Linnux academy questions Flashcards
Which of the following can be used to protect your environment from DDos Attacks (Pick 3)
A. Cloudfront
B.Trusted Advisor
C.AWS Shield
D.AWS ELB
A. Cloudfront
C. AWS Shield
D. AWS ELB
Your company needs to host a database in their AWS environment but needs to have control over patching. Which is the best choice?
A. EC2 Instance
B. AWS RDS database
C. Oracle database
A. EC2 Instance
If you take a snapshot of an EC2 instance and use the snapshot to create a new EC2 instance what is this called?
A. EC2 Snapshot
B. EBS Snapshot
C. AMI
C. an AMI
Which option allows AWS RDS to failover to a secondary database in case of primary database failure
A. Standby
B. Multi-AZ
C. Read replicas
B. Multi - AZ
In AWS Shared Responsibility Model, which if the following is not your responsibility as a customer? A. Encrpyting Data B. Managing Security groups C. Decommissioning your data D. Patching your Instances
C. Decommissioning your data
What is the best solution to provide secure access to an S3 bucket not using the internet?
A. Use a VPN connection
C. Use a VPC endpoint to access S3
D. Use an internet gateway
C. Use a VPC endpoint to access S3
Can you encrpyt metadata in S3?
C. Yes, if you put the metadata in a DynamoDB table and enable encrpytion during creation
D. Yes all data in S3 can be encrpyted
C. Yes if you put metadata in a dynamoDB table with S3.
You receive an alert about an issue between an application and the database servers. What should you check to ensure communication is working? A. Security group rules B. NACL rules C. AWS IAM roles D. AWS KMS
C. AWS IAM Roles
they control access at the instance level
Which of the following options are best practices for permissions in your AWS environment? (Pick 2)
A. use the principle of least privilege
B. Rotate , remove and update credentials on regular schedule
C. Use IAM users instead of groups
A. Use the principle of least privilege
B. Rotate, remove and update credentials on regular schedule
You need to find out which user was responsible for terminating several EC2 instances. Where would you look?
A. Cloudwatch
B. Cloudtrail logs
B. Cloudtrail Logs
Which service allows you to build Infrastructure as Code?
A. Cloudformation
B. Config
Cloudformation
Which Service gives you full administrative privilege of underlying v infrastructure ?
A. EC2
B. S3
C. Lambda
A. EC2
Which choice allows you to carve out a portion of the AWS cloud?
A. Autoscaling Group
B. VPC
C. Security Groups
A. VPC
Which options allow RDS to offer high availability of databases (Pick 2)
A. Multi Region
B. Multi-AZ
C.Read Replicas
B. Multi AZ
C. Read Replicas
Which service provides fully managed NoSQL Database
A. DynamoDB
B. RDS
C.MySQL
A. DynamoDB
What are two benefits of using RDS? (Pick 2)
B. You can resize your capacity as needed
C. It allows you to store noSQL data
D. It automates patches and backups
B. You can resize capacity
D. It automated patches and backups
Which AWS service allows you to increase the number of resources based on demand of the application or the users?
A. Autoscaling
B. Elastic load balancer
C. Elasticity
Auto scaling
What is the added value of being able to access your environment using cloud services through an API?
A. Allows customer owned , on premises infrastructure to also be programmable
B. Allows you to work with AWS services and resources programmatically
B. Allows you to work with AWS services and resources programatically
For cost optimization in AWS, what are two options you must consider for S3?
A. The number of S3 buckets you need
B. The total size in gigabytes of all objects being stored
C. Storage class being used or picked to store objects
B. The total size in gigabytes of all objects being stored C. Storage class being used or picked to store objects
You have a distributed application that sometimes processes large volumes of data. The application is designed to recover gracefully if any EC2 instance fails. Your task is to process the large volumes of data in the most cost-effective way. What instance type will work best and be the most cost-effective?
A. Spot
B. Reserved Instances
D. On demand
A. Spot
What tool is best for forecasting your AWS spending?
A. TCO Calculator
B. AWS Cost Explorer
B. AWS Cost Explorer
What can be attached to an EC2 instance to store data?
A. Glacier
B. EBS Volume
C.EBS Snapshot
B. EBS Volume
What helps you aggregate your logs from your EC2 instance?
A. CloudTrail
B. CloudWatch Logs
C. S3
B. Cloudwatch Logs
Which of the following statements correctly describes the concept of Auto Scaling?
A. To Scale out resources based on demand
B. To distribute traffic to EC2 Instances
C. To increase the size of the EC2 instance based on demand
A. TO scale out resources based on demand
You have a dedicated web servers and database that remains largely idle but sometimes has huge spikes in activity. What can you architect to improve your cost-efficiency?
A. Use an ELB bewteen your server and database
B. Configure server less architecture like Lambda
C. Migrate the web servers to EC2 spot
B. Use aws lambda
You have an EC2 instance in your environment that needs access to a DynamoDB table. What option below gives your EC2 instance access to the DynamoDB table?
A. Use your KMS Key
D. Use an IAM Group
C. Use an IAM Role
C. Use an IAM Role.
Assign an IAM role to the EC2 instance for access to DynamoDB
You receive an alert about an issue between an application and the database servers. What should you check to ensure communication is working?
A. Security group rules
B. AWS IAM Roles
B. Security Groups
According to the AWS Shared Responsibility Model, what is AWS responsible for when you create a security group?
A. Making sure the security groups are linked to the Elastic Network Interface (ENI) of the EC2 instance
B. Defining Outbound Rules
C. Defining Inbound Rules
D. Making sure the security group rules are applied immediately
A. Making sure the security groups are linked to the Elastic Network Interface (ENI) of the EC2 instance
D. Making sure the security group rules are applied immediately
You were asked to architect a solution for a new two-tier web application for your AWS environment. Your new web application is working and is gaining popularity, and you have now been tasked with a new requirement: to store the most frequently used data for low latency for quicker responses. What AWS service would you use to meet the requirements?
A. Elasticache
B. RDS with Multiple AZ
Elasticache
You need to deploy a specific software configuration that you currently have on one EC2 instance in your environment to hundreds of other EC2 instances in your environment. Which AWS service is best suited for this implementation and would be most efficient at automating the replication and deployment?
A. AWS Cloudwatch
B. AWS OpsWorks
C. Auto Scaling
C. AWS Opsworks
What is NACL?
Network access control list
