Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

HNF Cloud Prac Flashcard > HNF Problem Questions 2 > Flashcards

HNF Problem Questions 2 Flashcards

1
Q

Which of the following AWS services can help you perform security analysis and regulatory compliance auditing?
Choose 2

  • -Amazon EC2
  • -Amazon Inspector-
  • -AWS Virtual Private Gateway
  • -AWS Config
  • -AWS Batch
A

–Amazon Inspector-

–AWS Config

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What is Amazon QuickSight

A

it is a very fast, easy to use, cloud powered business analytics service that makes it easy for all employees within an organization to build visualizations, perform ad-hoc analysis, and quickly get business insights from their data, anytime, on any device.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What is the AWS Compute service that executes code only when triggered by events?

  • -CloudWatch
  • -Transit Gateway
  • -Lambda
  • -EC2
A

Lambda

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What is AWS GuardDuty

A

it is a threat detection service that continuously monitors for malicious activity and unauthorized behavior to protect your AWS accounts and workloads.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What does AWS offer to protect your data?
CHoose 2

  • -physical MFA devices
  • -access control
  • -data encryption
  • -load balancing
  • -unlimited storage
A
  • -access control

- -data encryption

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

App development companies move their business to AWS to reduce time to market and improve customer satisfaction, what are the AWS automation tools that help them deploy their applications faster?

Choose 2

  • -Macie
  • -IAM
  • -Migration Hub
  • -Elastic Beanstalk
  • -CloudFormation
A
  • -Elastic Beanstalk

- -CloudFormation

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

what are Global Tables

A

DynamoDB Global Tables are ideal for massively scaled applications with globally dispersed users. Global tables provide automatic replications to AWS regions work-wide. They enable you to deliver low latency data access to you users no matter where they are located

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

AWS recommends some practices to help organizations avoid unexpected charges on their bill. which of the following is NOT one of these practices?

  • -releasing unused Elastic IP after terminating an EC2 instance
  • -deleting unused Elastic Load Balancers
  • -Deleting unused AutoScaling launch configuration
  • -deleting unused EBS volumes after terminating an EC2 instances
A

–Deleting unused AutoScaling launch configuration

because auto scaling does not incure any charges

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

WHich of the following AWS services helps with planning application migration to the AWS Cloud

  • -AWS DMS
  • -AWS Snowball Migration Service
  • -AWS application Discovery Service
  • -AWS Migration Hub
A

–AWS application Discovery Service

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What is the name of the DynamoDB replication capability that provides fast read/write performance for globally deployed applications?

  • -DynamoDB DAX
  • -DynamoDB Point in time Recovery
  • -Global Tables
  • -AWS Global Accelerator
A

Global Tables

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What is the AWS service that provides five times the performance of a standard MySQL database?

    • Redshift
  • -DynamoDB
  • -SImpleDB
  • -Aurora
A

Aurora

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

WHich of the below are responsibilities of the customer when using Amazon EC2?
Choose 2

  • -maintaining consistent hardware components
  • -setup and operation of managed databases
  • -installing and configuring third-party software
  • -protecting sensitive data
  • -patching of the underlying infrastructure
A
  • -installing and configuring third-party software

- -protecting sensitive data

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Which of the following services can be used to monitor the HTTP and HTTPS requests that are forwarded to Amazon CloudFront?

  • -CloudWatch
  • -WAF
  • -CloudTrail
  • -Cloud9
A

WAF

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

what is Chime

A

it is a communications service for online meetings

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Which of the following allows you to create new RDS instances?
Choose 2

  • -CloudFormation
  • -DMS
  • -Quick Starts
  • -Management Console
  • -CloudDeploy
A

–CloudFormation

–Management Console

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

what is AWS OpsWork

A

it is a configuration management service that provides managed instances of Chef and Puppet

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

How do ELBs improve the reliability of your applications?

  • -by distributing traffic across multiple S3 buckets
  • -by ensuring that only healthy targets receive traffic
  • -by creating database Read Replicas
  • -by replicating data to multiple availability zones
A

–by ensuring that only healthy targets receive traffic

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

Which of the following is true regarding the AWS availability zones and edge locations?

  • -an AWS AZ is an isolated location within an AWS region, however edge location are located in multiple cities worldwide
  • -edge locations are located in separate availabity zones worldwide to serve global customers
  • -an AZ exists within an edge location to distribute content globally with low latency
  • -an AZ is a geographic location where AWS provides multiple physically separated and isolated edge locations
A

–an AWS AZ is an isolated location within an AWS region, however edge location are located in multiple cities worldwide

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
19
Q

what is CodeDeploy

A

it is a fully managed deployment service that automates software deployments to a variety of compute services such as EC2, Fargate, lambda, and on-premises servers

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
20
Q

What is U2F Security Key

A

universal 2nd Factor security key is an MFA hardware device provided by amazon

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
21
Q

What is Quick Starts

A

Quick Starts are built by AWS solutions architects and partners to help you deploy popular technologies on AWS based on best practicew

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
22
Q

What is AWS Global Accelerator

A

it is not a Dynamo DB feature

it is a network service that enables organizations to seamlessly route traffic to multiple regions and improve availability and performance for their local and global end users.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
23
Q

What are the benefits of using the AMazon Relational Database Service
Choose 2

  • -scales automatically to larger or smaller instance types
  • -supports the document and key-value data structure
  • complete control over the underlaying host
  • -resizing compute capacity
  • -lower admin burden
A
  • -resizing compute capacity
  • -lower admin burden

RDS provides cost-efficient and resizable Compute (and\or Storage) capacity while automating time-consuming administration tasks such as hardware provisioning, operating system maintenance, database setup, patching and backups.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
24
Q

What are the benefits of using DynamoDB
Choose 2

  • -automatically scales t meet required throughput capacity
  • -offers extremely low (single-digit millisecond) latency
  • -provides resizable instances to match the current demand
  • -support the most popular No SWL database engines such as Couch DB and MongoDB
  • -support both relational and non-relational dat models
A
  • -automatically scales t meet required throughput capacity
  • -offers extremely low (single-digit millisecond) latency

benefits of DynamoDB
1 performance at scale
2 serverless
3 highly available

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
25
Q

What are the benefits of implementing a tagging strategy for AWS resources?
Choose2

  • -tract API calls in your AWS account
  • -quickly identify software solutions on AWS
  • -quickly identify deleted resources and their metadata
  • -track AWS spending across multiple resources
  • -quickly identify resources that belong to a specific project
A
  • -track AWS spending across multiple resources

- -quickly identify resources that belong to a specific project

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
26
Q

Which AWS service provides the current status of all AWS services in all AWS regions?

  • -Management Console
  • -Service Health Dashboard
  • -CloudWatch
  • -Personal Health Dashboard
A

–Service Health Dashboard

27
Q

Which of the following approaches will help you eliminate human error and automate the process of creating and updating your AWS environment?

  • -Use code to provision and operate your AWS infrastructure
  • -use AWS CodeDeploy to build and automate you AWS environment
  • -migrate all of your applications to a dedicated host
  • -use software test automation tools
A

–Use code to provision and operate your AWS infrastructure

28
Q

Which of the following is a benefit of running an application in multiple Availability Zones?

  • -reduces application responses time between servers and global users
  • -increases available le compute capacity
  • -allows you to exceed AWS service limits
  • -increases the availability of you application
A

–increases the availability of you application

29
Q

Which AWS service provides integration with Chef to automate the configuration of EC2 instances?

  • -CloudFormation
  • -AUtoScaling
  • -OpsWorks
  • -Config
A

–OpsWorks

30
Q

What is AWS application Discovery Service

A

it helps systems integrators quickly and reliability plan application migration projects by automatically identifying applications running in on premises data centers, their associated dependencies, and their performance profiles.

31
Q

Which of the following is a type of MFA device that customers can use to protect their AWS resources?

–U2F Security Key
–AWS CloudHSM
–AWS Access Keys
==AWS Key Pair

A

–U2F Security Key

32
Q

Which of the following can be used to enable the Virtual MFA
Choose 2

  • -AWS Identity and Access Management (IAM)
  • -amazon SNS
  • -AWS CLI
  • -Amazon VPC
  • -Connect
A

–AWS Identity and Access Management (IAM)

–AWS CLI

33
Q

what is amazon SWF

A

Simple workflow Service
it is a web service that makes it easy to coordinate work across distributed application components.. It enables applications for a range of use cases, including media processing, we application back-ends, business process workflows, and analytic piplines, to be designed as a coordination of taks.

34
Q

What is AWS Transit Gateway

A

It is a network transit hub that customers can use to interconnect their VPC and their on-premise networks

35
Q

WHich AWS service provides cost-optimization recommendations?

  • -X-ray
  • -Pricing Calculator
  • -QuickSight
  • -Trusted Advisor
A

–Trusted Advisor

36
Q

What is AWS Virtual Private Gateway

A

it allows creating hybrid cloud architecture by connecting your data center (or network) to you Amazon virtual private cloud VPC

37
Q

What is the main purpose of using Amazon SWF?

  • -threat detection
  • -coordinate tasks across distributed application components
  • -high-performance file system integrated with S3
  • -host and manage active directory
A

–coordinate tasks across distributed application components

SWF

Simple workflow Service

38
Q

Which AWS service enables you to quickly purchase and deploy SSL/TLS certificates?

  • -AWS ACM
  • -AWS Budgets
  • -AWS WAF
  • -Amazon GuardDuty
A

AWS ACM

AWS Certificate Manager

39
Q

Which of the following are examples of the customer’s responsibility to implement security in the cloud?
Choose 2

  • -creating a new hypervisor
  • -building a schema for an application
  • -file system encryption
  • -replace physical hardware
  • -patch management of the underlying infrastructure
A
  • -building a schema for an application

- -file system encryption

40
Q

WHich of the following are use cases for AMazon S3
Choose 2

  • -cost-effective database and log storage
  • -processing data streams at any scale
  • -hosting static websites
  • -a media store for the CloudFront service
  • -hosting websites that require sustained high CPU utilization
A
  • -hosting static websites

- -a media store for the CloudFront service

41
Q

A customer spend a lot of time configuring a newly deployed AMazon EC2 instance. After the workload increases, the customer decides to provision another EC2 instance with an identical config. How can the customer achieve this?

  • -by installing Aurora on EC2 and launching a new instance from it
  • -by creating an AMI from the old instance and launching a new instance from it
  • -by creating an EBS Snapshot of the old instance
  • -by creating an AWS Config template from old instance and launching a new instance from it
A

–by creating an AMI from the old instance and launching a new instance from it

42
Q

When granting permissions to applications running an Ec2 instances, which of the following is considered best practice?

  • -use temporary security credentials (IAM roles) instead of long term access keys
  • -Generate new IAM access keys every time you delegate permissions
  • -store the required AWS credentials directly within the application code
  • -do nothing; applications that run on EC2 instances do not need permission to interact with other AWS services or resources.
A

–use temporary security credentials (IAM roles) instead of long term access keys

43
Q

Which support plan includes AWS support Concierge Service?

  • -premium support
  • -enterprise support
  • -business support
  • -standard support
A

–enterprise support

44
Q

What are Chef and Puppet

A

they are automation platforms that allow you to use code to automate the configurations of your servers.

45
Q

Which AWS Service creates a virtual network AWS?

  • -Direct Connect
  • -VPC
  • -VPN
  • -VPS
A

VPC

virtual private cloud

46
Q

what is AWS Lambda

A

It is a serverless compute service that runs code in response to events.

47
Q

Which of the following is NOT
a factor when estimating the cost of EC2?
Choose 2

  • -Allocated Elastic IP addresses
  • -Number of security groups
  • -number of hosted Zones
  • -number of instances
  • -amount of time the instances will be running
A
  • -Number of security groups

- -number of hosted Zones

48
Q

One of the major advantages of using AWS is cost savings. What does AWS provide to reduce the cost or running EC2 instances?

  • -low monthly instance maintenance costs
  • -per-second instance billing
  • -low cost instance tagging
  • -low instance start up fees
A

–per-second instance billing

49
Q

WHich AWS Service can perform health checks on Amazon ECs instances?

  • -Route53
  • -CloudFormation
  • -Chime
  • -Aurora
A

Route53

Amazon Route 53 provides highly available and scalable Domain Name System (DNS), domain name registration, and health-checking web services. Route 53 also offers health checks to monitor the health and performance of your application as well as your web servers and other resources. Route 53 can be configured to route traffic only to the healthy endpoints to achieve greater levels of fault tolerance in your applications.

50
Q

What is Cognito

A

It lets customers add user sign up, sign in, and access control to their web and mobile apps quickly and easily. it scales to millions of users and supports sign in with social identiry providers, such as Facebook, google, and amazon.

51
Q

Which of the following can be used to protect data at rest on S3?

  • -decryption
  • -permissions
  • -conversion
  • -deduplications
  • -versioning
A

–permissions

–versioning

52
Q

What is VPS

A

virtual private server

it is a lightsail instance that lives in the AWS Cloud

53
Q

WHich of the following factors should be considered when determining the region in which AWS resources will be deployed?
Choose 2

  • -data sovereignty
  • -cost
  • -the AWS region’s security level
  • -the planned number of VPC’s
  • -Geographic proximity to the company’s location
A
  • -data sovereignty
  • -cost

Per AWS Best Practices, proximity to your end users, regulatory compliance, data residency constraints, and cost are all factors you have to consider when choosing the most suitable AWS Region.

54
Q

A company is developing a mobile application and wants to allow users to use their amazon, apple, facebook, or google identies to authenticate to the application. which AWS service should the company use for this purpose?

  • -Inspector
  • -Cognito
  • -GaurdDuty
  • -EBS
A

–Cognito

55
Q

A company needs to track resources changes using the API call history. Which AWS service can help the company achieve this goal?

  • -CloudWatch
  • -CloudTrail
  • -CloudFormation
  • -Config
A

CloudTrail

AWS CloudTrail is a web service that records AWS API calls for your account and delivers log files to you. The recorded information includes the identity of the API caller, the time of the API call, the source IP address of the API caller, the request parameters, and the response elements returned by the AWS service. The AWS API call history produced by CloudTrail enables security analysis, resource change tracking, and compliance auditing.

56
Q

An AWS customer has used on Amazon Linus instance for 2 hours, 5 min, and 9 sec and one Windows instance for 4 hours, 23 minutes and 7 sec.
How much time will the customer be billed for?

A

2 hours and 5 min and 9 sec for the Linus plantfor
and
5 hours for the windows platform

57
Q

What is AMI

A

Amazon Machine Image
it provides the information required to launch an instance, which is a virtual server in the cloud. you must specify an AMI when you launch an instance, and you can launch as many instances from the AMI as you need.

58
Q

What is AWS Migration Hub

A

WS Migration Hub provides a single location to track the progress of application migrations across multiple AWS and partner solutions.

59
Q

Which is the minimum level of AWS support that provides 24x7 access to technical support engineers via phone and chat?

  • -enterprise support
  • -basic support
  • -business support
  • -developer support
A

–business support

60
Q

Which AWS service allow customers to download AWS SOC and PCI reports?

  • -AWS Glue
  • -AWS Well-Architected Tool
  • -AWS Artifact
  • -Amazon Chime
A

–AWS Artifact

SOC
Service Organization Control
PCI
Payment Card Industry

61
Q

A Company is trying to analyze the cost applied to their AWS account recently. Which of the following provides them the most granular data about their AWS cost and usage?

  • -CloudWatch
  • -Cost Explorer
  • -Machine Image
  • -Cost and Usage Report
A

–Cost and Usage Report

Cost explorer provides visualizations but is not as comprehensive

62
Q

service vs personal health dashboard

A

service health dashboard displays the general status of AWS services

Personal Health Dashboard give you a personalized view of the status of the AWS services that power you applications

63
Q

What does AWS offer to secure you network?

  • -instance reservations
  • -optimized instance types
  • -customer controlled encryption in transit
  • -AWS controlled network access control lists
A

–customer controlled encryption in transit

Data in transit (sometimes called data in motion) is a term used to describe data that is in transit through networks. Encrypting data in transit will add more security to your network by ensuring that data is unreadable as it travels from a service to another or from a network to another. The AWS Customer is responsible for encrypting their data either in transit or at rest.

64
Q

WHich features are included in the AWS Business Support Plan?
Choose 2

  • -access to Cloud Support Engineers via email only during business hours
  • -24x7 access to customer service
  • -23x7 access to TAM feature
  • -partial access to the core Trusted Advisor checks
  • -access to the infrastructure Event Management (IEM) feature for additional fee
A

–24x7 access to customer service

–access to the infrastructure Event Management (IEM) feature for additional fee

HNF Cloud Prac Flashcard (5 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions