Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

CLF-C02 > Extra Exam 4 > Flashcards

Extra Exam 4 Flashcards

1
Q

Which of the following entities are part of an Amazon Virtual Private Cloud (Amazon VPC) in the AWS Cloud?

Subnet
Object
AWS Storage Gateway
Internet Gateway
API Gateway

A

Subnet, Internet Gateway

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Reserved Instance (RI) pricing is available for which of the following AWS services?

S3
IAM
CloudFront
EC2
RDS

A

EC2, RDS

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Which AWS Support plans provide programmatic access to AWS Support Center features to create, manage and close your support cases? (2)

A

Business and Enterprise

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

AWS Shield Advanced provides expanded DDoS attack protection for web applications running on which of the following resources? (2)

A

EC2, CloudFront

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

As per the AWS Shared Responsibility Model, which of the following is a responsibility of AWS from a security and compliance point of view?

Identity and Access Management
Service and Communications Protection
Patching networking infrastructure
Patching the guest OS

A

Patching networking infrastructure

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Which (2) Amazon Simple Storage Service (Amazon S3) storage classes do not charge any data retrieval fee?

Standard-IA
Standard
Intelligent-Tiering
Glacier Flexible Retrieval
One Zone-IA

A

Standard and Intelligent Tiering

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

AWS Trusted Advisor can provide alerts on which of the following common security misconfigurations?

A

When you allow public access to S3 buckets and when you don’t turn on user activity logging (AWS CloudTrail)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Which entity can be used to connect to an EC2 server from a Mac OS, Windows or Linux based computer via a browser?

A

EC2 Instance Connect

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Bob and Susan each have an AWS account in AWS Organizations. Susan has five Reserved Instances (RIs) of the same type and Bob has none. During one particular hour, Susan uses three instances and Bob uses six for a total of nine instances on the organization’s consolidated bill.

Which of the following statements are correct about consolidated billing in AWS Organizations?

A

Bob only receives the cost-benefit from Susan’s RI’s if he launches his instances in the same Availability Zone (AZ) that Susan purchased them

AWS bills 5 instances as reserved instances, the remaining 4 as regular instances

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Which AWS service can help you analyze your infrastructure to identify unattached or underutilized Amazon EBS Elastic Volumes?

Trusted Advisor
CloudWatch
Config
Inspector

A

Trusted Advisor

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Which of the following statements are CORRECT regarding AWS Global Accelerator?

AWS Global Accelerator uses the AWS global network and its edge locations. But the edge locations used by Global Accelerator are different from Amazon CloudFront edge locations

AWS Global Accelerator is a good fit for non-HTTP use cases

AWS Global Accelerator cannot be configured with an Elastic Load Balancer (ELB)

AWS Global Accelerator provides static IP addresses that act as a fixed entry point to your applications

AWS Global Accelerator can be used to host static websites

A

AWS Global Accelerator is a good fit for non-HTTP use cases

Global Accelerator provides static IP addresses that act as a fixed entry point to your applications

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Which AWS services can be used together to send alerts whenever the AWS account root user signs in?

A

CloudWatch and SNS

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Which of the following is correct regarding the Amazon Relational Database Service (Amazon RDS) service?

You can use both read replicas and multi-AZ deployment for disaster recovery

You can use read replicas for improved read performance only and multi-AZ deployment for disaster recovery only

You can use both read replicas and multi-AZ deployment having single standby for improved read performance

You can use read replicas for disaster recovery only and multi-AZ deployment for improved read performance only

A

You can use both read-replicas and multi-AZ deployment for disaster recovery

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Which of the following are benefits of the AWS Web Application Firewall (AWS WAF)?

AWS Web Application Firewall (AWS WAF) can check for the presence of SQL code that is likely to be malicious (known as SQL injection)

AWS Web Application Firewall (AWS WAF) lets you monitor the HTTP and HTTPS requests that are forwarded to Amazon Route 53

AWS Web Application Firewall (AWS WAF) offers dedicated support from the DDoS Response Team (DRT) and advanced reporting

AWS Web Application Firewall (AWS WAF) can block all requests except the ones that you allow

A

WAF (firewall) can check for the presence of SQL code that is likely to be malicious (known as SQL injection)

WAF can block all requests except the ones that you allow

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Which of the following entities should be used for an Amazon Elastic Compute Cloud (Amazon EC2) Instance to access a DynamoDB table?

Amazon Cognito

AWS Key Management Service (KMS)

IAM Role

AWS IAM user access keys

A

IAM Role

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Which of the following is the MOST cost-effective Amazon Elastic Compute Cloud (Amazon EC2) instance purchasing option for short-term, spiky and critical workloads on AWS Cloud?

A

On-Demand Instance

17
Q

As per the AWS Shared Responsibility Model, Security and Compliance is a shared responsibility between AWS and the customer. Which of the following security services/utilities falls under the purview of AWS under the AWS Shared Responsibility Model?

Shield Advanced
Web Application Firewall
Shield Standard
Security Group

A

Shield Standard

18
Q

Which of the following types are free under the Amazon Simple Storage Service (Amazon S3) pricing model?

A

Data transferred out to an EC2 instance, when the instance is in the same AWS Region as the S3 bucket

Data transferred in from the internet

19
Q

Some of these instances host the CRM (Customer Relationship Management) applications that need to be accessible 24*7. These applications are not mission-critical. In case of a disaster, these applications can be managed on a lesser number of instances for some time.

Which disaster recovery strategy is well-suited as well as cost-effective for this requirement?

A

Warm Standby (A scaled down version of the entire environment is running all the time)

20
Q

A social media analytics company wants to migrate to a serverless stack on AWS. Which scenarios can be handled by AWS Lambda?

Execute code in response to events such as updates to DynamoDB tables

You can install Container Services on AWS Lambda

You can install low latency databases on AWS Lambda

AWS Lambda can be used for preprocessing of data before it is stored in Amazon S3 buckets

A

Lambda can be used to execute code in response to events and updates such as DynamoDB tables

AWS Lambda can be used for preprocessing of data before it is stored in S3 buckets

21
Q

Which AWS service will help you deploy application code automatically to an Amazon Elastic Compute Cloud (Amazon EC2) instance?

A

CodeDeploy

22
Q

A media company uploads its media (audio and video) files to a centralized Amazon Simple Storage Service (Amazon S3) bucket from geographically dispersed locations. Which of the following solutions can the company use to optimize transfer speeds?

A

S3 Transfer Accelerator

23
Q

A multi-national organization has a separate virtual private cloud (VPC) for each of its business units on the AWS Cloud. The organization also wants to connect its on-premises data center with the different virtual private clouds (VPC) for better organization-wide collaboration. Which AWS services can be combined to build the MOST efficient solution for this use-case?

AWS Storage Gateway
Internet Gateway
VPC peering connection
AWS Transit Gateway
AWS Direct Connect

A

Direct Connect, Transit Gateway

24
Q

Name 2 characteristics regarding how S3 stores files

A

Non-hierarchical structure (flat)

S3 is a key-value based object storage service

25
Q

Which of these can you use to run a bootstrap script while launching an EC2 instance?

AMI data
Instance metadata
Instance user data
Instance configuration data

A

Instance user data

26
Q

Which pillar of AWS Well-Architected Framework is responsible for making sure that you select the right resource types and sizes based on your workload requirements?

A

Performance Efficiency

CLF-C02 (15 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions