question 78

is a cost-effective, flexible, and scalable email service that enables developers to send mail from within any application.

Answer 78

Amazon Simple Email Service (SES)

Question 79

This is best suited for load balancing of HTTP and HTTPS traffic and provides advanced request routing targeted at the delivery of modern application architectures, including microservices and containers. Operating at the individual request level (Layer 7). Routes traffic to targets within Amazon Virtual Private Cloud (Amazon VPC) based on the content of the request

Answer 79

Application Load Balancer

Question 80

This is best suited for load balancing of Security Socket layer ,Transport Layer Security (TLS) traffic where extreme performance is required. Operating at the connection level (Layer 4). routes traffic to targets within Amazon Virtual Private Cloud (Amazon VPC) and is capable of handling millions of requests per second while maintaining ultra-low latencies. Also optimized to handle sudden and volatile traffic patterns

Answer 80

Network Load Balancer

Question 81

This provides basic load balancing across multiple Amazon EC2 instances and operates at both the request level and connection level. It is intended for applications that were built within the EC2-Classic network.

Answer 81

Classic Load Balancer

Question 82

Provides both Layer 3 Data(IP) gateway and Layer 4 Transport(UDP/TCP)load balancing capabilities. It is a transparent bump-in-the-wire device that does not change any part of the packet. It is architected to handle millions of requests/second, volatile traffic patterns, and introduces extremely low latency

Answer 82

Gateway Load Balancer

Question 83

Four types of load balancers

Answer 83

1. Application
2. Network
3. Classic
4. Gateway

Question 84

A service allow you to sell your catalog of custom AMIs in AWS?

Answer 84

AWS Marketplace

Question 85

A service that is a crowdsourcing marketplace that makes it easier for individuals and businesses to outsource their processes and jobs to a distributed workforce who can perform these tasks virtually.

Answer 85

Amazon Mechanical Turk

Question 86

enables organizations to create and manage catalogs of IT services that are approved for AWS. These IT services can include everything from virtual machine images, servers, software, databases, and more to complete multi-tier application architectures

Answer 86

AWS Service Catalog

Question 87

Primarily used as a search solution for your website or application

Answer 87

Amazon CloudSearch

Question 88

Allows you to create and deploy infrastructure-as-code templates in AWS?

Answer 88

AWS CloudFormation

Question 89

Provides a common language for you to describe and provision all the infrastructure resources in your cloud environment

Answer 89

AWS CloudFormation

Question 90

Allows you to use programming languages or a simple text file to model and provision cloudformation, in an automated and secure manner, all the resources needed for your applications across all regions and accounts

Answer 90

AWS Cloudformation

Question 91

An easy-to-use service for deploying and scaling web applications and services developed with Java, .NET, PHP, Node.js, Python, Ruby, Go, and Docker on familiar servers such as Apache, Nginx, Passenger, and IIS

Answer 91

AWS Elastic Beanstalk

Question 92

Simply upload your code and it automatically handles the deployment, from capacity provisioning, load balancing, auto-scaling to application health monitoring. At the same time, you retain full control over the AWS resources powering your application and can access the underlying resources at any time

Answer 92

AWS Elastic Beanstalk

Question 93

The operations hub for AWS. Provides a unified user interface so you can track and resolve operational issues across your AWS applications and resources from a central place. You can automate operational tasks for Amazon EC2 instances or Amazon RDS instances

Answer 93

AWS Systems Manager

Question 94

is a fully-managed service that enables data scientists and developers to quickly and easily build, train, and deploy machine learning models at any scale

Answer 94

Amazon SageMaker

Question 95

A web service that helps you reliably process and move data between different AWS compute and storage services, as well as on-premises data sources, at specified intervals

Answer 95

AWS Data Pipeline

Question 96

A service that enables customers to connect their Amazon Virtual Private Clouds (VPCs) and their on-premises networks through a central hub

Answer 96

AWS Transit Gateway

Question 97

Used to enable instances in the public subnet to connect to the public Internet?

Answer 97

Internet Gateway

Question 98

VPC component that is needed and allows communication between instances in your VPC and the public internet.

Answer 98

Internet Gateway

Question 99

This is a service meant for creating, publishing, maintaining, monitoring, and securing APIs

Answer 99

API Gateway

Question 100

What services will help you create a highly available and scalable web app in the cloud?

Answer 100

Amazon EC2 Auto Scaling and AWS ELB

Question 101

A fully-managed source control service that allows you to host Git-based repositories and enable code collaboration for your team via pull requests, branching, and merging?

Answer 101

AWS CodeCommit

Question 102

Enables you to quickly develop, build, and deploy applications on AWS

Answer 102

AWS CodeStar

Question 103

A fully managed build service that compiles source code, runs tests, and produces software packages that are ready to deploy

Answer 103

AWS CodeBuild

Question 104

Programmatic access to AWS Support Center features to create, manage, and close your support cases, and operationally manage your Trusted Advisor check requests and status

Answer 104

AWS Support API

Question 105

A new AWS customer needs to deploy up to 100 t3a.large EC2 instances on their recently launched VPC, which is way beyond the default service limit. What should they do before launching their instances?

Answer 105

Create a case in the AWS Support Center page and request a service limit increase

Question 106

A firewall service to safeguard your VPC against DDoS, SQL Injection, and many other threats

Answer 106

AWS Web Application Firewall (WAF)

Question 107

devices are well suited for large-scale data migrations and recurring transfer workflows, in addition to local computing with higher capacity needs.
Storage 80TB HDD and 1 TB SSD and Computer
40VCPU

Answer 107

AWS Snowball Edge Storage Optimized

Question 108

is an exabyte-scale data
transfer service used to move large amounts of data to AWS. You can transfer up to 100
petabytes of data

Answer 108

AWS Snowmobile

Question 109

is a small, rugged, and secure
edge computing and data transfer device. It
features 2 CPUs, 4 GB of memory, and 8 TB of usable storage.

Answer 109

AWS Snowcone

Question 110

A feature of Amazon CloudFront that lets you run code closer to users of your application, which improves performance and reduces latency

Answer 110

AWS Lambda@Edge

Question 111

A customer needs to retrieve the instance ID, instance profile permissions, and kernel information of their EC2 instance. Where can the customer find these information?

Answer 111

Instance Metadata

Question 112

Primarily used to perform common automated configuration tasks and run custom scripts after the instance starts. It doesn’t contain any information about the instance ID, public keys or the public IP address of your EC2 instance

Answer 112

Instance user data

Question 113

A label that you assign to an AWS resource. Each tag consists of a key and an optional value, both of which you define

Answer 113

Resource tag

Question 114

is a supported and maintained image provided by AWS that provides the information required to launch an instance. You must specify this when you launch an instance. You can launch multiple instances from a single imagewhen you require multiple instances with the same configuration

Answer 114

Amazon Machine Image

Question 115

It is used to organize your AWS resources

Answer 115

Resource group

Question 116

enables you to ingest, buffer, and process streaming data in real-time, such as video, audio, application logs, website clickstreams, and IoT telemetry data for machine learning, analytics, and other applications so you can derive insights in seconds or minutes instead of hours or days

Answer 116

Amazon Kinesis

Question 117

managed cluster platform that simplifies running big data frameworks, such as Apache Hadoop and Apache Spark , on AWS to process and analyze vast amounts of data

Answer 117

Amazon Elastic MapReduce

Question 118

A space agency is using Amazon S3 to store their high-resolution satellite images and videos everyday. Which of the following should they do to minimize the upload time?

Answer 118

Use the Multipart upload API

Question 119

Allows you to upload a single object as a set of parts. Each part is a contiguous portion of the object’s data

Answer 119

Multipart upload

Question 120

Only applicable for client web applications that are loaded in one domain to interact with resources in a different domain

Answer 120

Enable Cross-Origin Resource Sharing (CORS)

Question 121

A DynamoDB API operation puts or deletes multiple items in one or more tables

Answer 121

Use the BatchWriteItem API

Question 122

Primarily used to optimize your storage costs automatically based on your data access patterns without performance impact or operational overhead

Answer 122

Shift to S3 Intelligent-Tiering storage class

Question 123

A policy consists of one or more rules that determine which images in a repository should be expired

allow you to automatically review objects within your S3 Buckets and have them moved to Glacier or have the objects deleted from S3.

Answer 123

Lifecycle policy

Question 124

Security feature that is Primarily used to manage/delegate access to your buckets and objects

Answer 124

S3 access control list

Question 125

Enables automatic, asynchronous copying of objects across Amazon S3 buckets in different AWS Regions

Answer 125

Cross-Region replication

Question 126

The ability to acquire resources as you need them and release resources when you no longer need them. In the cloud, you want to do this automatically

Answer 126

Elasticity

Question 127

Lets you provision a logically isolated section of the AWS Cloud where you can launch AWS resources in a virtual network that you define

Answer 127

Amazon VPC

Question 128

In order for the private users to access the VPC they need a VPNand?

Answer 128

Virtual Private Gateway

Question 129

A Desktop-as-a-Service (DaaS) solution in AWS which allows you to provision either Windows or Linux desktops in just a few minutes and quickly scale to provide thousands of desktops to workers across the globe

Answer 129

Amazon WorkSpaces

Question 130

Which of the following services are part of the AWS serverless platform that does not require provisioning, maintaining, and administering servers for backend components?

Answer 130

Lambda@Edge and Amazon API Gateway

Question 131

This is a benefit for cloud that Focuses your valuable IT resources on developing applications that differentiate your business rather than managing infrastructure and data centers

Answer 131

Benefits of Agility

Question 132

Benefits of Cloud Computing

Answer 132

1. Trade capital expense for variable expense
2. Benefit from massive economies of scale
3. Stop guessing capacity
4. Increase speed and agility
5. Stop spending money running and maintaining data centers
6. Go global in minutes

Question 133

Which of the following statements are true regarding horizontal and vertical scaling?

Answer 133

Upgrading = Vertical Scaling
Adding = Horizontal Scaling

Question 134

Not required when launching an EBS-backed EC2 instance?

Answer 134

Elastic IP address

Question 135

is a service that helps developers analyze and debug distributed applications. Customers use This tool to monitor application traces, including the performance of calls to other downstream components or services

Answer 135

AWS X-Ray

Question 136

Helps developers analyze and debug production, distributed applications, such as those built using a microservices architecture

Answer 136

AWS X-Ray

Question 137

Help mask downtime by redirecting traffic to your healthy instances and allowing failover to your secondary systems. This is achieved through a combination of different health checks, routing policies, and failover policies

Answer 137

AWS ELB and Amazon Route 53

Question 138

Dictate how traffic flows inside your VPC

Answer 138

VPC Route Tables

Question 139

Boosts your content delivery speeds through the help of edge locations found globally

Answer 139

Amazon CloudFront

Question 140

Allows you to automatically scale the number of running instances required to handle your workloads

Answer 140

EC2 Auto Scaling

Question 141

Which security services in AWS use intelligent systems and machine learning to quickly identify potential security threats and issues in your AWS account?

Answer 141

Amazon Detective and Amazon GuardDuty

Question 142

Makes it easy to analyze, investigate, and quickly identify the root cause of potential security issues or suspicious activities. Automatically collects log data from your AWS resources and uses machine learning, statistical analysis, and graph theory to build a linked set of data that enables you to easily conduct faster and more efficient security investigations

Answer 142

Amazon Detective

Question 143

The service uses machine learning, anomaly detection, and integrated threat intelligence to identify and prioritize potential threats

Answer 143

Amazon GuardDuty

Question 144

is a set of browser-based tools for creating high-quality virtual reality (VR), augmented reality (AR), and 3D applications easily without requiring any programming or 3D graphics expertise

Answer 144

AWS Sumerian

Question 145

This service is for user and access management. Although it is a security service, it does not use machine learning to detect threats and issues in your AWS account

Answer 145

AWS IAM

Question 146

You have multiple AWS accounts in your organization. How can you take advantage of this to save on your monthly costs?

Answer 146

Use AWS Organizations and enable consolidated billing

Question 147

Which of the following should you set up in order to connect your AWS VPC network to your local network via an IPsec tunnel?

Answer 147

A VPN gateway in your VPC connected to the Customer Gateway in your on-premises network

Question 148

Will be able to reroute traffic to your secondary EC2 instances in another region during disaster recovery?

Answer 148

Amazon Route 53

Question 149

interactive query service that makes it easy to analyze data in Amazon S3 using standard SQL

Answer 149

Amazon Athena

Question 150

How can you easily and securely copy your infrastructure to another AWS Region?

Answer 150

Create a CloudFormation template and deploy it in the new region

Question 151

Storage Type for EBS, If you require infrequent access to your data and are looking to save costs, sc1 provides inexpensive block storage.

Answer 151

Amazon EBS Cold HDD

Question 152

A continuous delivery service that you should use to automate your release pipelines for fast and reliable application and infrastructure updates?

Answer 152

AWS CodePipeline

Question 153

You noticed that you cannot reach one of your EC2 web servers behind an ELB whenever you enter the DNS name of your load balancer. What service should you first check to gain more insight on the issue?

Answer 153

ELB Health Check

Question 154

Which type of Elastic Load Balancer allows you to forward the incoming request to a target group with a Lambda function as a target?

Answer 154

Application Load Balancer

Question 155

Is AWS’s digital user engagement service that enables AWS customers to effectively communicate with their end users and measure user engagement across multiple channels including email, Text Messaging (SMS) and Mobile Push Notifications

Answer 155

Amazon Pinpoint

Question 156

Which of the following services allows you to purchase Reserved Instances?

Answer 156

Amazon RDS and Amazon EC2

Question 157

Reservation models are also available for:

Answer 157

DynamoDB
ElastiCache
Relational Database Service
Redshift

Question 158

Which of the following services allows you to store Docker images and orchestrate Docker containers in a simple and cost-effective manner?

Answer 158

1. Amazon Elastic Container Service (Amazon EC2)
2. Amazon Elastic Container Registry (ECR)

Question 159

Is a highly scalable, high-performance container orchestration service that supports Docker containers and allows you to easily run and scale containerized applications on AWS

Answer 159

Amazon Elastic Container Service (Amazon ECS)

Question 160

Is a fully-managed Docker container registry that makes it easy for developers to store, manage, and deploy Docker container images. It’s integrated with Amazon Elastic Container Service (ECS), simplifying your development to production workflow

Answer 160

Amazon Elastic Container Registry (ECR)

Question 161

You are planning to deploy a video streaming application with frequently accessed, throughput-intensive workloads to your EC2 instance which requires fast, consistent throughput. What EBS volume type should you use to maximize performance as well as cost?

Answer 161

Throughput Optimized HDD

Question 162

Primarily used for critical business applications that require sustained IOPS performance

Answer 162

Provisioned IOPS SSD

Question 163

This volume balances price and performance for a wide variety of workloads

Answer 163

General Purpose SSD

Question 164

It is much suitable for less frequently accessed workloads

Answer 164

Cold HDD

Question 165

You use to deploy and easily rollback a web application from your Git repository to your on-premises server?

Answer 165

AWS OpsWorks

Question 166

What feature will allow you to label and sort your EC2 instances according to their deployment stage (development, staging, production)?

Answer 166

Instance tags

Question 167

This is not modifiable and cannot contain user-provided metadata. These are already fixed values provided to you by AWS

Answer 167

Instance type

Question 168

What service allows you to create alarms that notify you when EC2 CPU Utilization thresholds are breached?

Answer 168

Amazon CloudWatch

Question 169

In which of the following occasions should you use the Amazon SQS application system?

Answer 169

1. If you need to decouple certain parts of your system for better fault tolerance
2. If you require a durable storage for your application events or messages

Question 170

You have a fleet of on-premises servers that require a centralized scalable and durable file storage. It should be able to support massive parallel access

Answer 170

Amazon EFS

Question 171

You are planning to create point-in-time backups of your Amazon EBS volumes. Which of the following are correct statements? (Select TWO.)

Answer 171

1. EBS backups are stored durably in Amazon S3
2. You can create point-in-time backups through EBS snapshots

Question 172

A cloud-based integrated development environment (IDE) that lets you write, run, and debug your code with just a browser. It includes a code editor, debugger, and terminal

Answer 172

AWS Cloud9

Question 173

The most cost-effective service to use if you want to coordinate multiple AWS services into serverless workflows?

Answer 173

AWS Step Functions

Question 174

Provides serverless orchestration for modern applications. Orchestration centrally manages a workflow by breaking it into multiple steps, adding flow logic, and tracking the inputs and outputs between the steps

Answer 174

AWS Step Functions

Question 175

Aws service that enables customers to quickly find, engage, and pay AWS Certified third-party experts for on-demand project work

Answer 175

AWS IQ

Question 176

Is a PaaS solution for users who need a simple virtual private server (VPS) solution. Provides developers compute, storage, and networking capacity and capabilities to deploy and manage websites and web applications in the cloud

Answer 176

Amazon Lightsail

Question 177

It is PaaS, but is not used to deploy your applications. Is a dedicated game server hosting solution that deploys, operates, and scales cloud servers for multiplayer games

Answer 177

Amazon GameLift

Question 178

Is a serverless ETL (extract, transform, and load) service that makes it simple and cost-effective to categorize your data, clean it, enrich it, and move it reliably between various data stores and data streams

Answer 178

AWS Glue

Question 179

A number of servers in your on-premises data center have been collecting dust over the past few years. What is the benefit of moving to the Cloud in this case?

Answer 179

The ability to provision resources only when you need them

Question 180

Which AWS service allows me to patch my Windows EC2 instances without having to RDP into them?

Answer 180

AWS Systems Manager

Question 181

What are the benefits of using Amazon DynamoDB as your database?

Answer 181

1. You can store different kinds of unstructured data that would normally not be suitable for relational databases
2. Database size scales automatically so you won’t have to worry about capacity

Question 182

self-healing database in AWS

Answer 182

Amazon Aurora

Question 183

What AWS storage service offers faster disk read and write performance and provides temporary block-level storage for your instance?

Answer 183

Instance Store

Question 184

enable you to create one or more read-only copies of your database instance within the same AWS Region or in a different AWS Region.

Answer 184

Amazon RDS Read Replicas

Question 185

The most cost-effective and scalable choice for object storage?

Answer 185

Amazon S3

Question 186

This is an NFS file storage solution used together with EC2 instances or other virtual servers

Answer 186

Amazon EFS

Question 187

This is a volume storage solution that requires a running EC2 instance, and so is not easily scalable

Answer 187

Amazon EBS

Question 188

Should you provision if your local data center requires additional storage space without having to migrate data?

Answer 188

AWS Storage Gateway

Question 189

Which of the following RDS engines allows you to bring your own license (BYOL)?

Answer 189

Oracle

Question 190

Which of the following actions does not affect costs when using Amazon S3?

Answer 190

Data transfer costs for uploading objects into your S3 bucket

Question 191

Which of the following actions does affect costs when using Amazon S3?

Answer 191

1. Choosing S3 Standard IA rather than One Zone IA
2. Making GET requests to your S3 objects
3. Moving objects out of your S3 bucket to another bucket

Question 192

What is the primary benefit of creating a scalable system?

Answer 192

Applications are able to handle varying loads of work

Question 193

An engineer is having trouble migrating and configuring a licensed application she uses onto her EC2 instances. What alternative does she have to do to quickly get her applications up and running in AWS?

Answer 193

Try to look for an AMI in the AWS Marketplace that provides a similar setup to her application stack

Question 194

You have a customized EC2 instance running your latest web application. How can you create an exact copy of this instance in another region?

Answer 194

Create a golden AMI of the instance and copy it to the other region

Question 195

Is an AMI that contains the latest security patches, software, configuration, and software agents that you need to install for logging, security maintenance, and performance monitoring

Answer 195

Golden AMI

Question 196

A customer is using your S3-based service to store sprites of game characters. When players retrieve these sprites, they are temporarily stored on the player’s computer. If the S3 bucket is using a standard storage class, how can you further optimize cost?

Answer 196

Have the customer directly upload the sprites to S3 Standard – Infrequent Access

Question 197

What is an advantage of cloud computing when it comes to equipment expenditures?

Answer 197

AWS introduces cost reductions each year in their services

Question 198

A MariaDB RDS database is known to have high memory consumption during peak hours which deteriorates the overall performance of your application. What cost-effective change can you introduce to resolve this issue if the database is handling write-intensive operations?

Answer 198

Scale the instance vertically to a higher memory capacity

Question 199

Where is the best place to archive logs and other infrequently accessed files for a long time with no strict retrieval time?

Answer 199

Amazon Glacier

Question 200

Which AWS well-architected pillar stresses the importance of selecting the most appropriate and right number of resource types for your requirements?

Answer 200

Cost optimization

Question 201

This pillar focuses on the ability to prevent and quickly recover from failures to meet business and customer demand

Answer 201

Reliability

Question 202

This pillar focuses on running and monitoring systems to deliver business value, and continually improving processes and procedures

Answer 202

Operational Excellence

Question 203

This pillar focuses on using IT and computing resources efficiently

Answer 203

Performance efficiency

Question 204

Focuses on avoiding un-needed costs. Key topics include understanding and controlling where money is being spent, selecting the most appropriate and right number of resource types, analyzing spend over time, and scaling to meet business needs without overspending

Answer 204

Cost optimization

Question 205

When is using Amazon RDS a better choice than using a local database?

Answer 205

When you want to offload administration responsibilities from yourself

Question 206

Which of the following services combine 5G networks with AWS compute and storage services for the benefit of high-performance mobile applications?

Answer 206

AWS Wavelength

Question 207

Combines the high bandwidth and ultra-low latency of 5G networks with AWS compute and storage services to enable developers to innovate and build a whole new class of applications

Answer 207

AWS Wavelength

Question 208

A set of tools and frameworks that accelerate the development of mobile and web applications on AWS

Answer 208

AWS Amplify

Question 209

This is a service that makes it easy to set up and govern a secure, multi-account AWS environment based on industry best practices

Answer 209

AWS Control Tower

Question 210

Your central repository for encryption keys in your account. It is useful if you have data that you need to encrypt, and you want a central location where you can manage your keys

Answer 210

AWS Key Management Service (KMS)

Question 211

A developer needs to collect and process large streams of data records in real-time. Which AWS service should be used for this task?

Answer 211

Amazon Kinesis Data Streams

Question 212

Can trace requests made to your serverless applications built using AWS Lambda. It enables you to gain insights into the performance of serverless applications, allowing you to pinpoint the root cause of issues so that you can address them

Answer 212

AWS X-Ray

Question 213

What service simplifies contact center operations, improves agent efficiency, lowers costs, and can scale to support millions of customers?

Answer 213

Amazon Connect

Question 214

Provides a seamless experience across voice and chats for your customers and agents. Simplifies contact center operations, improves agent efficiency, and lowers costs. You can set up a contact center in minutes that can scale to support millions of customers

Answer 214

Amazon Connect

Question 215

A service for building conversational interfaces into any application using voice and text. It is used to build chatbots for everyday consumer requests, such as accessing the latest news updates, game scores, or weather

Answer 215

Amazon Lex

Question 216

A high-performance computing (HPC) application needs a storage service in AWS that can be used as a centralized Windows File Server for multiple EC2 instances.

Which service to use?

Answer 216

Amazon FSx

Question 217

Although it is a shared file system storage, this only supports Linux workloads

Answer 217

Amazon EFS

Question 218

Which AWS service provides automated reference deployments for key workloads in AWS via CloudFormation templates?

Answer 218

AWS Quick Starts

Question 219

Are built by AWS solutions architects and partners to help you deploy popular technologies on AWS, based on AWS best practices for security and high availability. These accelerators reduce hundreds of manual procedures into just a few steps, so you can build your production environment quickly and start using it immediately

Answer 219

AWS Quick Starts

Question 220

A developer needs to set up a message broker service for Apache ActiveMQ for its enterprise application running in AWS. Which service should be used in this scenario?

Answer 220

Amazon MQ (Message Queuing)

Question 221

A communications service that lets you meet, chat, and place business calls inside and outside your organization, all using a single application. This service is not suitable for setting up a message broker service

Answer 221

Amazon Chime

Question 222

A service to manage your corporate email infrastructure and eliminates the need for up-front investments to license and provision on-premises email servers. This service does not provide direct access to the ActiveMQ console and industry-standard APIs and protocols for messaging, including JMS, NMS, AMQP, STOMP, MQTT, and WebSocket.

Answer 222

Amazon WorkMail

Question 223

Which of the following AWS services allows you to query data directly in Amazon S3?

Answer 223

Amazon Athena and Amazon Redshift Spectrum

Question 224

Allows you to query and retrieve structured and semistructured data from files in Amazon S3 without having to load the data into Amazon Redshift tables

Answer 224

Amazon Redshift Spectrum

Question 225

Not suitable for querying data in Amazon S3

Answer 225

Amazon MQ, Amazon Neptune, and Amazon Elasticache

Amazon MQ is a message broker service for Apache ActiveMQ. Amazon Neptune is a fully-managed graph database service. Amazon Elasticache is an in-memory data store and caching service

Question 226

A customer needs to store objects that are frequently accessed. To help the customer save costs, you must select a storage service free from retrieval charges. Which of the following S3 storage classes would meet this requirement?

Answer 226

S3 Intelligent Tiering and S3 Standard

Question 227

a serverless, pay-as-you-go compute engine that lets you focus on building applications without managing servers. is compatible with both Amazon Elastic Container Service (ECS) and Amazon Elastic Kubernetes Service (EKS).

Answer 227

AWS Fargate

Question 228

A feature that bucket owners can easily set up centralized controls to limit public access to their Amazon S3 resources

Answer 228

Block Public Access

Question 229

A VPC endpoint for Amazon S3 that enables AWS services in your VPC to use private IP addresses to access Amazon S3 with no exposure to the public Internet

Answer 229

Amazon S3 Gateway Endpoint

Question 230

Resolver, traffic flow, latency based routing, Geo DNS, Private DNS for Amazon VPC, DNS Failover, and Domain Registration

Answer 230

Amazon Route 53

Question 231

A company plans to encrypt and manage its own encryption keys using a single-tenant hardware security module. The company must also have exclusive control over how its keys are used via an authentication mechanism independent from AWS

Answer 231

AWS Cloud Hardware Security Module (HSM)

Question 232

A developer plans to build a serverless application with a key-value database. Which of the following AWS services can be used to fulfill this requirement?

Answer 232

Amazon DynamoDB and AWS Lambda

Question 233

This team only guides a customer on how AWS services fit together to meet a specific architecture, use-case, workload, or application

Answer 233

Architecture Support

Question 234

What types of caching solutions are available in Amazon ElastiCache?

Answer 234

Redis, Memcached, and Redis Global Database

Question 235

Which of the following is a benefit of using AWS Global Accelerator?

Answer 235

Decreased latency in accessing applications hosted in AWS

It provides you with static IP addresses that serve as a fixed entry point to your applications hosted in one or more AWS Regions

Question 236

A web interface for Amazon Web Services that allows you to access and manage cloud services

Answer 236

AWS Management Console

Question 237

A Graph Database service that makes it easy for you to build and run applications that work with highly connected datasets

Answer 237

Amazon Neptune

Question 238

A customer plans to speed up the time it takes to download data between its clients and S3 bucket over long distances

Answer 238

Amazon S3 Transfer Acceleration

Question 239

A center provides reference architecture diagrams, vetted architecture solutions, Well-Architected best practices, patterns, icons, and more.

Answer 239

AWS Architecture Center

Question 240

A VPN service used to securely access your AWS resources and resources in your on-premises network

Answer 240

AWS Client VPN