Udemy Practice Exam 4

Question 1

Which AWS service would you use to create a logically isolated section of the AWS Cloud where you can launch AWS resources in your virtual network?

Answer 1

Virtual Private Cloud (VPC)

Question 2

As per the Shared Responsibility Model, Security and Compliance is a shared responsibility between AWS and the customer. Which of the following security services falls under the purview of AWS under the Shared Responsibility Model?

-AWS Shield Standard
-AWS Web Application Firewall (WAF)
-AWS Shield Advanced
-Security Groups for Amazon EC2

Answer 2

AWS Shield Standard

Question 3

According to the AWS Shared Responsibility Model, which of the following are responsibilities of the customer for IAM? (Select two)

-Manage global network security infrastructure
-Enable MFA on all accounts
-Analyze user access patterns and review IAM permissions
-Configuration and vulnerability analysis for the underlying software infrastructure
-Compliance validation for the underlying software infrastructure

Answer 3

-Enable MFA on all accounts
-Analyze user access patterns and review IAM permissions

Question 4

Which of the following is available across all AWS Support plans?

-Full set of AWS Trusted Advisor best practice checks
-Enhanced Technical Support with unlimited cases and unlimited contacts
-AWS Personal Health Dashboard
-Third-Party Software Support

Answer 4

“AWS Personal Health Dashboard”

Question 5

A streaming media company wants to convert English language subtitles into Spanish language subtitles. As a Cloud Practitioner, which AWS service would you recommend for this use-case?

Answer 5

Amazon Translate

Question 6

AWS Shield Advanced provides expanded DDoS attack protection for web applications running on which of the following resources? (Select two)

Answer 6

-Amazon CloudFront
-Amazon Elastic Compute Cloud

Question 7

Who’s responsability is Patching networking infrastructure

Answer 7

AWS

Question 8

Which of the following types are free under the Amazon S3 pricing model? (Select two)

Answer 8

Data transferred in from the internet

Data transferred out to an Amazon Elastic Compute Cloud (Amazon EC2) instance, when the instance is in the same AWS Region as the S3 bucket

Question 9

The DevOps team at an IT company wants to centrally manage its servers on AWS Cloud as well as on-premise data center so that it can collect software inventory, run commands, configure and patch servers at scale. As a Cloud Practitioner, which AWS service would you recommend for this use-case?

Answer 9

Systems Manager

Question 10

Which of the following AWS services offer LifeCycle Management for cost-optimal storage?

Answer 10

S3

Question 11

How is Amazon EC2 different from traditional hosting systems? (Select two)

Answer 11

-Amazon EC2 can scale with changing computing requirements -With Amazon EC2, developers can launch and terminate the instances anytime they need to

Question 12

Who is responsible for AWS Shield Standard

Answer 12

AWS
-managed service
-automatically activated for all customers
-no customization

Question 13

An e-commerce company would like to receive alerts when the Reserved EC2 Instances utilization drops below a certain threshold. Which AWS service can be used to address this use-case?

Answer 13

AWS Budgets

Question 14

-alert you when your costs or usage exceed (or are forecasted to exceed) your budgeted amount
-define a utilization threshold and receive alerts when your RI usage falls below that threshold

Answer 14

AWS Budgets

Question 15

An organization maintains a separate Virtual Private Cloud (VPC) for each of its business units. Two units need to privately share data. Which is the most optimal way of privately sharing data between the two VPCs?

Answer 15

VPC Peering

Question 16

Which of the following are the serverless computing services offered by AWS (Select two)

Answer 16

-Fargate
-Lambda

Question 17

Analyze user access patterns and review IAM permissions
responsibility of

Answer 17

Customer

Question 18

A financial services company wants to migrate from its on-premises data center to AWS Cloud. As a Cloud Practitioner, which AWS service would you recommend so that the company can compare the cost of running their IT infrastructure on-premises vs AWS Cloud?

Answer 18

AWS Pricing Calculator

Question 19

Which of the following S3 storage classes do not charge any data retrieval fee? (Select two)

Answer 19

-S3 Standard
-S3 Intelligent-Tiering

Question 20

AWS Marketplace facilitates which of the following use-cases? (Select two)

Answer 20

-Sell Software as a Service (SaaS) solutions to AWS customers
-AWS customer can buy software that has been bundled into customized AMIs by the AWS Marketplace sellers

Question 21

Which of the following describes an Availability Zone in the AWS Cloud?

Answer 21

One or more data centers in the same location

Question 22

is one or more discrete data centers with redundant power, networking, and connectivity in an AWS Region.

Answer 22

vailability Zone

Question 23

A media company uploads its media (audio and video) files to a centralized S3 bucket from geographically dispersed locations. Which of the following solutions can the company use to optimize transfer speeds?

Answer 23

S3 Transfer Acceleration

Question 24

A financial services company wants to ensure that all customer data uploaded on its data lake on Amazon S3 always stays private. Which of the following is the MOST efficient solution to address this compliance requirement?

Answer 24

Use Amazon S3 Block Public Access to ensure that all S3 resources stay private

Question 25

Which of the following statements are true regarding Amazon Simple Storage Service (S3) (Select two)?

Answer 25

-S3 is a key value based object storage service
-S3 stores data in a flat non-hierarchical structure

Question 26

AWS Shield Advanced provides expanded DDoS attack protection for web applications running on which of the following resources? (Select two)

Answer 26

Cloud Front
EC2 Elastic Compute Cloud

Question 27

Reserved Instance pricing is available for which of the following AWS services? (Select two)

Answer 27

-RDS
-EC2

Question 28

Which entity ensures that your application on Amazon EC2 always has the right amount of capacity to handle the current traffic demand?

Answer 28

Auto Scaling

Question 29

Which of the following is the MOST cost-effective EC2 instance purchasing option for short-term, spiky and critical workloads on AWS Cloud?

Answer 29

On-Demand Instance

Question 30

Which of the following AWS Support plans provide programmatic access to AWS Support Center features to create, manage and close your support cases? (Select two)

Answer 30

-Business
-Enterprise

Question 31

Which pillar of AWS Well-Architected Framework is responsible for making sure that you select the right resource types and sizes based on your workload requirements?

Answer 31

Performance Efficiency

Question 32

The ability of a system to recover from infrastructure or service disruptions, dynamically acquire computing resources to meet demand, and mitigate disruptions such as misconfigurations or transient network issues.

Answer 32

Reliability

Question 33

Pillar includes the ability to run and monitor systems to deliver business value and to continually improve supporting processes and procedures.

Answer 33

Operational Excellence

Question 34

AWS Trusted Advisor can provide alerts on which of the following common security misconfigurations? (Select two)?

Answer 34

-When you allow public access to Amazon S3 buckets

-When you don’t turn on user activity logging (AWS CloudTrail)

Question 35

Which of the following S3 storage classes has NO constraint of a minimum storage duration charge for objects?

Answer 35

S3 Standard
S3 Intelligent Tiering

Question 36

minimum storage duration charge for 90 days

Answer 36

S3 Glacier

Question 37

minimum storage duration charge for 30 days.

Answer 37

Infrequent Access

Question 38

minimum storage duration charge for 180 days.

Answer 38

S3 Glacier Deep Archive

Question 39

Which of the following is best-suited for load-balancing HTTP and HTTPS traffic?

Answer 39

Application Load Balancer

Question 40

Which of the following is correct regarding the AWS RDS service?Read Replicas

Answer 40

-You can use Read Replicas for both improved read performance as well as Disaster Recovery
-cross-Region Read Replica

Question 41

Which of the following can you use to run a bootstrap script while launching an EC2 instance?

Answer 41

EC2 instance user data

Question 42

Which of the following is available across all AWS Support plans?

Answer 42

AWS Personal Health Dashboard

Question 43

AWS Personal Health Dashboard

Answer 43

U2F security key

Question 44

The DevOps team at a Big Data consultancy has set up EC2 instances across two AWS Regions for its flagship application. Which of the following characterizes this application architecture? cross region improves

Answer 44

Availability

Question 45

Which AWS service will help you install application code automatically to an Amazon EC2 instance?

Answer 45

AWS CodeDeploy

Question 46

Which of the following are recommended security best practices for the AWS account root user? (Select two)

Answer 46

Enable MFA for the AWS account root user

Set up an IAM user with administrator permissions and do not use AWS account root user for administrative tasks

Question 47

Which AWS service can be used to set up billing alarms to monitor estimated charges on your AWS account?

-AWS Organizations
-Amazon CloudWatch
-AWS Organizations
-AWS Cost Explorer

Answer 47

Amazon CloudWatch

Question 48

Which AWS service would you choose for a data processing project that needs a schemaless database?

Answer 48

Amazon DynamoDB

Question 49

Amazon DynamoDB

Answer 49

True

Question 50

Which of the following is a container service of AWS?
works with both Amazon Elastic Container Service (ECS) and Amazon Elastic Kubernetes Service (EKS).

Answer 50

AWS Fargate

Question 51

Which of the following AWS storage services can be directly used with on-premises systems?

Answer 51

Amazon Elastic File System (Amazon EFS)

Question 52

To access EFS file systems from on-premises

Answer 52

-AWS Direct Connect or
-AWS VPN connection

Question 53

Amazon S3 can be accessed from on-premises

Answer 53

only via AWS Storage Gateway

Question 54

A firm wants to maintain the same data on S3 between its production account and multiple test accounts. Which technique should you choose to copy data into multiple test accounts while retaining object metadata?

Answer 54

Amazon S3 Replication

Question 55

When accounts in organization share reserved instances,
they must

Answer 55

be launched in the same Availability Zone as the reserved instances where purchased

Question 56

Which of the following entities are part of a VPC in the AWS Cloud? (Select two)

Answer 56

Subnet
Internet Gateway

Question 57

An e-commerce company has migrated its IT infrastructure from the on-premises data center to AWS Cloud. Which of the following costs is the company responsible for?

Answer 57

Application software license costs

Question 58

Which AWS service will you use to provision the same AWS infrastructure across multiple AWS accounts and regions?

Answer 58

AWS CloudFormation

Question 59

Which of the following entities can be used to connect to an EC2 server from a Mac OS, Windows or Linux based computer via a browser-based client?

Answer 59

EC2 Instance Connect

Question 60

EC2 Instance Connect uses

Answer 60

Secure Shell (SSH).
AWS Identity and Access Management (IAM) policies

Question 61

can be used from a Mac OS, Windows or Linux based computer,

Answer 61

SSH

Question 62

Which of the following AWS services can be used to forecast your AWS account usage and costs?

Answer 62

AWS Cost Explorer

Question 63

automatically assesses applications for exposure, vulnerabilities, and deviations from best practices.

Answer 63

Inspector

Question 64

Which AWS service can help you analyze your infrastructure to identify unattached or underutilized EBS volumes?

Answer 64

AWS Trusted Advisor

Question 65

Which of the following are benefits of the AWS Web Application Firewall (WAF)? (Select two)

Answer 65

-WAF can block all requests except the ones that you allow
-WAF can check for the presence of SQL code that is likely to be malicious (known as SQL injection)

Question 66

WAF can check for the presence of SQL code that is likely to be malicious (known as SQL injection)

Answer 66

-Amazon API Gateway API
-Amazon CloudFront
-Application Load Balancer.

Question 67

-is a good fit for non-HTTP use cases
-provides static IP addresses that act as a fixed entry point to your applications

Answer 67

AWS Global Accelerator

Question 68

Which of the following AWS entities lists all users in your account and the status of their various account aspects such as passwords, access keys, and MFA devices?

Answer 68

Credential Reports

Question 69

A cargo shipping company runs its server-fleet on Amazon EC2 instances. Some of these instances host the CRM (Customer Relationship Management) applications that need to be accessible 24*7. These applications are not mission-critical. In case of a disaster, these applications can be managed on a lesser number of instances for some time.

Which disaster recovery strategy is well-suited as well as cost-effective for this requirement?

Answer 69

Warm Standby strategy

Question 70

-always running but smaller
-business critical

Answer 70

Warm Standby strategy

Question 71

-iddle service
-provision and then scale

Answer 71

Pilot light

Question 72

-mission critial
-no downtime

Answer 72

multi-site active/active

Question 73

-lower priority
-restore after event

Answer 73

backup & restore