Technology

Question 1

You have a MySQL database that you want to migrate to the cloud, and you need it to be significantly faster there. You are looking for a speed increase up to 5 times the current performance. Which AWS offering could you use?

Answer 1

Amazon Aurora

Aurora is a relational database compatible with MySQL and PostgreSQL that was created by AWS. It’s a lot faster then AWS RDS

Question 2

AWS Personal Health Dashboard

Answer 2

AWS Personal Health Dashboard gives you a personalized view of the status of services and resources used by your applications.

Notifications are also provided for scheduled events that may impact AWS customers.

publishes alerts and remediation guidance when issues with AWS services arise.

Question 3

Load balancer types offered by AWS

Answer 3

Classic
Application
Network

Question 4

You have been tasked with creating identical, repeatable infrastructure for your customers. Which service will you use?

Answer 4

CloudFormation

CloudFormation provides the ability to provision a repeatedly deployable environment for your customers

Question 5

AWS Config

Answer 5

AWS Config is used to assess, audit, and evaluate the configurations of your AWS resources.

Question 6

MariaDB

Answer 6

MariaDB is a type of RDS engine on AWS

MariaDB is a popular open source relational database created by the original developers of MySQL. Amazon RDS makes it easy to set up, operate, and scale MariaDB server deployments in the cloud. With Amazon RDS, you can deploy scalable MariaDB cloud databases in minutes with cost-efficient and resizable hardware capacity.

Question 7

Redshift

Answer 7

Redshift is for data warehousing. Amazon Redshift provides the best solution for performing queries based on a predefined set of dimensions. Redshift organizes data for high performance based on user-specified distribution schemes.

Redshift allows you to run complex analytic queries against petabytes of structured data, using sophisticated query optimization, columnar storage on high-performance local disks, and massively parallel query execution.

Amazon ElastiCache provides in-memory performance, but no data organization assistance. Amazon Aurora and Amazon DynamoDB are good solutions, but Redshift’s columnar storage gives it the edge.

Question 8

AWS Aurora

Answer 8

Aurora is a type of RDS engine on AWS - Designed for unparalleled high performance and availability at global scale with full MySQL and PostgreSQL compatibility

Gives you the performance and availability of commercial-grade databases at one-tenth the cost.

Question 9

A company is using CloudTrail to simplify operational analysis and troubleshooting. When tracking user activity, which content fields does CloudTrail track when a user accesses the AWS Management Console?

Answer 9

Region - CloudTrail tracks the AWS Region that the request was made to, such as us-east-1.

Username - CloudTrail allows you to track the username.

CloudTrail DOES NOT track tags.

Question 10

Which of the following languages can be used to author CloudFormation templates

Answer 10

CloudFormation supports both JavaScript Object Notation (JSON) and YAML Ain’t Markup Language (aka YAML) for authoring CloudFormation templates

Question 11

AWS CloudTrail

Answer 11

CloudTrail tracks user activity and API calls within your account.

Question 12

AWS Inspector

Answer 12

Inspector works with EC2 instances to uncover and report vulnerabilities.

Question 13

Which storage service can provide very high durability storage for objects?

Answer 13

Amazon S3 - S3 provides high durability storage of objects.

Question 14

DynamoDB

Answer 14

DynamoDB is a NoSQL database. It is ideal for storing key-value pairs.

DynamoDB is a fast and flexible NoSQL database. NoSQL databases are non-relational and have a dynamic structure, whereas SQL is relational and has a pre-defined structure

Question 15

AWS Service Health Dashboard

Answer 15

AWS Service Health Dashboard as the answer, it does not provide a personalized view of AWS services; it displays their general status.

Question 16

Which of the following can be specified as an origin when creating a CloudFront distribution?

Answer 16

A CloudFront origin can be an S3 bucket, an elastic load balancer, or a valid domain name.

Question 17

Classic Load Balancer

Answer 17

Classic Load Balancer provides basic load balancing across multiple Amazon EC2 instances and operates at both the request level and connection level. Classic Load Balancer is intended for applications that were built within the EC2-Classic network

Question 18

Which of the following data archival services is extremely inexpensive but can have a multi-hour data-retrieval window?

Answer 18

Glacier offers extremely inexpensive data archival, but requires a 3- to 5-hour data-retrieval window for standard retrievals - though this time can be reduced for a price.

Question 19

You are trying out AWS on a trial basis and need to deploy an application without having to configure servers. Which AWS service can you use?

Answer 19

Elastic Beanstalk allows you to deploy your web applications and web services to AWS

Question 20

Lambda

Answer 20

Lambda allows you to run a variable and intermittent code without paying for compute time when your code isn’t running.

Lambda is the AWS Function as a Service (FaaS) offering that lets you run code without provisioning or managing servers

Lambda is event-driven, and a change to an S3 bucket is an example of an event

is a serverless, event-driven compute service that lets you run code for virtually any type of application or backend service without provisioning or managing servers. You can trigger Lambda from over 200 AWS services and software as a service (SaaS) applications, and only pay for what you use.

Question 21

By default, what can a private subnet communicate with?

Answer 21

Other private subnets in the same VPC

By default, a private subnet can only communicate with other subnets in the same VPC, be they private or public. In order to communicate to the internet, a NAT gateway and internet gateway are required, and to enable communication between subnets in different VPCs, the VPCs must first be peered.

Question 22

SageMaker

Answer 22

SageMaker helps you build, train, and deploy machine learning models quickly.

Question 23

Polly

Answer 23

Polly turns text into speech

Question 24

Bucket policies

Answer 24

Bucket policies allow you to control access to entire buckets, whereas access control lists let you control access to individual objects within an S3 bucket.

Use bucket policies to make entire buckets public (like 1 hosting an S3 website)

Question 25

AWS Application Discovery Service

Answer 25

AWS Application Discovery Service helps you gather information about your on-premises environment and is considered a migration tool.

Question 26

AWS OpsWorks

Answer 26

OpsWorks allows you to use Chef or Puppet to automate the configuration of your servers and deploy code.

Question 27

AWS Snowball

Answer 27

AWS Snowball is a petabyte-scale data transport service that uses secure devices to transfer large amounts of data into and out of the AWS Cloud.

provides secure, rugged devices, so you can bring AWS computing and storage capabilities to your edge environments, and transfer data into and out of AWS

Question 28

You have just created a new bucket and uploaded a file into it. Will this be automatically viewable by anyone on the internet?

Answer 28

No - by default, buckets and their contents are private

By default, all data stored in S3 is not viewable by the public. If you want a bucket or object to be accessible by the public, you must explicitly make it so. NAT gateways and internet gateways are needed to allow communications between VPCs and the internet, but they are not required when it comes to S3

Question 29

S3 One Zone-Infrequent Access

Answer 29

S3 One Zone-Infrequent Access is designed for customers who want a lower cost option for infrequently accessed data but do not require the multiple Availability Zone data resilience model of the S3 Standard or S3 Standard-Infrequent Access storage classes.

Fast retrieval!! S3 One Zone-Infrequent Access provides millisecond access when the data is needed.

Question 30

S3 Standard

Answer 30

S3 Standard is used for general-purpose storage. Your data is stored across multiple Availability Zones and is recommended for data that is frequently accessed. This is the most expensive option of the S3 storage classes.

Question 31

Snowmobile

Answer 31

The Snow Family allows you to transfer large amounts of on-premises data to AWS using a physical device. Snowmobile transports multi-petabyte or exabyte-scale data

Question 32

For which of the below is S3 a suitable storage solution?

Answer 32

S3 is object storage suitable for the storage of “flat” files like documents, photos, etc.

Use cases that require very atomic or consistent reading and writing, such as databases and operating systems, are more suited to EBS (Elastic Block Store) storage.

Question 33

CloudFront

Answer 33

is a CDN (content delivery network) that delivers data and applications globally with low latency. It speeds up the delivery of content to your users

Question 34

Rekognition

Answer 34

The company can use Rekognition to identify objects like protective equipment in their images and detect if employees are wearing the required protective equipment – preforms image analysis

Question 35

When you upload an object to S3 storage, where will AWS keep it?

Answer 35

In multiple Availability Zones within the Region you select. Any object uploaded to S3 is automatically stored in multiple Availability Zones in the Region in which it was uploaded. This means that if any single AZ in a Region is experiencing issues, objects stored in S3 will still be available. Although objects in S3 can be made to be accessible globally, by default they are always stored in a redundant fashion in only the Region they were uploaded, ruling out the other answers.

Question 36

Cloud9

Answer 36

Cloud9 allows application developers to write code within an integrated development environment (IDE) from within their web browser.

Question 37

A developer would like to build a serverless application but doesn’t want to install files or configure their local development machine. Which service will allow the developer to build the application by writing code in a web browser?

Answer 37

Cloud9 - Cloud9 allows application developers to write code within an integrated development environment (IDE) from within their web browser.

Question 38

Convertible reserved instance? (EC2)

Answer 38

One-year to three-year term.

Enables you to modify Availability Zone, scope, networking type, and instance size (within the same instance type) of your Reserved Instance.

Question 39

What is standard reserved instance in AWS?

Answer 39

Standard Reserved Instances provide you with a significant discount (up to 72%) compared to On-Demand Instance pricing, and can be purchased for a 1-year or 3-year term. Customers have the flexibility to change the Availability Zone, the instance size, and networking type of their Standard Reserved Instances.

Question 40

Standard vs. Convertible RIs

Answer 40

Standard - Enables you to modify Availability Zone, scope, networking type, and instance size (within the same instance type) of your Reserved Instance.

Convertible - Enables you to exchange one or more Convertible Reserved Instances for another Convertible Reserved Instance with a different configuration, including instance family, operating system, and tenancy.

Question 41

A company is planning for a one-time sale of 75% off all products on its website. They expect to see a short-term spike on the sale day. Which EC2 instance type should the company use to meet its requirements and maximize flexibility?

Answer 41

On-Demand is good for applications that have unpredictable workloads that can’t be interrupted.

Question 42

Application Load Balancer

Answer 42

An Application Load Balancer is best suited for load balancing of HTTP and HTTPS traffic and provides advanced request routing targeted at the delivery of modern application architectures, including microservices and containers

Question 43

Network Load Balancer

Answer 43

A Network Load Balancer is best suited for load balancing of Transmission Control Protocol (TCP), User Datagram Protocol (UDP), and Transport Layer Security (TLS) traffic where extreme performance is required.

Question 44

An organization needs to run a MySQL relational database on AWS. They plan to hire their own database administrators to manage their databases, including taking backups, using replication, and clustering. Which option provides the customer the control and flexibility needed?

Answer 44

Install the MySQL database directly on an EC2 instance.

Installing the database directly to EC2 gives the customer complete control over the database and its management.

Question 45

Your company has decided to migrate a SQL Server database to a newly created AWS account. Which service can be used to migrate the database?

Answer 45

Database Migration Service

DMS helps you migrate databases to or within AWS.

Question 46

Which of the following are steps you should take in securing your AWS account?

Answer 46

Activate Multi-factor Authentication (MFA) on your root account.

Use groups to delegate access to IAM users. - Groups should be used to delegate permissions to the users you create, instead of individual assigning policies to IAM users, since it makes administration easier.

Create individual IAM users. - You should always create IAM users for individual users, since the root account should never be used for actual work.

Question 47

Your company utilizes DNS and wants to migrate DNS and management of DNS to the cloud. Which AWS service would you use?

Answer 47

Route 53 is a DNS service that routes users to applications.

Question 48

Kinesis

Answer 48

Kinesis allows you to analyze data and video streams in real time.

Question 49

Web Application Firewall (WAF)

Answer 49

WAF helps protect your web applications against common web attacks like SQL injection attacks and cross-site scripting.

Question 50

Lightsail

Answer 50

Lightsail allows you to quickly launch all the resources you need for small projects like preconfigured applications like WordPress.

Question 51

Amazon CloudWatch

Answer 51

CloudWatch is a collection of services that help you monitor and observe your cloud resources.

Question 52

AWS Elastic Beanstalk

Answer 52

AWS Elastic Beanstalk is an easy-to-use service for deploying and scaling web applications and services developed with Java, .NET, PHP, Node.js, Python, Ruby, Go, and Docker on familiar servers such as Apache, Nginx, Passenger, and IIS.

You can simply upload your code and Elastic Beanstalk automatically handles the deployment, from capacity provisioning, load balancing, auto-scaling to application health monitoring. At the same time, you retain full control over the AWS resources powering your application and can access the underlying resources at any time

Question 53

You have infrequently accessed data in S3 buckets that you want to transfer to Glacier. What can you use in AWS to do this?

Answer 53

S3 Lifecycle policy

You can add rules in an S3 Lifecycle configuration to tell Amazon S3 to transition objects to another Amazon S3 storage class. For example: When you know objects are infrequently accessed, you might transition them to the S3 Standard-IA storage class. You might want to archive objects that you don’t need to access in real time to the S3 Glacier storage class.

Question 54

A software company is looking for a tool to automate their deployments from end to end. Which AWS service can provide this continuous delivery functionality?

Answer 54

CodePipeline automates the software release process. - AWS CodePipeline is a fully managed continuous delivery service that helps you automate your release pipelines

NOT CodeDeploy - AWS CodeDeploy is a fully managed deployment service that automates software deployments to a variety of compute services such as Amazon EC2, AWS Fargate, AWS Lambda, and your on-premises servers

Question 55

Elastic Beanstalk

Answer 55

Elastic Beanstalk allows you to deploy your web applications and web services to AWS

You can simply upload your code and Elastic Beanstalk automatically handles the deployment, from capacity provisioning, load balancing, auto-scaling to application health monitoring. At the same time, you retain full control over the AWS resources powering your application and can access the underlying resources at any time.

Question 56

Which of the following best describes EBS (Elastic Block Store)?

Answer 56

A virtual hard disk in the cloud

An Elastic Block Store volume is best described as a virtual hard disk in the cloud - storage that, for all intents and purposes, appears to be directly attached to your instance. These are used by the virtual server instances in the cloud, which are known as EC2 instances

Question 57

Snowball Edge

Answer 57

Snowball Edge offers on-board storage and compute power that can handle local processing and edge-computing workloads in disconnected environments and handles transferring data between your local environment and AWS. Snowball Edge supports S3, EC2, Lambda, and IoT Greengrass.

Question 58

AWS Fargate

Answer 58

AWS Fargate is a serverless, pay-as-you-go compute engine that lets you focus on building applications without managing servers. AWS Fargate is compatible with both Amazon Elastic Container Service (ECS) and Amazon Elastic Kubernetes Service (EKS).

Question 59

ElastiCache

Answer 59

You can use ElastiCache to store the results of often-used queries, and this will allow quicker retrieval of this data.

You have a read-heavy application workload resulting in I/O-intensive Amazon RDS database queries. Which service is most suitable to improve performance? –> Redis, which is a version of ElastiCache, which could be used to help w/ this

Question 60

Comprehend

Answer 60

Comprehend is a natural language processing (NLP) service that uses machine learning to discover relationships and insights in text

A customer would like to use machine learning to uncover the meaning and relationships in text from customer support incidents to ensure customers are happy after speaking to a support agent.

Question 61

Macie

Answer 61

Macie uses machine learning to discover sensitive data stored on Amazon S3. Macie automatically detects a large and growing list of sensitive data types, including personally identifiable information (PII) such as names, addresses, and credit card numbers.

Question 62

AWS CodeCommit

Answer 62

CodeCommit is a source control system for private Git repositories

will allow you to host Git-based repositories

Question 63

AWS CodeBuild

Answer 63

CodeBuild allows you to build and test your application source code.

Question 64

CodeDeploy

Answer 64

a fully managed deployment service that automates software deployments to a variety of compute services such as Amazon EC2, AWS Fargate, AWS Lambda, and your on-premises servers.

While CodeDeploy can deploy code to the cloud and on-premises, it is not used to automate the configuration of servers like OpsWork

Question 65

Storage Gateway

Answer 65

Storage Gateway is a hybrid storage service that allows you to connect on-premises and cloud data.

While a Site-to-Site VPN supports a hybrid model, it’s not the best and most efficient solution.

Question 66

You want to use an AWS service that enables you to notify select Tech Support members in your company (via email) of any cloud-related issues to attend to. Which of the following services will accomplish that?

Answer 66

Simple Notification Service – With Simple Notification Service, or Amazon SNS, you can create and appropriately name a topic to which you publish your messages. Then, the select Tech Support members can subscribe to that topic to receive these messages as email notifications

SES is ideal for marketing campaigns, not the scenario described.

Question 67

NAT gateway

Answer 67

A NAT gateway is required to allow resources in a private subnet to access the internet

Question 68

Amazon EMR

Answer 68

Amazon EMR is a cloud big data platform for running large-scale distributed data processing jobs, interactive SQL queries, and machine learning (ML) applications using open-source analytics frameworks such as Apache Spark, Apache Hive, and Presto.