Udemy Practice Exam 2

Question 1

Acts as a firewall at the instance level

Answer 1

Security Group

Question 2

Acts as a firewall at the subnet level

Answer 2

NACL Network Access Control List

Question 3

Fundamental Drivers of cost with AWS

Answer 3

Compute, Storage, Outbound data transfer

Question 4

A social media company wants to protect its web application from common web exploits such as SQL injection and cross-site scripting. Which of the following AWS services can be used to address this use-case?

Answer 4

WAF Web Application Firewall

Question 5

An IT company wants to run a log backup process every Monday at 2 AM. The usual runtime of the process is 5 minutes. As a Cloud Practitioner, which AWS services would you recommend to build a serverless solution for this use-case? (Select two)

Answer 5

-CloudWatch
-Lambda

Question 6

An online gaming company wants to block users from certain geographies from accessing its content. Which AWS service can be used to accomplish this task?

Answer 6

AWS WAF

Question 7

Which characteristic of Cloud Computing imparts the ability to acquire resources as you need and release when you no longer need them?

Answer 7

Elasticity

Question 8

Which service gives a personalized view of the status of the AWS services that are part of your Cloud architecture so that you can quickly assess the impact on your business when AWS service(s) are experiencing issues?

Answer 8

Personal Health Dashboard

Question 9

A company wants a fully managed, flexible, and scalable file storage system, with low latency access, for its Windows-based applications. Which AWS service is the right choice for the company?
-Amazon EBS
-Amazon EFS
-Amazon FSx for windows

Answer 9

Amazon FSx for windows

Question 10

Multi AZ (Availability Zone) deployment is an example of which of the following?

Answer 10

-High Availability

Question 11

Sends an alarm when the actual cost exceeds a certain threshold.

Answer 11

-Cloudwatch Billing Alarms

Question 12

Sends an alarm when the actual cost exceeds the budgeted amount or even when the cost forecast exceeds the budgeted amount.

Answer 12

-Budgets

Question 13

allow you to use select AWS services, like compute and storage services, closer to more end-users, providing them very low latency access to the applications running locally.

Answer 13

AWS Local Zones

Question 14

site that CloudFront uses to cache copies of the content for faster delivery to users at any location.

Answer 14

Edge Location

Question 15

Due to regulatory and compliance reasons, an organization is supposed to use a hardware device for any data encryption operations in the cloud. Which AWS service can be used to meet this compliance requirement?

Answer 15

CloudHSM - Hardware Security Module

Question 16

Which of the following solutions can you use to connect your on-premises network with AWS Cloud (Select two).

Answer 16

AWS Direct Connect
AWS VPN

Question 17

Which AWS service publishes up-to-the-minute information on the general status and availability of all AWS services in all the Regions of AWS Cloud?

Answer 17

AWS Service Health Dashborad

Question 18

Managing patches of the guest operating system on EC2 is responsibility of

Answer 18

Customer

Question 19

Which AWS compute service provides the EASIEST way to access resizable compute capacity in the cloud with support for per-second billing and access to the underlying OS?

Answer 19

Elastic Compute Cloud EC2

Question 20

Which AWS service should be used when you want to run container applications, but want to avoid the operational overhead of scaling, patching, securing, and managing servers?

Answer 20

Amazon Elastic Container Service- Fargate launch type

Question 21

Which of the following AWS services allows a database to have flexible schema and supports document data models?

Answer 21

Dynamo DB

Question 22

A company is using a message broker service on its on-premises application and wants to move this messaging functionality to AWS Cloud. Which of the following AWS services is the right choice to move the existing functionality easily?

Answer 22

Amazon MQ

Question 23

managed message broker service for Apache ActiveMQ and RabbitMQ that makes it easy to set up and operate message brokers on AWS.

Answer 23

Amazon MQ

Question 24

The engineering team at an IT company wants to monitor the CPU utilization for its fleet of EC2 instances and send an email to the administrator if the utilization exceeds 80%. As a Cloud Practitioner, which AWS services would you recommend to build this solution? (Select two)

Answer 24

Amazon SNS
Amazon CloudWatch

Question 25

An e-commerce company wants to assess its applications deployed on EC2 instances for vulnerabilities and deviations from AWS best practices. Which AWS service can be used to facilitate this?

Answer 25

AWS Inspector

Question 26

-automatically assesses applications for exposure, vulnerabilities, and deviations from best practices.
-automated security assessment service that helps improve the security and compliance of applications deployed on AWS.

Answer 26

AWS Inspector

Question 27

Rightsize workloads with artificial intelligence and machine learning-based analytics to reduce costs by up to 25%.

Answer 27

AWS Compute Optimizer

Question 28

AWS Compute Optimizer helps avoid overprovisioning and underprovisioning four types of AWS resources

Answer 28

-Amazon Elastic Compute Cloud (EC2)
-Lambda functions
-Amazon Elastic Container Service (ECS)
-Fargate
-Amazon Elastic Block Store (EBS)

Question 29

-is accessed less frequently but requires rapid access when needed.
-data can be regenerated

Answer 29

S3 One-Zone Infrequent Access (One-Zone IA)

Question 30

Which AWS service helps with global application availability and performance using the AWS global network?

Answer 30

Global Accelerator

Question 31

-improves the availability and performance of your applications with local or global users.
-It provides static IP addresses
-good fit for non-HTTP use cases,

Answer 31

Global Accelerator

Question 32

Trusted Advisor 5 checks

Answer 32

-Cost Optimization
-Performance
-Security
-Fault Tolerance
-Service limits

Question 33

spans all of the availability zones
-subnet
-VPC

Answer 33

-VPC

Question 34

spans only one AZ
-subnet
-VPC

Answer 34

-subnet

Question 35

Which policy describes prohibited uses of the web services offered by Amazon Web Services?

Answer 35

AWS Acceptable Use Policy

Question 36

Which of the following statement is correct regarding the AWS pricing policy for data transfer charges into or out of an AWS Region?

Answer 36

Only outbound data is charged

Question 37

Which AWS services are Gobal in scope

Answer 37

• Identity and Access Management (IAM)
• AWS Organizations
• Amazon CloudFront
• Amazon Route53
• AWS Global Accelerator
• AWS Direct Connect
• AWS Firewall Manager
• AWS Web Application Firewall (WAF)
• AWS Shield

Question 38

Allows one contact to open unlimited cases

Answer 38

• Developer

Question 39

Allows unlimited contacts to open unlimited cases

Answer 39

-Business
-Enterprise

Question 40

contains the basic building blocks for cloud IT.

Answer 40

IaaS
Amazon EC2

Question 41

removes the need to manage underlying infrastructure

Answer 41

PaaS
Elastic Beanstalk

Question 42

provides you with a complete product that is run and managed by the service provider.

Answer 42

SaaS
Amazon Rekognition

Question 43

The Concierge Support Team is only available for

Answer 43

Enterprise

Question 44

Which AWS service can be used to store, manage, and deploy Docker container images?

Answer 44

Amazon Elastic Container Registry ECR

Question 45

AWS Autoscalling
You can automatically deploy AWS Shield when a DDoS attack is detected (t/f)

Answer 45

False

Question 46

Which AWS support plan provides access to a designated Technical Account Manager (TAM)?

Answer 46

Enterprise

Question 47

a fully-managed service that provides you with an interactive browser-based shell and CLI experience. It helps provide secure and auditable instance management without the need to open inbound ports, maintain bastion hosts, and manage SSH keys.

Answer 47

AWS Systems Manager Session Manager

Question 48

different gateway types supported by AWS Storage Gateway

Answer 48

-File Gateway
-Volume Gateway
-Tape Gateway

Question 49

hybrid cloud storage service that connects your existing on-premises environments with the AWS Cloud.

Answer 49

Storage Gateway

Question 50

Which of the following AWS services can be used to prevent Distributed Denial-of-Service (DDoS) attack? (Select three)

Answer 50

-WAF
-Shield
-CloudFront with Route53

Question 51

Which AWS service can be used to provision resources to run big data workloads on Hadoop clusters?

Answer 51

EMR

Question 52

Which of the following AWS services is essential for implementing security of resources in AWS Cloud?

Answer 52

Identity and Access Management

Question 53

configuration management service that provides managed instances of Chef and Puppet.

Answer 53

OpsWorks

Question 54

A data analytics company has some data stored on Amazon S3 and wants to do SQL based analysis on this data with minimum effort. As a Cloud Practitioner, which of the following AWS services will you suggest for this use case?

Answer 54

Athena

Question 55

Which AWS Route 53 routing policy would you use to improve the performance for your customers by routing the requests to the AWS endpoint that provides the fastest experience?

Answer 55

Latency routing policy

Question 56

A startup is looking for 24x7 phone based technical support for his AWS account. Which of the following is the MOST cost-effective AWS support plan for this use-case?

Answer 56

Business