Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

AWS ACP > Practice Exam 3 > Flashcards

Practice Exam 3 Flashcards

1
Q

AWS Trusted Advisor analyzes your AWS environment and provides best practice recommendations for which of the following categories? (Select two)?

  • Change Management
  • Cost Optimization
  • Documentation
  • Elasticity
  • Service Limits
A
  • Cost Optimization

- Service Limits

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

An IT company is on a cost-optimization spree and wants to identify all EC2 instances that are under-utilized. Which AWS services can be used off-the-shelf to address this use-case without needing any manual configurations? (Select two)

  • AWS Trusted Advisor
  • AWS Cost Explorer
  • AWS Budgets
  • AWS Cost and Usage Reports
  • Amazon CloudWatdh
A
  • AWS Trusted Advisor

- AWS Cost Explorer

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Which feature of AWS Cloud offers the ability to innovate faster and rapidly develop, test and launch software applications?

  • Elasticity
  • Cost savings
  • Ability to deploy globally in minutes
  • Agility
A
  • Agility
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Compared to the On-demand prices, what is the highest possible discount offered for reserved instances?

  • 40
  • 50
  • 90
  • 72
A

-72

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

A research lab wants to optimize the caching capabilities for its scientific computations application running on EC2 instances. Which EC2 storage option is best suited for this use-case?

  • Amazon EBS
  • Amazon EC2 Instance Store
  • Amazon EFS
  • Amazon S3
A
  • Amazon EC2 Instance Store
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Which of the following statements are true about Cost Allocation Tags in AWS Billing? (Select two)

  • For each resource, each tag key must be unique, and each tag key can only have one value
  • Tags help in organizing resources and are a mandatory configuration item to run reports
  • For each resource, each tag key must be unique, but can have multiple values
  • You must activate both AWS generated tags and user-defined tags separately before they can appear in Cost Explorer or on a cost allocation report
  • Only user-defined tags need to be activated before they can appear in Cost Explorer or on a cost allocation report.
A
  • For each resource, each tag key must be unique, and each tag key can only have one value
  • You must activate both AWS generated tags and user-defined tags separately before they can appear in Cost Explorer or on a cost allocation report
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

An AWS hardware failure has impacted one of your EBS volumes. Which AWS service will alert you of the affected resources and provide a remedial action?

  • AWS Personal Health Dashboard
  • AWS Trusted Advisor
  • Amazon GuardDuty
  • AWS Config
A
  • AWS Personal Health Dashboard
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Which AWS service will you use if you have to move large volumes of on-premises data to AWS Cloud from a remote location with limited bandwidth?

  • AWS Virtual Private Network (VPN)
  • AWS Direct Connect
  • AWS Transit Gateway
  • AWS Snowball
A
  • AWS Snowball
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Which of the following is a part of the AWS Global Infrastructure?

  • Subnets
  • Region
  • Virtual Private Cloud (VPC)
  • Virtual Private Network (VPN)
A
  • Region
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Which of the following statements are CORRECT regarding Security Groups and Network Access Control Lists (NACLs)? (Select two)

  • A NACL is stateful, that is, it automatically allows the return traffic
  • A Security Group is stateful, that is, it automatically allows the return traffic
  • A Security Group is stateless, that is, the return traffic must be explicitly allowed
  • A Security Group contains a numbered list of rules and evaluates those rules in the increasing order while deciding whether to allow thee traffic
  • A NACL contains a numbered list of rules and evaluates those rules in the increasing order while deciding whether to allow thee traffic
A
  • A Security Group is stateful, that is, it automatically allows the return traffic
  • A NACL contains a numbered list of rules and evaluates those rules in the increasing order while deciding whether to allow thee traffic
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

A leading research firm needs to access information available in old patents and documents (such as PDFs, Text Files, Word documents, etc) present in its huge knowledge base. The firm is looking for a powerful search tool that can dig into these knowledge resources and return the most relevant files/documents. Which of the following is the correct service to address this requirement?

  • Amazon Personalize
  • Amazon Lex
  • Amazon Kendra
  • Amazon Comprehend
A
  • Amazon Kendra
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Which AWS service can be used as an in-memory database with high-performance and low latency?

  • Amazon Athena
  • Amazon RDS
  • Amazon DynamoDB
  • Amazon ElastiCache
A
  • Amazon ElastiCache
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

A customer is running a comparative study of pricing models of Amazon EFS and Amazon EBS that are used with the Amazon EC2 instances that host the application. Which of the following statements are correct regarding this use-case? (Select two)

  • Amazon EBS Snapshots are stored incrementally, which means you are billed only for the changed blocks stores
  • Amazon EC2 data transfer charges will apply for all EBS direct APIs for Snapshots
  • Amazon EBS Snapshot storage pricing is based on the amount of space your data consumes in EBS
  • With AWS Backup, you pay only for the amount of EFS backup storage you use in a month, you need not pay for restoring this data
  • You will pay a fee each time you read from or write data stored on the EFS - Infrequent Access storage class
A
  • Amazon EBS Snapshots are stored incrementally, which means you are billed only for the changed blocks stores
  • You will pay a fee each time you read from or write data stored on the EFS - Infrequent Access storage class
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

According to the AWS Shared Responsibility Model, which of the following are responsibilities of the customer (select 2)?

  • Compliance validation of Cloud infrastructure
  • Operating system patches and updates of an EC2 instance
  • AWS Global Network Security
  • Ensuring AWS employees cannot access customer data
  • Enabling data encryption of data stored in S3 buckets
A
  • Operating system patches and updates of an EC2 instance

- Enabling data encryption of data stored in S3 buckets

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

An IT company has a hybrid cloud architecture and it wants to centralize the server logs for its EC2 instances and on-premises servers. Which of the following is the MOST effective for this use-case?

  • Use AWS Lambda to send log data from EC2 instances as well as on-premises servers to CloudWatch Logs
  • Use CloudWatch Logs for the EC2 instance and CloudTrail for the on-premesis servers
  • Use CloudTrail for the EC2 instance and CloudWatch Logs for the on-premesis servers
  • Use CloudWatch Logs for both the EC2 instance and the on-premesis servers
A
  • Use CloudWatch Logs for both the EC2 instance and the on-premesis servers
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Data encryption is automatically enabled for which of the following AWS services? (Select two)?

  • Amazon EFS drives
  • Amazon EBS volumes
  • AWS Storage Gateway
  • Amazon Redshift
  • Amazon S3 Glacier
A
  • AWS Storage Gateway

- Amazon S3 Glacier

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

An organization maintains separate VPCs for each of its departments. With expanding business, the organization now wants to connect all VPCs for better departmental collaboration. Which AWS service will help the organization tackle the issue effectively?

  • AWS DIrect Connect
  • AWS Transit Gateway
  • VPC Peering
  • Site to Site VPN
A
  • AWS Transit Gateway
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

Which AWS Support plan provides general architectural guidance on how services can be used for various use-cases, workloads, or applications?

  • Enterprise
  • Basic
  • Developer
  • Business
A
  • Developer
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
19
Q

An e-commerce company uses AWS Cloud and would like to receive separate invoices for development and production environments. As a Cloud Practioner, which of the following solutions would you recommend for this use-case?

  • Create Separate AWS accounts for development and production environments to receive separate invoices
  • Tag all resources in the AWS account as either “development” or “production.” Then use the tags to create separate invoices
  • Use AWWS Organizations to create separate invoices for development and production environments
  • Use AWS Cost Explorer to create separate invoices for development and production environments
A
  • Create Separate AWS accounts for development and production environments to receive separate invoices
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
20
Q

Which of the following statements are CORRECT about the AWS Auto Scaling group? (Select two)

  • Auto Scaling group scales in and reduces the number of EC2 instances to match a decrease in demand
  • Auto Scaling group scales up and upgrades to a more powerful EC2 instance to match an increase in demand
  • Auto Scaling group scales down and reduces the number of EC2 instances to match a decrease in demand
  • Auto Scaling group scales down and downgrades to a less powerful EC2 instance to match a decrease in demand
  • Auto Scaling group scales out and adds more number of EC2 instances to match an increase in demand
A
  • Auto Scaling group scales in and reduces the number of EC2 instances to match a decrease in demand
  • Auto Scaling group scales out and adds more number of EC2 instances to match an increase in demand
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
21
Q

Which of the following AWS services are regional in scope? (Select two)

  • AWS WAF
  • AWS Identity and Access Management (IAM)
  • AWS Lambda
  • Amazon CloudFront
  • Amazon Rekognition
A
  • AWS Lambda
  • Amazon Rekognition

Most of the services that AWS offers are Region specific. But few services, by definition, need to be in a global scope because of the underlying service they offer. AWS IAM, Amazon CloudFront, Route 53 and WAF are some of the global services.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
22
Q

A financial services enterprise plans to enable Multi-Factor Authentication (MFA) for its employees. For ease of travel, they prefer not to use any physical devices to implement MFA. Which of the below options is best suited for this use case?

  • Virtual MFA device
  • U2F security key
  • Hardware MFA device
  • Soft Token MFA device
A
  • Virtual MFA device
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
23
Q

Which of the following are correct statements regarding the AWS Shared Responsibility Model? (Select two)

  • AWS is responsible for training AWS and customer employees on AWS products and services
  • For an abstracted service, like Amazon S3, AWS operates the infrastructure layer, the operating system, and platforms
  • Configuration Management is the responsibility of the customer
  • AWS is responsible for security “of” the Cloud
  • For a service like Amazon EC2, that falls under infrastructure as a service, AWS is responsible for maintaining guest operating system
A
  • For an abstracted service, like Amazon S3, AWS operates the infrastructure layer, the operating system, and platforms
  • AWS is responsible for security “of” the Cloud
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
24
Q

An IT company would like to move its IT resources (including any data and applications) from an AWS Region in the US to another AWS Region in Europe. Which of the following represents the correct solution for this use-case?

  • The company should just start creating new resources in the destination AWS Region and then migrate the relevant data and applications into this new AWS Region
  • The company should use CloudFormation to move the resources (including any data and applications) from the source AWS Region to the destination AWS Region
  • The company should raise a ticket with AWS Support for this resource migration
  • The company should use Database Migration Service to move the resources (including any data and applications) from source AWS region to destination AWS Region
A
  • The company should just start creating new resources in the destination AWS Region and then migrate the relevant data and applications into this new AWS Region
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
25
Q

AWS Lambda pricing is based on which of the following criteria? (Select two)

  • The size of the deployment package for the lambda function
  • The language runtime of the lambda function
  • The number of lines of code for the lambda function
  • Number of requests for the lambda function
  • The time it takes for the lambda function to execute
A
  • Number of requests for the lambda function

- The time it takes for the lambda function to execute

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
26
Q

Which of the following use cases is best suited for Amazon Elastic File System (EFS) Standard–Infrequent Access (Standard–IA) storage class?

  • Use as boot volume for highly available Amazon EC2 instances
  • Storing files in an accessible location to satisfy audit requirements
  • Storing data in a single AWS Availability Zone
  • Object storage for workloads that need sub-second latency speeds for accessing the data
A
  • Storing files in an accessible location to satisfy audit requirements
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
27
Q

A multi-national company has its business-critical data stored on a fleet of Amazon EC2 instances, in various countries, configured in region-specific compliance rules. To demonstrate compliance, the company needs to submit historical configurations on a regular basis. Which AWS service is best suited for this requirement?

  • Amazon Macie
  • Amazon GuardDuty
  • AWS CloudTrail
  • AWS Config
A
  • AWS Config
28
Q

A startup wants to set up its IT infrastructure on AWS Cloud. The CTO would like to receive detailed reports that break down the startup’s AWS costs by the hour in an S3 bucket. As a Cloud Practitioner, which AWS service would you recommend for this use-case?

  • AWS Budgets
  • AWS Cost and Usage Reports
  • AWS Pricing Calculator
  • AWS Cost Explorer
A
  • AWS Cost and Usage Reports
29
Q

A medical device company is looking for a durable and cost-effective way of storing their historic data. Due to compliance requirements, the data must be stored for 10 years. Which AWS Storage solution will you suggest?

  • S3 Glacier Deep Archive
  • AWS Storage Gateway
  • Amazon EFS
  • S3 Glacier
A
  • S3 Glacier Deep Archive
30
Q

A financial services company must meet compliance requirements that mandate storing multiple copies of data in geographically distant locations. As the company uses S3 as its main storage service, which of the following represents the MOST resource-efficient solution for this use-case?

  • Use Same-Region replication (SRR) to replicate data between distant AWS Regions
  • Run a daily job on an EC2 instance to copy objects into another Region
  • Use Cross-Region Replication (CRR) to replicate data between distant AWS regions
  • For every new object, trigger a lambda function to write data into a bucket in another AWS Region
A
  • Use Cross-Region Replication (CRR) to replicate data between distant AWS regions
31
Q

AWS Identity and Access Management (IAM) policies are written as JSON documents. Which of the following are mandatory elements of an IAM policy?

  • Effect, Action
  • Sid, Principal
  • Effect, Sid
  • Action, Condition
A
  • Effect, Action
32
Q

Which AWS service can be used for online analytical processing?

  • Amazon ElastiCache
  • Amazon Redshift
  • Amazon DynamoDB
  • Amazon RDS
A
  • Amazon Redshift
33
Q

As a Cloud Practitioner, which S3 storage class would you recommend for data archival?

  • S3 Intelligent-Tiering
  • S3 One Zone-IA
  • S3 Standard
  • S3 Glacier
A
  • S3 Glacier
34
Q

Which AWS Support plan guarantees a case response time of 15 minutes when Business Critical systems are down?

  • Business
  • Enterprise
  • Basic
  • Developer
A
  • Enterprise
35
Q

Which pillar of the AWS Well-Architected Framework recommends maintaining infrastructure as code?

  • Security
  • Performance Efficiency
  • Operational Excellence
  • Cost Optimization
A
  • Operational Excellence
36
Q

Which AWS services support High Availability by default? (Select two)

  • Redshift
  • EBS
  • DynamoDB
  • Instance Store
  • EFS
A
  • DynamoDB

- EFS

37
Q

A development team is looking out for a forum where the most frequent questions and requests from AWS customers are listed along with AWS provided solutions.

Which AWS forum/service is the optimal place to start when looking for troubleshooting an issue or checking for a solution?

  • AWS SUpport Center
  • AWS Knowledge Center
  • AWS Marketplace
  • AWS Service Health Dashboard
A
  • AWS Knowledge Center
38
Q

An AWS user is trying to launch an EC2 instance in a given region. What is the region-specific constraint that the Amazon Machine Image (AMI) must meet so that it can be used for this EC2 instance?

  • An AMI is a global entity, so the region is not applicable
  • You must use an AMI from the same region as that of the EC2 instance. The region of the AMI has no bearing on the performance of the EC2 instance
  • You can use an AMI from a different region, but it degrades the performance of the EC2 instance
  • You should use an AMI from the same region, as it improves the performance of the EC2 instance
A
  • You must use an AMI from the same region as that of the EC2 instance. The region of the AMI has no bearing on the performance of the EC2 instance
39
Q

Which of the following are components of an AWS Site-to-Site VPN? (Select two)

  • NAT Gateway
  • Storage Gateway
  • Customer Gateway
  • Internet Gateway
  • Virtual Private Gateway
A
  • Customer Gateway

- Virtual Private Gateway

40
Q

Which AWS service can be used to execute code triggered by new files being uploaded to S3?

  • ECS
  • SQS
  • EC2
  • Lambda
A
  • Lambda
41
Q

Under the AWS Shared Responsibility Model, which of the following is the responsibility of a customer regarding lambda functions?

  • Patch underlying OS for the lambda function infrastructure
  • Maintain versions of a lambda function
  • Maintain all runtime environments for lambda functions
  • Configure network infrastructure for the lambda functions
A
  • Maintain versions of a lambda function
42
Q

Which of the following AWS services specialize in data migration from on-premises to AWS Cloud? (Select two)

  • Snowball
  • Database migration service
  • Direct COnnect
  • Transit Gateway
  • Site-to-site VPN
A
  • Snowball

- Database migration service

43
Q

A research group wants to provision an EC2 instance for a flexible application that can be interrupted. As a Cloud Practitioner, which of the following would you recommend as the MOST cost-optimal option?

  • On-Demand Instance
  • Reserved Instance
  • Dedicated Host
  • Spot Instance
A
  • Spot Instance
44
Q

Which AWS service can help you create data-driven business cases for transitioning your business from on-premises to AWS Cloud?

  • AWS Budgets
  • AWS Billing and COst Management
  • AWS Migration Evaluator
  • AWS Trusted Advisor
A
  • AWS Migration Evaluator
45
Q

Which of the following AWS entities provides the information required to launch an EC2 instance?

  • EFS
  • AMI
  • Lambda
  • EBS
A
  • AMI
46
Q

Which of the following is correct regarding the AWS Shield Advanced pricing?

  • AWS Shield Advanced is a free service for all AWS Support Plans
  • AWS Shield Advanced is a free service for AWS Enterprise Plan
  • AWS Shield Advanced is a free service for AWS Business Plan
  • AWS Shield Advanced offers protection against higher fees that could result from a DDoS attack
A
  • AWS Shield Advanced offers protection against higher fees that could result from a DDoS attack
47
Q

Amazon CloudWatch billing metric data is stored in which AWS Region?

  • US West 1
  • In the AWS region where the AWS account is creates
  • US East 1
  • In the AWS Region where the AWS resource is provisioned
A
  • US East 1
48
Q

Which of the following are recommended best practices for AWS IAM service? (Select two)

  • Rotate credentials regularly
  • Enable MFA for all users
  • Share AWS root user access keys with other administrators
  • Create a minimum number of accounts and share these account credentials among employees
  • Grant maximum privileges to avoid assigning privileges again
A
  • Rotate credentials regularly

- Enable MFA for all users

49
Q

An IT company has deployed a static website on S3, but the website is still inaccessible. As a Cloud Practioner, which of the following solutions would you suggest to address this issue?

  • Fix the S3 bucket policy
  • Disable S3 encryption
  • Enable S3 replication
  • Enable S3 versioning
A
  • Fix the S3 bucket policy
50
Q

Which AWS service can be used to automate code deployment to EC2 instances as well as on-premises instances?

  • AWS Code Pipeline
  • AWS CodeCommit
  • AWS CloudFormation
  • AWS CodeDeploy
A
  • AWS CodeDeploy
51
Q

Which of the following statements is correct regarding the AWS Elastic File System (EFS) storage service?

  • EC2 instances can access files on an EFS file system only in one AZ
  • EC2 instances can access files on an EFS file system across many AZs and VPCs but not across Regions
  • EC2 instances can access files on an EFS file system across many AZs Regions and VPCs
  • EC2 instances can access files on an EFS file system across many AZs but not across VPCs and Regions
A
  • EC2 instances can access files on an EFS file system across many AZs Regions and VPCs
52
Q

A cyber-security agency uses AWS Cloud and wants to carry out security assessments on their own AWS infrastructure without any prior approval from AWS. Which of the following describes/facilitates this practice?

  • AWS Secrets Manager
  • Network Stress Testing
  • Penetration testing
  • Amazon Inspector
A
  • Penetration testing
53
Q

Which S3 storage class offers the lowest availability?

  • S3 Glacier
  • S3 intelligent-tiering
  • S3 Standard
  • S3 One Zone-IA
A
  • S3 One Zone-IA
54
Q

Which budget types can be created under AWS Budgets (Select three)?

  • Software budget
  • Resource budget
  • Cost budget
  • Reservation budget
  • Hardware budget
  • Usage budget
A
  • Cost budget
  • Reservation budget
  • Usage budget
55
Q

A startup runs its proprietary application on docker containers. As a Cloud Practitioner, which AWS service would you recommend so that the startup can run containers and still have access to the underlying servers?

  • Amazon Elastic Container Registry (ECR)
  • Amazon Elastic Container Service (ECS)
  • AWS Fargate
  • AWS Lambda
A
  • Amazon Elastic Container Service (ECS)
56
Q

Which AWS service protects your AWS account by monitoring malicious activity and detecting threats?

  • Trusted Advisor
  • CloudTrail
  • CloudWatch
  • GuardDuty
A
  • GuardDuty
57
Q

Which of the following AWS services offer block-level storage? (Select two)

  • EFS
  • ECS
  • EBS
  • S3
  • Instance Store
A
  • EBS

- Instance Store

58
Q

Which of the following is the best way to protect your data from accidental deletion on Amazon S3?

  • S3 Transfer Acceleration
  • S3 lifecycle configuration
  • S3 Storage Classes
  • S3 Versioning
A
  • S3 Versioning
59
Q

A company has a static website hosted on an S3 bucket in an AWS Region in Asia. Although most of its users are in Asia, now it wants to drive growth globally. How can it improve the global performance of its static website?

  • Use CloudWatch to improve the performance of your website
  • Use WAF to improve the performance of your website
  • Use CloudFront to improve the performance of your website
  • Use S3 Transfer Accelerator to improve the performance of your website
A
  • Use CloudFront to improve the performance of your website
60
Q

Which AWS service will you use to privately connect your VPC to Amazon S3?

  • Amazon API Gateway
  • AWS Direct Connect
  • VPC Endpoint Gateway
  • AWS Transit Gateway
A
  • VPC Endpoint Gateway
61
Q

Which of the following capabilities does Amazon Rekognition provide as a ready-to-use feature?

  • Identify objects in a photo
  • Resize images quickly
  • Human pose detection
  • Convert images into greyscale
A
  • Identify objects in a photo
62
Q

Which AWS Route 53 routing policy would you use when you want to route your traffic in an active-passive configuration?

  • Simple routing policy
  • Failover routing policy
  • Weighted routing policy
  • Latency routing policy
A
  • Failover routing policy
63
Q

Which of the following improves the availability for a fleet of EC2 instances?

  • Deploy the EC2 Instances in the same AZ of a Region
  • Deploy the EC2 instances across different Regions of the same AZ
  • Deploy the EC2 instances across different AZs in the same Region
  • Deploy the EC2 instances in the same AZ across two different Regions
A
  • Deploy the EC2 instances across different AZs in the same Region
64
Q

Gmail is an example of which of the following Cloud Computing Models?

  • PaaS
  • SaaS
  • FaaS
  • IaaS
A
  • SaaS
65
Q

What is the primary benefit of deploying an RDS database in a Read Replica configuration?

  • Read Replica reduces the database usage costs
  • Read Replica protects the database from a regional failure
  • Read Replica enhances database availability
  • Read Replica improves database scalability
A
  • Read Replica improves database scalability

AWS ACP (3 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions