Exam Questions Review COPY

Question 1

When you create an encrypted _______ _____ _______ , you’re able to specify a customer master key using Key Management Services.

Answer 1

Amazon EBS volume

Question 2

____ _______ provides an end-to-end view of requests as they travel through your application

Answer 2

AWS X-Ray

Question 3

___ _______ _______is an easy-to-use service for deploying and scaling web applications and services developed with Java, .NET, PHP, Node.js, Python, Ruby, Go, and Docker

Answer 3

AWS Elastic Beanstalk

Question 4

This dashboard simply shows the current service health and any issues across Regions.

Answer 4

AWS Service Health Dashboard

Question 5

What is the best use case for the AWS ElastiCache database? 3

Answer 5

Fast temporary storage for a small amount of data
In-Memory Database

Question 6

In accordance with AWS shared responsibility model it is a customer responsibility to enable PITR on and AWS is responsible

Answer 6

for actually performing the backups

Question 7

_______ _______ _______ do not grant permissions, only restrict them

Answer 7

Service control policies (SCPs)

Question 8

SCPs in AWS Organizations are used to control which ____ _________ are allowed in an account.

Answer 8

API actions

Question 9

_____ ______ _________ gives you one ________ for distributing traffic across multiple virtual appliances while scaling them up or down, based on demand.

Answer 9

Gateway Load Balancer, gateway

Question 10

The ___ _______ _________ allows you to test and troubleshoot identity-based policies, IAM permissions boundaries, service control policies (SCPs), and resource-based policies.

Answer 10

IAM policy simulator

Question 11

_______ __________ is a scalable, serverless, embeddable, machine learning-powered business intelligence (BI) service built for the cloud.

Answer 11

Amazon QuickSight

Question 12

Which load balancer is ideal for load balancing of both TCP and UDP traffic. And capable of handling millions of requests per second while maintaining ultra-low latencies.

Answer 12

Network Load Balancer

Question 13

Point-in-time recovery (PITR) provides continuous

Answer 13

backups of your DynamoDB table data

Question 14

Which AWS service provides a Desktop as a Service (DaaS) solution.

Answer 14

Amazon WorkSpaces

Question 15

What are the ways a user can access resources in their AWS account? (3)

Answer 15

AWS Management Console
Application code
AWS Command Line Interface

Question 16

_______ ____________ is used to direct traffic to application endpoints in different Regions using the AWS global network.

AWS Global Accelerator
AWS Lambda
Amazon CloudFront
AWS Elastic Beanstalk

Answer 16

Global Accelerator

Question 17

CloudFront provides protection with ____ ____ and _____ _______ .

Answer 17

AWS WAF and AWS Shield.

Question 18

What does the Principal element in and IAM policy represent?

Answer 18

The Principal element specifies the user, account, service, or entity that is allowed or denied access to a resource

Question 19

Which AWS service is used for running SQL queries on data in Amazon S3.

Answer 19

Amazon Athena

Question 20

___ _________ lets you use Chef and Puppet to automate how servers are configured, deployed, and managed across your Amazon EC2 instances or on-premises compute environments.

Answer 20

AWS OpsWorks

Question 21

________ __________ can be accessed from any device, and seamlessly embedded into your applications, portals, and websites.

Answer 21

QuickSight dashboards

Question 22

The ________ ___ acts as a firewall at the subnet level, not the instance level.

Answer 22

Network ACL

Question 23

_______ works with EC2 instances to uncover and report vulnerabilities

Answer 23

Inspector

Question 24

What is the best use case for Amazon RDS? 2

Answer 24

Need traditional database
Data is well-formed and structured

Question 25

_______ _____ gives you constant visibility of the data security and data privacy of your data stored in Amazon S3

Answer 25

Amazon Macie

Question 26

AWS Organizations offers ________ ________ ________ that you can use to manage permissions in your organization.

Answer 26

Service control policies (SCPs)

Question 27

IAM ______ are the users (IAM users and federated users) and roles that are created and used for authentication.

Answer 27

entities

Question 28

___ _____ _________ , you can input the services you will use, as well as the configuration of those services, and get an estimate of the costs these services will accrue

Answer 28

AWS Pricing Calculator

Question 29

What other tasks require root user credentials?

Answer 29

Activate IAM access to the Billing and Cost Mgmt
Configuring S3 bucket to enable MFA

Question 30

_______ & _______ are automation platforms that allow you to use code to automate the configurations of your servers

Answer 30

Chef & Puppet

Question 31

Which load balancer is ideal for advanced load balancing of HTTP and HTTPS traffic?

Answer 31

Application Load Balancer

Question 32

___ _______ _______ will launch resources in response to demand, this will not ensure the resource are ready in time without a delay if there is a sudden increase in traffic

Answer 32

EC2 Step scaling

Question 33

When utilizing Amazon S3 cross-region replication Both source and destination buckets

Answer 33

must have versioning enabled

Question 34

A _______ ______ acts as a virtual firewall for your instance to protect your EC2 instance by controlling inbound and outbound traffic.

Answer 34

security group

Question 35

Which type of credential should a Cloud Practitioner use for programmatic access to AWS resources from the AWS CLI/API?

Answer 35

Access Keys

Question 36

New security groups by default block all incoming traffic but

Answer 36

allow outbound traffic

Question 37

What are common use cases for S3?

Answer 37

Static web hosting
Storing application assets

Question 38

Between EC2 and IAM which is a global service and which is regional?

Answer 38

Identity and Access Management is a global service.
EC2 is regional

Question 39

Buckets that are configured for object replication can be owned by the

Answer 39

same AWS account or by different accounts

Question 40

This dashboard shows issues or upcoming events that may impact your resources. But it does not notify of service limit breaches.

Answer 40

AWS Personal Health Dashboard

Question 41

___ _____ _________ allows you to visualize and forecast your costs and usage over time.

Answer 41

AWS Cost Explorer

Question 42

________________ ________ provides continuous backups of your DynamoDB table data

Answer 42

Point-in-time recovery (PITR)

Question 43

What is the best use case to run a database on EC2? 3

Answer 43

Need access to OS
Need Full Control over instance and database
3rd Party Database engine that’s not available in RDS

Question 44

Which benefits can a company gain by deploying a relational database on Amazon RDS instead of Amazon EC2?

Answer 44

automatic backups and software patching.

Question 45

Which load balancer helps you easily deploy, scale, and manage your third-party virtual appliances.

Answer 45

Gateway Load Balancer

Question 46

What is the best use case for the DynamoDB database? 3

Answer 46

NoSQL database
Dynamic Scaling
Serverless

Question 47

_____ _______ is a service for collecting streaming data.

Answer 47

Amazon Kinesis

Question 48

____ _______ uses the AWS Management Console, AWS CLI commands, and API operations to handle routine database tasks.

Answer 48

Amazon Aurora

Question 49

_______ ____ consolidates your view of your security and compliance status in the cloud.

Answer 49

Security Hub

Question 50

_______ _______ is extremely fast and scales up to 128 TB. It also offers automatic backups.

Answer 50

Amazon Aurora

Question 51

Which database is faster Amazon Aurora or MySql?

Answer 51

Amazon Aurora can be up to 5x faster than RDS MySQL

Question 52

is when you use an external directory, such as your corporate one, to grant users in that directory access to AWS resources.

Answer 52

Federated access