Exam Questions Review COPY Flashcards by Raymond Sylverne

When you create an encrypted _______ _____ _______ , you’re able to specify a customer master key using Key Management Services.

Amazon EBS volume

How well did you know this?

Not at all

Perfectly

____ _______ provides an end-to-end view of requests as they travel through your application

AWS X-Ray

How well did you know this?

Not at all

Perfectly

___ _______ _______is an easy-to-use service for deploying and scaling web applications and services developed with Java, .NET, PHP, Node.js, Python, Ruby, Go, and Docker

AWS Elastic Beanstalk

How well did you know this?

Not at all

Perfectly

This dashboard simply shows the current service health and any issues across Regions.

AWS Service Health Dashboard

How well did you know this?

Not at all

Perfectly

What is the best use case for the AWS ElastiCache database? 3

Fast temporary storage for a small amount of data
In-Memory Database

How well did you know this?

Not at all

Perfectly

In accordance with AWS shared responsibility model it is a customer responsibility to enable PITR on and AWS is responsible

for actually performing the backups

How well did you know this?

Not at all

Perfectly

_______ _______ _______ do not grant permissions, only restrict them

Service control policies (SCPs)

How well did you know this?

Not at all

Perfectly

SCPs in AWS Organizations are used to control which ____ _________ are allowed in an account.

API actions

How well did you know this?

Not at all

Perfectly

_____ ______ _________ gives you one ________ for distributing traffic across multiple virtual appliances while scaling them up or down, based on demand.

Gateway Load Balancer, gateway

How well did you know this?

Not at all

Perfectly

The ___ _______ _________ allows you to test and troubleshoot identity-based policies, IAM permissions boundaries, service control policies (SCPs), and resource-based policies.

IAM policy simulator

How well did you know this?

Not at all

Perfectly

_______ __________ is a scalable, serverless, embeddable, machine learning-powered business intelligence (BI) service built for the cloud.

Amazon QuickSight

How well did you know this?

Not at all

Perfectly

Which load balancer is ideal for load balancing of both TCP and UDP traffic. And capable of handling millions of requests per second while maintaining ultra-low latencies.

Network Load Balancer

How well did you know this?

Not at all

Perfectly

Point-in-time recovery (PITR) provides continuous

backups of your DynamoDB table data

How well did you know this?

Not at all

Perfectly

Which AWS service provides a Desktop as a Service (DaaS) solution.

Amazon WorkSpaces

How well did you know this?

Not at all

Perfectly

What are the ways a user can access resources in their AWS account? (3)

AWS Management Console
Application code
AWS Command Line Interface

How well did you know this?

Not at all

Perfectly

_______ ____________ is used to direct traffic to application endpoints in different Regions using the AWS global network.

AWS Global Accelerator
AWS Lambda
Amazon CloudFront
AWS Elastic Beanstalk

Global Accelerator

How well did you know this?

Not at all

Perfectly

CloudFront provides protection with ____ ____ and _____ _______ .

AWS WAF and AWS Shield.

How well did you know this?

Not at all

Perfectly

What does the Principal element in and IAM policy represent?

The Principal element specifies the user, account, service, or entity that is allowed or denied access to a resource

How well did you know this?

Not at all

Perfectly

Which AWS service is used for running SQL queries on data in Amazon S3.

Amazon Athena

How well did you know this?

Not at all

Perfectly

___ _________ lets you use Chef and Puppet to automate how servers are configured, deployed, and managed across your Amazon EC2 instances or on-premises compute environments.

AWS OpsWorks

How well did you know this?

Not at all

Perfectly

________ __________ can be accessed from any device, and seamlessly embedded into your applications, portals, and websites.

QuickSight dashboards

The ________ ___ acts as a firewall at the subnet level, not the instance level.

Network ACL

_______ works with EC2 instances to uncover and report vulnerabilities

Inspector

What is the best use case for Amazon RDS? 2

Need traditional database
Data is well-formed and structured

\_\_\_\_\_\_\_ _____ gives you constant visibility of the data security and data privacy of your data stored in Amazon S3

Amazon Macie

AWS Organizations offers ________ \_\_\_\_\_\_\_\_ ________ that you can use to manage permissions in your organization.

Service control policies (SCPs)

IAM ______ are the users (IAM users and federated users) and roles that are created and used for authentication.

entities

\_\_\_ _____ \_\_\_\_\_\_\_\_\_ , you can input the services you will use, as well as the configuration of those services, and get an estimate of the costs these services will accrue

AWS Pricing Calculator

What other tasks require root user credentials?

Activate IAM access to the Billing and Cost Mgmt Configuring S3 bucket to enable MFA

\_\_\_\_\_\_\_ & _______ are automation platforms that allow you to use code to automate the configurations of your servers

Chef & Puppet

Which load balancer is ideal for advanced load balancing of HTTP and HTTPS traffic?

Application Load Balancer

\_\_\_ _______ \_\_\_\_\_\_\_ will launch resources in response to demand, this will not ensure the resource are ready in time without a delay if there is a sudden increase in traffic

EC2 Step scaling

When utilizing Amazon S3 cross-region replication Both source and destination buckets

must have versioning enabled

A _______ \_\_\_\_\_\_ acts as a virtual firewall for your instance to protect your EC2 instance by controlling inbound and outbound traffic.

security group

Which type of credential should a Cloud Practitioner use for programmatic access to AWS resources from the AWS CLI/API?

Access Keys

New security groups by default block all incoming traffic but

allow outbound traffic

What are common use cases for S3?

Static web hosting Storing application assets

Between EC2 and IAM which is a global service and which is regional?

Identity and Access Management is a global service. EC2 is regional

Buckets that are configured for object replication can be owned by the

same AWS account or by different accounts

This dashboard shows issues or upcoming events that may impact your resources. But it does not notify of service limit breaches.

AWS Personal Health Dashboard

\_\_\_ _____ \_\_\_\_\_\_\_\_\_ allows you to visualize and forecast your costs and usage over time.

AWS Cost Explorer

\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_ ________ provides continuous backups of your DynamoDB table data

Point-in-time recovery (PITR)

What is the best use case to run a database on EC2? 3

Need access to OS Need Full Control over instance and database 3rd Party Database engine that's not available in RDS

Which benefits can a company gain by deploying a relational database on Amazon RDS instead of Amazon EC2?

automatic backups and software patching.

Which load balancer helps you easily deploy, scale, and manage your third-party virtual appliances.

Gateway Load Balancer

What is the best use case for the DynamoDB database? 3

NoSQL database Dynamic Scaling Serverless

\_\_\_\_\_ _______ is a service for collecting streaming data.

Amazon Kinesis

\_\_\_\_ _______ uses the AWS Management Console, AWS CLI commands, and API operations to handle routine database tasks.

Amazon Aurora

\_\_\_\_\_\_\_ ____ consolidates your view of your security and compliance status in the cloud.

Security Hub

\_\_\_\_\_\_\_ _______ is extremely fast and scales up to 128 TB. It also offers automatic backups.

Amazon Aurora

Which database is faster Amazon Aurora or MySql?

Amazon Aurora can be up to 5x faster than RDS MySQL

is when you use an external directory, such as your corporate one, to grant users in that directory access to AWS resources.

Federated access