Practice Exam 5 Flashcards
A company would like to automate the configuration of its servers and deploy code to servers in the cloud and on-premises. Which service meets the requirement?
CodeDeploy
Elastic Beanstalk
CodeBuild
OpsWorks
OpsWorks
OpsWorks allows you to use Chef or Puppet to automate the configuration of your servers and deploy code on-premises or the cloud.
A customer would like to use machine learning to uncover the meaning and relationships in text from customer support incidents to ensure customers are happy after speaking to a support agent. How can they process the text from customer support incidents?
Macie
SNS
Amazon Connect
Comprehend
Comprehend
Comprehend is a natural language processing (NLP) service that uses machine learning to discover relationships and insights in text.
Which of the following best describes an AWS Region?
A collection of data centers that are spread evenly around a specific continent
A console that gives you a quick, global picture of your cloud computing environment
A collection of databases that can only be accessed from a specific geographic region
A distinct location within a geographic area designed to provide high availability to a specific geography
A distinct location within a geographic area designed to provide high availability to a specific geography
A Region is a distinct location within a geographic area designed to provide high availability to a specific geography. Regions are a key concept in AWS’ Global Infrastructure — each is made up of 1 or more isolated (within that Region) Availability Zones. There are often multiple AWS Regions on each continent, such as North America.
If you have a new application and you are not sure about future demand, which of the below characteristics of cloud make cloud an ideal place to host it?
(Choose 3)
No upfront payment
Performance efficiency
High availability
No single point of failure
Pay as you go
Scalability
No upfront payment
Pay as you go
Scalability
No upfront payment and pay as you go mean that you do not need an initial outlay of capital for resources to build in cloud. Rather, you only need to pay for what you use going forward. These combined with the ability to consume more resources when needed (scalability) mean that cloud is a great way to host applications that have dynamic requirements.
You want to monitor the cost of using your AWS services and receive alerts when the thresholds you define are met. Which of the following AWS Budgets types should you create?
Reservation budget
Usage budget
Cost budget
Savings Plans budget
Cost budget
You need to create a cost budget with AWS Budgets if you want to monitor the cost of using your AWS services.
Which of the following are a collection of data centers within a specific Region?
AWS origins
Edge locations
Regions
Availability Zones
Availability Zones
Availability Zones are a collection of data centers within a specific region.
Which cloud computing model offers fundamental building blocks that can be rented?
Function as a Service (FaaS)
Platform as a Service (PaaS)
Software as a Service (SaaS)
Infrastructure as a Service (IaaS)
Infrastructure as a Service (IaaS)
IaaS offers building blocks that can be rented. EC2 is an example of IaaS.
Which of the following allows you to access AWS services from popular programming languages like Java, Python, and C#?
AWS Management Console
Software development kits
Command line interface
Programming languages
Software development kits
Software development kits (or SDKs) provide everything you need to develop and manage applications in AWS, including the programming language of your choice.
Which AWS service allows you to run code without having to worry about provisioning any underlying resources (such as virtual machines, databases, etc.)?
EC2
DynamoDB
Lambda
Database Migration Service (DMS)
Lambda
Lambda is the AWS Function as a Service (FaaS) offering that lets you run code without provisioning or managing servers.
A company has developed a new web application that uses Amazon RDS MySQL as the backend database. The company wants to ensure the application is highly available. Which feature of RDS can ensure high availability?
Using CloudFront to ensure the data is available globally
Using Trusted Advisor to check for resource bottlenecks
Using Multi-AZ deployment
Using CloudWatch to monitor the uptime of the application
Using Multi-AZ deployment
RDS provides high availability and failover support for databases when using Multi-AZ deployments.
What are the 3 cloud computing models?
(Choose 3)
Infrastructure as a Service (IaaS)
Software as a Service (SaaS)
Platform as a Service (PaaS)
Function as a Service (FaaS)
Infrastructure as a Service (IaaS)
Software as a Service (SaaS)
Platform as a Service (PaaS)
3 cloud computing models.
Which of the below are TRUE statements when it comes to network security for an EC2 instance in AWS?
(Choose 3)
The customer is responsible for ensuring malicious traffic does not impair the network hardware.
AWS is responsible for ensuring malicious traffic does not reach the EC2 instance.
The customer is responsible for ensuring malicious traffic does not reach the EC2 instance.
AWS is responsible for ensuring unwanted traffic does not reach the EC2 instance.
The customer is responsible for ensuring unwanted traffic does not reach the EC2 instance.
AWS is responsible for ensuring malicious traffic does not impair the network hardware.
The customer is responsible for ensuring malicious traffic does not reach the EC2 instance.
The customer is responsible for ensuring unwanted traffic does not reach the EC2 instance.
AWS is responsible for ensuring malicious traffic does not impair the network hardware.
Under the Shared Responsibility Model, AWS takes responsibility for managing all the hardware (including access, patching, and other maintenance) and software required to deliver the service. In this scenario, AWS is responsible for the underlying network hardware, not the customer. However, the customer is responsible for ensuring that only wanted, valid traffic reaches their EC2 instance through the use of security groups, access control lists, or software firewalls.
Which of the below statements are correct in relation to security responsibilities in AWS?
(Choose 2)
As an AWS customer, you are responsible for the security OF the Cloud.
AWS is responsible for the security OF the Cloud.
AWS is responsible for the security IN the Cloud.
As an AWS customer, you are responsible for the security IN the Cloud.
AWS is responsible for the security OF the Cloud.
As an AWS customer, you are responsible for the security IN the Cloud.
AWS is responsible for the security OF the Cloud — the security of components that run the Cloud service. The customer is responsible for security IN the Cloud — that is, the security of their AWS resources and data.
Which security service provides enhanced protections and 24/7 access to AWS experts for a fee when issues arise?
AWS Shield Standard
Macie
AWS Shield Advanced
Enterprise Support
AWS Shield Advanced
AWS Shield Advanced provides enhanced protections and 24/7 access to AWS experts for a fee.
Which of the following AWS services gives you a personalized view of the performance and availability of the AWS services underlying your AWS resources, alerting you and providing remediation guidance when AWS is experiencing events that may affect you?
CloudTrail
Trusted Advisor
AWS Personal Health Dashboard
AWS Systems Manager
AWS Personal Health Dashboard
AWS Personal Health Dashboard gives you a personalized view of the performance and availability of the AWS services underlying your AWS resources.
When would you use the EC2 On-Demand pricing model?
(Choose 2)
Discounted cost model compared to Reserved Instances
No upfront payments required
Unpredictable workloads that cannot be interrupted
Guaranteed cost
No upfront payments required
Unpredictable workloads that cannot be interrupted
You would use the EC2 On-Demand model when you need compute capability that does not require any up front payments or long term commitments, and where you have applications with short-term or unpredictable workloads that cannot be interrupted.
How does S3 Transfer Acceleration help you get your data into S3 quicker?
By using AWS’ network of edge locations to upload to a location closest to you before taking the most optimal path within AWS’ network
By letting you send the data in on a disk you provide (saving on upload times), then copying it to S3
By splitting up your data into smaller chunks and uploading it simultaneously, then putting it back together on S3
By compressing your data to make it smaller for upload, then de-compressing it onto S3
By using AWS’ network of edge locations to upload to a location closest to you before taking the most optimal path within AWS’ network
S3 Transfer Acceleration uses AWS’ network of edge locations to ingest data, and then uses the most optimal path within its own network to reach S3. Although compression and splitting data up before upload can also help speed things up, these are not offered by Transfer Acceleration. AWS does not let you send in data on your own disks, and although Snowball does let you send data in without going across the internet, it is only useful when working with massive amounts of data.
Which of the following are advantages of cloud computing?
(Choose 3)
Requires large amounts of capital
Variable expense
Elasticity
Agility
-Variable expense
You pay for what you use instead of making huge upfront investments.
-Elasticity
With elasticity, you do not have to plan ahead of time how much capacity you need. You can provision only what you need, and then grow and shrink based on demand.
-Agility
The cloud gives you increased agility. All the services you have access to help you innovate faster, giving you speed to market.
Which of the following statements are true about the Amazon EC2 service?
(Choose 3)
It provides a virtual database environment.
It provides scalable computing capacity in the AWS cloud.
It provides virtual computing environments.
It is used to launch up to 5 servers.
It supplies various configurations of CPU, memory, storage, and network capacity. You can use a preconfigured template called an Amazon Machine Image (AMI) to launch your instance.
- It provides scalable computing capacity in the AWS cloud.
- It provides virtual computing environments.
- It supplies various configurations of CPU, memory, storage, and network capacity. You can use a preconfigured template called an Amazon Machine Image (AMI) to launch your instance.
EC2 allows you to rent and manage virtual servers in the cloud.
Which of the following AWS Support pricing plans provides a Technical Account Manager (TAM) for proactive guidance on your AWS account?
Enterprise
Basic
Business
Developer
Enterprise
Only the Enterprise Support plan provides a designated Technical Account Manager (TAM) for your AWS account.
How can new AWS users easily search for and find services in their AWS accounts?
Command Line Interface (CLI)
Software Development Kits (SDKs)
AWS Management Console
Application code
AWS Management Console
The console makes it easy to search for and find services.
Which of the following services will help you optimize your entire AWS environment in real-time following AWS best practices?
AWS Shield
AWS Trusted Advisor
AWS Inspector
AWS WAF
AWS Trusted Advisor
Trusted Advisor helps you optimize your entire AWS environment in real-time following AWS best practices. It helps you optimize cost, fault tolerance, and more.
Which of the following are advantages of cloud computing?
(Choose 3)
You can increase speed and agility.
You can stop guessing capacity.
You can trade variable expense for capital expense.
You can go global in minutes.
-You can increase speed and agility.
The provided services allow you to innovate more quickly and deliver your applications faster.
-You can stop guessing capacity.
Your capacity is matched exactly to your demand.
-You can go global in minutes.
You can deploy your applications around the world at the click of a button.
Broadly speaking, AWS is responsible for:
Security IN the Cloud
Security OF the Cloud
No security — security is up to the customer to manage
Security both IN and OF the Cloud
Security OF the Cloud
Generally speaking, AWS is responsible for security OF the Cloud — meaning that it is responsible for the infrastructure (hardware and software) which is used to deliver Cloud services to customers.
In Identity and Access Management (IAM), which term applies to a person or application that uses the AWS account root user, an IAM user, or an IAM role to sign in and make requests to AWS?
Entity
Identity
Resource
Principal
Principal
A principal is a person or application that uses the AWS account root user, an IAM user, or an IAM role to sign in and make requests to AWS.
Which of the following are storage services?
(Choose 2)
AWS RDS
AWS VPC
S3
AWS Elastic File System
-S3
S3 is a storage service.
-AWS Elastic File System
EFS is a storage service.