Practice Exam 4

Question 1

What is AWS QuickSight?

Answer 1

Fast, cloud-powered business intelligence service that makes it easy to deliver insights to everyone in your organization

Question 2

What is AWS Athena

Answer 2

An interactive service that makes it easy to analyze data in Amazon S3 using standard SQL

Question 3

What do a bucket needs in order to enable CRR?

Answer 3

Versioning to be enabled

Question 4

Which buckets need versioning enabled to enable CRR?

Answer 4

The source and destination buckets

Question 5

What is S3 Transfer Acceleration?

Answer 5

A feature which enables fast, easy, and secure transfers of files to and from your bucket

Question 6

What CloudFormation feature allows you to create stacks in AWS accounts across regions by using a single AWS CloudFormation template?

Answer 6

StackSets

Question 7

What are stack instances attached to?

Answer 7

Stack instances are attached to a stack set

Question 8

What is the purpose of CloudFormation Change Sets?

Answer 8

Preview how proposed changes to a stack might impact your running resources

Question 9

What does S3 Transfer Acceleration leverages?

Answer 9

Amazon CloudFront’s globally distributed AWS Edge Locations

Question 10

What is AWS Direct Connect

Answer 10

A cloud service solution that makes it easy to establish a dedicated network connection from your premises to AWS

Question 11

What is AWS Transfer for SFTP

Answer 11

A fully managed service that enables the transfer of files directly into and out of Amazon S3 using the Secure File Transfer Protocol (SFTP) which is also known as Secure Shell (SSH) File Transfer Protocol

Question 12

What is Amazon S3 Object Lock?

Answer 12

A feature which simply enables you to store objects using a write-once-read-many (WORM) model

Question 13

What is the only CodeDeploy deployment type supported for ECS?

Answer 13

Blue/Green

Question 14

What is the unit of concurrency for Lambda functions that process Kinesis or DynamoDB streams?

Answer 14

The number of shards

Question 15

What is the execution context of a Lambda function?

Answer 15

Its the temporary runtime environment that initializes any external dependencies of your Lambda function code, such as database connections or HTTP endpoints

Question 16

What is the AWS Service Catalog

Answer 16

This service just allows organizations to create and manage catalogs of IT services that are approved for use on AWS

Question 17

What is AWS Config?

Answer 17

A service that enables you to assess, audit, and evaluate the configurations of your AWS resources

Question 18

If you lose the key used to encrypt an object with SSE-C, can you still retrieve the encrypted objects?

Answer 18

No

Question 19

What is AWS OpsWork?

Answer 19

A configuration management service that provides managed instances of Chef and Puppet (Automation platforms that allow you to use code to automate the configurations of your servers)

Question 20

What is the EC2 Launch type in ECS?

Answer 20

The EC2 launch type allows you to run your containerized applications on a cluster of Amazon EC2 instances that you manage

Question 21

What is the other launch type in ECS?

Answer 21

Fargate launch type

Question 22

What is the ECS feature which provides you with expressions that you can use to group container instances by a specific attribute?

Answer 22

Cluster Query Language (Cluster queries)

Question 23

What are Task Group in ECS?

Answer 23

Sets of related tasks

Question 24

What are Task Placement Constraints?

Answer 24

Rules that are considered during task placement

Question 25

What does the IAM DB Authentication in RDS allow?

Answer 25

Allow encrypted connections to and from an RDS DB using SSL, it is primarily used to secure data-in-transit

Question 26

What are the three options for retrieving data in an S3 Glacier?

Answer 26

Standard retrievals (3-5 hours)
Bulk retrievals (5-12 hours, large amount of data)
Expedited retrievals (1-5 minutes)

Question 27

What is format of the sign in url in AWS?

Answer 27

https://ACCOUNTALIAS.signin.aws.amazon.com/console

Question 28

Why must the requester have permission to perform the kms:Decrypt action on the key when using multipart upload with encryption in S3?

Answer 28

Because in order to assemble the parts which were all uploaded and then SSE individually, each parts must be decrypted and then assembled

Question 29

What does CA stand for?

Answer 29

Certificate Authority

Question 30

What are the two services that allow a user to import SSL/TLS certificates?

Answer 30

AWS Certificate Manager

IAM certificate store

Question 31

What do you need in order to run C++ Code in Lambda?

Answer 31

A custom runtime

Question 32

What is Amazon Inspector?

Answer 32

An automated security assessment service that helps improve the security and compliance of applications deployed on AWS

Question 33

What is AWS CloudHSM?

Answer 33

A service that provides hardware security modules in AWS Cloud

Question 34

What does HSM stand for?

Answer 34

Hardware Security Module

Question 35

What is an HSM?

Answer 35

A computing device that processes cryptographic operations and provides secure storage for cryptographic keys

Question 36

What are DynamoDB sparse indexes?

Answer 36

Sparse indexes are indexes where not all items in a table might have

https://docs.aws.amazon.com/amazondynamodb/latest/developerguide/bp-indexes-general-sparse-indexes.html

Question 37

What does the MaxAgeSeconds cors rule specifies?

Answer 37

The amount of time the browser will cache the response to the preflight OPTIONS request for the specified source

Question 38

What is AWS Elastic Map Reduce?

Answer 38

The industry-leading cloud big data platform for processing vast amounts of data using open source tools (NOT real time)

Question 39

What are the two integration type available for Lambda functions?

Answer 39

Lambda proxy integration

Lambda custom integration

Question 40

Can you unmount the ROOT volume of a running EC2 instance?

Answer 40

No, you must first stop the instance, and then detach

Question 41

How to setup CloudFront with origin failover?

Answer 41

Create an origin group with a primary origin plus a second origin that CloudFront will automatically switch to when the primary origin returns specific HTTP status code failure responses