Exam Questions Review COPY Flashcards
When you create an encrypted _______ _____ _______ , you’re able to specify a customer master key using Key Management Services.
Amazon EBS volume
____ _______ provides an end-to-end view of requests as they travel through your application
AWS X-Ray
___ _______ _______is an easy-to-use service for deploying and scaling web applications and services developed with Java, .NET, PHP, Node.js, Python, Ruby, Go, and Docker
AWS Elastic Beanstalk
This dashboard simply shows the current service health and any issues across Regions.
AWS Service Health Dashboard
What is the best use case for the AWS ElastiCache database? 3
Fast temporary storage for a small amount of data
In-Memory Database
In accordance with AWS shared responsibility model it is a customer responsibility to enable PITR on and AWS is responsible
for actually performing the backups
_______ _______ _______ do not grant permissions, only restrict them
Service control policies (SCPs)
SCPs in AWS Organizations are used to control which ____ _________ are allowed in an account.
API actions
_____ ______ _________ gives you one ________ for distributing traffic across multiple virtual appliances while scaling them up or down, based on demand.
Gateway Load Balancer, gateway
The ___ _______ _________ allows you to test and troubleshoot identity-based policies, IAM permissions boundaries, service control policies (SCPs), and resource-based policies.
IAM policy simulator
_______ __________ is a scalable, serverless, embeddable, machine learning-powered business intelligence (BI) service built for the cloud.
Amazon QuickSight
Which load balancer is ideal for load balancing of both TCP and UDP traffic. And capable of handling millions of requests per second while maintaining ultra-low latencies.
Network Load Balancer
Point-in-time recovery (PITR) provides continuous
backups of your DynamoDB table data
Which AWS service provides a Desktop as a Service (DaaS) solution.
Amazon WorkSpaces
What are the ways a user can access resources in their AWS account? (3)
AWS Management Console
Application code
AWS Command Line Interface
_______ ____________ is used to direct traffic to application endpoints in different Regions using the AWS global network.
AWS Global Accelerator
AWS Lambda
Amazon CloudFront
AWS Elastic Beanstalk
Global Accelerator
CloudFront provides protection with ____ ____ and _____ _______ .
AWS WAF and AWS Shield.
What does the Principal element in and IAM policy represent?
The Principal element specifies the user, account, service, or entity that is allowed or denied access to a resource
Which AWS service is used for running SQL queries on data in Amazon S3.
Amazon Athena
___ _________ lets you use Chef and Puppet to automate how servers are configured, deployed, and managed across your Amazon EC2 instances or on-premises compute environments.
AWS OpsWorks
________ __________ can be accessed from any device, and seamlessly embedded into your applications, portals, and websites.
QuickSight dashboards
The ________ ___ acts as a firewall at the subnet level, not the instance level.
Network ACL
_______ works with EC2 instances to uncover and report vulnerabilities
Inspector
What is the best use case for Amazon RDS? 2
Need traditional database
Data is well-formed and structured
_______ _____ gives you constant visibility of the data security and data privacy of your data stored in Amazon S3
Amazon Macie
AWS Organizations offers ________ ________ ________ that you can use to manage permissions in your organization.
Service control policies (SCPs)
IAM ______ are the users (IAM users and federated users) and roles that are created and used for authentication.
entities
___ _____ _________ , you can input the services you will use, as well as the configuration of those services, and get an estimate of the costs these services will accrue
AWS Pricing Calculator
What other tasks require root user credentials?
Activate IAM access to the Billing and Cost Mgmt
Configuring S3 bucket to enable MFA
_______ & _______ are automation platforms that allow you to use code to automate the configurations of your servers
Chef & Puppet
Which load balancer is ideal for advanced load balancing of HTTP and HTTPS traffic?
Application Load Balancer
___ _______ _______ will launch resources in response to demand, this will not ensure the resource are ready in time without a delay if there is a sudden increase in traffic
EC2 Step scaling
When utilizing Amazon S3 cross-region replication Both source and destination buckets
must have versioning enabled
A _______ ______ acts as a virtual firewall for your instance to protect your EC2 instance by controlling inbound and outbound traffic.
security group
Which type of credential should a Cloud Practitioner use for programmatic access to AWS resources from the AWS CLI/API?
Access Keys
New security groups by default block all incoming traffic but
allow outbound traffic
What are common use cases for S3?
Static web hosting
Storing application assets
Between EC2 and IAM which is a global service and which is regional?
Identity and Access Management is a global service.
EC2 is regional
Buckets that are configured for object replication can be owned by the
same AWS account or by different accounts
This dashboard shows issues or upcoming events that may impact your resources. But it does not notify of service limit breaches.
AWS Personal Health Dashboard
___ _____ _________ allows you to visualize and forecast your costs and usage over time.
AWS Cost Explorer
________________ ________ provides continuous backups of your DynamoDB table data
Point-in-time recovery (PITR)
What is the best use case to run a database on EC2? 3
Need access to OS
Need Full Control over instance and database
3rd Party Database engine that’s not available in RDS
Which benefits can a company gain by deploying a relational database on Amazon RDS instead of Amazon EC2?
automatic backups and software patching.
Which load balancer helps you easily deploy, scale, and manage your third-party virtual appliances.
Gateway Load Balancer
What is the best use case for the DynamoDB database? 3
NoSQL database
Dynamic Scaling
Serverless
_____ _______ is a service for collecting streaming data.
Amazon Kinesis
____ _______ uses the AWS Management Console, AWS CLI commands, and API operations to handle routine database tasks.
Amazon Aurora
_______ ____ consolidates your view of your security and compliance status in the cloud.
Security Hub
_______ _______ is extremely fast and scales up to 128 TB. It also offers automatic backups.
Amazon Aurora
Which database is faster Amazon Aurora or MySql?
Amazon Aurora can be up to 5x faster than RDS MySQL
is when you use an external directory, such as your corporate one, to grant users in that directory access to AWS resources.
Federated access