Final Exam Flashcards
Which Service belong all to the AWS serverless Platform?
AWS Lambda, AWS Fargate, Amazon S3, Amazon EFS, Amazon DynamoDB, Amazon API Gateway, Amazon SNS, AWS Step FUnctions, Amazon EC2, Amazon Athena.
AWS Lambda, AWS Fargate, Amazon S3, Amazon EFS, Amazon DynamoDB, Amazon API Gateway, Amazon SNS, AWS Step Functions, Amazon Kinesis, Amazon Athena.
AWS Lambda, AWS Fargate, Amazon S3, Amazon EFS, Amazon Lightsail, Amazon API Gageway, Amazon SNS, Amazon Step Functions, Amazon Kinesis, Amazon Athena.
AWS Lambda, AWS Fargate, Amazon S3, Amazon RDS, DynamoDB, Amazon API Gateway, Amazon SNS, AWS Step Functions, Amazon Kinesis, Amazon Athena.
AWS Lambda, AWS Fargate, Amazon S3, Amazon EFS, Amazon DynamoDB, Amazon API Gateway, Amazon SNS, AWS Step Functions, Amazon Kinesis, Amazon Athena.
Which of the following services have Distributed Denial of Services DDoS attack mitigation features?
A. AWS KMS
B. Amazon Route 53
C. AWS Cloud trail
D. AWS WAF
B. Amazon Route 53
D. AWS WAF
Under the AWS shared responsibility model, who is responsible for Security and Compliance?
A. AWS is Responsible
B. The Customer is Responsible
C. AWS and the customer share responsibility
D. AWS is responsible for Security, and the customer is responsible for Compliance
C. AWS and the customer share responsibility
Which AWS sercice can you use to establish dedicated network connection between your on-premises applications and AWS resources?
A. AWS Snowball
B. AWS Storage Gateway
C. AWS Sheild
D. AWS Direct Connect
D. AWS Direct Connect
Which if the following are advantages of Cloud Computing? Choose 2
A. Stop Worrying about Security
B. Trade capital expense for variable expense
C. Compliance with all local regulations
D. Benefit from massive economies of scale
B. Trade capital expense for variable expense
D. Benefit from massive economies of scale
Which AWS Calculator can be used to estimate the cost savings when using AWS Cloud instead of using on-premises or traditional hosting environments?
A. AWS Cost Explorer
B. AWS Budgets
C. AWS Total cost of ownership Calculator (TCO Calculator)
D. AWS Simple Monthly Calculator
C. AWS Total cost of ownership Calculator (TCO Calculator)
Which of the following are included in the Entreprise AWS Support plan?
A. A designated Technical Account Manager (TAM)
B. Code Development
C. Well-Architected Reviews, and Operations Reviews
D. Performing ststem administration tasks
A. A designated Technical Account Manager (TAM)
C. Well-Architected Reviews, and Operations Reviews
Which of the following is the Amazon EC2 pricing model that gives the highest discount?
A. No upfront reserved instances for a 3 year term
B. All upfront reserced instances for a 1 year term
C. Partial upfront reserved instances for a 1 year term
D. All upfront reserved instances for a 3 year term
D. All upfront reserved instances for a 3 year term
You get the best discount when you pay all upfront your reserved instances for a 3 year term
Which of the following AWS services can be used to store and archive data for 5 years at the lowest cost?
A. Amazon S3 Glacier
B. Amazon S3
C. Amazon EFS
D. Amazon Snowball
A. Amazon S3 Glacier
Which AWS service provides alerts and remediation guidance when AWS is experiencing events that may impact your AWS resources?
A. AWS Service Health Dashboard
B. AWS Personal Health Dashboard
C. AWS Cloudwatch
D. AWS X-Ray
B. AWS Personal Health Dashboard
Amazon Glacier
Amazon Glacier is an online file storage web service that provides storage for data archiving and backup.
Amazon Relational Database Service (RDS)
Amazon Relational Database Service is a distributed relational database service by Amazon Web Services. It is a web service running “in the cloud” designed to simplify the setup, operation, and scaling of a relational database for use in applications.
AWS Snowball
Description: Snowball is a petabyte-scale data transport solution that uses secure appliances to transfer large amounts of data into and out of the AWS cloud. Using Snowball addresses common challenges with large-scale data transfers including high network costs, long transfer times, and security concerns.
Amazon Redshift
Amazon Redshift is a data warehouse product which forms part of the larger cloud-computing platform Amazon Web Services. The name means to shift away from Oracle, red being an allusion to Oracle, whose corporate color is red and is informally referred to as “Big Red.”
Amazon Elastic File System (EFS)
Amazon Elastic File System is a cloud storage service provided by Amazon Web Services designed to provide scalable, elastic, concurrent with some restrictions, and encrypted file storage for use with both AWS cloud services and on-premises resources. Wikipedia
What is ` advantage of the Amazon (RDS)
A. It Simplifies relational database administration tasks.
B. It provides 99.9999999% reliability and durability
C. It automatically scales databases for loads.
D. It enabled users to dynamically adjust CPU and RAM resources
A. It Simplifies relational database administration tasks.
A customer needs to run a MySQL database that easily scales. Which AWS service should they use? A. Amazon Aurora B. Amazon Redshift C. Amazon DynamoDB D. Amazon ElastiCache
A. Amazon Aurora
A.
B.
C.
D.
AWS Cloudwatch
Monitoring service for your resources, and applications you run on AWS (Think Personal Trainer) Monitor CPU, Network, Disk, Status Check. you can write a script that will send it back to cloudwatch. See how many people were logged into wordpress site for example
AWS Config
Provides a detailed view of configuration from the past so you can see how they changed over time.
AWS Inspector
Security assessment service to improve compliance of applications deployed on AWS. Looks for vulnerabilities then gives a detailed report based on severity. Associated w/ EC2
AWS Trusted Advisor
Think of the 5 icons, Helps reduce cost, increase performance, and improve security, advise on Fault Tolerance and service limits
CloudTrail
Like a CCTV Records everything in the Environment so you can see if someone has created a new user or group or role you can see that info in S3
EC2
Virtual Server in the Cloud and it reduces the time required to obtain and boot new server instances to minutes, allowing you to quickly scale capacity both up and down as your computing requirements change.
Elastic Beanstalk
Provision load balancers, EC2 instances, Security groups etc at the click of a button. Deploy AWS Resources
Cloudformation
AWS CloudFormation is a service that gives developers and businesses an easy way to create a collection of related AWS and third-party resources, and provision and manage them in an orderly and predictable fashion. Think of Creating a template that can be launched quickly
AWS Tags
Tags enable you to categorize your AWS resources in different ways, for example, by purpose, owner, or environment. This is useful when you have many resources of the same type—you can quickly identify a specific resource based on the tags that you’ve assigned to it. (data about data)
Which of the following components of the AWS Global Infrastructure consists of one of the more discrete data centers interconnected through low latency links? A. Availability Zone B. Edge Location C. Region D. Private Networking
A. Availability Zone
Which of the following is a shared control between the customer and AWS?
A. Providing a key for Amazon S3 Client Side encryption
B. Configuration of an Amazon EC2 instance
C. Environmental controls of physical AWS data centers
D. Awareness and Training
D. Awareness and Training
How many Availability Zones should compute resources be provisioned across to achieve high availability? A. A minimum of 1 B. A minimum of 2 C. A minimum of 3 D. A minimum of 4 or more
B. A minimum of 2
You need to stream data in real-time for a dashboard application. Which AWS service would you use?
AWS Kinesis
AWS CloudWatch
AWS CloudTrail
Amazon RedShift
AWS Kinesis
Amazon Kinesis makes it easy to collect, process, and analyze real-time, streaming data so you can get timely insights and react quickly to new information. https://aws.amazon.com/kinesis/
AWS CloudWatch
CloudWatch collects data, but the intent is not to collect real-time data for streaming. https://aws.amazon.com/cloudwatch/
A travel company has an application that serves customers worldwide. Which AWS service can speed up delivery of content to this widespread customer base?
CodeDeploy
OpsWorks
CloudFront
S3
CloudFront
Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds, all within a developer-friendly environment. CloudFront is integrated with AWS – both physical locations that are directly connected to the AWS global infrastructure, as well as other AWS services. https://aws.amazon.com/cloudfront/
CodeDeploy
CodeDeploy can not be used to deliver content to customers worldwide. AWS CodeDeploy is a fully managed deployment service that automates software deployments to a variety of compute services such as Amazon EC2, AWS Fargate, AWS Lambda, and your on-premises servers. https://aws.amazon.com/codedeploy/
A new application rolled out by the development team is going to require load balancing of HTTP and HTTPS traffic. Which Load Balancer is best suited for this type of traffic?
HTTP Load Balancer
Classic Load Balancer
Network Load Balancer
Application Load Balancer
Application Load Balancer
Application Load Balancer is best suited for load balancing of HTTP and HTTPS traffic and provides advanced request routing targeted at the delivery of modern application architectures, including microservices and containers. https://aws.amazon.com/elasticloadbalancing/
Network Load Balancer
Network Load Balancer is best suited for load balancing of Transmission Control Protocol (TCP), User Datagram Protocol (UDP) and Transport Layer Security (TLS) traffic where extreme performance is required. https://aws.amazon.com/elasticloadbalancing/
Your design team has recommended the need to distribute incoming traffic across multiple EC2 instances and also across multiple availability zones. Which AWS service can accomplish this?
CloudFormation
Elastic Load Balancer
Auto Scaling Group
CloudFront
Elastic Load Balancer
Elastic Load Balancing automatically distributes incoming application traffic across multiple targets, such as Amazon EC2 instances, containers, IP addresses, and Lambda functions. It can handle the varying load of your application traffic in a single Availability Zone or across multiple Availability Zones. Elastic Load Balancing offers three types of load balancers that all feature the high availability, automatic scaling, and robust security necessary to make your applications fault-tolerant. https://aws.amazon.com/elasticloadbalancing/
Auto Scaling Group
The Auto Scaling Group creates and manages scaling out and scaling in the EC2 instances, but it does not handle the distribution of traffic to those instances.
A colleague tells you about a service that uses machine learning to discover and protect sensitive data stored in S3 Buckets. Which AWS service does this?
Macie
Rekognition
Cognito
Inspector
Macie
Amazon Macie is a fully managed data security and data privacy service that uses machine learning and pattern matching to discover and protect your sensitive data in AWS. https://aws.amazon.com/macie/
Rekognition
Amazon Rekognition makes it easy to add image and video analysis to your applications using proven, highly scalable, deep learning technology that requires no machine learning expertise to use. With Amazon Rekognition, you can identify objects, people, text, scenes, and activities in images and videos, as well as to detect any inappropriate content. Amazon Rekognition also provides highly accurate facial analysis and facial search capabilities that you can use to detect, analyze, and compare faces for a wide variety of user verification, people counting, and public safety use cases. https://aws.amazon.com/rekognition/?blog-cards.sort-by=item.additionalFields.createdDate&blog-cards.sort-order=desc
A developer is trying to programmatically retrieve information from an EC2 instance such as public keys, ip address, and instance id. From where can this information be retrieved?
CloudWatch Logs
Instance Snapshot
Instance userdata
Instance metadata
Instance metadata
This type of data is stored in Instance metadata.
CloudWatch Logs
You can use CloudWatch Logs to monitor applications and systems using log data. For example, CloudWatch Logs can track the number of errors that occur in your application logs and send you a notification whenever the rate of errors exceeds a threshold you specify.
Your company hosts gaming applications online and would like to deliver these apps to a worldwide audience. Which AWS Service would enable delivery to users worldwide and greatly improve response times?
Elasticache
DynamoDB
CloudFormation
CloudFront
CloudFront
Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds, all within a developer-friendly environment.
Elasticache
Amazon ElastiCache allows you to seamlessly set up, run, and scale popular open-Source compatible in-memory data stores in the cloud. Build data-intensive apps or boost the performance of your existing databases by retrieving data from high throughput and low latency in-memory data stores. It is not for delivery. https://aws.amazon.com/elasticache/
Which storage service can provide very high durability storage for Objects?
DynamoDB
Amazon Aurora
RDS MySQL
Amazon S3
Amazon S3
S3 provides high durability storage of objects. https://aws.amazon.com/s3/
DynamoDB
DynamoDB is a NoSQL database. It is ideal for storing key-value pairs.
https://aws.amazon.com/dynamodb/
A company is migrating to the AWS Cloud. They need to set up DNS in the cloud. Which service is a highly available and scalable cloud DNS service in AWS?
CloudFront
Route 53
Amazon Macie
Amazon VPC
Route 53
Amazon Route 53 is a highly available and scalable cloud Domain Name System (DNS) web service. It is designed to give developers and businesses an extremely reliable and cost-effective way to route end users to Internet applications by translating names like www.example.com into the numeric IP addresses like 192.0.2.1 that computers use to connect. Amazon Route 53 is fully compliant with IPv6 as well. https://aws.amazon.com/route53/
Amazon VPC
DNS will certainly interact with resources in your VPC, but VPC itself does not provide DNS services. https://aws.amazon.com/vpc/
Several S3 Buckets have been deleted, and a few EC2 instances have been terminated. Which AWS service can you use to determine who took these actions?
AWS Inspector
Trusted Advisor
AWS CloudWatch
AWS CloudTrail
AWS CloudTrail
CloudTrail provides the event history of your AWS account activity, including actions taken through the AWS Management Console, AWS SDKs, command line tools, and other AWS services.
AWS CloudWatch
CloudWatch provides events and alarms, and could potentially be set up to be triggered when an EC2 instance is terminated, but will not provide detailed information over who and when the action was taken.
A software company is looking for a tool to automate their deployments from end to end. Which AWS service can provide this continuous delivery functionality?
CodePipeline
CodeBuild
CodeCommit
CodeDeploy
CodePipeline
AWS CodePipeline is a fully managed continuous delivery service that helps you automate your release pipelines for fast and reliable application and infrastructure updates. CodePipeline automates the build, test, and deploy phases of your release process every time there is a code change, based on the release model you define. This enables you to rapidly and reliably deliver features and updates. https://aws.amazon.com/codepipeline/
CodeDeploy
AWS CodeDeploy is a fully managed deployment service that automates software deployments to a variety of compute services such as Amazon EC2, AWS Fargate, AWS Lambda, and your on-premises servers. https://aws.amazon.com/codedeploy/
A financial company needs to migrate large amounts of data, at a petabyte-scale, to AWS. Which AWS service can perform this type of migration?
Database Migration Service
API Gateway
AWS Data Pipeline
AWS Snowball
AWS Snowball
Snowball is a petabyte-scale data transport solution that uses secure appliances to transfer large amounts of data into and out of the AWS cloud. Using Snowball addresses common challenges with large-scale data transfers including high network costs, long transfer times, and security concerns. https://aws.amazon.com/getting-started/projects/migrate-petabyte-scale-data/services-costs/#:~:text=Description%3A%20Snowball%20is%20a%20petabyte,transfer%20times%2C%20and%20security%20concerns.
Database Migration Service
It would not be practical to use this service for such a large migration. Additionally, it has not been specified that this data is all contained within a database. https://aws.amazon.com/dms/
You have been tasked with developing a plan to move applications to AWS and use AWS services to house code, build, and deploy these applications. Which AWS service will allow you to host Git-based repositories?
AWS CodeDeploy
GitHub
AWS CodeBuild
AWS CodeCommit
AWS CodeCommit
AWS CodeCommit is a fully-managed source control service that hosts secure Git-based repositories. It makes it easy for teams to collaborate on code in a secure and highly scalable ecosystem. CodeCommit eliminates the need to operate your own source control system or worry about scaling its infrastructure. You can use CodeCommit to securely store anything from source code to binaries, and it works seamlessly with your existing Git tools. https://aws.amazon.com/codecommit/
AWS CodeDeploy
CodeDeploy does not house git repositories. AWS CodeDeploy is a fully managed deployment service that automates software deployments to a variety of compute services such as Amazon EC2, AWS Fargate, AWS Lambda, and your on-premises servers. https://aws.amazon.com/codedeploy/
You have infrequently accessed data in S3 buckets that you want to transfer to Glacier. What can you use in AWS to do this?
Cross Origin Resource Sharing (CORS)
Database Migration Service
Bucket Policy
S3 Lifecycle Policy
S3 Lifecycle Policy
You can add rules in an S3 Lifecycle configuration to tell Amazon S3 to transition objects to another Amazon S3 storage class. For example:
When you know that objects are infrequently accessed, you might transition them to the S3 Standard-IA storage class.
You might want to archive objects that you don’t need to access in real time to the S3 Glacier storage class. https://docs.aws.amazon.com/AmazonS3/latest/dev/lifecycle-transition-general-considerations.html
Database Migration Service
AWS Database Migration Service helps you migrate databases to AWS quickly and securely. The source database remains fully operational during the migration, minimizing downtime to applications that rely on the database. The AWS Database Migration Service can migrate your data to and from most widely used commercial and open-source databases. https://aws.amazon.com/dms/
In order to improve fault tolerance, you would like to begin using services that provide fault tolerance. Which AWS services provide automatic replication across Availability Zones? (Choose 2)
S3
EC2
DynamoDb
VPC
DynamoDb- DynamoDB provides this replication.
S3- S3 provides this replication.
Several EC2 instances in a public subnet need internet access. Which will you configure as one step in granting internet access?
NAT Gateway
VPC Peering
Internet Gateway
API Gateway
Internet Gateway
An internet gateway is a horizontally scaled, redundant, and highly available VPC component that allows communication between your VPC and the internet. An internet gateway serves two purposes: to provide a target in your VPC route tables for internet-routable traffic, and to perform network address translation (NAT) for instances that have been assigned public IPv4 addresses. https://docs.aws.amazon.com/vpc/latest/userguide/VPC_Internet_Gateway.html
API Gateway
Amazon API Gateway is a fully managed service that makes it easy for developers to create, publish, maintain, monitor, and secure APIs at any scale. APIs act as the “front door” for applications to access data, business logic, or functionality from your backend services. Using API Gateway, you can create RESTful APIs and WebSocket APIs that enable real-time two-way communication applications. API Gateway supports containerized and serverless workloads, as well as web applications. https://aws.amazon.com/api-gateway/
A company needs to use a Load Balancer which can serve traffic at the TCP, and UDP layers. Additionally, it needs to handle millions of requests per second at very low latencies. Which Load Balancer should they use?
TCP Load Balancer
Classic Load Balancer
Application Load Balancer
Network Load Balancer
Network Load Balancer
Network Load Balancer is best suited for load balancing of Transmission Control Protocol (TCP), User Datagram Protocol (UDP) and Transport Layer Security (TLS) traffic where extreme performance is required. Operating at the connection level (Layer 4), Network Load Balancer routes traffic to targets within Amazon Virtual Private Cloud (Amazon VPC) and is capable of handling millions of requests per second while maintaining ultra-low latencies. https://aws.amazon.com/elasticloadbalancing/